Another reported workaround ineffective…

Late last week, while I was out of the office sick and with my boss covering for me, our team learned of reports of a purported workaround to activation on Windows Vista. I also just noticed a question in the form of a comment posted by a regular reader of this blog about this exact issue (thanks mhornyak) and I’m happy to provide an update on this.

As I mentioned in a previous blog, when we hear reports of this type our team looks begins by examining whether the issue is technically valid and if so how it might impact our customers. A quick analysis of this report determined that this purported workaround doesn’t work. What follows below is a more technical explanation of the features discussed in the reports of the workaround and how they behave and why.

If anyone knows of other scenarios they think might be similarly confusing or that could be construed as workarounds feel free to drop me a line. We’ll gladly work with you to understand what’s going on.

The purported workaround

The reported workaround utilizes the documented feature skiprearm. Skiprearm is used in combination with sysprep by system builders and IT pros who want to design customized builds of Windows in order to add software, drivers, help files, and other useful information for their customers. To understand skiprearm lets first take a sec to understand what how plain ole’ rearm is used.

In the process of building a customized build of Windows Vista it is necessary for the builder of the image to actually run the software, when the OS is booted for the first time the timer that starts the 30 day grace period begins. Obviously this could create a problem if after a week or two of installing, booting and testing the image the image is put in the hands of a customer with only a couple of weeks of grace period left. This is where the rearm feature comes in. Rearm is used to reset the activation grace period timer to 30 days as one of the final steps the builder of the image will perform. Doing this enables the builder of the image to ensure the customer has the full 30 day period in which to activate. And if the builder of the image makes a mistake rearm can be performed up to three times. So where does skiprearm come in? Skiprearm is used because during the process of actually testing the image the builder of the image will need to run the sysprep command to reset the image to present the out of box (OOB) experience the next time the OS is started.  HOWEVER, running the sysprep command will also run the rearm command by default, this makes sense if sysprep is the last thing done to the image before it is distributed. But wait, can’t rearm only be run three times? Yup! Enter skiprearm, skiprearm enables someone to run the sysprep command but WITHOUT actually using one of the three rearms. The fact that skiprearm does this and is meant for this purpose is clear in the documentation of the feature. When the skiprearm bit is flipped the rearm command can be used and will appear to succeed when it fact it is failing to extend the grace period timer. Using the method below will confirm this.

Check the grace period timer by using slmgr -dlv to note the number of grace minutes remaining, change the reg key that turns on skiprearm, rearm (slmgr -rearm), reboot. Again, use slmgr -dlv to see number of minutes remaining. The number will show that the timer has not been reset, showing that when skiprearm is set rearm doesn’t work.

For those of you who used the skipread command to get here the summary is that the purported workaround doesn’t actually work to extend activation.

Comments (11)

  1. Anonymoususr says:

    Alex, could you post your thoughts on the driver-OEM workaround? It would be interesting to hear your thoughts on the matter.


  2. PhilipE says:

    I too am curious to hear about your views on the OEM BIOS validation.

    Quite frankly, I was both surprised and quite disappointed when I first saw the claims, and then the actual tools that work?

    Please … comment!

    Philip E.

  3. ioniancat21 says:

    Oh guys, sorry but I have been away. Anyway, you poor guys are way behind the times on your cracking information. They currently have a method to activate Vista based on the OEM licensing scheme. See more here at this link.

    Don’t waste your time focusing on the ReArm cracks as they are not currently being used anymore. Who mines data about cracks for you guys, the three blind mice??? To think Microsoft doesn’t know what cracks exist for Vista, hmmm……….

  4. 4sysops says:

    Last Friday, I blogged about the “Skipream hack” that lets you use Vista without activating it. A commentator here on 4sysops linked to an article on a Microsoft blog claiming that this workaround won’t work. Although the arguments of..

  5. ioniancat21 says:

    One-click vista activation is now available. Most of the data here, though current date-wise is very old. Your Rearm article above is only days old, yet that method has been known since the beta and is no longer used and shouldn’t be your concern.

    Like I had said before, don’t waste your time with Timerstop, Frankenbuild and Rearm issues, focus instead on the OEM activation scheme which will be your most difficult to stop. Good luck alexkoc….

  6. I got an email recently from Jeff Headley, Solution Architect at KAZ, regarding an article purporting

  7. rdamiani says:

    I think what mhornyak was talking about what the date-related rearm. At least that’s what I’ve heard about as a popular work-around.

  8. rdamiani says:

    I think mhornyak might have been talking about the date related rearm.

  9. ioniancat21 says:

    Many of my comments have been edited, removed and/or never posted. The reason for this is because the disinformation being provided here is strictly MS storybook fiction fed to users so these people will believe their activation security model works. First of all the most recent article above titled "Another reported workaround ineffective…" is talking about vista cracking methods that were available pre-RTM and are no longer used(Rearm method). With that said, we can all see why Genuine Activation is a failure. Development of it by Microsoft should be dropped as it is a waste of Microsoft’s resources and is not working.

    If you would have posted my articles, you all would have discovered that users are now fully activating Vista and using Windows Update easily with the current cracks available. This "head in the sand" mentality I have seen here is a shame, you would think my contributions were helping, however it seems the people who run this blog want to instead spread false propaganda about how Genuine Activation is working, what a joke…….

  10. MSDN Archive says:

    ioniancat21, I am not censoring your comments. As I posted previously I have recently had to start reviewing all comments prior to posting due to a number of inapropriate posts. Yours are not among those I have declined to post and I assure everyone that I am not filtering out comments because I don’t like what they say. So far I have only had to filter out comments that contained legal speculation and/or threats to which I cannot respond because I am not a lawyer. This is not the forum for that kind of activity.