The only thing I consider wrong about it is that if you are verified as legit once, it shouldnt be needed or enabled anymore. If, however, you arent verified as legit, then it should be left there and notify the user that they arent running a legit copy. Microsoft, however, should have also put more time into deciding who is and isnt legit. Other than that, I think its fine.