Sign in
Microsoft.com
 
Microsoft
 
 
 

locked
Vista De-activated / Office not Valid? RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    I think I had a virus that de-activated Windows / Vista. Tried restoring, repairing , etc. I have multiple File Mismatches and I don't know what's going on.

    Diagnostic Report (1.9.0027.0):
    -----------------------------------------
    Windows Validation Data-->
    Validation Status: Genuine
    Validation Code: 0
    Cached Online Validation Code: 0x0
    Windows Product Key: *****-*****-H7PMV-4WXFY-YY23M
    Windows Product Key Hash: MkxwjEaXNkB9l9/cECq5xTtZ/Yc=
    Windows Product ID: 89578-OEM-7217551-40587
    Windows Product ID Type: 8
    Windows License Type: COA SLP
    Windows OS version: 6.0.6002.2.00010300.2.0.003
    ID: {0A9BCAAD-BA33-4593-9C54-B56DC917D9CB}(1)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: Registered, 1.9.42.0
    Signed By: Microsoft
    Product Name: Windows Vista (TM) Home Premium
    Architecture: 0x00000000
    Build lab: 6002.vistasp2_gdr.100218-0019
    TTS Error:
    Validation Diagnostic:
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A, hr = 0x80070002
    Version: 6.0.6002.16398

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: 2.0.48.0
    OGAExec.exe Signed By: Microsoft
    OGAAddin.dll Signed By: Microsoft

    OGA Data-->
    Office Status: 108 Invalid VLK
    Microsoft Office Enterprise 2007 - 108 Invalid VLK
    Microsoft Office Home and Student 2007 - 100 Genuine
    OGA Version: Registered, 2.0.48.0
    Signed By: Microsoft
    Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005

    Browser Data-->
    Proxy settings:
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: C:\Program Files\Internet Explorer\iexplore.exe
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->
    File Mismatch: C:\Windows\system32\Slsvc.exe[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\drivers\Spsys.sys[6.0.6002.17040], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\Slcext.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\advapi32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\kernel32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\rpcrt4.dll[6.0.6002.18024], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\authz.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msvcrt.dll[7.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\samlib.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ntdsapi.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\dnsapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ws2_32.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\nsi.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\user32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\gdi32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msimg32.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\powrprof.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\setupapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\oleaut32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ole32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\shell32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\shlwapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\version.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winmm.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\oleacc.dll[7.0.6002.18155], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mmdevapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\wtsapi32.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\regapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\crypt32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msasn1.dll[6.0.6002.18106], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\userenv.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\secur32.dll[6.0.6002.18051], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\netapi32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\psapi.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\netrap.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\wldap32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winbrand.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\iphlpapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\dhcpcsvc.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winnsi.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\dhcpcsvc6.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\gpapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\slc.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\gpsvc.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\sysntfy.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winsta.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\nlaapi.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ncrypt.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\bcrypt.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mpr.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\credui.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\cryptui.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\wintrust.dll[6.0.6002.18169], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\imagehlp.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\dbghelp.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mssign32.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\wininet.dll[8.0.6001.18904], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\normaliz.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\iertutil.dll[8.0.6001.18904], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\tapi32.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\rtutils.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\rasapi32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\rasman.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\rasdlg.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mprapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\activeds.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\adsldpc.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\atl.dll[3.5.2284.2], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\certcli.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winscard.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\netplwiz.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\urlmon.dll[8.0.6001.18904], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\propsys.dll[7.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\xmllite.dll[1.2.1009.0], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mlang.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\advpack.dll[8.0.6001.18702], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\apphelp.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msiltcfg.dll[4.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\shunimpl.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\devmgr.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\newdev.dll[6.0.5054.0], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\dwmapi.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winspool.drv[6.0.6002.18087], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\cscapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\uxtheme.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\windowscodecs.dll[7.0.6002.18107], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ntshrui.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\feclient.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\shdocvw.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\browseui.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\imm32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msctf.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\duser.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msrating.dll[8.0.6001.18702], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ieframe.dll[8.0.6001.18904], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msi.dll[4.5.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mshtml.dll[8.0.6001.18904], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msls31.dll[3.10.349.0], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\comdlg32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\printui.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\cfgmgr32.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\puiapi.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\hlink.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\imgutil.dll[8.0.6001.18702], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\usp10.dll[1.626.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\inetcomm.dll[6.0.6002.18197], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\msoert2.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ieui.dll[8.0.6001.18904], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\efsadu.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\mfc42u.dll[6.6.8063.0], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\odbc32.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\oledlg.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\linkinfo.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\query.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\clbcatq.dll[2001.12.6931.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\cabinet.dll[6.0.6001.18000], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\scecli.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\w32topl.dll[6.0.6000.16386], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\rpchttp.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\winhttp.dll[6.0.6002.18096], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\fwpuclnt.dll[6.0.6002.18005], Hr = 0x800b0100
    File Mismatch: C:\Windows\system32\ktmw32.dll[6.0.6001.18000], Hr = 0x800b0100

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{0A9BCAAD-BA33-4593-9C54-B56DC917D9CB}</UGUID><Version>1.9.0027.0</Version><OS>6.0.6002.2.00010300.2.0.003</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-YY23M</PKey><PID>89578-OEM-7217551-40587</PID><PIDType>8</PIDType><SID>S-1-5-21-3380531005-39302850-2392387960</SID><SYSTEM><Manufacturer>HP Pavilion 06</Manufacturer><Model>D5468AT-ABA ALONPAV</Model></SYSTEM><BIOS><Manufacturer>Phoenix Technologies, LTD</Manufacturer><Version>5.16 </Version><SMBIOSVersion major="2" minor="4"/><Date>20070814000000.000000+000</Date></BIOS><HWID>58333507018400F8</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Eastern Standard Time(GMT-05:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>HP-CPC</OEMID><OEMTableID>SLIC-CPC</OEMTableID></OEM><GANotification><File Name="OGAAddin.dll" Version="2.0.48.0"/></GANotification></MachineData><Software><Office><Result>108</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>108</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>64BC76978749586</Val><Hash>GW6PzcEVEDTVKeO5Ym5UUm41dBk=</Hash><Pid>89388-707-0441865-65917</Pid><PidType>14</PidType></Product><Product GUID="{91120000-002F-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Home and Student 2007</Name><Ver>12</Ver><Val>3985BB1E5E2CA9C</Val><Hash>XlWWgq4c4MQSPv8FWVx3JqL/aR8=</Hash><Pid>81602-334-8312412-68859</Pid><PidType>10</PidType></Product></Products><Applications><App Id="15" Version="12" Result="108"/><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="19" Version="12" Result="108"/><App Id="1A" Version="12" Result="108"/><App Id="1B" Version="12" Result="100"/><App Id="44" Version="12" Result="108"/><App Id="A1" Version="12" Result="100"/><App Id="BA" Version="12" Result="108"/></Applications></Office></Software></GenuineResults> 

    Spsys.log Content: 0x80070002

    Licensing Data-->
    Software licensing service version: 6.0.6002.18005
    Name: Windows(TM) Vista, HomePremium edition
    Description: Windows Operating System - Vista, OEM_COA_SLP channel
    Activation ID: a4eec485-e375-48b4-8f51-80d13a4086b6
    Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
    Extended PID: 89578-00144-175-540587-02-1033-6002.0000-0962010
    Installation ID: 001103142475488824786286161482173806913172987096690003
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=43473
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=43474
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=43476
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=43475
    Partial Product Key: YY23M
    License Status: Licensed

    Windows Activation Technologies-->
    N/A

    HWID Data-->
    HWID Hash Current: OAAAAAIAAgABAAEABAABAAAAAgABAAEA6GE4hpiTreyG6ZIAvoQyZI3vPhzy9Hf2DitGvKxWyPQ=

    OEM Activation 1.0 Data-->
    N/A

    OEM Activation 2.0 Data-->
    BIOS valid for OA 2.0: no, invalid SLIC table
    Windows marker version: N/A
    OEMID and OEMTableID Consistent: N/A
    BIOS Information:
      ACPI Table Name OEMID Value OEMTableID Value
      APIC   HP-CPC  SLIC-CPC
      FACP   HP-CPC  SLIC-CPC
      HPET   HP-CPC  SLIC-CPC
      MCFG   HP-CPC  SLIC-CPC
      SSDT   HP-CPC  SLIC-CPC
      SLIC   HP-CPC  SLIC-CPC

     

    Sunday, September 5, 2010 3:26 PM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hello Newski

     You will notice that under the "File Scan Data-->" line there are a large number of files that are listed as Mismatched. All those files listed, are Critical Vista System files. Normally, when there is one or two Mismatched files, it means that those files have been tampered or corrupted in some way. But in your case the Diagnostic Report is reporting that ALL your Critical Vista System files are Tampered or Corrupted. This is highly unlikely. Whats more likely is that your System Catalog has been tampered or corrupted. The System Catalog stores all the Signatures Hash (think fingerprint) for all the Critical Vista System (and other) files. One of the things that Vista uses the System Catalog for is to identify if a file has been tampered or corupted because if the file had been modified in any way, it's signature hash would not match what is listed in the System Catalog and in that case Vista would flag itself as Non-Genuine. In this case, I believe the System Catalog is corrupt so when Vista trys to check all the file hashs, in the Catalog, it can't.  Vista interprets this as all the files are tampered.

      I highly recommend that you first try to Repair Windows using System Restore:

    1. Reboot Vista into Safe Mode
    2. Click the Start button
    3. Type: Backup and Restore
    4. Double-click the listing for the "Backup and Restore Center"
    5. On the left hand side of the window, click "Repair Windows using system restore"
    6. Put a check in the box that says "Show restore points older than 5 days",
    7. Select "Choose Different Restore Point", select the restore point that corresponds to a date Before you first experianced an issue.
    8. Click the "Next" button.
    9. Reboot back into Normal mode
    10. Run the Diagnostic Tool again and paste the results into NotePad or Word doc and scroll down to the "File Scan Data-->" line.
    11a.     If there are any Mismatched files listed, they you will need to restore to a point further in the past.
    11b.     If there are No Mismatched files listed, then your Vista will report as Genuine.

    If that doesn't work, we'll try doing a System Scan. The scan will look for bad Vista files and will attempt to repair them, if possible.

    1) Login to Vista in Normal Mode (not safe mode)
    2) Launch an Internet Browser
    3) Type: %windir%\system32\ in the browser's address field
    4) Scroll down till you find the file cmd.exe
    5) Right-click the file and select Run as Administrator
    6) In the CMD window, type: sfc /scannow
    7) Reboot twice and see if that resolves the issue.

    If neither of these sets of steps resolves the issue, you can contact assisted support at one of the below URLs or reinstall Vista.

    North America: http://support.microsoft.com/contactus/cu_sc_genadv_master?ws=support&ws=support#tab4

    Outside North America:
    http://support.microsoft.com/contactus/?ws=support#tab0

    Thank you,

    Darin MS
    • Marked as answer by Darin Smith MS Tuesday, September 7, 2010 9:10 PM
    Tuesday, September 7, 2010 9:09 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    Office is using a blocked VLK key, You will need to install a genuine, retail version of office.

    Note the file scan data section, there should be no files in that section, just one can cause non genuine status. Your system reflects dozens of affected files and I assume that it was caused by installing from non-genuine media -OR- malware infestation. If it is malware or a virus (or several) which is the most likely culprit then I suggest you "format and forget".

    Also, less likely but still possible it is a hardware issue that is causing "bitware" (degridation of files) due to bad memory, processor, motherboard, hdd or even a power supply that is out of tolerance. I think it is unlikley that this is a hardware issue though.

    The fix is to remove all malware, repair affected files and attempt to revalidate at www.microsoft.com/genuine

    Download malwarebytes and run it. then try the following.

    Type cmd in the search box of the start menu, right click on it and select run as administrator, now type SFC /SCANNOW at the prompt and hit enter. Once SFC completes it should ask you to reboot, do so and then go to www.microsoft.com/genuine attempt to validate and write down any errors that you get.

    If SFC does not fix it then type system restore in the search box of the start menu, run system restore and restore to a point prior to the non-genuine status. Reboot and again go to www.microsoft.com/genuine to attempt a validation.

    If neither of these two steps help then start a no-cost WGA support incident with MS at http://support.microsoft.com/gp/contactwga

    Sunday, September 5, 2010 4:16 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Thanks for the quick reply. I'll be trying what you suggested. What is "format and forget"?

    I've also been running the Malicious Software Removal Tool from August '10. 2 infected files found so far. The thing been running for 28 hours so far! The green progress bar is basically full, I'm just waiting for it to finish.

    Sunday, September 5, 2010 4:28 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Format and forget involves formating your drive, removing all existing software and starting over. Often it is the ONLY way to know if everything was removed.

    However, if you can't wipe everything at this time you can try to remove all the nasties the hard way. From a technician's cost related stand point, on any but the most simple infections it is faster, easier, cheaper for the customer and with better results to start fresh. If you have programs that can not be replaced then it may be worth the effort try removing it.

    This is all opinion on my part, just information for your digestion, I am not saying you have to format. First, see what malware bytes finds and consider all of your options including taking it to a shop.

    Sunday, September 5, 2010 6:03 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hello Newski

     You will notice that under the "File Scan Data-->" line there are a large number of files that are listed as Mismatched. All those files listed, are Critical Vista System files. Normally, when there is one or two Mismatched files, it means that those files have been tampered or corrupted in some way. But in your case the Diagnostic Report is reporting that ALL your Critical Vista System files are Tampered or Corrupted. This is highly unlikely. Whats more likely is that your System Catalog has been tampered or corrupted. The System Catalog stores all the Signatures Hash (think fingerprint) for all the Critical Vista System (and other) files. One of the things that Vista uses the System Catalog for is to identify if a file has been tampered or corupted because if the file had been modified in any way, it's signature hash would not match what is listed in the System Catalog and in that case Vista would flag itself as Non-Genuine. In this case, I believe the System Catalog is corrupt so when Vista trys to check all the file hashs, in the Catalog, it can't.  Vista interprets this as all the files are tampered.

      I highly recommend that you first try to Repair Windows using System Restore:

    1. Reboot Vista into Safe Mode
    2. Click the Start button
    3. Type: Backup and Restore
    4. Double-click the listing for the "Backup and Restore Center"
    5. On the left hand side of the window, click "Repair Windows using system restore"
    6. Put a check in the box that says "Show restore points older than 5 days",
    7. Select "Choose Different Restore Point", select the restore point that corresponds to a date Before you first experianced an issue.
    8. Click the "Next" button.
    9. Reboot back into Normal mode
    10. Run the Diagnostic Tool again and paste the results into NotePad or Word doc and scroll down to the "File Scan Data-->" line.
    11a.     If there are any Mismatched files listed, they you will need to restore to a point further in the past.
    11b.     If there are No Mismatched files listed, then your Vista will report as Genuine.

    If that doesn't work, we'll try doing a System Scan. The scan will look for bad Vista files and will attempt to repair them, if possible.

    1) Login to Vista in Normal Mode (not safe mode)
    2) Launch an Internet Browser
    3) Type: %windir%\system32\ in the browser's address field
    4) Scroll down till you find the file cmd.exe
    5) Right-click the file and select Run as Administrator
    6) In the CMD window, type: sfc /scannow
    7) Reboot twice and see if that resolves the issue.

    If neither of these sets of steps resolves the issue, you can contact assisted support at one of the below URLs or reinstall Vista.

    North America: http://support.microsoft.com/contactus/cu_sc_genadv_master?ws=support&ws=support#tab4

    Outside North America:
    http://support.microsoft.com/contactus/?ws=support#tab0

    Thank you,

    Darin MS
    • Marked as answer by Darin Smith MS Tuesday, September 7, 2010 9:10 PM
    Tuesday, September 7, 2010 9:09 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Thanks for still trying to help!

    I now have genuine Vista and genuine Office working and activated. I'm glad you chimed in when you did, I was looking at replacing all of those Mismatches assuming sfc /scannow could not help and I'd have to "takeown" and "icacls" everything.

    I'm gonna look into System Catalog. I've been coordinating Services because I originally had dependecy groups failing (internet most noticeably) after Vista de-activated itself. I had several crashes at that time and failed reboots, etc. I was thinking that was the way to fix it - didn't realize it was a larger problem until I got into it. I'll be posting results when I have them. Thanks!

    Tuesday, September 7, 2010 11:41 PM