windows 7 non genuine issue

Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\WINSTON>ICACLS C:\windows\System32\7b*.*
C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d
-8115-601632D005A0 NT AUTHORITY\SYSTEM:(I)(F)

                   BUILTIN\Administrators:(I)(F)

                   BUILTIN\Users:(I)(RX)

C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d
-8115-601632D005A0 NT AUTHORITY\SYSTEM:(I)(F)

                   BUILTIN\Administrators:(I)(F)

                   BUILTIN\Users:(I)(RX)

Successfully processed 2 files; Failed processing 0 files

C:\Users\WINSTON>ATTRIB C:\windows\System32\7b*.*
A   H        C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483
456-A289-439d-8115-601632D005A0
A   H        C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483
456-A289-439d-8115-601632D005A0

C:\Users\WINSTON>DIR C:\windows\System32\7b*.* /AH
 Volume in drive C has no label.
 Volume Serial Number is D47A-AFE8

 Directory of C:\windows\System32

23-Feb-13  06:33 AM            21,248 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.
C7483456-A289-439d-8115-601632D005A0
23-Feb-13  06:33 AM            21,248 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.
C7483456-A289-439d-8115-601632D005A0
               2 File(s)         42,496 bytes
               0 Dir(s)  109,118,521,344 bytes free

C:\Users\WINSTON>
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
Your problems began on 23/24 Feb??

At least we have some hard data now :)
The revision date in the DIR response is the first solid evidence of anything amiss - and makes me want to go back and investigate the NetworkService account further.

Please run the following command and post the results.

ATTRIB C:\Windows\ServiceProfiles\NetworkService\*.* /S
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Dont know exactly but 2 or 3 weeks before
Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\WINSTON>ATTRIB C:\Windows\ServiceProfiles\NetworkService\*.* /S
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\History\History.IE5\desktop.ini
A  SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\History\History.IE5\index.dat
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\History\desktop.ini
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\Content.IE5\1G1BTQB6\desktop.ini
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\Content.IE5\CJ7ZSAIK\desktop.ini
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\Content.IE5\L91MSJT0\desktop.ini
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\Content.IE5\VH7RHATC\desktop.ini
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\Content.IE5\desktop.ini
A  SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\Content.IE5\index.dat
   SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\W
indows\Temporary Internet Files\desktop.ini
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\FXSSVC
DebugLogFile.txt
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\FXSTIF
FDebugLogFile.txt
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\MpCmdR
un.log
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\T30Deb
ugLogFile.txt
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\SoftwareProtectionPlatform\Cache\cache.dat
A       I    C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\SoftwareProtectionPlatform\tokens.dat
A  SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\Cookies\index.dat
A  SH   I    C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\IETldCache\index.dat
A            C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\SendTo\Compressed (zipped) Folder.ZFSendToTarget
A            C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\SendTo\Desktop (create shortcut).DeskLink
A  SH        C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\SendTo\Desktop.ini
A            C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\SendTo\Mail Recipient.MAPIMail
A  SH        C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini
A  SH        C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini
A  SH        C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\Start Menu\Programs\Accessories\Desktop.ini
A  SH        C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
\Windows\Start Menu\Programs\Maintenance\Desktop.ini
A  SH   I    C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
A   H        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG
A   H        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG1
A   H        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG2
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{016888bd-6c6f-
11de-8d1d-001e0bcde3ec}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{016888bd-6c6f-
11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{016888bd-6c6f-
11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{6e5a0662-a4f2-
11e1-9e13-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{6e5a0662-a4f2-
11e1-9e13-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{6e5a0662-a4f2-
11e1-9e13-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{706893db-83d5-
11e1-a965-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{706893db-83d5-
11e1-a965-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{706893db-83d5-
11e1-a965-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{7218a0bf-4c51-
11e1-85eb-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{7218a0bf-4c51-
11e1-85eb-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{7218a0bf-4c51-
11e1-85eb-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{96d131d0-6299-
11e1-a198-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{96d131d0-6299-
11e1-a198-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{96d131d0-6299-
11e1-a198-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{a6d1dc23-04bf-
11e2-8f1e-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{a6d1dc23-04bf-
11e2-8f1e-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{a6d1dc23-04bf-
11e2-8f1e-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{bd664f2f-04b3-
11e2-88db-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{bd664f2f-04b3-
11e2-88db-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{bd664f2f-04b3-
11e2-88db-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{e655b353-6b2a-
11e1-9fd0-806e6f6e6963}.TM.blf
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{e655b353-6b2a-
11e1-9fd0-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
A  SH        C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{e655b353-6b2a-
11e1-9fd0-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms

C:\Users\WINSTON>
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
This seems to be a departure from the norm....

A SH I C:\Windows\ServiceProfiles\NetworkService\ntuser.dat

The question then becomes when and why?


Perhaps simply correcting the apparent erro will turn the trick.

Please run the following commands in an Elevated Command Prompt.

ATTRIB -S C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
ICACLS C:\Windows\ServiceProfiles\NetworkService\ntuser.dat

post the results, and reboot - see what happens, and post a new MGADiag report.
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\WINSTON>ATTRIB -S C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
Not resetting hidden file - C:\Windows\ServiceProfiles\NetworkService\ntuser.dat


C:\Users\WINSTON>ICACLS C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat NT AUTHORITY\SYSTEM:(I)(F)
                                                     BUILTIN\Administrators:(I)(
F)
                                                     NT AUTHORITY\NETWORK SERVIC
E:(I)(F)

Successfully processed 1 files; Failed processing 0 files

C:\Users\WINSTON>
C:\Users\WINSTON>
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0x8004FE21
Cached Online Validation Code: N/A, hr = 0x80070005
Windows Product Key: *****-*****-RBV79-QMVK9-PTMXQ
Windows Product Key Hash: RVPQaUf1pt3sdh4lgPOLdnLL830=
Windows Product ID: 00346-OEM-8992752-50213
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.002
ID: {922BD9E8-F0DF-41C2-808C-26871A646456}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Basic
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.130104-1431
TTS Error:
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 109 N/A
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{922BD9E8-F0DF-41C2-808C-26871A646456}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.002</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-PTMXQ</PKey><PID>00346-OEM-8992752-50213</PID><PIDType>2</PIDType><SID>S-1-5-21-1836982260-1520228119-2296431884</SID><SYSTEM><Manufacturer>LENOVO</Manufacturer><Model>20079 </Model></SYSTEM><BIOS><Manufacturer>LENOVO</Manufacturer><Version>40CN08WW(V2.07)</Version><SMBIOSVersion major="2" minor="7"/><Date>20110523000000.000000+000</Date></BIOS><HWID>9CB33A07018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Pacific Standard Time(GMT-08:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>LENOVO</OEMID><OEMTableID>CB-01 </OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults>

Spsys.log Content: 0x80070002

Licensing Data-->
On a computer running Microsoft Windows non-core edition, run 'slui.exe 0x2a 0x46' to display the error text.
Error: 0x46

Windows Activation Technologies-->
HrOffline: 0x8004FE21
HrOnline: N/A
HealthStatus: 0x0001000000000000
Event Time Stamp: 3:9:2013 23:17
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:
Tampered Service: sppsvc


HWID Data-->
HWID Hash Current: MAAAAAEAAQABAAIAAAABAAAAAwABAAEA6GGGwwx0xOXW8dRSZJEcCTQFMG18my5z

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information:
ACPI Table Name OEMID Value OEMTableID Value
APIC INSYDE HR CRB
FACP LENOVO CB-01
HPET LENOVO CB-01
BOOT INSYDE HR CRB
MCFG LENOVO CB-01
WDAT INSYDE HR CRB
SLIC LENOVO CB-01
ASF! INSYDE HR CRB
SSDT INSYDE HR CRB
ASPT INSYDE HR CRB
SSDT INSYDE HR CRB
SSDT INSYDE HR CRB
SSDT INSYDE HR CRB
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
Code: 
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0x8004FE21
Cached Online Validation Code: N/A, hr = 0x80070005
Windows Product Key: *****-*****-RBV79-QMVK9-PTMXQ
Windows Product Key Hash: RVPQaUf1pt3sdh4lgPOLdnLL830=
Windows Product ID: 00346-OEM-8992752-50213
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.002
ID: {922BD9E8-F0DF-41C2-808C-26871A646456}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Basic
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.130104-1431
TTS Error: 
Validation Diagnostic: 
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 109 N/A
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{922BD9E8-F0DF-41C2-808C-26871A646456}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.002</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-PTMXQ</PKey><PID>00346-OEM-8992752-50213</PID><PIDType>2</PIDType><SID>S-1-5-21-1836982260-1520228119-2296431884</SID><SYSTEM><Manufacturer>LENOVO</Manufacturer><Model>20079                           </Model></SYSTEM><BIOS><Manufacturer>LENOVO</Manufacturer><Version>40CN08WW(V2.07)</Version><SMBIOSVersion major="2" minor="7"/><Date>20110523000000.000000+000</Date></BIOS><HWID>9CB33A07018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Pacific Standard Time(GMT-08:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>LENOVO</OEMID><OEMTableID>CB-01   </OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults>  

Spsys.log Content: 0x80070002

Licensing Data-->
On a computer running Microsoft Windows non-core edition, run 'slui.exe 0x2a 0x46' to display the error text.
Error: 0x46 

Windows Activation Technologies-->
HrOffline: 0x8004FE21
HrOnline: N/A
HealthStatus: 0x0001000000000000
Event Time Stamp: 3:9:2013 23:17
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:
Tampered Service: sppsvc


HWID Data-->
HWID Hash Current: MAAAAAEAAQABAAIAAAABAAAAAwABAAEA6GGGwwx0xOXW8dRSZJEcCTQFMG18my5z

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name	OEMID Value	OEMTableID Value
  APIC			INSYDE		HR CRB  
  FACP			LENOVO		CB-01   
  HPET			LENOVO		CB-01   
  BOOT			INSYDE		HR CRB  
  MCFG			LENOVO		CB-01   
  WDAT			INSYDE		HR CRB  
  SLIC			LENOVO		CB-01   
  ASF!			INSYDE		HR CRB  
  SSDT			INSYDE		HR CRB  
  ASPT			INSYDE		HR CRB  
  SSDT			INSYDE		HR CRB  
  SSDT			INSYDE		HR CRB  
  SSDT			INSYDE		HR CRB
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
Was that in an Elevated Command Prompt?
To open an Elevated Command Prompt Window (theECP window), click on Start, All Programs, Accessories – then right-click onCommand Prompt, and select Run as Administrator. Accept the UAC prompt.
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
yes...right clicked on command prompt and selected run as administrator and executed those commands in the command prompt which appeared..here is the output again
Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\WINSTON>ATTRIB -S C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
Not resetting hidden file - C:\Windows\ServiceProfiles\NetworkService\ntuser.dat


C:\Users\WINSTON>ICACLS C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat NT AUTHORITY\SYSTEM:(I)(F)
                                                     BUILTIN\Administrators:(I)(
F)
                                                     NT AUTHORITY\NETWORK SERVIC
E:(I)(F)

Successfully processed 1 files; Failed processing 0 files

C:\Users\WINSTON>
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
OK - it looks like we may have to force things, then.
I need to check a few things - I'll get back to you later.
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Hmmm - it seems that the System attribute isn't critical (I just checked a couple more systems and more have it active than don't)

Please run the following commands - it may confirm that the problem is with the file...

DIR C:\Windows\ServiceProfiles\NetworkService\ntuser.* /AH
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\WINSTON>DIR C:\Windows\ServiceProfiles\NetworkService\ntuser.* /AH
 Volume in drive C has no label.
 Volume Serial Number is D47A-AFE8

 Directory of C:\Windows\ServiceProfiles\NetworkService

13-Mar-13  05:38 AM           524,288 ntuser.dat
21-Nov-10  12:07 AM             1,024 NTUSER.DAT.LOG
13-Mar-13  05:38 AM           226,304 NTUSER.DAT.LOG1
13-Jul-09  09:45 PM                 0 NTUSER.DAT.LOG2
13-Jul-09  10:01 PM            65,536 NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bc
de3ec}.TM.blf
13-Jul-09  10:01 PM           524,288 NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bc
de3ec}.TMContainer00000000000000000001.regtrans-ms
13-Jul-09  10:01 PM           524,288 NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bc
de3ec}.TMContainer00000000000000000002.regtrans-ms
24-May-12  02:36 AM            65,536 NTUSER.DAT{6e5a0662-a4f2-11e1-9e13-806e6f6
e6963}.TM.blf
24-May-12  02:36 AM           524,288 NTUSER.DAT{6e5a0662-a4f2-11e1-9e13-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
24-May-12  02:36 AM           524,288 NTUSER.DAT{6e5a0662-a4f2-11e1-9e13-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
11-Apr-12  10:11 AM            65,536 NTUSER.DAT{706893db-83d5-11e1-a965-806e6f6
e6963}.TM.blf
11-Apr-12  10:11 AM           524,288 NTUSER.DAT{706893db-83d5-11e1-a965-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
11-Apr-12  10:11 AM           524,288 NTUSER.DAT{706893db-83d5-11e1-a965-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
31-Jan-12  06:32 PM            65,536 NTUSER.DAT{7218a0bf-4c51-11e1-85eb-806e6f6
e6963}.TM.blf
31-Jan-12  06:32 PM           524,288 NTUSER.DAT{7218a0bf-4c51-11e1-85eb-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
31-Jan-12  06:32 PM           524,288 NTUSER.DAT{7218a0bf-4c51-11e1-85eb-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
28-Feb-12  11:36 PM            65,536 NTUSER.DAT{96d131d0-6299-11e1-a198-806e6f6
e6963}.TM.blf
28-Feb-12  11:36 PM           524,288 NTUSER.DAT{96d131d0-6299-11e1-a198-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
28-Feb-12  11:36 PM           524,288 NTUSER.DAT{96d131d0-6299-11e1-a198-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
22-Sep-12  07:53 AM            65,536 ntuser.dat{a6d1dc23-04bf-11e2-8f1e-806e6f6
e6963}.TM.blf
22-Sep-12  07:53 AM           524,288 ntuser.dat{a6d1dc23-04bf-11e2-8f1e-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
22-Sep-12  07:53 AM           524,288 ntuser.dat{a6d1dc23-04bf-11e2-8f1e-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
22-Sep-12  05:48 AM            65,536 ntuser.dat{bd664f2f-04b3-11e2-88db-806e6f6
e6963}.TM.blf
22-Sep-12  05:48 AM           524,288 ntuser.dat{bd664f2f-04b3-11e2-88db-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
22-Sep-12  05:48 AM           524,288 ntuser.dat{bd664f2f-04b3-11e2-88db-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
10-Mar-12  10:07 PM            65,536 NTUSER.DAT{e655b353-6b2a-11e1-9fd0-806e6f6
e6963}.TM.blf
10-Mar-12  10:07 PM           524,288 NTUSER.DAT{e655b353-6b2a-11e1-9fd0-806e6f6
e6963}.TMContainer00000000000000000001.regtrans-ms
10-Mar-12  10:07 PM           524,288 NTUSER.DAT{e655b353-6b2a-11e1-9fd0-806e6f6
e6963}.TMContainer00000000000000000002.regtrans-ms
              28 File(s)      9,664,512 bytes
               0 Dir(s)  109,062,057,984 bytes free

C:\Users\WINSTON>
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
That's a bust :( The file has been updated today, so we can assume that it's functioning properly.

I wonder if it's permissions on the Registry Key itself?
The problem is that there's no easy way to find out except to check the registry manually.

Please open Regedit (CAREFULLY! - there is no Undo option available) and navigate to the
HKEY_USERS\S-1-5-20 key and right-click on it - select Permissions
Click on the Advanced button -
What entities are listed and what permissions do they have?
Click on the Owner tab - who is listed as Owner.
Cancel out (do NOT click OK!) and close Regedit

post the results.
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
Is my copy of windows genuine one...i didnt have any problem with it before but was it genuine before or it was not genuine one which was installed when i bought this laptop...
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
As far as I can tell it's perfectly genuine- just suffering from a software problem of some kind which the system is interpreting as being an attack on the licensing protection software.

The COA sticker on the case should be for Windows 7 Home Basic (and probably adds either OA or OEMAct at the end)
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
yes windows 7 sticker says Windows 7 Home Basic OA MEA
Permission Entries:
type name permission inherited from apply to
allow NETWORK SERVICE Full Control <not inherited> this key and subkeys
allow SYSTEM Full Control <not inherited> this key and subkeys
allow administrators
(winston-pc\administartors) Full Control <not inherited> this key and subkeys
allow RESTRICTED Read <not inherited> this key and subkeys

current owner:
Administrators (WINSTON-PC\Administrators)
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
Also there is some error in system properties option:
There was an unexpected error in the property page

The Volume Shadow Copy Service used by system restore is not working..for more info visit view log.(0x81000202)
Please close property page and try again.
also sometimes desktop had turned red for sometime then was back to normal during start up
may be these two factors help the cause..
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
That's possible - the ShadowCopy service is considered fairly important, and does impact on the SPPSVC.


Pleaseopen Event Viewer

In theleft pane, navigate to the Windows Logs

right-clickon Applications and select 'Save all events as...' save as Apps.evtx

repeatfor the System logs - save as Sys.evtx

Compressboth files, and attach to your reply.
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
lenovo
OS
Windows 7 Home Basic 64bit
CPU
intel i5 2410m @ 2.3ghz
Motherboard
Lenovo Base Board Version
Memory
4Gb
Graphics Card(s)
amd radeon 6370m 1Gb
Hard Drives
WDC WD7500BPVT-24HXZT1
Antivirus
avast free antivirus
Browser
IE9
Some interesting errors in the Apps log!
Also some very interesting errors in the System log.

I'm really a bit at a loss as where to start! :(
The list of broken services includes....
The AMD External Events Utility service failed to start
CNG Key Isolation service failed to start
Extensible Authentication Protocol service depends on the CNG Key Isolation service
WLAN AutoConfig service depends on the Extensible Authentication Protocol service
Print Spooler service failed to start
Connectify service depends on the WLAN AutoConfig service which failed to start
Photon Plus. OUC service failed to start
The Protected Storage service failed to start
speedfan
TfFsMon
TFSysMon
Application Layer Gateway Service service failed to start
.... etc., etc.,

All due to either the file or path not being found - despite the fact that the SFC results say that they are present and correct
This smacks of 'enemy action' in the form of registry corruption induced by malware.
Let's check a couple of the affected services and see what the registry has for them..

Please run the following commands, and post the results.

REG QUERY HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Spooler
SC QUERYEX SPOOLER
DIR C:\Windows\system32\drivers\speedfan.sys
REG QUERY HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ALG
DIR C:\Windows\system32\alg.exe
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Asus K52F or Lenovo B51-80
OS
Win 7 x64 Home Premium (and x86 VirtualBox VM)/Win10
CPU
i3 370M/i7 6500U
Motherboard
Asus/Lenovo
Memory
8GB - finally :)/8GB
Graphics Card(s)
it's an i3, dude!/dual Intel&nVidia
Sound Card
onboard
Monitor(s) Displays
15.6" built-in
Screen Resolution
1366x768/1920x1080
Hard Drives
750GB Seagate internal
Sundry external drives attached to other computers on the local network
1TB SSD on the Lenovo
PSU
n/a
Internet Speed
as much as I can get - usually on a dongle/phone, so <1MB/s
Antivirus
MSE/Defender
Browser
IE11/12/Edge/Chrome/FF(if I must)
You must log in or register to reply here.

Similar threads

Windows 7 Not Genuine error on Alienware M15X
Replies
4
Views
4K
didier7854
D
win7 pro 64 bit genuine activation
Replies
3
Views
3K
torchwood
torchwood
win 7 not genuine
Replies
1
Views
6K
siliconbeaver
S
Solved Stuck on activation (help, please! Details below)
Replies
4
Views
2K
AeroTheBetta
A
Diagnostic Report (1.9.0027.0): --------------------------------------
Replies
1
Views
1K
torchwood
torchwood
Back
Top