Windows 7 Build 7601 thinks it is not genuine.

sandry · 12 Aug 2012

I think I got them all

Code:

C:\Windows\system32> sc sdshow plugplay

D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRR
C;;;IU)(A;;CCLCSWLOCRRC;;;SU)S:(AU;FA;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;WD)

 C:\Windows\system32> REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-18" /S

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5
-18
    Flags    REG_DWORD    0xc
    State    REG_DWORD    0x0
    RefCount    REG_DWORD    0x1
    Sid    REG_BINARY    010100000000000512000000
    ProfileImagePath    REG_EXPAND_SZ    %systemroot%\system32\config\systemprofi
le


 C:\Windows\system32> REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-19" /S

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5
-19
    ProfileImagePath    REG_EXPAND_SZ    C:\Windows\ServiceProfiles\LocalService
    Flags    REG_DWORD    0x0
    State    REG_DWORD    0x0


 C:\Windows\system32> REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-20" /S

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5
-20
    ProfileImagePath    REG_EXPAND_SZ    C:\Windows\ServiceProfiles\NetworkServic
e
    Flags    REG_DWORD    0x0
    State    REG_DWORD    0x0


 C:\Windows\system32> net start winmgmt
The requested service has already been started.

More help is available by typing NET HELPMSG 2182.


 C:\Windows\system32> SC QC winmgmt
[SC] QueryServiceConfig SUCCESS

SERVICE_NAME: winmgmt
        TYPE               : 20  WIN32_SHARE_PROCESS
        START_TYPE         : 2   AUTO_START
        ERROR_CONTROL      : 0   IGNORE
        BINARY_PATH_NAME   : C:\Windows\system32\svchost.exe -k netsvcs
        LOAD_ORDER_GROUP   :
        TAG                : 0
        DISPLAY_NAME       : Windows Management Instrumentation
        DEPENDENCIES       : RPCSS
        SERVICE_START_NAME : localSystem

 C:\Windows\system32> SC QUERYEX winmgmt

SERVICE_NAME: winmgmt
        TYPE               : 20  WIN32_SHARE_PROCESS
        STATE              : 4  RUNNING
                                (STOPPABLE, PAUSABLE, ACCEPTS_SHUTDOWN)
        WIN32_EXIT_CODE    : 0  (0x0)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          : 0x0
        PID                : 624
        FLAGS              :

 C:\Windows\system32> REG QUERY HKU

HKEY_USERS\.DEFAULT
HKEY_USERS\S-1-5-19
HKEY_USERS\S-1-5-20
HKEY_USERS\S-1-5-21-3673603920-1938417040-2204823040-1001
HKEY_USERS\S-1-5-21-3673603920-1938417040-2204823040-1001_Classes
HKEY_USERS\S-1-5-18

 C:\Windows\system32> REG QUERY HKU\S-1-5-20

HKEY_USERS\S-1-5-20\AppEvents
HKEY_USERS\S-1-5-20\Console
HKEY_USERS\S-1-5-20\Control Panel
HKEY_USERS\S-1-5-20\Environment
HKEY_USERS\S-1-5-20\EUDC
HKEY_USERS\S-1-5-20\Keyboard Layout
HKEY_USERS\S-1-5-20\Network
HKEY_USERS\S-1-5-20\Printers
HKEY_USERS\S-1-5-20\Software
HKEY_USERS\S-1-5-20\System

 C:\Windows\system32> REG QUERY HKU\S-1-5-20\Environment

HKEY_USERS\S-1-5-20\Environment
    TEMP    REG_EXPAND_SZ    %USERPROFILE%\AppData\Local\Temp
    TMP    REG_EXPAND_SZ    %USERPROFILE%\AppData\Local\Temp


 C:\Windows\system32> REG QUERY "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-20"

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5
-20
    ProfileImagePath    REG_EXPAND_SZ    C:\Windows\ServiceProfiles\NetworkServic
e
    Flags    REG_DWORD    0x0
    State    REG_DWORD    0x0


C:\Windows\system32>

NoelDP · 12 Aug 2012

I can't see anything wrong there, either

I'm tending towards a repair install at the moment - this one seems to be eluding me, and it may be a combination error, where there are actually two or more problems, rather than just one - which reduces our chances of finding it this way.

You would need to download the SP1 Refresh for your language and edition from the links on these pages...

Heidoc - Microsoft DR Download links

The links are for downloads from the Digital River servers run for MS, so are about as safe as you can get :)

Once you have it downloaded, you then need to burn the DVD from it - use either the Windows Disk Image Burner, or (better still) your favourite burning application at the slowest speed possible.

Note that you do NOT 'drag and drop' the file to the disk, you must use the 'burn an image' option from your app - or you'll end up with a useless coaster :)

Once you have the disk burnt, check that it boots the (or any other) system OK - but do NOT start the repair from there - you must start the repair from within a normal Windows boot.

Follow the instructions in this tutorial - https://www.sevenforums.com/tutorials/3413-repair-install.html?ltr=R
- and they should help you get through it (it's not as difficult as it looks!)

sandry · 12 Aug 2012

Thanks Noel. This looks like a bit of a longer job, I'm going to put it off until tomorrow when I will be able to do it without other distractions. I'll report back and let you know how it goes.

NoelDP · 12 Aug 2012

The downlaod will take a while - the repair could take a couple of hours, depending on how much stuff there is on your machine.
Good luck with it!

sandry · 13 Aug 2012

I have sad news :c(

Although the repair install went very smoothly (great instructions by Brink btw), it all went pear-shaped when I got to the part about putting in my Prodiuct Key. Windows said that it is not a genuine key.

My system is now slightly worse than it was before. The large 'not genuine' message popup now appears before even the desktop and I have to choose Resolve online now or remind me later before I can get to the desktop. When I do get there, the wallpaper is replaced with the plain black background immediately and the small 'not genuine' popup and windows security essentials start nagging me immediately.

Although I can now get to the place on the Control Panel where you enter a new product key, there is no way I can enter mine. I have checked it and double checked it from the sticker on the side of the case, but it's not having any of it.

NoelDP · 13 Aug 2012

That actually could be a good sign :)
please post a new MGADiag report.

When you say 'it's not having any of it. ' what exactly do you mean?

An error message 0xC004F050 usually means that you've misread a character - either C/G or B/8 or Y/V are the most common.

Note that the following characters cannot be used - A E I L N O S U Z 1 0 - so don't bother trying unless you like the noise it makes :)
an O/0 is almost always a Q

sandry · 13 Aug 2012

NoelDP said:

When you say 'it's not having any of it. ' what exactly do you mean?

I'm sorry, that wasn't a very helpful comment from me. All I meant was that I have tried several times, reading and rereading the product key.

But Noel, you were right, all was not lost, sure enough I had misread an 8 for B... (about ten times!) and now it seems that I have a genuine Windows after all and I now have a stack of Windows updates to be getting on with.

I don't klnow if you still want to see this, but I figure it won't hurt to post it:

Code:

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: N/A, hr = 0xc004f012
Windows Product Key: *****-*****-BRQDK-8RRMF-VJCHX
Windows Product Key Hash: 5ynLd6hhABedhlFnMlWVA3zmtH0=
Windows Product ID: 00359-OEM-9811072-37448
Windows Product ID Type: 8
Windows License Type: COA SLP
Windows OS version: 6.1.7601.2.00010300.1.0.003
ID: {25B64C62-865F-49BA-99B6-E96B76B9356D}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Premium
Architecture: 0x00000009
Build lab: 7601.win7sp1_rtm.101119-1850
TTS Error: T:20120813175305184-
Validation Diagnostic: 
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 109 N/A
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->
File Mismatch: C:\Windows\system32\wat\watadminsvc.exe[7.1.7600.16395], Hr = 0x80092003
File Mismatch: C:\Windows\system32\wat\watux.exe[7.1.7600.16395], Hr = 0x80092003

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{25B64C62-865F-49BA-99B6-E96B76B9356D}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.003</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-VJCHX</PKey><PID>00359-OEM-9811072-37448</PID><PIDType>8</PIDType><SID>S-1-5-21-3673603920-1938417040-2204823040</SID><SYSTEM><Manufacturer>Acer</Manufacturer><Model>Predator G5900</Model></SYSTEM><BIOS><Manufacturer>American Megatrends Inc.</Manufacturer><Version>P01-A0        </Version><SMBIOSVersion major="2" minor="6"/><Date>20100720000000.000000+000</Date></BIOS><HWID>DFAF3907018400FE</HWID><UserLCID>0809</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>GMT Standard Time(GMT+00:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>ACRSYS</OEMID><OEMTableID>ACRPRDCT</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults>  

Spsys.log Content: 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

Licensing Data-->
Software licensing service version: 6.1.7601.17514

Name: Windows(R) 7, HomePremium edition
Description: Windows Operating System - Windows(R) 7, OEM_COA_SLP channel
Activation ID: 5e017a8a-f3f9-4167-b1bd-ba3e236a4d8f
Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
Extended PID: 00359-00196-110-737448-02-2057-7601.0000-2262012
Installation ID: 017002378923223874459586401454486491917832275872951696
Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
Partial Product Key: VJCHX
License Status: Licensed
Remaining Windows rearm count: 5
Trusted time: 13/08/2012 20:38:33

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: N/A
HealthStatus: 0x0000000000000000
Event Time Stamp: N/A
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:


HWID Data-->
HWID Hash Current: LgAAAAEAAAABAAIAAQACAAAAAQABAAEAonYIPKg3DPHOcDb9WBjaNDEKeIR2Vg==

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name    OEMID Value    OEMTableID Value
  APIC            ACRSYS        APIC2208
  FACP            ACRSYS        FACP2208
  HPET            ACRSYS        OEMHPET 
  MCFG            ACRSYS        OEMMCFG 
  SLIC            ACRSYS        ACRPRDCT
  OEMB            ACRSYS        OEMB2208
  ASF!            LEGEND        I865PASF
  ASPT            ACRSYS        PerfTune
  WDTT            ACRSYS        OEDWDTT 
  AWMI            ACRSYS        OEMB2208
  SSDT            DpgPmm        CpuPm

NoelDP · 13 Aug 2012

You have a couple of other things to do first :)

1) Uninstall the KB971033 update from the Installed Updates list - it's showing as being broken in the new report (which is standard for a repair install) - you can then either reinstall it from Windows Updates (it's an Important optional update) or by downloading it from Description of the update for Windows Activation Technologies

2) a visit to www.microsoft.com/genuine/validate to confirm that everything is properly bedded in.

sandry · 13 Aug 2012

KB971033 is not showing up in the list of Installed Updates since the Repair Install, but it is in the list of updtes that are waiting to be installed. Should I go ahead and let them all install?

NoelDP · 13 Aug 2012

Yep - although I'd do KB971033 either first or last, on its own, to make any troubleshooting required easier.