Investigation(s) into MS's Upgrade Traps?

Story: How Windows 10 became malwareTotal Replies: 16
Author Content
vainrveenr

Jun 09, 2016
11:08 AM EDT
Quote from this piece:
Quoting:Last year Microsoft installed its Get Windows 10 app on millions of Windows 7 and Windows 8.1 PCs. It alerted people that they could “reserve” the free upgrade if they wanted. When the app popped up on people’s PCs, they could close its window and block any action it might take in the time-honored way of clicking on the X in the upper right of the dialog box.

Since then Microsoft has gotten increasingly aggressive in getting people to upgrade to Windows 10. It began stealthily downloading the bits required for the upgrade to PCs automatically without telling people. And then this spring Microsoft sprung a trap. When the upgrade app appeared, if someone clicked the X in its dialog box in order to close it and cancel an upgrade, Windows did the exact opposite of what the person intended to do: It upgraded that person’s PC to Windows 10. Microsoft did that even though the app always behaved in the opposite way before then, which is pretty much the way any legitimate app behaves — closing a dialog box and canceling any actions.


As long-time readers here are no doubt aware, Microsoft has been accused of engaging in somewhat similar questionable software practices in the recent past. E.g., see such fairly comprehensive websites as:

- Groklaw's 'Microsoft Litigation' page found at http://www.groklaw.net/staticpages/index.php?page=2005010107100653

- The Wikipedia piece covering the infamous case 'United States v. Microsoft Corp.' whereby Microsoft was accused of abusing monopoly power on Intel-based personal computers in its handling of operating system and web browser sales, see https://en.wikipedia.org/wiki/United_States_v._Microsoft_Corp.



Indeed, a further point of contention in Windows 10 becoming "malware" could very well be the invariable cyclical cat-and-mouse game of Windows 7 and 8.x power users publishing varyingly effective ways of removing Microsoft's "Upgrade Traps" followed by Microsoft's continuous and stealthy re-instatement of clampdown revisions of these selfsame "Upgrade Traps".



dotmatrix

Jun 09, 2016
1:35 PM EDT
The basic problem with the law and Microsoft is:

Microsoft is a large US company and employer. Microsoft will never be properly subjected to the law, let alone ethical standards because it is a driver of US employment and the economy overall. Crony capitalism... this is what it is...

So, there is no free market of products or ideas. Winners and losers in many, or maybe most, markets are chosen by and through government intervention in the marketplace. The US government is a massive purchaser of Microsoft products and even generally requires Microsoft Office formats be adhered to when submitting reports and documentation on contracts.

I know this because I was a government employee at one point. I remember getting laughed out of the office meeting when I suggested that we adhere to various international organizations recommendations and require documents to be submitted in ODF.
vainrveenr

Jun 09, 2016
3:53 PM EDT
Most of the Upgrade Trap "malware" appears to be centralized around the Microsoft Windows KB3035583 app for current Windows 7 Service Pack 1 and Windows 8.1 users, a.k.a., the Get Windows 10 app (GWX). As is described here:
Quoting:What Is KB3035583?

Basically, KB3035583 simply lets Windows Update pester you about upgrading to Windows 10. KB3035583, otherwise known as GWX, is an executable that starts with your system via the Task Scheduler.
Source is http://www.howtogeek.com/218856/how-do-you-disable-the-get-w...



The original piece of this thread further writes:
Quoting:So is the Windows 10 upgrade malware? One place to look for clues is in Microsoft’s document, “How to prevent and remove viruses and other malware”. That document warns, “Never click 'Agree' or 'OK' to close a window that you suspect might be spyware. Instead, click the red 'x' in the corner of the window or press Alt + F4 on your keyboard to close a window." And it defines spyware, in part, this way: “Spyware can install on your computer without your knowledge. These programs can change your computer’s configuration or collect advertising data and personal information.”


On top of this Microsoft document, there is also Microsoft's How to manage Windows 10 notification and upgrade options which may further confuse quite a significant number of Windows 7 and Windows 8.1 users wishing to avoid this very GWX upgrade trap.





vainrveenr

Jun 09, 2016
4:25 PM EDT
Quoting:Microsoft will never be properly subjected to the law, let alone ethical standards because it is a driver of US employment and the economy overall.


And Microsoft might be less subjected as well to immediate pressure from Non-governmental organizations such as the Electronic Frontier Foundation.

Note the recent petition launched this past Friday asking the Electronic Frontier Foundation (EFF) to investigate Microsoft's aggressive moves to convince and cajole users into upgrading to Windows 10, see the LXer-linked piece http://lxer.com/module/newswire/view/230373. At the time of this writing, Kleinpaste's petition to the EFF regarding MS's GWX "malware" is still shy of the requested 5,000 signatures.



jdixon

Jun 09, 2016
5:39 PM EDT
I recommend the GWX Control Panel from http://ultimateoutsider.com/downloads/ for shutting down the Windows 10 upgrade harrassment.

Not that Windows 10 is all that bad. Save for it's spyware features (other than that Mrs. Lincoln) and with Classic Shell installed, it's usable.
vainrveenr

Jun 09, 2016
6:52 PM EDT
Quoting:I recommend the GWX Control Panel from http://ultimateoutsider.com/downloads/ for shutting down the Windows 10 upgrade harrassment.


But the latest version 1.7.4.1 of the GWX Control Panel dated April 1, 2016 doesn't necessarily optimally handle Microsoft's KB2952664, KB2977759, or KB2976978 for Windows 7 and 8.1 respectively. For example and as reported in further detail within the piece 'How Microsoft copied malware techniques to make Get Windows 10 the world's PC pest' linked to LXer via http://lxer.com/module/newswire/view/227138:
Quoting:Much of the attention in the tech press on combatting GWX has been has focused on eliminating the work of one patch, KB3035583, which constantly reappears on users' PCs, even after removal. However, an investigation shows that ‘583 is a symptom, rather than the cause, of recurring GWX infestations.

The ‘583 patch is most commonly reinstalled by another patch, KB2952664. Once ‘664 is on a system, '583 will be requested for download and installation. Getting rid of, and thereby controlling, '664 could be the key to controlling the sophisticated "Get Windows 10" nagware network.

"Current patches do not fully address this situation and I do not believe it ever will, as the author of the GWX patch only addresses the GWX executable plus the '583 update,” writes a reader who conducted a detailed investigation for us.

Studying the behaviour of the ‘664 patch explains why controlling GWX is so difficult. The ‘664 patch constantly “mutates” – it is frequently revised to contain a new payload. Microsoft has not documented its behaviour, and has over the years removed explanations of what KB patches actually do.


Current and past user-posts at the Ultimate Outside Blog may be more comprehensive at addressing the continued issues with these GWX "patches" and their ongoing mutations.

And a couple of days prior to the April 1, 2016 release of GWX Control Panel version 1.7.4.1, InfoWorld author Lionhard evaluated Steve Gibson's Never10 vs. Josh Mayfield's GWX Control Panel.

Since that latest release of the GWX Control Panel, Lionhard has provided power users' related evaluations and suggestions over these "patches", presented here going backwards in time:

- 'It's back! Microsoft’s Get Windows 10 app, KB 3035583, reappears', http://www.infoworld.com/article/3075480/microsoft-windows/m...

- 'Hit by an unexpected Windows 10 upgrade? Here's how to recover', http://www.infoworld.com/article/3074096/microsoft-windows/h...

- 'Windows 10 nagware patch KB 3035583 back on Windows 7 PCs', http://www.infoworld.com/article/3065293/microsoft-windows/w...

- 'Windows 7/8.1 patches KB 2952664, 2976978, and 2977759 return like bad pennies', http://www.infoworld.com/article/3053608/microsoft-windows/w...





jdixon

Jun 09, 2016
7:05 PM EDT
> InfoWorld author Lionhard evaluated Steve Gibson's Never10 vs. Josh Mayfield's GWX Control Panel.

They both seem to work, but Never 10 wasn't out yet when I installed GWX Control Panel. So far it's worked properly on my work oriented machine, but then I activated monitor mode.

I use Windows 10 at work, since the alternative was Windows 8.1. :( But I'll stick with 7 at home. By the time it's no longer supported I hope to be retired and not need Windows.
flufferbeer

Jun 13, 2016
3:57 PM EDT
@vainrveer,

> At the time of this writing, Kleinpaste's petition to the EFF regarding MS's GWX "malware" is still shy of the requested 5,000 signatures.

Went ahead and signed that petition to the EFFjust before the weekend, and see that it already got 5000+ signers by Sunday.

Now that they've bought out job networking site LinkedIn for over $25 B-I-L-L-I-O-N, I'm wondering HOW Micro$ucks'll connive to push Windoesn't 10 unto all those unsuspecting LI users?? MacroBak$heesh!!

2c
jdixon

Jun 13, 2016
4:09 PM EDT
Now that they've bought LinkedIn, I wonder how many Linux jobs and resumes will mysteriously disappear from the site.
seatex

Jun 13, 2016
6:10 PM EDT
> Now that they've bought LinkedIn, I wonder how many Linux jobs and resumes will mysteriously disappear from the site.

I just closed my account there, as a matter of fact.
penguinist

Jun 13, 2016
8:25 PM EDT
I'm on it!

Ok, that didn't take long. I wonder what Microsoft will do with data left abandoned by de-subscribing members... Hold it forever most likely. I had an opportunity to leave a comment about my reason for terminating my account. I left the message:

"I don't trust Microsoft."

vainrveenr

Jun 28, 2016
6:41 PM EDT
Quoting:"I don't trust Microsoft."


Continuing the theme of Microsoft's Upgrade Traps, there is today's Ultimate Outside Blog piece 'Get ready for yet another change to 'Get Windows 10' nagware', found at http://www.infoworld.com/article/3088901/microsoft-windows/get-ready-for-yet-another-change-to-get-windows-10-nagware.html:
Quoting:Windows 7 and 8.1 customers who have been force-fed Windows 10 are an unhappy lot. Now statements attributed to Microsoft spokesperson Lisa Gurry promise that, starting this week, new alerts in the Get Windows 10 process will offer users a clear choice to decline Windows 10.

If that sounds familiar, consider the promise Windows honcho Terry Myerson made last October that "You can specify that you no longer want to receive notifications of the Windows 10 upgrade through the Windows 7 or Windows 8.1 settings pages."


The subcaption below this piece's title even cautions:
Quoting:If a report in The Mercury News is right, Microsoft will make a new push this week to force-[feed] Windows 10




jdixon

Jun 28, 2016
9:56 PM EDT
The obvious next step: http://www.sandraandwoo.com/2016/06/09/0793-an-offer-you-can...
seatex

Jun 29, 2016
9:02 AM EDT
> The obvious next step: http://www.sandraandwoo.com/2016/06/09/0793-an-offer-you-can...

Oh, i almost spilled my coffee! The funniest stuff is always based in reality. ;-)
DrGeoffrey

Jun 29, 2016
9:50 AM EDT
Thanks. That's great!
jdixon

Jun 29, 2016
11:50 AM EDT
Glad you liked it. For those that work in IT, this one may also be appropriate; http://www.sandraandwoo.com/2016/04/28/0781-me-irl/
telanoc

Jun 29, 2016
10:56 PM EDT
Hey, thanks for Sandra and Woo. I just added it to my reading list.

Posting in this forum is limited to members of the group: [ForumMods, SITEADMINS, MEMBERS.]

Becoming a member of LXer is easy and free. Join Us!