Windows Genuine Advantage Notifications on Start Up

Hello,
I am getting Windows Genuine Notifications pop up at start up. Being that I've had my computer nearly 3 years and this is just now showing up, I'm reluctant to install anything like this on account of the fact that I just recently eliminated some malware (sysguard.exe).

Is this thing legitimate or another issue? I have attached a screen shot of the pop up.

Thanks,
Gavin
notification.jpg
ChainGreyIVAsked:
Who is Participating?
 
☠ MASQ ☠Connect With a Mentor Commented:
No Problem

Yes - the latest incarnation of WGA was pushed week commencing March 24
See: http://blogs.msdn.com/wga/archive/2009/03/24/update-to-wga-notifications-for-windows-xp-pro.aspx

So the infection you removed may have prevented it downloading earlier or simply as you are updating the system after your clean-up your getting the current version installing.
0
 
☠ MASQ ☠Commented:
Yep- that's the WGA installer - it's legitimate (unless you weren't running a Microsoft Update) - Microsoft are trying to check if you are too!
0
 
ChainGreyIVAuthor Commented:
What? Microsoft is trying to check i am what??

As far as if I'm running an update. Who knows?! They're all automatic.
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
☠ MASQ ☠Commented:
Check here:
http://www.microsoft.com/genuine/ProgramInfo.aspx?displaylang=en&sGuid=3d37b7f4-57a8-4f0b-a0b2-2ed3cf453b42

It's an ActiveX plug-in that checks your Windows installation is legal - you'll still be able to get security updates from Windows Update without using it but not other product updates.
0
 
ChainGreyIVAuthor Commented:
Is this a new thing? I've been updating windows xp for >2.5 years. All the service packs, random updates etc.
0
 
☠ MASQ ☠Commented:
Nope it's been about for at least 3 years maybe more, because they push it via Automatic Updates you've probablly had it installed without noticing.  The clean up on your machine has probably kicked it into action (but not in a malicious way)
Check on your machine for a folder at C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage

0
 
ChainGreyIVAuthor Commented:
I have that folder. There is a folder called Data with a file in it called data.dat. That is all.

What does that tell you?
0
 
☠ MASQ ☠Commented:
That your machine was previously registered with WGA.  Microsoft continually modify the WGA code - cynics might say because people without genuine installs keep hacking it to make their installations appear legitimate.

The info in the DAT file is used to confirm you have a genuine version when you connect to the update server.
0
 
ChainGreyIVAuthor Commented:
aha ok. So the reinstall is just an update??

sorry for all the questions!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.