Windows 7 build 7601 not genuine message, slui will not run

kylescf

New member
Member
Local time
5:47 PM
Messages
40
Location
Isle of Skye
We're a small charitable organisation with three identical Dell PCs running Windows 7 Professional. A few months ago one machine started having a black desktop and showing the not genuine message. Unfortunately, no one has bothered about it until now.

I've run CHKDSK and SFC /SCANNOW showing no problems. Running SLUI give an error message and won't let me validate. I've removed Norton 360 and cleaned up with their utility. On-line validation just hangs.

Any help/advice welcome. Here is the MGAD report.

Code:
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: N/A, hr = 0xc0000034
Windows Product Key: N/A, hr=0xc0000034
Windows Product Key Hash: N/A, hr=0xc0000034
Windows Product ID: 55041-033-4789644-86307
Windows Product ID Type: 6
Windows License Type: Volume MAK
Windows OS version: 6.1.7601.2.00010100.1.0.048
ID: {3E36DFB7-0BF5-400E-A3E7-6BDF65CC4D74}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Professional
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.120305-1505
TTS Error: 
Validation Diagnostic: 
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 109 N/A
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: 
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{3E36DFB7-0BF5-400E-A3E7-6BDF65CC4D74}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.048</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-BBBBB</PKey><PID>55041-033-4789644-86307</PID><PIDType>6</PIDType><SID>S-1-5-21-1935836800-3093289039-440424962</SID><SYSTEM><Manufacturer>Dell Inc.</Manufacturer><Model>Vostro 220s Series</Model></SYSTEM><BIOS><Manufacturer>Dell Inc.</Manufacturer><Version>1.1.4</Version><SMBIOSVersion major="2" minor="5"/><Date>20090417000000.000000+000</Date></BIOS><HWID>764A3707018400F8</HWID><UserLCID>0809</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>GMT Standard Time(GMT+00:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>DELL  </OEMID><OEMTableID>FX09   </OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults>  

Spsys.log Content: 0x80070002

Licensing Data-->
C:\Windows\system32\slmgr.vbs(1333, 5) (null): 0xC0000034

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: 0x00000000
HealthStatus: 0x0000000000000000
Event Time Stamp: 3:13:2012 14:21
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:


HWID Data-->
HWID Hash Current: MAAAAAEAAgABAAIAAAACAAAAAQABAAEA6GFyhzAkqn/SGpjwYPZuY95YAB7kLEbK

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name	OEMID Value	OEMTableID Value
  APIC			041709		APIC1908
  FACP			041709		FACP1908
  HPET			041709		OEMHPET 
  MCFG			041709		OEMMCFG 
  SLIC			DELL  		FX09   
  OEMB			041709		OEMB1908
  GSCI			041709		GMCHSCI 
  SSDT			DpgPmm		CpuPm
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
The error is an 'Access denied' one - and often associated with disk problems.

Please run a full CHKDSK and SFC scan....

Click on Start > All Programs > Accessories
Right-click on the Command Prompt entry
Select Run as Administrator and accept the UAC prompt - the Elevated Command Prompt window should pop up.

At the Command prompt, type

CHKDSK C: /R

and hit the Enter key.
You will be told that the drive is locked,
and the CHKDSK will run at he next boot - hit the Y key, press Enter, and then reboot.

The CHKDSK will take a few hours depending on the size of the drive, so be patient!

After the CHKDSK has run, Windows should boot normally (possibly after a second auto-reboot) -
then run the SFC.

SFC -System File Checker - Instructions
Click on Start > All Programs > Accessories
Right-click on the Command Prompt entry
Select Run as Administrator and accept the UAC prompt - the Elevated Command Prompt window should pop up.

At the Command prompt, type

SFC /SCANNOW

and hit the Enter key

Wait for the scan to finish - make a note of any error messages - and then reboot.


Copy the CBS.log file created (C:\Windows\Logs\CBS\CBS.log) to your desktop (you can't manipulate it directly) and then compress the copy and attach it to a reply.

Please also look through your Application Event Log , and check for the results of the CHKDSK - you can copy and paste them to your reply as well, or paste them to Notepad and attach them. They are listed as a Wininit event, so you can filter the log on that.


Post a new MGADiag report with details of any error messages encountered.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Thanks for the quick reply.
I ran CHKDSK yesterday (it took some time) and SFC just now (again).

Results attached plus fresh MGADiag report.

Code:
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 50
Cached Online Validation Code: N/A, hr = 0xc0000034
Windows Product Key: N/A, hr=0xc0000034
Windows Product Key Hash: N/A, hr=0xc0000034
Windows Product ID: 55041-033-4789644-86307
Windows Product ID Type: 6
Windows License Type: Volume MAK
Windows OS version: 6.1.7601.2.00010100.1.0.048
ID: {3E36DFB7-0BF5-400E-A3E7-6BDF65CC4D74}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Professional
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.120305-1505
TTS Error: 
Validation Diagnostic: 
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 109 N/A
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: 
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{3E36DFB7-0BF5-400E-A3E7-6BDF65CC4D74}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.048</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-BBBBB</PKey><PID>55041-033-4789644-86307</PID><PIDType>6</PIDType><SID>S-1-5-21-1935836800-3093289039-440424962</SID><SYSTEM><Manufacturer>Dell Inc.</Manufacturer><Model>Vostro 220s Series</Model></SYSTEM><BIOS><Manufacturer>Dell Inc.</Manufacturer><Version>1.1.4</Version><SMBIOSVersion major="2" minor="5"/><Date>20090417000000.000000+000</Date></BIOS><HWID>764A3707018400F8</HWID><UserLCID>0809</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>GMT Standard Time(GMT+00:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>DELL  </OEMID><OEMTableID>FX09   </OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults>  

Spsys.log Content: 0x80070002

Licensing Data-->
C:\Windows\system32\slmgr.vbs(1333, 5) (null): 0xC0000034

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: 0x00000000
HealthStatus: 0x0000000000000000
Event Time Stamp: 3:13:2012 14:21
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:


HWID Data-->
HWID Hash Current: MAAAAAEAAgABAAIAAAACAAAAAQABAAEA6GFyhzAkqn/SGpjwYPZuY95YAB7kLEbK

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name	OEMID Value	OEMTableID Value
  APIC			041709		APIC1908
  FACP			041709		FACP1908
  HPET			041709		OEMHPET 
  MCFG			041709		OEMMCFG 
  SLIC			DELL  		FX09   
  OEMB			041709		OEMB1908
  GSCI			041709		GMCHSCI 
  SSDT			DpgPmm		CpuPm
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
They all seem to be clear - which means that the problem lies outside their parameters.

Let's see if the CheckSUR tool can find the problem....


Please download and save the CheckSUR tool from http://support.microsoft.com/kb/947821
(you'll need to look in the details for Method 2)

Run it - The tool can take anywhere from 5 mins to a couple of hours to run (or 'Install') depending on how much it has to do, and may exit silently - it may appear to freeze for most of that time, but be patient.
The result is logged in the C:\Windows\Logs\CBS\CheckSUR.log file - and an archive …\checksur.persist.log file

Then zip the CheckSUR.log and attach it to your reply.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
OK
I ran this earlier this afternoon (in a vain attempt to perhaps fix this problem from some of your earlier excellent advice to others).

It took some time to run - the results are attached.
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
No errors detected - I can't say I'm surprised, as what I see in the CBS log tends to indicate problems elsewhere. I'm awaiting the results of action on a similar case in another forum , so I'll wait until I hear back from that one before I recommend anything.

Please run the following commands - it may confirm what I suspect is the problem.

DIR C:\Windows\System32\Catroot2 /S
ATTRIB C:\Window\System32\Catroot2\*.* /s

post the results.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Here are the results you asked for. I don't understand the implications but I would have thought the ATTRIB command would have returned something different!

I really appreciate your input into this problem.

The date being the 31st of December (Hogmanay)and my location being in the Isle of Skye, my responses may be not so prompt from now on (but I've not gone to the pub yet).

Slainte

and a good New Year when it comes.

---------------------------------------------------------------------

Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.

C:\Users\admin>DIR C:\Windows\System32\Catroot2 /S
Volume in drive C has no label.
Volume Serial Number is 2A2F-6909

Directory of C:\Windows\System32\Catroot2

30/12/2012 16:11 <DIR> .
30/12/2012 16:11 <DIR> ..
31/12/2012 16:35 21,852 dberr.txt
31/12/2012 14:56 8,192 edb.chk
31/12/2012 14:56 65,536 edb.log
30/12/2012 16:11 65,536 edb00476.log
14/07/2009 04:46 65,536 edbres00001.jrs
14/07/2009 04:46 65,536 edbres00002.jrs
18/05/2012 11:44 <DIR> {127D0A1D-4EF2-11D1-8608-00C04FC295EE}
18/05/2012 11:44 <DIR> {F750E6C3-38EE-11D1-85E5-00C04FC295EE}
6 File(s) 292,188 bytes

Directory of C:\Windows\System32\Catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE
}

18/05/2012 11:44 <DIR> .
18/05/2012 11:44 <DIR> ..
31/12/2012 14:56 1,056,768 catdb
1 File(s) 1,056,768 bytes

Directory of C:\Windows\System32\Catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE
}

18/05/2012 11:44 <DIR> .
18/05/2012 11:44 <DIR> ..
31/12/2012 14:56 24,387,584 catdb
1 File(s) 24,387,584 bytes

Total Files Listed:
8 File(s) 25,736,540 bytes
8 Dir(s) 133,973,413,888 bytes free

C:\Users\admin>ATTRIB C:\Window\System32\Catroot2\*.* /s
Path not found - C:\Window\System32\Catroot2

C:\Users\admin>
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
As an exiled Scot living in Wales - I wish I was up there with you!


.... a typo crept in to the ATTRIB command......

ATTRIB C:\Windows\System32\Catroot2\*.* /s

(not that it matters, as the previous results show that everything is pretty much normal)


I'm not sure where to go from here.
I'll get back to you in the morning - have a couple of decent whiskies for me!!

Shout if you haven't heard from me by this time tomorrow.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Hi there, NoelDP, just giving you a shout as requested.

For the sake of completeness, I put the 's' back in Windows and ran the ATTRIB command again. Results as follows:
Code:
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\admin>ATTRIB C:\Windows\System32\Catroot2\*.* /s
A       I    C:\Windows\System32\Catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}
\catdb
A       I    C:\Windows\System32\Catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}
\catdb
A       I    C:\Windows\System32\Catroot2\dberr.txt
A       I    C:\Windows\System32\Catroot2\edb.chk
A       I    C:\Windows\System32\Catroot2\edb.log
A       I    C:\Windows\System32\Catroot2\edb00476.log
A       I    C:\Windows\System32\Catroot2\edbres00001.jrs
A       I    C:\Windows\System32\Catroot2\edbres00002.jrs

C:\Users\admin>

Probably no surprises there.

Any thoughts on what to try next?
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
You had a good night, I trust! :)

I'm still waiting on progress in the other thread - I suspect that this could be the result of malware, as there seems to be a small rash of similar problems lately, so in the meantime, I'd run full system scans with your (new, updated) AV, and with Malwarebytes Anti-Malware, and with an offline AV (perhaps Windows Defender Offline - What is Windows Defender Offline? )

Beyond that, I don't want to disturb things too much by trying fixes which may only make it more difficult to diagnose and fix in the long run.

If you're in a hurry to get the system back up ad running, then a repair install or a reimage may be your best bet.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Yes, we had a fine night, thank you. Whisky was drunk and a good time was had by all.:party:

I replaced Norton 360 with Microsoft Security Essentials - a quick scan showed nothing, running a full scan now. and I will do checks with Malwarebytes Anti-Malware and Windows Defender Offline.

There is no immediate hurry about sorting this as no one will need to use this computer for the rest of the week.

I did try to carry out repair install last week but it failed near the end, before it asks for licence information, claiming there were incompatibility problems then promptly rebooted and restored Windows to the original current state complete with the problem.

I'll post the scan results when I get them.
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
Hi Noel,

I have run all the virus and malware programmes now in full scan mode (which took a few hours) but they have found nothing. Any suggestions/thoughts?
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
Still nothing in the other thread - the OP doesn't seem to be particularly keen to fix it (or they are still recovering :))

Let's have a look at the Event logs....

Please open Event Viewer
In the left pane, navigate to the Windows Logs
right-click on Applications and select 'Save all events as...' save as Apps.evtx
repeat for the System logs - save as Sys.evtx
Compress both files, and attach to your reply.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Attached are the apps and sys event logs as requested.
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
There seems to be a fight going on between VSS, NSSDK.MfpifValidator.1, and NSSDK.CprMfpif.1 to decide which gets more error entries in the Application logs.

MSE appears to be having problems updating.

There appear to be bad blocks present in one of your disks - but CHKDSK says not the C: drive (any ide which one \Device\Harddisk1\DR4 is?). Looking at the log, it may be an external drive, as it disappears on 29/12

From what little I understand in the logs, a common facter appears to be a stall ShellHWDetection Service
let's see if we can find out if anything is wrong with its settings.....

Open an elevated Command Prompt, and run the following commands....

NET START ShellHWDetection
SC QC ShellHWDetection
SC QUERYEX ShellHWDetection
SC SDSHOW ShellHWDetection
SC QPRIVS ShellHWDetection

post the results.

Here are some instructions to make life easier :)
1) To open an Elevated Command Prompt Window (the ECP window), click on Start, All Programs, Accessories – then right-click on Command Prompt, and select Run as Administrator. Accept the UAC prompt.
2) To run the commands easier, highlight the block of commands, and right-click on the highlight – select Copy. In the CP Window, click on the black/white icon at top left – select Paste. The commands will run but may not complete the last command, so hit the Enter Key once.
3) To copy the results... click on the Black/White icon in the top left, and select Edit... 'Select All', and hit the Enter key - then use Ctrl+V or r-click+Paste to paste it into your response.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
I used a USB hard drive to backup all the User files and it had an initial problem as the power lead was not fully in. Maybe that was the hard disk problem.

Anyway, here are the results of the commands you asked for:

Code:
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\admin>NET START ShellHWDetection
The requested service has already been started.

More help is available by typing NET HELPMSG 2182.


C:\Users\admin>SC QC ShellHWDetection
[SC] QueryServiceConfig SUCCESS

SERVICE_NAME: ShellHWDetection
        TYPE               : 20  WIN32_SHARE_PROCESS
        START_TYPE         : 2   AUTO_START
        ERROR_CONTROL      : 0   IGNORE
        BINARY_PATH_NAME   : C:\Windows\System32\svchost.exe -k netsvcs
        LOAD_ORDER_GROUP   : ShellSvcGroup
        TAG                : 0
        DISPLAY_NAME       : Shell Hardware Detection
        DEPENDENCIES       : RpcSs
        SERVICE_START_NAME : LocalSystem

C:\Users\admin>SC QUERYEX ShellHWDetection

SERVICE_NAME: ShellHWDetection
        TYPE               : 20  WIN32_SHARE_PROCESS
        STATE              : 4  RUNNING
                                (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
        WIN32_EXIT_CODE    : 0  (0x0)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          : 0x0
        PID                : 944
        FLAGS              :

C:\Users\admin>SC SDSHOW ShellHWDetection

D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCR
RC;;;IU)(A;;CCLCSWLOCRRC;;;SU)S:(AU;FA;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;WD)

C:\Users\admin>SC QPRIVS ShellHWDetection
[SC] QueryServiceConfig2 SUCCESS

SERVICE_NAME: ShellHWDetection
        PRIVILEGES       : SeImpersonatePrivilege

C:\Users\admin>

Is this useful/helpful? Fingers crossed!
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
Have you tired typing with crossed fingers? (come to think of it- it might improve mine!)

Nope - that's all standard, so there's something getting in its way and the trick is to work out what.

I finally managed to find out what NSSDK.MfpifValidator.1 is from - it's a network Scanner from Sharp.
You need to check the IP addresses for all the items on the network - there appears to be a conflict at times.
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
... fat-fingered it!
to continue.....
The VSS errors are more likely to be related - here's the detail from one such error...
Code:
Log Name: Application
Source: VSS
Date: 02/01/2013 16:45:45
Event ID: 8194
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: admin-PC
Description:
Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
. This is often caused by incorrect security settings in either the writer or requestor process. 
Operation:
Gathering Writer Data
Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {cba7cd60-8843-4153-9594-6944a54dcd25}
Event Xml:
<Event xmlns="[URL="http://schemas.microsoft.com/win/2004/08/events/event"]Error[/URL]">
<System>
<Provider Name="VSS" />
<EventID Qualifiers="0">8194</EventID>
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-01-02T16:45:45.000000000Z" />
<EventRecordID>30582</EventRecordID>
<Channel>Application</Channel>
<Computer>admin-PC</Computer>
<Security />
</System>
<EventData>
<Data>[B]0x80070005, Access is denied.[/B]
</Data>
<Data>
Operation:
Gathering Writer Data
Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {cba7cd60-8843-4153-9594-6944a54dcd25}</Data>

Please open an Elevated Command Prompt, and run the following command

vssadmin list writers >%userprofile%\desktop\noel1.log

This will create a new file on your desktop - noel1.log - please attach it to your response (you can read the content in Notepad if you like)

We can then see what VSS is up to (maybe!)
 

My Computer My Computer

At a glance

Win 7 x64 Home Premium (and x86 VirtualBox VM...i3 370M/i7 6500U8GB - finally :)/8GBit's an i3, dude!/dual Intel&nVidia
Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Actually, my main problem from the fingers point of view is that the girls in the office use such corrosive hand lotion chemicals that the letters on this keyboard have all but been erased (not being a trained touch typist). I have taken the opportunity of their being on holiday to take this machine home to try and sort out this problem. They would be happy to live without updates and a black screen rather than fix the problem....

Tomorrow I will be back at work in my real job so I will only be about (forum-wise) in the evenings.

There is a Sharp photocopier/printer in the office that is no doubt the source of conflict. But the other two PCs seem to cope with the network without becoming invalid copies of windows and refusing to update. Hmmm
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
Overlapping posts there - missed you latest one.

The file requested is attached
 

My Computer My Computer

At a glance

Windows 7 Professional 64
OS
Windows 7 Professional 64
Back
Top