Over 1 million tech questions and answers.

Private Key is missing on Certificate in the Certificate Manager.

Q: Private Key is missing on Certificate in the Certificate Manager.

Good Day

We have a problem where we encrypted files using EFS, however we can't access or decrypt these files now.

We have the certificate in the certmgr.msc but we do see that the key is missing.

I have reproduced this on another computer and was able to run certutil -repairstore -user MY "Serial Number" which worked in repairing the store and files was decryptable again.

However on the machine that encrypted the files that we need to access this is not the case as there is a popup asking for your Smart Card.

We are not using Smart Cards at all, and have had a look at the following article regarding this issue, but the hotfix didn't work: https://support.microsoft.com/en-us/kb/2955631

I have software that can remove the encryption but will require the .pfx file, which can't be exported as the certstore doesn't show that it still has this.

It is a self signed certificate generated by Windows, so I can't request a new one using the CA.

Thanks for your help in advance.

Read other answers
Preferred Solution: Private Key is missing on Certificate in the Certificate Manager.

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)



I am trying to resolve an issue where multiple client computers in the organisation are using an internally deployed Root CA certificate (before my time and no longer required) to sign the end entity certificate for external websites, google.co.uk
for example. All SSL sites appeared to be affected by this.

However this is not the case as sub domains of sites with issues show the correct cert chain, the below is for mail.google.com

Removing or untrusting this root ca cert breaks access to these sites.

I have reset root certs in various ways, removed machines from the domain, applied no GPOs, manually updated CRL and pulled down updated certs with rootsupd.exe.
It always attempts to use this rouge CA cert to sign the websites cert.

Any assistance would be much appreciated.

Read other answers

I am trying to install CA root certificate on Windows 7, IE 9.
Encounter error: "Untrusted Certificate".  "This certificate cannot be verified up to a trusted certificate authority."
I have tried to install the certificate to Trusted Root Certificate Authorities->local computer and import was successful. BUT on IE->Internet Options->Certificate->Trusted Root Certificate Authorities, I am unable to find this root CA on
the list.
On mmc->Certificates->Trusted Root Certificate Authorities->certificates, I am able to view this root CA.
I then restarted the IE and view the ssl site again but failed too, "Untrusted Certificate".
Anyone, any idea ?
Eye Gee

A:Unable to Install Root CA Certificate - Certificate cannot be verified up to a trusted certificate authority.

May the following workarounds work for you:
Workaround 1:
Modify the Windows settings to allow the Update Root Certificate feature to update the root certificates automatically. For details, see the following Microsoft TechNet article:
Certificate Support and Resulting Internet Communication in Windows Server 2008
Workaround 2?
If the Update Root Certificate feature cannot automatically update the root certificates, you may contact the website vender to see if there is a hotfix can fix the issue.

Read other 8 answers

I have a problem with install multiple digital certificate (PKF format) to allow access to one website with different account ID.

Every time I installed the certificate, it is working and allow me access to the website with relevance ID. However, the installed certificate will be missing if I continue to install with another certificate. The way I install the certificate is just double click on the PKF certificate that provided by the website admin, then kept click on the next button until its finish the installation steps. All the certificates will install to "Personal" certificate store folder, but the problem is only one certificate will remain.

I ever try to import all the certificate with using windows certificate manager, is allow me to import all the certificates and able to let me access to the website with select different certificate to login with selected account ID. Anyway this method is only workable if the Internet Explorer is not close after install all the certificates, once the Internet Explorer is close, then all the certificates were gone.

The motioned problem PC is running on Windows XP SP3 with latest update. And the using internet explorer is version 8 with latest update as well.

I had try to reset the Internet Explorer to default, but is not working so, appreciate is anyone can guide me to solve this problem

A:PKF certificate missing after new certificate was installed

Under "Content" in Internet Options, are all your certificates there? Mine are. Either your Admin. or the issuer should have your answer. Some PKFs are not compatible with all OSs or Browsers. Try downloading certificates to Firefox or Chrome and see if that works.

Read other 2 answers

Now with a lot of files having encrypted with the EFS, I got a backup of my certificates in order to prevent any data loss in the future...
But while doing so I got an option whether to export private keys as well...Well you will need the private keys to decrypt the header...isn't it??? Then why keep a backup of the certificate which don't know the private keys and hence don't know how to decrypt the header to get the bulk symmetric key????

So what's the utility of this type of backup??? Some tutorials say that you need them when you apply the backup on a different system???

A:what is the use of certificate without private key in efs

Well I got the answer myself...You need those to encrypt your files from a different computer when you don't need to decrypt the files there...as because decryption requires private keys which you are not likely to give to everybody....that was easy...I just got confused...Anyway I got no help, but I think writing here will help somebody who is confused like me...

Read other 1 answers

I have downloaded a digital certificate with private key from authority CA using a link. And the certificate was installed with no errors. Now when I'm going to export the certificate it will NOT allow me to export with private key. The option "Yes, export with private key" was grayed out.From MMC, add snap in certificate > local computer > certificate > certificatename. In this location "I can see the certificate image with a key on it". Is this mean that the import is successful with private key? If so, how to export correctly? Kindly help please!

A:Cannot export certificate with private key

This is determined by the certificate publisher. It is marked as not exportable so users cannot export this certificate.
Please refer the following article.
Export a certificate with the private key

Read other 6 answers

For security purposes we generate an RSA keypair on an HSM and then create a CSR that is sent to the CA. The CA then returns the certificate. Is there away to import this certificate into the Local Machine's Personal Certificate Store and associate the key
in the HSM with it (access via the HSM's provided KSP)? I don't want to export the key from the HSM at all.
I tried to use:
certutil -csp "<HSM Provider's KSP>"-repairstore MY <Cert Thumbprint>
But it returns with error code 0x80092004, saying it "Cannot find object or property."
Any help would be much appreciated. Thanks.

Read other answers

A summary of this problem is that "The Client Certificate Private Key release prompt is incorrectly shown on the first login user's desktop rather than on the desktop of the active user who has selected the client certificate to submit
to a website."
We are using RDS 2012 r2 and internet explorer 11.

There is a thread from May 2014, but I see no resolution. Can you offer a suggestion?

Read other answers

I am completely new to openssl and crypto in general but I have a digital certificate that gets emailed to me monthly that I use to access machines at work. For some reason the certificate stopped working (expiration dates are good) and the even log shows the password is now mismatched. I put openssl on my windows 7 to see if I could use the -check function with my password to confirm if it's correct but it is having trouble locating my certificate. Any help would be greatly appreciated.

Read other answers

(I'm cross posting this from
https://answers.microsoft.com/en-us/ie/forum/ie11-windows_7/a-certificate-chain-processed-but-terminated-in-a/e6895c7e-c6b9-4a96-a5f5-a4dcd40b7b45 as directed by the forum moderator there.)

First, I have reviewed the other posts with similar questions and noted that I can install the certificate into root certificates and most likely this problem will go away, some specifics:

1) When a client reported this error using a pop.secureserver.net on an outlook 2003 client, I just figured it was godaddy or the REALLY old Outlook client, but nonetheless, I went in to troubleshoot it and was convinced it was godaddy, but when I tried
to start my Outlook 2016 client on my Windows 10 computer on their network, I got the same error.  Two notes are important: 1) I use godaddy as well and 2) I used the same computer at a different client just yesterday without a single error message.
2) They use POP 995 w/ SSL & SMTP 465 w/ SSL to pop.secureserver.net & smtpout.secureserver.net repsectively
3) I called the company that manages their firewall and was told that everything was fine, but was sent a certificate from the firewall that might fix the problem.
4) The firewall company tells me they use a fortinet firewall

I have some questions that I'm hoping one of the experts here can answer for me:

- What in a firewall setup can cause a certificate to fail as listed in the subject?
- Is there a port or configuration change they... Read more

Read other answers

Is there a rvkroots.exe available for download for the mentioned KB so that I can remediate a Nessus finding?
We are on a disconnected network so windows update is disabled in our network.
In the past we are able to just download rvkroots.exe and push it out to all our Win7 computers.

Read other answers

I have some Windows 7 systems which have not run Windows Updates for many years, and cannot due to regulatory reasons.   We rely upon Windows to automatically update the Trusted Root Certificate store whenever we browse to a web site/web service
that uses a certificate the system doesn't recognize. 
Sometime recently, the Trusted Root Certificate Store no longer updates automatically.  The Windows Event Log shows an error stating that the certificates cannot be downloaded from:
http : // ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
If we browse to this location manually, the cab file contains an invalid Microsoft certificate. 

This was also an issue in Sept 2018.  At that time, the certificate had expired, and Microsoft eventually updated the certificate to resolve the issue.   This time, the certificate does not appear to have expired.  Why is the certificate
invalid this time, and can Microsoft fix it again?


Read other answers

so whats up with this error message ??
Revocation information for the security certificate for this site is not available. Do you want to proceed? [Yes] [No] [View certificate]

i know it can be unchecked in security option under advanced. but is that really safe to do ???


Steven J Einhorn

Read other answers

I'm working on my sister's computer (Windows 7 Pro x64) for her (I'm not a professional IT tech in any sense of the word, she just asked for help because I've been able to fix stuff for her before), she has a very weird problem that I'm very concerned is
unfixable and would really, really appreciate any help with.

So, when she bought the computer a few years ago, she was told from someone at the store all about Windows 7 encryption service, and how easy and effective it was. She had some files on the computer she considered really important (she said it's for her art
which she does as a part-time job) that she didn't want to lose in case of hacking/whatever so she encrypted them. So far as she can remember, she never backed up the key (and, of course, no backups in general). 

A few days ago, she got a notification in the system tray talking about encryption and that she should backup the certificate. She said that she went through it and it ended up exporting a .pfx key file, which I have found on the computer. The problem is, immediately
after this happened, all of her encrypted files no longer gave her access. Going into certmgr.msc, I'm seeing that she has not one but three certificates for encryption, one dating from when she first set it up after buying, the others from a few days ago
when she had the problem/followed the menu. Unless I'm misunderstanding something, it looks like she set up a new certificate when she went through the system tray notifi... Read more

Read other answers


Really confusing one here. Since this weekend (16/17 July) we have started getting Certificate errors on some sites and applications. This seems to be due to the structure of the URL compared to the "advertised" name IIS is presenting. I'll try
to explain.
I have a site, Website. This is in my domain, domain.com. Therefore the FQDN is website.domain.com. IIS is running and I can access this site through FQDN,NetBIOS or IP address. Good news.
I create a certificate for the server using the FQDN as the subject, I add the Netbios and IP addresses in the Subject Alternate Names and Bind this to port 443 on the server.
I browse to https://website and all is good. I browse to https://website.domain.com I get a certificate error. Checking the certificate, everything is fine, no errors, chain is trusted. open Chrome and do the same, I get that the certificate website.domain.com
is being presented by Website and may not be the site I want.
Using either URL has never been a problem until this weekend, but it seems that IE/Windows/IIS is not liking any URL that is not EXACTLY what IIS is presenting. so my questions are:-
Is anyone else finding this?
Can we issue a certificate that covers all possible DNS resolutions for a site?
How do I control WHAT IIS advertises itself as?
SO far this has affected two major systems on our network and I can see that more will arise, so any help would be appreciated.

Read other answers

Can someone walk me through the steps of having Advanced Threat Analytics (ATA) request a new certificate from Active Directory Certificate Services (ADCS)?  I'm not familiar with either product so I will need detailed steps please.  At a high-level
i'm guessing
1. ATA issues a certificate request
2. I send the request to ADCS
3. ADCS issues a cert for that request
4. Install new cert in ATA
I'll need detailed command line statements.  My ATA Center server is named ATASERVER.DOMAIN.ORG, and I but the URL is configured as ATACENTER.DOMAIN.ORG in ATA.  Can the cert handle both the servername and the URL?
Thank you in advance!

Read other answers

I have Windows 7 client and Cisco router is configured as Certificate Authority. Cisco calls it IOS CA. How can I do certificate enrollment of Windows 7 client with my Cisco IOS Certificate Authority?

Read other answers

In Internet Explorer, when I get a certificate error, if I continue to the web site, I can then view the certificate to see what was wrong.  However, obviously it would be preferable* to see the certificate
before I make the decision to go to the site.  Is this possible?  I'm sure I could use another browser that does this, or maybe use the F12 developer tools, or write a program.   But I'm looking
for a normal-user way to do it.  I think it used to be possible in Internet Explorer, but this might have been 6.x or even earlier.  Or even
way earlier.  Yep.  I'm that old.  I believe this feature is not in Edge either...unless I'm just missing it.  But I'm using ie11 right now.
*understatement level is set to "high".

Read other answers


This update addresses the "Certificate Renewal Wizard Concatenates Certificate" issue in Internet Information Services (IIS) 5.0, and is discussed in Microsoft Knowledge Base (KB) Article Q325827. Download now to correct this issue for IIS 5.0

System Requirements
Supported Operating Systems: Windows 2000

Internet Information Services 5.0
Windows 2000 Professional
Windows 2000 Server
Windows 2000 Advanced Server




Read other answers

Having some fun with a windows 7 setup of DirectAccess, have it configured to use ECC certificates on the client for the IPSec authentication, which was working brilliantly, we even have it loaded up behind a Citrix Netscaler to do SSL offloading of the
HTTPS tunnel encryption. But when trying to get Client Preauthentication working, we hit a snag, it seems that the NetScalers dont support ECC certificates, which is a pain, but something we thought we could work around by using an RSA certificate on the client
to performed the pre-authentication (as shown here https://directaccess.richardhicks.com/2016/05/10/directaccess-ip-https-preauthentication-using-citrix-netscaler/).
So we have three CA's, CA1/2 issue RSA certs and CA3 is setup to do the ECC ones, so nice separation of the chains.
So we have our Cert chain for RSA loaded into the load balancer and a new cert issued to the client from CA1... But, every time the client connects to the server (LB) we see the handshake taking place, the server sends a list of its DNs (CA1/2) (https://blogs.msdn.microsoft.com/kaushal/2015/05/27/client-certificate-authentication/)
to the client, but then the client looks in its store, picks out the ECC certificate (issued from CA3) and fails to authenticate saying no suitable certificate can be found, its like its not even looking at the RSA one at all.
So, thinking something was wrong with the way the LB was asking for client authentication, I tried deleting the ECC cert a... Read more

Read other answers

I am having trouble decrypting some files even though I have the correct EFS certificate/private keys installed.
My original system crashed (hard drive failure). Thankfully, I had backed-up my files and the original EFS certificate that was used to encypt the files. I re-installed Windows 7 (clean install) on the new hard drive, and restored the encrypted files from
a backup. I then imported the original EFS certificate that was used to encrypt the files, and used certmgr to verify that the certificate was properly installed in Personal/Certificates. I also verified that the EFS certificate has the correct private key.
Additionally, I verified that the Thumbprint of the EFS certificate matches the "Certificate thumbprint" specified in file properties of the encrypted file.
So with the original EFS certificate/private key corresponding to my encrypted files installed, I attempted to decrypt the files using several methods... first just by simply un-checking the "Encrypt" option in file properties, and then by using "cipher"
in the command prompt. Every time the decryption failed with an error message "Access is denied." I thought it might have been a file permissions problem, so I tried to seize ownership of the file to get the correct read/write/modify privileges... same problem.
Any ideas?

A:Windows re-installed / original EFS certificate+private key imported, thumbprint matches / EFS Access denied on decrypt

I had thought that it might be a problem with the new User account not matching the original User the Certificate was issued to...  but then what would be the point of backing up the Certificate + key, if it couldn't be used to decrypt the files? Would
be totally pointless!
But I figured it out. The problem was that the EFS Certificate + key I installed were not marked as Trusted. So even though they were installed in the "Personal" directory where EFS certificates are kept, Windows refused to use them. (You can see this if
you examine the certificate properties in certmgr.) The solution is to install another copy of the certificate in "Trusted Root Certificates," then uninstall/reinstall the Certificate + key in "Personal." Then, voila, I was able to decrypt all my old encrypted
files using EFS!!
I am not in a domain environment, it's a standalone machine. I don't know if this procedure works for domain environments... I suspect that EFS might require that the User account match the User the certificate was issued to on a domain. However, this was
not a problem on my machine. It turns out that (on a standalone machine, at least) the encrypted file is not tied to a specific User account--it only cares about the Certificates that are installed.

Read other 4 answers

seems that "Microsoft Certificate Trust List Publisher" Certificate Valid:01.27.2017-04.12.2018 is missing following EKU
'Microsoft Trust List Signing' ( ?!
          [ oid]
          [ name] Microsoft Trust List Signing
     [ value] 10
Note: KB2328240 is imho not permanently fixing this problem ! (*curing only some derivated symptoms)

Read other answers

I based my actions amongst others on this source:https://www.adlerweb.info/blog/tag/procurve I am using openssl to create my own CA for my company's switches etc.  and i am having trouble with a number of recent procure switches. I created a root CA (2048 bits rsa, sha1 so as not to make things too difficult)I created a custom TA called "netwerk", uploaded the CA root certificate, so far so good Created a CSR:crypto pki create-csr certificate-name sw1113  ta-profile netwerk usage web subject common-name sw1113 key-size 2048 the rest of the info and extensions like CDP alternative names etc. is being pushed while signing in openssl via an extensions file resulting CSR processed with openssl (keeping it a simple 2048/sha1 leafcertificate) Signed this CSR with the afore mentioned and uploaded root certificate: Resulting PEM pasted to install the generated leaf certificate sw1113(config)# crypto pki install-signed-certificatePaste the certificate here and enter:-----BEGIN CERTIFICATE-----MIIEGjCCAwKgAwIBAgIBATANBgkqhkiG9w0BAQUFADCBlzELMAkGA1UEBhMCTkwx.....ASCspazUcVeCueTvvVLr4UPObJB1/IBHKHCwkN7nuaTHuiDD8tQzOlWaxry4MsEFGXojuFv1YtFAtlgLlwxvqndi2NysNyqcnZR1o4l0qe4eSrIlUrCyrvyieK5rdQ==-----END CERTIFICATE-----Certificate being installed is not signed by the TA certificate. So, what is going on? The leaf cert is definitely signed by the root cert that was uploaded as TA cert.    Would really appreciat... Read more

Read other answers

Option "Find Certificate" is missed when I try to edit certificate on another computer using mmc.Could you please let me know how can I solve that? I'm sure I'm admin on the remote machine.

Read other answers

In windows Vista I could access Certificate Manager by clicking Start button, and typing certmgr.msc in search box. How do I get to Certificate Manager in Windows 8? Searching for certmgr.msc doesn't work.


A:How to open Certificate Manager

Hello Dickey,

You could also press the + R keys to open the Run dialog, type certmgr.msc, and press Enter to open it. It's located in your "C:\Windows\System32" folder.

Hope this helps,

Read other 3 answers


I am trying to understand my operating system and have come across the Certificate Manager and I do not recognise most of the servers I have permanent connection to or Authorities. I suffer from spam and because of my work, I occasionally pick up a virus. Normally, I would wipe my hard-drive but I would prefer to hunt down the problems - I just lack the knowledge.

Are certificates a source of spam and is it safe to delete them all and only load those that I need, please?

A:I would like to know more about certificates and certificate manager

What is it that you are seeing? What does Certificate Manager contain? Show us.
My initial response is. DO NOT DELETE anything.

Read other 6 answers

I have some items like this in FIREFOX (TURKTRUST ELEKTRONIK SERTIFIKA HIZMET Saqlayicisi)
and it has numerous listings like this can they be removed safely,thanks

A:items in certificate manager

They should be left alone as they come standard with FF.

Read other 3 answers

Tech Support Guy System Info Utility version
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz, Intel64 Family 6 Model 37 Stepping 2
Processor Count: 4
RAM: 6007 Mb
Graphics Card: Intel(R) Graphics Media Accelerator HD, -1316 Mb
Hard Drives: C: 919 GB (768 GB Free);
Motherboard: Gateway, H57M01
Antivirus: Microsoft Security Essentials, Enabled and Updatedn I try to get on internet, there is a message that

When I try to get on the internet, there is a message that the certificate for the site is missing or invalid and I should shut down. This site (Tech guy forums) is ,strangely, the only one that will activate when I try to use the web from my saved sites.
When I try to access my Thunderbird email the message comes up: couldn't load XPCOM.
Not surprised. since the internet is inaccessible.
I am using another machine running Windows 10 so I can see incoming messages.
Have tried going to tools>internet options>advanced>security>and unchecked all the "certificates" options, but that did not work.

Read other answers

Have a Packard Bell Notebook ,EasyNote MZ36 running Vista Home.
The Computer came pre-installed with all software including ROXIO CENTRAL CREATOR.

Computer has been running fine , no problems until I installed CC Cleaner and ran it.

When I tried to start the ROXIO Programme I keep getting the message Certificate File Missing or Corrupted please reinstall.

I believe that there is a copy of all the software on another partition on the Computer. Though for preference I dont want to do a complete re-install , just to reinstall the corrupted Programme.

Can some kind person advise me what steps I should take to do this please.

How do I access the hidden partition? Is it possible to install only the corrupted programme?

As a matter of interest I have tried doing System restore going back a couple of months but it did not fix the problem .

Thank you for any advice that you can provide


A:Certificate File Missing or Corrupted

Sorry to say, but if the partition is a OEM manufacturers recovery partition, then no you can't access it to reinstall an individual program. The function of a recovery partition is to restore everything back to factory defaults.

Read other 2 answers


I recently had a very nasty infection (zlob dns changer) Which was apparently a rootkit. I don't actually know what a rootkit is but I was made to understand that it is very bad.

I got a lot of help, first from stang777 and then from Dachew. Dachew helped me for four days until we (he) finally eliminated the rootkit.
I can not sing the praises of him and this forum enough.

I am getting an error message on boot which I assume is related to the former rootkit. It says:

validation failed for c\windows\system 32\ vsinit.dll. you are probably missing a necessary root certificate.

Other than getting the message my computer seems to be working normally.

I would greatly appreciate any advice on what it means and what to do about it.

I hope I posted this in the right place, I am still learning how to use this forum.

A:root certificate missing error

This file is a component of ZoneAlarm Firewall. Try uninstalling and reinstalling ZA.

Let me know if this fixes it.


Read other 17 answers

Not sure this is the correct forum, but I haven't had much luck asking these kinds of questions in other forums, so...
We have a user who just got a new computer. He used email encryption on his old machine, so we wanted to export the certificate from the old machine to the new machine. The problem is, we can't find the certificate on the old machine.
I had the employee log on to the old machine and then I opened certificates.msc and attempted to drill down to Certificates - Current User > Personal > Certificates, but the Certificates folder does not exist. So I went in to Outlook and tested
his ability to send and receive encrypted emails, and it does work. I went into the Outlook Trust Center > Email Security > Settings and selected the Choose button to select a certificate, and I see a valid certificate listed there. I also looked
through other certificate stores and did not find the email certificate. So if email encryption is working on his old machine, why can't I see the certificate in certificates.msc? Is there a way to reveal that certificate and get it exported so that I
can import it to the new machine?
Thanks in advance for any help that you can offer!

Read other answers

Following numerous failed attempts by McAfee's engineers to install my new virus protection subscription, they told me there was a Windows Certificate error and that I would have to contact my laptop's manufacturers, HP/Compaq.My HP/Compaq warranty ran out in 2016, but having Googled about this problem, I checked in the Certificate Manager section to see whether the certificate had perhaps expired as well ...... but no sign of any certificate at all, despite several years of problem-free McAfee and other installations.My computer is obviously unprotected at the moment and this is worrying.  Has the Certificate disappeared along with the warranty?  Can I reinstate my Certificate?  Ultimately, I need my laptop to allow McAfee to install.Or could the Certificate error be something completely different?Thanks for any help.

Read other answers

Hi n thanks for checking this post,

It had been months since id been on the internet so yesterday I updated and i ran S&D, AVG, AdAware, and updated Zone alarm from 5.5 to 6 and all was well.

I left my machine running over night, it was still running in the morning but soon after turned itself off.

Now when i turn it on it give me the same error message box, twice. ( after booting into windows )

" Validation failed for C:\WINDOWS\SYSTEM32\VSINIT.dll. Your probably missing nessassary root certificate. "

I didnt go any further and fist tryed rebooting it a couple of times

sometimes the menue apears transparent and sometimes it seems ok and lauches programms no prob.

but each time the same message comes up twice.

i also tryed system restore to an earler time, same message.

also tryed doing a repair from the Windows XP Pro cd, then i get this message

" file \i386\vgaoem.fon could not be loaded. The error code is 32768 set up cant continue. "

Now this gets me worried and after a search i get different solusions, some alien to me and some conflicting; the only one i tried is

at RUN typing sfc/scannow but windows cant find it.

Now im lost and concerned, any help much apreachated. thanks in advance

A:Validation failed, missing root certificate ?? Help!

The commnad is sfc /scannow . notice the space after c and before / . .

Read other 3 answers

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:14:53 AM, on 7/19/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\IE New Window Maximizer\iemaximizer.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Microsoft Location Finder\LocationFinder.exe
C:\Program Files\iPod\bin\iPodService.exe
C:... Read more

A:Zone Alarms Missing Necessary Root Certificate

Read other 13 answers

I purchased Roxio Creator 2009 installed it and then uninstalled it. I re-installed my Roxio Record Now 10 Music Lab following the uninstallation and now receive the following error message whenever I attempt to open the program: Roxio Easy Media Creator, the certificate file is missing or has be corrupted. Please reinstall it.

Reinstalling has not made a difference. Can you offer me any suggestions for fixing the problem? Your time is appreciated. Thank you, [email protected]

Read other answers

I'm using Remote Desktop on a Windows 7 workstation (x64 pro) to access another machine on a local network that is not part of a domain.  When I connect I get a certificate popup (expected), but when I attempt to install the certificate on the machine;
it fails with the error MSTSC.EXE cannot find TSP1_X64.dll.  I've verified that this dll file is missing.  In fact, I've looked at several other Windows 7 machines in other environments and all of them are missing this dll (all are x64 machines). 
This is one of those times that I wish the dll database were still available.

Any thoughts?

Read other answers

Hello there guys,

I installed ZoneAlarm free firewall yesterday and during the install i recieved an error message saying "Validation failed for Vsmon.exe, this is probably due to a missing root certificate." ZoneAlarm seemed to install fine but it slowed my firefox and IE browsers down to crawling speed, so i uninstalled it, and they seem to be working fine again. I had a look around on the net for info on this 'missing root certificate' and found out that Vsmon.exe is a ZoneAlarm file and that a missing root certificate on my pc can be caused by Malicious software.

So to sum up my issue and question is that 'if' i have missing root certificates on my pc (and it wasnt related to ZoneAlarm) does it mean that i have some sort of hidden malware or even a rootkit that could be causing damage under my nose?

I have Super Antispyware, Avast Antivirus free edition, MalwareBytes Anti-malware, Spy-Bot S&D and windows defender and firewall. Have run scans with all of these (not in safe mode) with nothing malicious showing up. I'ts probly nothing just want to make sure if possible, and here is my Hijack log cheers.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:21:01 PM, on 19/05/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Program Files\Windows Defender\MSAS... Read more

Read other answers

We are experiencing this problem with a few workstations and laptops and what we are currently doing is exporting the CA certificate from a workstation that has it in its store and importing it. The problem with this is that the certificate will eventually
expire and we will have to re import a new one again. I don't believe it is a group policy issue because other computers in the same OU are not missing the certificate.

Cany anyone shed light on how to troubleshoot this or how to force (if possible) the workstation to download the CA certificate?

Thank you in advance.

Read other answers


I have XP Pro x64 and I'm about to upgrade to Win7 Pro 64 bit.

I am a little worried about what will happen to one security certificate that I use daily to access a particular website. I have Windows Easy Transfer installed. If I use this, will the certificate be copied accross properly into Win7 ?

The certificate in question appears in the Certificates snap-in in MMC under
Certificates - Current User - Personal



you can export your certificates. Do that before upgrading. Then import it after.

Read other 9 answers

hi sir/madam! each time i open my internet explorer a message displays and says my certicate should be install and gives me an option if i should proceed,.but everytime i install the certificate,again its just repeating (view certificate,install certificate)=( what should i do?pls help me=)


Since the response to your post has been underwhelming, you might try posting on one of the software forums.

Read other 2 answers

Hello ,I need ACER CE certificate (Acer TMP273) . To whom can I contact?

Read other answers

apparently i need a certficate to get online w/aol. how and where do i acheive this

Read other answers

whenever the windows start up an error appear and say
" an attempt to add the root certificate to all known browsers on your computer failed "
The pc work well but i want to get rid of that error

A:something about certificate

What browsers are you using?
All browsers download a set of safe and expired certifications, which are used for secure communications over a web browser -- whenever you see https in the url window, for example, the browser is using certificates to ensure that the data is encrypted and, more importantly, that the web site you are logged in with is in fact the genuine article and not an imposter.
This error will crop up sometimes when new software is installed, or you are hosting web pages with a self-signed certificate. Have you installed any new software lately? Also, any info on your OS and computer would be useful, along with any other error messages you may be getting.

Read other 4 answers

Hello ,I need ACER CE certificate (Acer TMP273) . To whom can I contact?

Read other answers

We've shipped an server (Proliant DL380 G7) and a switch (Procurve j9836A) to China.But the Chinese government/customs are holding up are whole container shipment, because of missing CCC certificates. Where can I obtain these certificates. I've called with HPE on serveral numbers. Spoke with several people. With each call I've given the start information like my name etc. This took 6 times 5 minutes. But still getting no where. All tech support and phone support is outsourced to India or something. Sadly they only ask information over and over again, but are not helping me with the actual request. Please, can someonetell me how to obtain CCC certificates for my HP hardware. It can't be true that HPE itself cannot help me with this. It are theire products. 

Read other answers

We have a DLink wireless router and added a N300 usb adapter to a computer in the basement. Loaded all drivers etc. it is recognized but when attempting to connect wirelessly it connects briefly and then disconnects.

It says - unable to find certificate to log you on to the network- dlink

We were asked for the password which we correctly entered. It does have weak signal strength. That computer runs windows xp.

Not sure what to do from here

A:certificate ?

Does it work at all w/o encryption?

Please attach a screen shot of the Networks page of the Xirrus Wi-Fi Inspector.

Read other 1 answers