1. I have already checked that all his permissions are set to "Not set" and that every value is set to zero.
2. The user belongs to the registered members group without any additional secondary usergroup.
3. The user doesn't have any node specific custom permissions.
What could be happening? Maybe an old add-on leave a hidden and thus uneditable (through the ACP UI) permission?