Vista Activation Cracked By Brute Force

[AdverseDeviant]

I'll assume there's around 2^32 (about 4 billion) "valid" keys (in the sense that local activation accepts them). So assuming you can test even 2^30 (1 billion) keys per second, it would still take 2^(111-30-32) = 2^49 seconds = billions of years until you expect to find 1 locally valid key. So the author must be using some math to eliminate certain classes of keys.

well yes isnt that the point of hacking? to find vulnerbilities in the algorithm used?

[S7un7]

I'll assume there's around 2^32 (about 4 billion) "valid" keys (in the sense that local activation accepts them). So assuming you can test even 2^30 (1 billion) keys per second, it would still take 2^(111-30-32) = 2^49 seconds = billions of years until you expect to find 1 locally valid key. So the author must be using some math to eliminate certain classes of keys.

They are really going to have problems once someone harnesses the power of using an Nvidia 8800 as a so called "super computer". That could probably generate keys in seconds/minutes.

[SimplyPotatoes]

They are really going to have problems once someone harnesses the power of using an Nvidia 8800 as a so called "super computer". That could probably generate keys in seconds/minutes.

:laugh:

[AdverseDeviant]

:laugh:

i second that. i hope hes not serious....

[Budious]

They go to all this trouble with one time activation schemes... I personally just wouldn't mind buying Windows on a subscription model at say $10/month for a Home Edition, $15 for a Professional Edition even if it required a constant internet connection and regular subscription verification (much like Steam) and then I wouldn't feel so jipped when I wanted to upgrade to the next operating system version or have the flexibility to upgrade/downgrade distributions.

[AdverseDeviant]

They go to all this trouble with one time activation schemes... I personally just wouldn't mind buying Windows on a subscription model at say $10/month for a Home Edition, $15 for a Professional Edition even if it required a constant internet connection and regular subscription verification (much like Steam) and then I wouldn't feel so jipped when I wanted to upgrade to the next operating system version or have the flexibility to upgrade/downgrade distributions.

hmm 5 years * 12 months = 60 months * 15$ per month = 900$

[Budious]

hmm 5 years * 12 months = 60 months * 15$ per month = 900$

Ok... poor example... assuming that new versions of Windows were available on a three - four year window and not the XP - Vista gap. You could also include all support such as service packs and updates as revisions of current versions that you are getting for free now. Point being I hate to purchase an additional XP licence say in July 2006 with Vista release only 6 months away $250 vs 15*6 = $90 so depends on the case of purchase and use. Appropriate pricing to be determined later, and I'm sure the traditional purchase method would still be available.

[Mr. Gibs]

Lol brute force....just buy the ****ing program. 200usd isnt something that expensive that you have to make such a fuss.

[Pharos]

So, basically what this program does is find a genuine cd-key that's being sold in stores? If this is the case, Microsoft has a problem of catastrophic dimension in their hands right now. :o

[AdverseDeviant]

So, basically what this program does is find a genuine cd-key that's being sold in stores? If this is the case, Microsoft has a problem of catastrophic dimension in their hands right now. :o

well according to the forum the script can only do 10000 keys in 30 minutes so youd be lucky to find a legit key in your lifetime.

honestly my vista cant stay up long enough without bsod'ing for me to really test it out.

[Vice]

I wonder what this means for me. I have multiple legitimate keys and if someone magically got one of my keys from a keygen mine would fail WGA :/

I guess if that happens in high enough numbers Microsoft will have to end WGA altogether?

[Pharos]

LOL Microsoft is having a taste of its own venom =)

Can't feel bad for them... WGA/Activation sucks, even for us genuine users.

[Joni_78]

Nice, I got two extra keys incase original ever stops working or asking that f****** phone activation.

[SamNeeds]

Boo hoo for Microsoft. I suppose this was going to happen at some point. Where there is software to be broken into, there are many, many skilled coders/hackers etc etc.

[Deniss]

I think this article is being overreacted on.

In my country vista business costs about 160 bux ;) Is it worth it?

[Krome]

BIOS modding is better than the bruteforce

[DoomOlek]

I think this article is being overreacted on.

In my country vista business costs about 160 bux ;) Is it worth it?

i got my ultimate x64 for 159? (SB Version).

that sux, really! hope MS get it fixed for themselfes and for US!!! i think, that not only me was exited about vista and bought it for his hard earned money. i don?t care when they get "new" keys and MS can blacklist them and they have to do it again, but to generate keys that already are on the booklets and the new ones comming to stores, thats bad.

that freak is a sucker*, hope they get him, i dont care, because i payed for my vista:crazy:zy:

[SBeaver]

i got my ultimate x64 for 159? (SB Version).

that sux, really! hope MS get it fixed for themselfes and for US!!! i think, that not only me was exited about vista and bought it for his hard earned money. i don?t care when they get "new" keys and MS can blacklist them and they have to do it again, but to generate keys that already are on the booklets and the new ones comming to stores, thats bad.

that freak is a sucker*, hope they get him, i dont care, because i payed for my vista:crazy:zy:

I can't stop laughin:laugh:gh:

I have a legal license myself but that must be the dumbest thing I've ever heard.

If Vista wasn't overpriced, why would you care about people getting it for free?

[Inertia]

BIOS modding is better than the bruteforce

care to elaborate ?

[psionicinversion]

Doom that version of vista is OEM and i think your only allowed to install it on the computer ya using and not allowed any hardware modifications, i think.

But ill be getting the OEM version to and ill change what i want and if microsoft say ya cant ill say well why the **** do ya need 2 OS's on 1 disk, your only gonna use one of em. Then they want to make ya pay ?328 and they call that a good deal, yeah whatever more like forcing both OS's on ya to increase there money cus they know theyve done a **** job with vista.

If they new they couldnt include all the good stuff like the new filesystem they should of ditched that stuff years ago and kept to a decent release date. Instead its us suckers that gotta pay for there mistake

[SBeaver]

I would say the emulated bios is the easiest way (latest chinese crack), but to have your own working key for free must be the best way.

[DoomOlek]

Doom that version of vista is OEM and i think your only allowed to install it on the computer ya using and not allowed any hardware modifications, i think.

But ill be getting the OEM version to and ill change what i want and if microsoft say ya cant ill say well why the **** do ya need 2 OS's on 1 disk, your only gonna use one of em. Then they want to make ya pay ?328 and they call that a good deal, yeah whatever more like forcing both OS's on ya to increase there money cus they know theyve done a **** job with vista.

If they new they couldnt include all the good stuff like the new filesystem they should of ditched that stuff years ago and kept to a decent release date. Instead its us suckers that gotta pay for there mistake

SB is system builder edition, you have to choose bevor you buy in 32bit or 64bit. its one user license, yes, and about that hardware change, they can?t do it here because of the laws (germany), you can change hardware and activate again.

@SBeaver: i dont get you, why you have to laugh and why its dumb what i said? this why i payed 159? and not 499?.

i dont understand you

[Malisk]

IT LOOKS LIKE Microsoft's unhackable OS activation malware has been hacked.

Not even MS said it was unhackable, so why do things like this keep being spread. Also, brute force generation is not really a crack; a crack involves bypassing a protection, while brute forcing is really just trying a whole lot of keys. Any protection using keys or passwords is "vulnerable" to that really, the difference is just how long it takes. But that's mostly semantics. What's important to both MS and priates alike is if this method is efficient enough. :)

I always wondered why we were still at a mere 25 digits for cd keys. I wonder how many people will bother trying this, as opposed to the "other methods".

What I'm surprised about is how bruteforcing can be possible even now...

25 characters with 26 (letters) + 10 (digits) combinations each => 25^36 combinations. That number is 50 digits long!

211758236813575084767080625169910490512847900390625 combinations.

I don't really get how they can do this in a viable way still... They have to have figured out a way to reduce the number of permutations far below 26^36 somehow, perhaps by figuring out the key algorithm and not trying *all* combinations. That would just be ridiculous! Perhaps they're able to just try out for a specific Vista Edition, but it still feels like a whole lot! 100 million "valid" keys among all those combinations would still just be a drop in the ocean?

Edited March 2, 2007 by Jugalator

[leesmithg]

Ohh well, I always said that WGA and Vista would be M$'s 'Bismarck'.

[Aero Ultimate]

Just shows that this Wga crap is only a big waste of money. All it does is annoying legal buyers, while pirates laugh at it.