Genuine and activated Windows 7 may sometimes been detected as “pirated”, illegal, rogue or not genuine, despite the operating system has been fully paid for, or has been able to used and fully activated all the while. The symptom is that immediately after log on, the following Windows Activation window will be displayed:
Windows is not genuine
Your computer might not be running a counterfeit copy of Windows.
In addition, the computer desktop background is turned to black, and the following error message is shown on the bottom right corner of the screen:
This copy of Windows is not genuine
When user view the system information in System Properties (accessible via Control Panel -> System and Security -> System), the following error message will be visible too:
You must activate today. Activate Windows now
Using slmgr.vbs /dlv or slmgr.vbs /dli in an elevated command prompt with administrator privileges to view the licensing status will return the following message instead:
Error: 0x80070005 Access denied: the requested action requires elevated privileges
Normally, the suddenly or random deactivation of an activated Windows 7 on genuine platform can be resolved by simply restarting the computer, so that Windows 7 can re-access the activation status to return the computer to activated status. However, in some cases, where modification has been done to HKU\S-1-5-20 registry key causing the Network Service account to lose and missing full control and read permissions over the registry key, the losing of activated status may happen on Windows 7 too.
Microsoft explains in KB2008385 that the possible cause for the Windows 7 turned pirated error is likely the result of applying a Plug and Play Group Policy object (GPO):
Computer Configuration -> Policies -> Windows Settings -> Security Settings -> System Services -> Plug and Play (Startup Mode: Automatic)
The Windows 7 Licensing service uses Plug and Play to obtain hardware ID information and binds the license to the computer, thus change to the setting can result in an activated system appearing to be out of tolerance. The default permissions of the Plug and Play policy do not grant the Licensing service, which runs under the Network Service account, the appropriate rights to access the Plug and Play service. To fix and resolve the Windows 7 activation lost issue, and make the Windows 7 activated and genuine again, just follow one of the two workarounds below:
Method A: Disable the Plug and Play Policy
- Determine the source of the policy. To do this, follow these steps:
- On the client computer experiencing the activation error, run the Resultant Set of Policy wizard by clicking Start -> Run (or press Win+R keys), and entering rsop.msc as the command.
- Visit the following location:
Computer Configuration -> Policies -> Windows Settings -> Security Settings -> System Services
If the Plug and Play service is configured through a Group Policy setting, you see it here with settings other than Not Defined. Additionally, you can see which Group Policy is applying this setting.
- Disable the Group Policy settings and force the Group Policy to be reapplied.
- Edit the Group Policy that is identified in Step 1 and change the setting to “Not Defined.” Or, follow the section below to add the required permissions for the Network Service account.
- Force the Group Policy setting to reapply: gpupdate /force (a restart of the client is sometimes required).
Method B: Edit the permissions of the Group Policy
- Open the Group Policy that is identified in Method A, Step 1 above, and open the corresponding Group Policy setting.
- Click the Edit Security button, and then click the Advanced button.
- In the Advanced Security Settings for Plug and Play window click Add and then add the SERVICE account. Then, click OK.
- Select the following permissions in the Allow section and then click OK:
- Run gpupdate /force after applying the permissions to the Group Policy setting.
- Verify that the appropriate permissions are applied with the following command:
sc sdshow plugplay
The following are the rights applied to the Plug and Play service in SDDL:
Note: (A;;CC LC SW LO CR RC ;;;SU is an Access Control Entry (ACE) that allows the following rights to “SU” (SDDL_SERVICE – Service logon user):
A: Access Allowed
CC: Create Child
LC: List Children
SW: Self Write
LO: List Object
CR: Control Access
RC: Read Control
SU: Service Logon User
If there are no GPO’s in place, then another activity may have changed the default registry permissions. To work around this issue, perform the following steps:
- On the computer that is out of tolerance, start Registry Editor.
- Right-click the registry key HKEY_USERS\S-1-5-20, and select Permissions… button.
- If the NETWORK SERVICE is not present, click Add… button.
- In Enter the object names to select type Network Service and then click Check Names and OK.
- Select the NETWORK SERVICE and Grant Full Control and Read permissions.
- Restart the computer.
- After the restart, the system may require activation. Complete the activation.
Share This Post
- Able2Extract Professional 11 Review – A Powerful PDF Tool
- How to Install Windows 10 & Windows 8.1 with Local Account (Bypass Microsoft Account Sign In)
- How to Upgrade CentOS/Red Hat/Fedora Linux Kernel (cPanel WHM)
- How to Install Popcorn Time Movies & TV Shows Streaming App on iOS (iPhone & iPad) With No Jailbreak
- Stream & Watch Free Torrent Movies & TV Series on iOS with Movie Box (No Jailbreak)
- Windows 10 20H1 Insider Preview Build 18898 Released to the Fast Ring with Task Manager Improvements
- Dashlane Premium Free 1-Year Access With No Cost
- Media Creation Tool for Windows 10 Build 18362 (19H1)
- Windows 10 Insider Preview Build 18885 (20H1) Released to Windows Insiders in Fast Ring – Here What’s New, Fixes, Changes, Improvements
- Google Chrome 74 Released – Here the Changes and Download Links