locked
Validation fails RRS feed

  • Question

  • Trying to install hotfix id Q2798897 ... KB2798897.  This website http://support.microsoft.com/kb/2798897 offers a download for the update.  To download it, I have to pass Genuine Validation ... which fails .. 

    "This version of the Windows Genuine Advantage validation tool is no longer supported.  Please download the newest version and ensure that your system clock is accurate."

    This happens on this computer AND another computer running Windows 7 Basic.

    Diagnostic Report (1.9.0027.0):
    -----------------------------------------
    Windows Validation Data-->

    Validation Code: 0
    Cached Online Validation Code: 0x0
    Windows Product Key: *****-*****-4THM3-74PDB-4P2KH
    Windows Product Key Hash: 88kCx56CIRkBJG3+gKpBHkCTqAA=
    Windows Product ID: 00371-OEM-8992671-00137
    Windows Product ID Type: 2
    Windows License Type: OEM SLP
    Windows OS version: 6.1.7601.2.00010100.1.0.048
    ID: {535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}(3)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: N/A, hr = 0x80070002
    Signed By: N/A, hr = 0x80070002
    Product Name: Windows 7 Professional
    Architecture: 0x00000009
    Build lab: 7601.win7sp1_gdr.130801-1533
    TTS Error:
    Validation Diagnostic:
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    OGAExec.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 109 N/A
    OGA Version: N/A, 0x80070002
    Signed By: N/A, hr = 0x80070002
    Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: C:\Program Files (x86)\SRWare Iron\iron.exe
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.048</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-4P2KH</PKey><PID>00371-OEM-8992671-00137</PID><PIDType>2</PIDType><SID>S-1-5-21-3665313586-1202290514-2606141810</SID><SYSTEM><Manufacturer>TOSHIBA</Manufacturer><Model>Satellite A660</Model></SYSTEM><BIOS><Manufacturer>TOSHIBA</Manufacturer><Version>2.10</Version><SMBIOSVersion major="2" minor="6"/><Date>20110713000000.000000+000</Date></BIOS><HWID>CEDE3107018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Central Standard Time(GMT-06:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>TOSCPL</OEMID><OEMTableID>TOSCPL00</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults> 

    Spsys.log Content: 0x80070002

    Licensing Data-->
    Software licensing service version: 6.1.7601.17514

    Name: Windows(R) 7, Professional edition
    Description: Windows Operating System - Windows(R) 7, OEM_SLP channel
    Activation ID: 50e329f7-a5fa-46b2-85fd-f224e5da7764
    Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
    Extended PID: 00371-00178-926-700137-02-1033-7600.0000-2162013
    Installation ID: 010976657414113342385383713016602446003933874111872346
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
    Partial Product Key: 4P2KH
    License Status: Licensed
    Remaining Windows rearm count: 4
    Trusted time: 9/24/2013 8:42:38 AM

    Windows Activation Technologies-->
    HrOffline: 0x00000000
    HrOnline: N/A
    HealthStatus: 0x0000000000000000
    Event Time Stamp: N/A
    ActiveX: Registered, Version: 7.1.7600.16395
    Admin Service: Registered, Version: 7.1.7600.16395
    HealthStatus Bitmask Output:


    HWID Data-->
    HWID Hash Current: LgAAAAEAAQABAAEAAAABAAAAAwABAAEAln3UJhOJPOQe8O6HXGcm7x6/QJgucw==

    OEM Activation 1.0 Data-->
    N/A

    OEM Activation 2.0 Data-->
    BIOS valid for OA 2.0: yes
    Windows marker version: 0x20001
    OEMID and OEMTableID Consistent: yes
    BIOS Information:
      ACPI Table Name OEMID Value OEMTableID Value
      APIC   TOSCPL  TOSCPL00
      FACP   TOSCPL  TOSCPL00
      HPET   TOSCPL  TOSCPL00
      MCFG   TOSCPL  TOSCPL00
      SLIC   TOSCPL  TOSCPL00
      SSDT   PmRef  Cpu0Ist
      SSDT   PmRef  Cpu0Ist

    Tuesday, September 24, 2013 1:46 PM

Answers

  • Almost certainly, your problems are caused by Advanced System Care - I've seen it trash many systems.

    Zemana is something I've never even heard of before, so I can't comment on it - but it appears not to be an Anti-Virus.


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.

    • Marked as answer by WacoJohn Friday, September 27, 2013 3:02 AM
    Thursday, September 26, 2013 4:10 PM
    Moderator

All replies

  • You may need to switch your default browser to IE 32 bit and use it to validate.  Afterwards you should be able to switch back to Iron.
    Tuesday, September 24, 2013 2:08 PM
  • You may need to switch your default browser to IE 32 bit and use it to validate.  Afterwards you should be able to switch back to Iron.

    Should have mentioned ... problem happens with EITHER IE10, IE11, Iron, Chrome browsers AS DEFAULT.

    Here is output with IE11as default .... Looks to me like Diag is reporting the wrong browser which COULD be the source of the problem(?):

    Diagnostic Report (1.9.0027.0):
    -----------------------------------------
    Windows Validation Data-->

    Validation Code: 0
    Cached Online Validation Code: 0x0
    Windows Product Key: *****-*****-4THM3-74PDB-4P2KH
    Windows Product Key Hash: 88kCx56CIRkBJG3+gKpBHkCTqAA=
    Windows Product ID: 00371-OEM-8992671-00137
    Windows Product ID Type: 2
    Windows License Type: OEM SLP
    Windows OS version: 6.1.7601.2.00010100.1.0.048
    ID: {535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}(3)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: N/A, hr = 0x80070002
    Signed By: N/A, hr = 0x80070002
    Product Name: Windows 7 Professional
    Architecture: 0x00000009
    Build lab: 7601.win7sp1_gdr.130801-1533
    TTS Error:
    Validation Diagnostic:
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    OGAExec.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 109 N/A
    OGA Version: N/A, 0x80070002
    Signed By: N/A, hr = 0x80070002
    Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: C:\Program Files (x86)\SRWare Iron\iron.exe   not this time .. it's IE11!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.048</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-4P2KH</PKey><PID>00371-OEM-8992671-00137</PID><PIDType>2</PIDType><SID>S-1-5-21-3665313586-1202290514-2606141810</SID><SYSTEM><Manufacturer>TOSHIBA</Manufacturer><Model>Satellite A660</Model></SYSTEM><BIOS><Manufacturer>TOSHIBA</Manufacturer><Version>2.10</Version><SMBIOSVersion major="2" minor="6"/><Date>20110713000000.000000+000</Date></BIOS><HWID>CEDE3107018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Central Standard Time(GMT-06:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>TOSCPL</OEMID><OEMTableID>TOSCPL00</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults> 

    Spsys.log Content: 0x80070002

    Licensing Data-->
    Software licensing service version: 6.1.7601.17514

    Name: Windows(R) 7, Professional edition
    Description: Windows Operating System - Windows(R) 7, OEM_SLP channel
    Activation ID: 50e329f7-a5fa-46b2-85fd-f224e5da7764
    Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
    Extended PID: 00371-00178-926-700137-02-1033-7600.0000-2162013
    Installation ID: 010976657414113342385383713016602446003933874111872346
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
    Partial Product Key: 4P2KH
    License Status: Licensed
    Remaining Windows rearm count: 4
    Trusted time: 9/24/2013 9:33:30 AM

    Windows Activation Technologies-->
    HrOffline: 0x00000000
    HrOnline: N/A
    HealthStatus: 0x0000000000000000
    Event Time Stamp: N/A
    ActiveX: Registered, Version: 7.1.7600.16395
    Admin Service: Registered, Version: 7.1.7600.16395
    HealthStatus Bitmask Output:


    HWID Data-->
    HWID Hash Current: LgAAAAEAAQABAAEAAAABAAAAAwABAAEAln3UJhOJPOQe8O6HXGcm7x6/QJgucw==

    OEM Activation 1.0 Data-->
    N/A

    OEM Activation 2.0 Data-->
    BIOS valid for OA 2.0: yes
    Windows marker version: 0x20001
    OEMID and OEMTableID Consistent: yes
    BIOS Information:
      ACPI Table Name OEMID Value OEMTableID Value
      APIC   TOSCPL  TOSCPL00
      FACP   TOSCPL  TOSCPL00
      HPET   TOSCPL  TOSCPL00
      MCFG   TOSCPL  TOSCPL00
      SLIC   TOSCPL  TOSCPL00
      SSDT   PmRef  Cpu0Ist
      SSDT   PmRef  Cpu0Ist

    Tuesday, September 24, 2013 2:38 PM
  • Hmmm have you rebooted after defining IE as the default browser?
    Tuesday, September 24, 2013 2:40 PM
  • Hmmm have you rebooted after defining IE as the default browser?

    I HAD not, .. but I just did.  Here again is ouput:

    Diagnostic Report (1.9.0027.0):
    -----------------------------------------
    Windows Validation Data-->

    Validation Code: 0
    Cached Online Validation Code: 0x0
    Windows Product Key: *****-*****-4THM3-74PDB-4P2KH
    Windows Product Key Hash: 88kCx56CIRkBJG3+gKpBHkCTqAA=
    Windows Product ID: 00371-OEM-8992671-00137
    Windows Product ID Type: 2
    Windows License Type: OEM SLP
    Windows OS version: 6.1.7601.2.00010100.1.0.048
    ID: {535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}(3)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: N/A, hr = 0x80070002
    Signed By: N/A, hr = 0x80070002
    Product Name: Windows 7 Professional
    Architecture: 0x00000009
    Build lab: 7601.win7sp1_gdr.130801-1533
    TTS Error:
    Validation Diagnostic:
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    OGAExec.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 109 N/A
    OGA Version: N/A, 0x80070002
    Signed By: N/A, hr = 0x80070002
    Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: C:\Program Files (x86)\SRWare Iron\iron.exe <<<<<<<<<<<<<<<<<<<<
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.048</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-4P2KH</PKey><PID>00371-OEM-8992671-00137</PID><PIDType>2</PIDType><SID>S-1-5-21-3665313586-1202290514-2606141810</SID><SYSTEM><Manufacturer>TOSHIBA</Manufacturer><Model>Satellite A660</Model></SYSTEM><BIOS><Manufacturer>TOSHIBA</Manufacturer><Version>2.10</Version><SMBIOSVersion major="2" minor="6"/><Date>20110713000000.000000+000</Date></BIOS><HWID>CEDE3107018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Central Standard Time(GMT-06:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>TOSCPL</OEMID><OEMTableID>TOSCPL00</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults> 

    Spsys.log Content: 0x80070002

    Licensing Data-->
    Software licensing service version: 6.1.7601.17514

    Name: Windows(R) 7, Professional edition
    Description: Windows Operating System - Windows(R) 7, OEM_SLP channel
    Activation ID: 50e329f7-a5fa-46b2-85fd-f224e5da7764
    Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
    Extended PID: 00371-00178-926-700137-02-1033-7600.0000-2162013
    Installation ID: 010976657414113342385383713016602446003933874111872346
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
    Partial Product Key: 4P2KH
    License Status: Licensed
    Remaining Windows rearm count: 4
    Trusted time: 9/24/2013 10:25:09 AM

    Windows Activation Technologies-->
    HrOffline: 0x00000000
    HrOnline: N/A
    HealthStatus: 0x0000000000000000
    Event Time Stamp: N/A
    ActiveX: Registered, Version: 7.1.7600.16395
    Admin Service: Registered, Version: 7.1.7600.16395
    HealthStatus Bitmask Output:


    HWID Data-->
    HWID Hash Current: LgAAAAEAAQABAAEAAAABAAAAAwABAAEAln3UJhOJPOQe8O6HXGcm7x6/QJgucw==

    OEM Activation 1.0 Data-->
    N/A

    OEM Activation 2.0 Data-->
    BIOS valid for OA 2.0: yes
    Windows marker version: 0x20001
    OEMID and OEMTableID Consistent: yes
    BIOS Information:
      ACPI Table Name OEMID Value OEMTableID Value
      APIC   TOSCPL  TOSCPL00
      FACP   TOSCPL  TOSCPL00
      HPET   TOSCPL  TOSCPL00
      MCFG   TOSCPL  TOSCPL00
      SLIC   TOSCPL  TOSCPL00
      SSDT   PmRef  Cpu0Ist
      SSDT   PmRef  Cpu0Ist

    I guess the next logical thing to do is UNinstall Iron(?)


    • Edited by WacoJohn Tuesday, September 24, 2013 3:29 PM
    Tuesday, September 24, 2013 3:27 PM
  • Well...it does mention your system clock.  Is it possible that it is not accurate for your defined time zone?
    Tuesday, September 24, 2013 3:33 PM
  • Well...it does mention your system clock.  Is it possible that it is not accurate for your defined time zone?

    Clock is dead on.

    I should also mention ... other people (many) have had this same problem ... but the data I have is over a year old:

    http://answers.microsoft.com/en-us/windows/forum/windows_xp-windows_install/this-version-microsoft-genuine-advantage-no-longer/0fb38aef-17c8-40e2-b98d-9b77451b5c78

    and then I also found this:

    http://www.zdnet.com/why-all-the-errors-in-microsoft-updates-lately-7000020628/

    • Edited by WacoJohn Tuesday, September 24, 2013 3:47 PM
    Tuesday, September 24, 2013 3:42 PM
  • And not to ask dumb questions, but are you definitely using the 32 bit version of IE?
    Tuesday, September 24, 2013 4:34 PM
  • And not to ask dumb questions, but are you definitely using the 32 bit version of IE?

    IE 9 gave the option to run 32-bit or 64-bit (as I recall). IE10 does not give that option to my knowledge. I don't see those options. IE11 does not appear to either.  I do not know how to force ie10 or ie11 to do 32-bit on a 64-bit W7 machine.

    I have this problem on another 32-bit W7 machine .. running IE10-32 .. so the answer to your question is yes .... on the 32-bit machine.

    Tuesday, September 24, 2013 5:02 PM
  • IE10 uses a 64-bit wrapper to launch 32-bit processes as required -and will default to 32-bit for this purpose.

    Please attempt validation at www.microsoft.com/genuine/validate - what happens?

    If it fails, go to www.microsoft.com/genuine/diag, and see what that has to say  - follow any instructions given,  and then post a new MGADiag report.


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.

    Wednesday, September 25, 2013 8:08 AM
    Moderator
  • >>Please attempt validation at www.microsoft.com/genuine/validate - what happens?

    Using ie10 on 64-bit W7, default browser, it succeeds.

    The validation that occurs when attempting to download the KB fails  Says genuinecheck.exe is out of date and tells me to download the most recent version.  Diag Report STILL says Iron is the default browser.. but it's not .. IE10 is ... now.  So, I uninstalled Iron ... and Diag Report STILL says Iron is default.

    Diagnostic Report (1.9.0027.0):
    -----------------------------------------
    Windows Validation Data-->

    Validation Code: 0
    Cached Online Validation Code: 0x0
    Windows Product Key: *****-*****-4THM3-74PDB-4P2KH
    Windows Product Key Hash: 88kCx56CIRkBJG3+gKpBHkCTqAA=
    Windows Product ID: 00371-OEM-8992671-00137
    Windows Product ID Type: 2
    Windows License Type: OEM SLP
    Windows OS version: 6.1.7601.2.00010100.1.0.048
    ID: {535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}(3)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: N/A, hr = 0x80070002
    Signed By: N/A, hr = 0x80070002
    Product Name: Windows 7 Professional
    Architecture: 0x00000009
    Build lab: 7601.win7sp1_gdr.130801-1533
    TTS Error:
    Validation Diagnostic:
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    OGAExec.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 109 N/A
    OGA Version: N/A, 0x80070002
    Signed By: N/A, hr = 0x80070002
    Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
    Default Browser: C:\Program Files (x86)\SRWare Iron\iron.exe
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{535B43FF-38BC-4F9C-9EA0-6BC6697B3F69}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.048</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-4P2KH</PKey><PID>00371-OEM-8992671-00137</PID><PIDType>2</PIDType><SID>S-1-5-21-3665313586-1202290514-2606141810</SID><SYSTEM><Manufacturer>TOSHIBA</Manufacturer><Model>Satellite A660</Model></SYSTEM><BIOS><Manufacturer>TOSHIBA</Manufacturer><Version>2.10</Version><SMBIOSVersion major="2" minor="6"/><Date>20110713000000.000000+000</Date></BIOS><HWID>CEDE3107018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Central Standard Time(GMT-06:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>TOSCPL</OEMID><OEMTableID>TOSCPL00</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults> 

    Spsys.log Content: 0x80070002

    Licensing Data-->
    Software licensing service version: 6.1.7601.17514

    Name: Windows(R) 7, Professional edition
    Description: Windows Operating System - Windows(R) 7, OEM_SLP channel
    Activation ID: 50e329f7-a5fa-46b2-85fd-f224e5da7764
    Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
    Extended PID: 00371-00178-926-700137-02-1033-7600.0000-2162013
    Installation ID: 010976657414113342385383713016602446003933874111872346
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
    Partial Product Key: 4P2KH
    License Status: Licensed
    Remaining Windows rearm count: 4
    Trusted time: 9/25/2013 8:32:04 AM

    Windows Activation Technologies-->
    HrOffline: 0x00000000
    HrOnline: 0x00000000
    HealthStatus: 0x0000000000000000
    Event Time Stamp: 9:25:2013 08:22
    ActiveX: Registered, Version: 7.1.7600.16395
    Admin Service: Registered, Version: 7.1.7600.16395
    HealthStatus Bitmask Output:


    HWID Data-->
    HWID Hash Current: LgAAAAEAAQABAAEAAAABAAAAAwABAAEAln3UJhOJPOQe8O6HXGcm7x6/QJgucw==

    OEM Activation 1.0 Data-->
    N/A

    OEM Activation 2.0 Data-->
    BIOS valid for OA 2.0: yes
    Windows marker version: 0x20001
    OEMID and OEMTableID Consistent: yes
    BIOS Information:
      ACPI Table Name OEMID Value OEMTableID Value
      APIC   TOSCPL  TOSCPL00
      FACP   TOSCPL  TOSCPL00
      HPET   TOSCPL  TOSCPL00
      MCFG   TOSCPL  TOSCPL00
      SLIC   TOSCPL  TOSCPL00
      SSDT   PmRef  Cpu0Ist
      SSDT   PmRef  Cpu0Ist

    Wednesday, September 25, 2013 1:38 PM
  • Hmmm - please try this (Iron is not something I've ever met before, so I have no idea what it may have done)

    Please download and install  Malwarebytes Anti-malware (free version) from  http://www.malwarebytes.org/products/malwarebytes_free/ - UNtick 'Enable free trial of MBAM PRO' at the end of the installation -  and update it, then run a full scan  in your main account, and Quick scans in any other user accounts.

     

    Delete everything it finds   

    Please download the Farbar Service Scanner from

     

    http://www.bleepingcomputer.com/download/farbar-service-scanner/

     

    Right-click on the saved file and select 'Run as Administrator', and tick all the options, then click on the Scan button - copy and paste the report to your response.

     

     


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.

    Wednesday, September 25, 2013 8:10 PM
    Moderator
  • Thank you for your reply.  MBAM found and quarantined 10 items.  All but one of them are downloaded software products .. and I suspect they are either false positives or considered 'malware' for a benign reason.  I have left them in quarantine for now .. until I investigate further.

    Here is the output from farbar scan:

    Farbar Service Scanner Version: 13-09-2013
    Ran by owner (administrator) on 25-09-2013 at 22:46:09
    Running from "C:\Users\owner\Desktop"
    Microsoft Windows 7 Professional  Service Pack 1 (X64)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Google.com is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============

    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Action Center:
    ============


    Windows Update:
    ============

    Windows Autoupdate Disabled Policy:
    ============================


    Windows Defender:
    ==============

    Other Services:
    ==============


    File Check:
    ========
    C:\Windows\System32\nsisvc.dll => MD5 is legit
    C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
    C:\Windows\System32\dhcpcore.dll => MD5 is legit
    C:\Windows\System32\drivers\afd.sys => MD5 is legit
    C:\Windows\System32\drivers\tdx.sys => MD5 is legit
    C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
    C:\Windows\System32\dnsrslvr.dll => MD5 is legit
    C:\Windows\System32\mpssvc.dll => MD5 is legit
    C:\Windows\System32\bfe.dll => MD5 is legit
    C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
    C:\Windows\System32\SDRSVC.dll => MD5 is legit
    C:\Windows\System32\vssvc.exe => MD5 is legit
    C:\Windows\System32\wscsvc.dll => MD5 is legit
    C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
    C:\Windows\System32\wuaueng.dll => MD5 is legit
    C:\Windows\System32\qmgr.dll => MD5 is legit
    C:\Windows\System32\es.dll => MD5 is legit
    C:\Windows\System32\cryptsvc.dll => MD5 is legit
    C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
    C:\Windows\System32\ipnathlp.dll => MD5 is legit
    C:\Windows\System32\iphlpsvc.dll => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\rpcss.dll => MD5 is legit


    **** End of log ****

    Thursday, September 26, 2013 3:53 AM
  • That all looks normal - although I'm surprised that the Defender service is still switched on.

    What Anti-Virus are you using? What other security software is installed?


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.

    Thursday, September 26, 2013 8:43 AM
    Moderator
  • Advanced System Care Ultimate (IOBIT), Zemana Antilogger, Zemana Antimalware.

    Did you notice my comment that (a year ago) others were having the same problem?  I sorta think it is on the Microsoft end ... but ...

    Thursday, September 26, 2013 12:39 PM
  • Almost certainly, your problems are caused by Advanced System Care - I've seen it trash many systems.

    Zemana is something I've never even heard of before, so I can't comment on it - but it appears not to be an Anti-Virus.


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.

    • Marked as answer by WacoJohn Friday, September 27, 2013 3:02 AM
    Thursday, September 26, 2013 4:10 PM
    Moderator
  • Almost certainly, your problems are caused by Advanced System Care - I've seen it trash many systems.

    Zemana is something I've never even heard of before, so I can't comment on it - but it appears not to be an Anti-Virus.


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.


    Hmmm.  Then obviously the logical thing to do is uninstall ASC and find out. Been using it for a few years with no major problems .. but sure worth testing for this problem. Will get back to you on this after I uninstall it. Thank you again for your attention.     
    EDIT:  Uninstalled ASC ... problem gone!!!  Validation and update went flawlessly.  THANK YOU.
    • Edited by WacoJohn Friday, September 27, 2013 3:02 AM
    Friday, September 27, 2013 2:27 AM
  • Great!

    I have to admit to being surprised that simply uninstalling ASC did the trick - but then it appears to be so badly written that anything is possible :(

    Good Luck.


    Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
    No - I do not work for Microsoft, or any of its contractors.

    Friday, September 27, 2013 11:29 AM
    Moderator