RemoveWAT Overview :
RemoveWAT is a crack that logically is different from loaders since it alters original Microsoft files to change the OS tools that activate Windows. As the name implies, it is useable for removing Windows Activation Technologies, which are composed of:
SPP (Software Protection Platform)
SLC (Software Licensing Client)
At the time these services are altered to work differently on the PC, Windows will not be able to notify these services that the grace period has expired, and therefore it is like an infinite trial. It is not even a rearm. That no matter how much the RemoveWAT is working, it is not a guarantee that it will work the other month because security bulletins consistently appear that will verify the integrity of the activation technologies.
Microsoft suites such as MSE and other updates such as KB971033 can verify the integrity of the services, this check is done every 90 days and is collected and sent to Microsoft servers. Recall that a while ago, an Office update came out that is supposed to be for the office suite. Still, in reality, it had something that screwed those who had the pirated Halo. It has yet affected not only the pirates but also those who had legal. And they had to replace the damage with another update. This practice is not uncommon in Redmon.
How does Loader work?
This function serves to emulate the SLIC 2.1 that OEM devices bring with Windows 7. This information is available in the BIOS of the motherboard. However, it is possible to imitate it from the hard disk boot. The Loader does not modify the system files. It does not change any original dll. Much less deactivates the WAT, it only enters the information in the boot (it is the 100 MB partition made when we install Windows 7). and when turning on the PC, start the BIOS. It looks for the boot.
Before loading it, it takes the information of the SLIC so that the system begins with the emulated BIOS, that is why always with the AIDA64 or with other programs, we will find the same info of the Original BIOS with the emulated SLIC 2.1 and does not emulate a third-party BIOS. Additionally, it installs a key and a certificate that contains information that must match that of the SLIC. By the time WAT does its verification, the files are intact, the parameters that an OEM team must have met, and happily, it tells us that Windows is activated. When you send that info to MS, we have access to updates and system improvements without any problem.
Functions of RemoveWAT:
It is minimal and simply because some only followed tutorials that were poorly done or not well-intentioned and because they did not give a little bit of logic. If RemoveWAT is active first and the update is installed, it will check the services and rewrite them. The correct order is to install KB9710332 and then RemoveWAT so you can alter the services. Now, what does this particular program do?
1- Delete the WAT records where you can save information about our copy of Windows. Manually that would be done by running the following code in CMD (as admin).
2- To be able to alter the configuration and the files, it is necessary to stop the Windows Software Protection Service, To do it manually the following command would is executed as admin in the cmd: net stop sppsvc
Note: After finishing all this guide until step 6, you can resume this service by running this:
3- Block the checks every 90 days KB71033 does. For this, the following code is useful:
schtasks /change /disable /tn “MicrosoftWindowsWindows Activation TechnologiesValidationTask” && schtasks /change /disable /tn “MicrosoftWindowsWindows Activation TechnologiesValidationTaskDeadline”
4- Subsequently enter the following code in the CMD to leave the KB71033 without head or limbs:
takeown /f “%windir%System32Wat*” && icacls “%windir%System32Wat*” /deny *S-1-1-0:f
5- Alter files (libraries .dll) of WAT, SPP, and SLC:
There are several libraries (.dll’s), among the most important are:
slwga.dll and sppcomapi.dll, along with the other libraries, are run but are dependent on what they say. To alter them, you must take control of them by executing the following code in CMD.
takeown /f “%windir%System32slwga.dll” & icacls “%windir%System32slwga.dll” /grant *S-1-1-0:f
takeown /F “%WINDIR%System32sppcomapi.dll” & icacls %WINDIR%System32sppcomapi.dll /deny *S-1-1-0:f
slwga.dll is the most important since it is the one that is responsible for letting us validate our Windows, RemoveWAT replaces the original dll with a modified one.
6- Finally, RemoveWAT changes the user32.dll.mui file, which is responsible for displaying the famous “This copy of Windows is not Genuine” sign, and other notifications, changing it to logic, remove its function and content. To do this, take control of the file with the following code to take possession of it:
takeown /f “%windir%System32es-Esuser32.dll.mui”
Later it replaces it with a modified one.
(Where xx-Xx refers to the native language in which your Windows 7 is working on)
After all this, the RemoveWAT executes the command:
That is all that RemoveWAT does. This action also creates a .bat file and the .bak files of the original files for when you have to reverse the process or uninstall the RemoveWAT, for this reason, the icacls / deny statements is undoable by changing “deny” to “grant” like this:
icacls %WINDIR%System32sppcomapi.dll /grant *S-1-1-0:f
Ready. You already did everything that RemoveWAT does manually.
Is RemoveWAT Useful?
Yes, if you only want to use Windows regardless of updates.
Not if you are looking to ACTIVATE Windows.
Because the idea is not to keep hiding from Microsoft and have access to all the features and improvements, the activation of the system with this method is not real, only the dlls and the files are modified to make us believe that the activation occurred. The mission of it is to remove WAT, and that is what it does, not activate the system.