rkr3

New Member
Joined
Jul 3, 2014
Messages
3
Running the latest version of Windows 8.1, all updated, on an HP i7 4th Gen Quad Core laptop with 16gb RAM and 1TB hard disk. I'm the Admin of my account.

Every now and then, while installing a program (or every time I try to run a Command Prompt (Admin) after hitting Win-X), I will get a command window with a message which goes something like the following example:

"SUCCESS: The file (or folder): “C:\Windows\system32\cmd.exe now owned by the Administrators group.

processed file: C: \Windows\system32\cmd.exe

Successfully processed 1 files; Failed processing 0 files

Press any key to continue . . ."


(The above example is specifically from when I try to open a Command Prompt (Admin) after hitting Win-X. However a similar issue happens when I try to install some programs as well; the message might be somewhat slightly different, but essentially in the same vein.)

I hit a key, the window closes, nothing happens.

If I've been trying to install a program, I can generally get the program installed by going into compatibility mode, settings, and then fiddling around. But this is happening with pretty new versions of programs also, which should be ready for Windows 8.1. And it doesn't explain the Command Prompt (Admin) issue.

Can anyone tell me what's going on? Thanks.
 


Solution
There have been situations where too many anti-virus programs have caused problems.

Run the command below and see if you can run the SFC after. You can also use the other command to copy a text file to your desktop and check the last part to see what files the SFC may not be able to repair. You can copy and paste the commands in an Admin command prompt.

DISM /online /cleanup-image /restorehealth

findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

We can also set the owner of cmd.exe back to Trusted Installer, it you want to try. If the permissions were changed as a group, I can't help to set them all back.

You probably need a Refresh, but you can't do that unless you have the 8.1 media.
I have no idea why the system is behaving in such a manner. Have you made any changes to any of your files/folders as far as permissions? Have you installed any software that might have done so?

My cmd.exe shows as being owned by the TrustedInstaller. Are you having any problems getting updates, or running a System File Check? If you can, use that Admin Command prompt and type SFC /scannow and see if it finishes. It if doesn' t you may have to run it from offline..

You may want to try going to the System32 folder and right clicking the cmd.exe and choose Run as Admin to see if something could be wrong with the shortcut.

Any hints of viruses being involved?
 


HI, thanks for your response.

No viruses. I run Bitdefender Internet Security and a always-on paid version of Malwarebytes, as well as WinPatrol. All my security software are the piaid-for versions, and are updated regularly.

Permissions-- not sure. I don't know if I did something with permissions -- I seem to remember that it was the suggested approach for Windows 7, and I would take ownership of all the files in Win 7. I don't know if I've done it on this machine (let's assume that if I did take ownership, how would I reset the permissions?)

No problems with updates.

SFC/Scannow -- this doesn't complete properly. I get the error that it completed with errors, but it can't fix the files (you know the message...)

Lastly, it isn't the Command Prompt issue which is the only problem; I believe that that's a symptom of some other, more fundamental problem. I CAN run the Command Prompt in Admin mode if I do it from Task Manager (after clicking the box for Admin in File/Run), but that's the only way. The problem that's bothersome is that most program set-up files will throw up the same kind of Command Prompt window, after which to get it to install I have to play all sorts of games with the compatibility wizard. Plus, since this seems to be a basic problem with the Windows installation, it could lead to other issues later.

By now you're probably thinking 'Windows Reinstall' '-). But I would ideally like to fix the problem without a Windows reinstall (of course! ;-) ). I've got just too many programs installed, and many of them will have an issue with licensing on re-install. Just want to avoid the hassle.They're all Desktop programs, so the Refresh option is basically useless for me.

Any other ideas? Thanks for your interest.
 


There have been situations where too many anti-virus programs have caused problems.

Run the command below and see if you can run the SFC after. You can also use the other command to copy a text file to your desktop and check the last part to see what files the SFC may not be able to repair. You can copy and paste the commands in an Admin command prompt.

DISM /online /cleanup-image /restorehealth

findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

We can also set the owner of cmd.exe back to Trusted Installer, it you want to try. If the permissions were changed as a group, I can't help to set them all back.

You probably need a Refresh, but you can't do that unless you have the 8.1 media.
 


Solution
Hi -- thanks for the quick response!

No, I'm not running too many AV programs, just Bitdefender and Malwarebytes Anti-Malware. From what I know, Malwarebytes AM is supposed to run with other AVs. Oh, I also run Malwarebytes Anti-Exploit, but that too is supposed to run with traditional AV programs.

Will try running the command given by you. FWIW, here's the LAST few lines from the CBS.log generated when SFC/scannow was last run:

"
--
--
--
Checking System Update Readiness.

(p) CSI Payload Corrupt amd64_prncacla.inf_31bf3856ad364e35_6.3.9600.16384_none_9590ba64d5b91f79\Amd64\CNBJ2530.DPB
Repair failed: Missing replacement payload.

Summary:
Operation: Detect and Repair
Operation result: 0x800f0906
Last Successful Step: Entire operation completes.
Total Detected Corruption: 1
CBS Manifest Corruption: 0
CBS Metadata Corruption: 0
CSI Manifest Corruption: 0
CSI Metadata Corruption: 0
CSI Payload Corruption: 1
Total Repaired Corruption: 0
CBS Manifest Repaired: 0
CSI Manifest Repaired: 0
CSI Payload Repaired: 0
CSI Store Metadata refreshed: True

Total Operation Time: 397 seconds.

2014-07-04 17:38:19, Info CBS SQM: CheckSur: hrStatus: 0x800f0906 [CBS_E_DOWNLOAD_FAILURE], download Result: 0x8024402c [Unknown Error]
2014-07-04 17:38:19, Info CBS Count of times corruption detected: 1
2014-07-04 17:38:19, Info CBS Seconds between initial corruption detections: -1
2014-07-04 17:38:19, Info CBS Seconds between corruption and repair: -1
2014-07-04 17:38:22, Info CBS SQM: Upload requested for report: CheckSurSqm, session id: 142858, sample type: Standard
2014-07-04 17:38:22, Info CBS SQM: Ignoring upload request because the sample type is not enabled: Standard
2014-07-04 17:38:22, Info CBS Failed to run Detect and repair. [HRESULT = 0x800f0906 - CBS_E_DOWNLOAD_FAILURE]
2014-07-04 17:38:22, Info CBS Reboot mark cleared
2014-07-04 17:38:22, Info CBS Winlogon: Deregistering for CreateSession notifications
2014-07-04 17:38:22, Info CBS Winlogon: Stopping notify server
2014-07-04 17:38:22, Info CBS Winlogon: Unloading SysNotify DLL
2014-07-04 17:38:22, Info CBS Exec: Processing complete, session(Corruption Repairing): 30381951_3085675601 [HRESULT = 0x800f0906 - CBS_E_DOWNLOAD_FAILURE]
2014-07-04 17:38:22, Error CBS Session: 30381951_3085675601 failed to perform store corruption detect and repair operation. [HRESULT = 0x800f0906 - CBS_E_DOWNLOAD_FAILURE]
2014-07-04 17:38:22, Info CBS Session: 30381951_3085675601 finalized. Download error: 0x8024402c [Unknown Error], Reboot required: no [HRESULT = 0x800f0906 - CBS_E_DOWNLOAD_FAILURE]
2014-07-04 17:38:22, Info CBS Failed to FinalizeEx using worker session [HRESULT = 0x800f0906]
2014-07-04 17:40:04, Info CBS Trusted Installer signaled for shutdown, going to exit.
2014-07-04 17:40:04, Info CBS Trusted Installer is shutting down because: SHUTDOWN_REASON_NOTIFICATION:PRESHUTDOWN
2014-07-04 17:40:04, Info CBS TiWorker signaled for shutdown, going to exit.
2014-07-04 17:40:04, Info CBS Ending the TiWorker main loop.
2014-07-04 17:40:04, Info CBS Ending the TrustedInstaller main loop.
2014-07-04 17:40:04, Info CBS Starting TiWorker finalization.
2014-07-04 17:40:04, Info CBS Starting TrustedInstaller finalization.
2014-07-04 17:40:04, Info CBS Ending TrustedInstaller finalization.
2014-07-04 17:40:05, Info CBS Ending TiWorker finalization."

Don't know if that helps any -- in case it doesn't, please ignore!

A Refresh wouldn't help, I think, I would still have to re-install all my Desktop programs, correct? I don't use any 8.1 Apps.

Also for what it's worth, I've just run the Tweaking.Com Windows Repair utility. I believe it resets permissions? Anyways, no change in the problem.
 


The one file I see, and the other command would give a better idea of your situation, is amd64_prncacla.inf_. This file and the one it contains is from a Canon printer driver and is on a high percentage of installs. Why you have it, I don't know unless it is part of a group of printer files loaded for a specific type of printer, like an All-in-One.

You can read what a refresh does, but again, unless you have the 8.1 install files, it won't work.

You might want to check the Event Viewer to see if you can find a pattern of errors. Look for repeated errors and see if there is some pattern. For instance, do they just show up when you wake from sleep, or reboot, etc.
 


Back
Top