Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 5069
  • Last Modified:

Windows Genuine Advantage Notifications on Start Up

Hello,
I am getting Windows Genuine Notifications pop up at start up. Being that I've had my computer nearly 3 years and this is just now showing up, I'm reluctant to install anything like this on account of the fact that I just recently eliminated some malware (sysguard.exe).

Is this thing legitimate or another issue? I have attached a screen shot of the pop up.

Thanks,
Gavin
notification.jpg
0
ChainGreyIV
Asked:
ChainGreyIV
  • 5
  • 4
1 Solution
 
☠ MASQ ☠Commented:
Yep- that's the WGA installer - it's legitimate (unless you weren't running a Microsoft Update) - Microsoft are trying to check if you are too!
0
 
ChainGreyIVAuthor Commented:
What? Microsoft is trying to check i am what??

As far as if I'm running an update. Who knows?! They're all automatic.
0
 
☠ MASQ ☠Commented:
Check here:
http://www.microsoft.com/genuine/ProgramInfo.aspx?displaylang=en&sGuid=3d37b7f4-57a8-4f0b-a0b2-2ed3cf453b42

It's an ActiveX plug-in that checks your Windows installation is legal - you'll still be able to get security updates from Windows Update without using it but not other product updates.
0
Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

 
ChainGreyIVAuthor Commented:
Is this a new thing? I've been updating windows xp for >2.5 years. All the service packs, random updates etc.
0
 
☠ MASQ ☠Commented:
Nope it's been about for at least 3 years maybe more, because they push it via Automatic Updates you've probablly had it installed without noticing.  The clean up on your machine has probably kicked it into action (but not in a malicious way)
Check on your machine for a folder at C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage

0
 
ChainGreyIVAuthor Commented:
I have that folder. There is a folder called Data with a file in it called data.dat. That is all.

What does that tell you?
0
 
☠ MASQ ☠Commented:
That your machine was previously registered with WGA.  Microsoft continually modify the WGA code - cynics might say because people without genuine installs keep hacking it to make their installations appear legitimate.

The info in the DAT file is used to confirm you have a genuine version when you connect to the update server.
0
 
ChainGreyIVAuthor Commented:
aha ok. So the reinstall is just an update??

sorry for all the questions!
0
 
☠ MASQ ☠Commented:
No Problem

Yes - the latest incarnation of WGA was pushed week commencing March 24
See: http://blogs.msdn.com/wga/archive/2009/03/24/update-to-wga-notifications-for-windows-xp-pro.aspx

So the infection you removed may have prevented it downloading earlier or simply as you are updating the system after your clean-up your getting the current version installing.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now