Remove From My Forums

More Help Needed

Question
0

Sign in to vote
Please forgive my ignorance, as I'm certain I am not utilizing the forums correctly. I did recieve a response to my first Diagnostic report, but I was informed "more work" would probably be required. I am now submitting my 2nd Diagonsic report below. PLEASE CONTINUE TO HELP IF YOU CAN!!

Thank you very much!

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
Validation Status: Invalid License
Validation Code: 50
Cached Online Validation Code: 0xc004c4a8
Windows Product Key: *****-*****-27HYQ-XTKW2-WQD8Q
Windows Product Key Hash: U8YEZzymoD4DMyaMb32rPrNIS90=
Windows Product ID: 89578-OEM-7332157-00061
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.0.6002.2.00010300.2.0.003
ID: {A26D50A7-4F1B-42AB-8241-8E240B0CCC51}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: Registered, 1.9.42.0
Signed By: Microsoft
Product Name: Windows Vista (TM) Home Premium
Architecture: 0x00000000
Build lab: 6002.vistasp2_gdr.101014-0432
TTS Error: M:20110801130900321-
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 100 Genuine
Microsoft Office Enterprise 2007 - 100 Genuine
OGA Version: Registered, 2.0.48.0
Signed By: Microsoft
Office Diagnostics: B4D0AA8B-604-645_025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Internet Explorer\iexplore.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Prompt
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Prompt
Allow scripting of Internet Explorer Webbrowser control: Allowed
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->
File Mismatch: C:\Windows\system32\dnsapi.dll[6.0.6002.18416], Hr = 0x800b0100
File Mismatch: C:\Windows\system32\propsys.dll[7.0.6002.18005], Hr = 0x800b0100
File Mismatch: C:\Windows\system32\odbc32.dll[6.0.6002.18362], Hr = 0x800b0100

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{A26D50A7-4F1B-42AB-8241-8E240B0CCC51}</UGUID><Version>1.9.0027.0</Version><OS>6.0.6002.2.00010300.2.0.003</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-WQD8Q</PKey><PID>89578-OEM-7332157-00061</PID><PIDType>2</PIDType><SID>S-1-5-21-69518635-3566707522-3655821579</SID><SYSTEM><Manufacturer>Hewlett-Packard</Manufacturer><Model>HP Pavilion dv2000 (GA533UA#ABA)</Model></SYSTEM><BIOS><Manufacturer>Hewlett-Packard</Manufacturer><Version>F.39</Version><SMBIOSVersion major="2" minor="4"/><Date>20071122000000.000000+000</Date></BIOS><HWID>6F313507018400EE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Central Standard Time(GMT-06:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>HPQOEM</OEMID><OEMTableID>SLIC-MPC</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>7480B9502DF0D86</Val><Hash>oYWOW5ayFE3pZ+jvTpuXYsY64JE=</Hash><Pid>89388-707-8722531-65468</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="100"/><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="19" Version="12" Result="100"/><App Id="1A" Version="12" Result="100"/><App Id="1B" Version="12" Result="100"/><App Id="44" Version="12" Result="100"/><App Id="A1" Version="12" Result="100"/><App Id="BA" Version="12" Result="100"/></Applications></Office></Software></GenuineResults>

Spsys.log Content: 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

Licensing Data-->
Software licensing service version: 6.0.6002.18005

Windows Activation Technologies-->
N/A

HWID Data-->
HWID Hash Current: OgAAAAAABQABAAEAAgABAAAABAABAAEAnJ8qB5SiWLDqdEo9SCSYycDIfAjy9D4FXTkuF6xWgwj6/A==

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20000
OEMID and OEMTableID Consistent: yes
BIOS Information:
ACPI Table Name OEMID Value OEMTableID Value
APIC   HPQOEM  SLIC-MPC
FACP   HPQOEM  SLIC-MPC
HPET   HPQOEM  SLIC-MPC
BOOT   HPQOEM  SLIC-MPC
MCFG   HPQOEM  SLIC-MPC
SLIC   HPQOEM  SLIC-MPC
SSDT   HPQOEM  SLIC-MPC

Without the formation of your own identity, you risk becoming what others perceive.
- Edited by RobinMcKeown Monday, August 1, 2011 6:57 PM typo correction
Monday, August 1, 2011 6:45 PM

Answers

0

Sign in to vote
"RobinMcKeown" wrote in message news:bfbe73b5-38bf-41ce-accc-f9f25cc04bd5...

Please forgive my ignorance, as I'm certain I am not utilizing the forums correctly. I did recieve a response to my first Diagnostic report, but I was informed "more work" would probably be required. I am now submitting my 2nd Diagonsic report below. PLEASE CONTINUE TO HELP IF YOU CAN!!

Thank you very much!

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
Validation Status: Invalid License
Validation Code: 50
Cached Online Validation Code: 0xc004c4a8
Windows Product Key: *****-*****-27HYQ-XTKW2-WQD8Q
Windows Product Key Hash: U8YEZzymoD4DMyaMb32rPrNIS90=
Windows Product ID: 89578-OEM-7332157-00061
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.0.6002.2.00010300.2.0.003

Without the formation of your own identity, you risk becoming what others perceive.

Oh dear. :(

My reading of your current report is that there is a very high probability of there being malware (possibly a rootkit) present in the installation.

I would suggest that you back up your data to external media, and restore your system to an ex-factory state. You will then need to install all security updates, and a proficient Anti-Virus, and only then begin to bring your data back onto the system .

If you wish confirmation of this, please post in the Windows Vista Answers forum, here - http://answers.microsoft.com/en-us/windows/forum/windows_vista-windows_install?page=1&tab=all

where specialists may be able to assist, or provide a better response.

You will need to provide a lot more information in respect of the system's recent history, to be able to get a sensible response.

--

Noel Paton | Nil Carborundum Illegitemi | CrashFixPC | The Three-toed Sloth
- Marked as answer by Darin Smith MS Monday, August 1, 2011 9:25 PM
Monday, August 1, 2011 9:19 PM

Moderator

Answered by:

More Help Needed

Question

Answers