none
Malware expert says my windows is not valid? RRS feed

  • Question

  • I've been recently working through cleaning my pc with a malware expert and they decided that my copy of windows is not valid, even though MGA diagnostic tool says that its genuine. i've also tried the online diagnostic tool and i am able to download updates and software directly from microsoft.

    Are they seeing something i'm missing or are the erred?

    this is the MGA log

    Diagnostic Report (1.9.0006.1):
    -----------------------------------------
    WGA Data-->
    Validation Status: Genuine
    Validation Code: 0
    Online Validation Code: N/A
    Cached Validation Code: N/A
    Windows Product Key: *****-*****-XM46G-6JD6V-BHMDD
    Windows Product Key Hash: pLEUimjAWZ5RJZWifQe4x7qNuMw=
    Windows Product ID: 76477-OEM-2142561-11289
    Windows Product ID Type: 3
    Windows License Type: OEM System Builder
    Windows OS version: 5.1.2600.2.00010300.3.0.hom
    ID: {3FA36FD6-6DC8-4E55-ADAF-8B30EBC85C78}(3)
    Is Admin: Yes
    TestCab: 0x0
    WGA Version: Registered, 1.9.9.1
    Signed By: Microsoft
    Product Name: N/A
    Architecture: N/A
    Build lab: N/A
    TTS Error: N/A
    Validation Diagnostic: 025D1FF3-230-1
    Resolution Status: N/A

    WgaER Data-->
    ThreatID(s): N/A
    Version: N/A

    WGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    WGATray.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 109 N/A
    OGA Version: Registered, 1.7.111.0
    Signed By: Microsoft
    Office Diagnostics: B4D0AA8B-543-80070002_025D1FF3-230-1

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: N/A, hr=0x80070002
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{3FA36FD6-6DC8-4E55-ADAF-8B30EBC85C78}</UGUID><Version>1.9.0006.1</Version><OS>5.1.2600.2.00010300.3.0.hom</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-BHMDD</PKey><PID>76477-OEM-2142561-11289</PID><PIDType>3</PIDType><SID>S-1-5-21-583907252-1425521274-1801674531</SID><SYSTEM><Manufacturer>Dell Inc.</Manufacturer><Model>Vostro   1000 </Model></SYSTEM><BIOS><Manufacturer>Dell Inc.</Manufacturer><Version>2.6.3    </Version><SMBIOSVersion major="2" minor="4"/><Date>20071207000000.000000+000</Date></BIOS><HWID>DB7836E701842E6E</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Mountain Standard Time(GMT-07:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM/><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults> 

    Licensing Data-->
    N/A

    HWID Data-->
    N/A

    OEM Activation 1.0 Data-->
    BIOS string matches: yes
    Marker string from BIOS: 1E832:Dell Inc|1075C:Dell Inc|1075C:Microsoft Corporation
    Marker string from OEMBIOS.DAT: N/A, hr = 0x80004005

    OEM Activation 2.0 Data-->
    N/A

     

    Tuesday, June 16, 2009 12:17 AM

Answers

  • Hello Apollo,


    Thank you for visiting with us today. I do have a couple questions for you. First is why do you have an OEM System Builder licening vs. the OEM SLP Licensing version which originally came with your Dell? Also I noticed the version of Windows currently installed appears to be an international version but it appears you live in the USA? Do you have the original Dell Recovery Media? It would be best to use this version. Also if you haven't already done so I would reformat your hard drive and reinstall Windows. This will give you a peace of mind to rid the computer of the Virus. 


    Hopefully this  helps.


    Thank you,

    Stephen
    Attention All Forum Users: Please Do Not post your issue in someone else's Thread...Create your own which will help minimize confusion. If any post fixes your issue, please click the "Post was Helpful" button for that post. This will help us showcase the threads that best help our customers. Thank you, Stephen Holm
    • Marked as answer by Stephen Holm Tuesday, June 16, 2009 12:28 AM
    Tuesday, June 16, 2009 12:28 AM

All replies

  • Hello Apollo,


    Thank you for visiting with us today. I do have a couple questions for you. First is why do you have an OEM System Builder licening vs. the OEM SLP Licensing version which originally came with your Dell? Also I noticed the version of Windows currently installed appears to be an international version but it appears you live in the USA? Do you have the original Dell Recovery Media? It would be best to use this version. Also if you haven't already done so I would reformat your hard drive and reinstall Windows. This will give you a peace of mind to rid the computer of the Virus. 


    Hopefully this  helps.


    Thank you,

    Stephen
    Attention All Forum Users: Please Do Not post your issue in someone else's Thread...Create your own which will help minimize confusion. If any post fixes your issue, please click the "Post was Helpful" button for that post. This will help us showcase the threads that best help our customers. Thank you, Stephen Holm
    • Marked as answer by Stephen Holm Tuesday, June 16, 2009 12:28 AM
    Tuesday, June 16, 2009 12:28 AM
  • hi there,

    i'm not quite sure what you mean by the licencing, but as for the international version, i'm actually located in Canada, i dont know if thats the discrepancy. the only other information i'm sure of, is that before i owned this notebook it had the hardrive wiped, so i had to reactivate using the licence key on the bottom the first time i logged on. Sorry i'm not very tech savy reading that scan.
    Tuesday, June 16, 2009 1:10 AM