Over 1 million tech questions and answers.

PKF certificate missing after new certificate was installed

Q: PKF certificate missing after new certificate was installed

I have a problem with install multiple digital certificate (PKF format) to allow access to one website with different account ID.

Every time I installed the certificate, it is working and allow me access to the website with relevance ID. However, the installed certificate will be missing if I continue to install with another certificate. The way I install the certificate is just double click on the PKF certificate that provided by the website admin, then kept click on the next button until its finish the installation steps. All the certificates will install to "Personal" certificate store folder, but the problem is only one certificate will remain.

I ever try to import all the certificate with using windows certificate manager, is allow me to import all the certificates and able to let me access to the website with select different certificate to login with selected account ID. Anyway this method is only workable if the Internet Explorer is not close after install all the certificates, once the Internet Explorer is close, then all the certificates were gone.

The motioned problem PC is running on Windows XP SP3 with latest update. And the using internet explorer is version 8 with latest update as well.

I had try to reset the Internet Explorer to default, but is not working so, appreciate is anyone can guide me to solve this problem

Preferred Solution: PKF certificate missing after new certificate was installed

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: PKF certificate missing after new certificate was installed

Under "Content" in Internet Options, are all your certificates there? Mine are. Either your Admin. or the issuer should have your answer. Some PKFs are not compatible with all OSs or Browsers. Try downloading certificates to Firefox or Chrome and see if that works.

Read other 2 answers


I am trying to resolve an issue where multiple client computers in the organisation are using an internally deployed Root CA certificate (before my time and no longer required) to sign the end entity certificate for external websites, google.co.uk
for example. All SSL sites appeared to be affected by this.

However this is not the case as sub domains of sites with issues show the correct cert chain, the below is for mail.google.com

Removing or untrusting this root ca cert breaks access to these sites.

I have reset root certs in various ways, removed machines from the domain, applied no GPOs, manually updated CRL and pulled down updated certs with rootsupd.exe.
It always attempts to use this rouge CA cert to sign the websites cert.

Any assistance would be much appreciated.

Read other answers

I am trying to install CA root certificate on Windows 7, IE 9.
Encounter error: "Untrusted Certificate".  "This certificate cannot be verified up to a trusted certificate authority."
I have tried to install the certificate to Trusted Root Certificate Authorities->local computer and import was successful. BUT on IE->Internet Options->Certificate->Trusted Root Certificate Authorities, I am unable to find this root CA on
the list.
On mmc->Certificates->Trusted Root Certificate Authorities->certificates, I am able to view this root CA.
I then restarted the IE and view the ssl site again but failed too, "Untrusted Certificate".
Anyone, any idea ?
Eye Gee

A:Unable to Install Root CA Certificate - Certificate cannot be verified up to a trusted certificate authority.

May the following workarounds work for you:
Workaround 1:
Modify the Windows settings to allow the Update Root Certificate feature to update the root certificates automatically. For details, see the following Microsoft TechNet article:
Certificate Support and Resulting Internet Communication in Windows Server 2008
Workaround 2?
If the Update Root Certificate feature cannot automatically update the root certificates, you may contact the website vender to see if there is a hotfix can fix the issue.

Read other 8 answers

Having some fun with a windows 7 setup of DirectAccess, have it configured to use ECC certificates on the client for the IPSec authentication, which was working brilliantly, we even have it loaded up behind a Citrix Netscaler to do SSL offloading of the
HTTPS tunnel encryption. But when trying to get Client Preauthentication working, we hit a snag, it seems that the NetScalers dont support ECC certificates, which is a pain, but something we thought we could work around by using an RSA certificate on the client
to performed the pre-authentication (as shown here https://directaccess.richardhicks.com/2016/05/10/directaccess-ip-https-preauthentication-using-citrix-netscaler/).
So we have three CA's, CA1/2 issue RSA certs and CA3 is setup to do the ECC ones, so nice separation of the chains.
So we have our Cert chain for RSA loaded into the load balancer and a new cert issued to the client from CA1... But, every time the client connects to the server (LB) we see the handshake taking place, the server sends a list of its DNs (CA1/2) (https://blogs.msdn.microsoft.com/kaushal/2015/05/27/client-certificate-authentication/)
to the client, but then the client looks in its store, picks out the ECC certificate (issued from CA3) and fails to authenticate saying no suitable certificate can be found, its like its not even looking at the RSA one at all.
So, thinking something was wrong with the way the LB was asking for client authentication, I tried deleting the ECC cert a... Read more

Read other answers

Good Day

We have a problem where we encrypted files using EFS, however we can't access or decrypt these files now.

We have the certificate in the certmgr.msc but we do see that the key is missing.

I have reproduced this on another computer and was able to run certutil -repairstore -user MY "Serial Number" which worked in repairing the store and files was decryptable again.

However on the machine that encrypted the files that we need to access this is not the case as there is a popup asking for your Smart Card.

We are not using Smart Cards at all, and have had a look at the following article regarding this issue, but the hotfix didn't work: https://support.microsoft.com/en-us/kb/2955631

I have software that can remove the encryption but will require the .pfx file, which can't be exported as the certstore doesn't show that it still has this.

It is a self signed certificate generated by Windows, so I can't request a new one using the CA.

Thanks for your help in advance.

Read other answers

I based my actions amongst others on this source:https://www.adlerweb.info/blog/tag/procurve I am using openssl to create my own CA for my company's switches etc.  and i am having trouble with a number of recent procure switches. I created a root CA (2048 bits rsa, sha1 so as not to make things too difficult)I created a custom TA called "netwerk", uploaded the CA root certificate, so far so good Created a CSR:crypto pki create-csr certificate-name sw1113  ta-profile netwerk usage web subject common-name sw1113 key-size 2048 the rest of the info and extensions like CDP alternative names etc. is being pushed while signing in openssl via an extensions file resulting CSR processed with openssl (keeping it a simple 2048/sha1 leafcertificate) Signed this CSR with the afore mentioned and uploaded root certificate: Resulting PEM pasted to install the generated leaf certificate sw1113(config)# crypto pki install-signed-certificatePaste the certificate here and enter:-----BEGIN CERTIFICATE-----MIIEGjCCAwKgAwIBAgIBATANBgkqhkiG9w0BAQUFADCBlzELMAkGA1UEBhMCTkwx.....ASCspazUcVeCueTvvVLr4UPObJB1/IBHKHCwkN7nuaTHuiDD8tQzOlWaxry4MsEFGXojuFv1YtFAtlgLlwxvqndi2NysNyqcnZR1o4l0qe4eSrIlUrCyrvyieK5rdQ==-----END CERTIFICATE-----Certificate being installed is not signed by the TA certificate. So, what is going on? The leaf cert is definitely signed by the root cert that was uploaded as TA cert.    Would really appreciat... Read more

Read other answers

(I'm cross posting this from
https://answers.microsoft.com/en-us/ie/forum/ie11-windows_7/a-certificate-chain-processed-but-terminated-in-a/e6895c7e-c6b9-4a96-a5f5-a4dcd40b7b45 as directed by the forum moderator there.)

First, I have reviewed the other posts with similar questions and noted that I can install the certificate into root certificates and most likely this problem will go away, some specifics:

1) When a client reported this error using a pop.secureserver.net on an outlook 2003 client, I just figured it was godaddy or the REALLY old Outlook client, but nonetheless, I went in to troubleshoot it and was convinced it was godaddy, but when I tried
to start my Outlook 2016 client on my Windows 10 computer on their network, I got the same error.  Two notes are important: 1) I use godaddy as well and 2) I used the same computer at a different client just yesterday without a single error message.
2) They use POP 995 w/ SSL & SMTP 465 w/ SSL to pop.secureserver.net & smtpout.secureserver.net repsectively
3) I called the company that manages their firewall and was told that everything was fine, but was sent a certificate from the firewall that might fix the problem.
4) The firewall company tells me they use a fortinet firewall

I have some questions that I'm hoping one of the experts here can answer for me:

- What in a firewall setup can cause a certificate to fail as listed in the subject?
- Is there a port or configuration change they... Read more

Read other answers

Is there a rvkroots.exe available for download for the mentioned KB so that I can remediate a Nessus finding?
We are on a disconnected network so windows update is disabled in our network.
In the past we are able to just download rvkroots.exe and push it out to all our Win7 computers.

Read other answers

so whats up with this error message ??
Revocation information for the security certificate for this site is not available. Do you want to proceed? [Yes] [No] [View certificate]

i know it can be unchecked in security option under advanced. but is that really safe to do ???


Steven J Einhorn

Read other answers

I have some Windows 7 systems which have not run Windows Updates for many years, and cannot due to regulatory reasons.   We rely upon Windows to automatically update the Trusted Root Certificate store whenever we browse to a web site/web service
that uses a certificate the system doesn't recognize. 
Sometime recently, the Trusted Root Certificate Store no longer updates automatically.  The Windows Event Log shows an error stating that the certificates cannot be downloaded from:
http : // ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
If we browse to this location manually, the cab file contains an invalid Microsoft certificate. 

This was also an issue in Sept 2018.  At that time, the certificate had expired, and Microsoft eventually updated the certificate to resolve the issue.   This time, the certificate does not appear to have expired.  Why is the certificate
invalid this time, and can Microsoft fix it again?


Read other answers


Really confusing one here. Since this weekend (16/17 July) we have started getting Certificate errors on some sites and applications. This seems to be due to the structure of the URL compared to the "advertised" name IIS is presenting. I'll try
to explain.
I have a site, Website. This is in my domain, domain.com. Therefore the FQDN is website.domain.com. IIS is running and I can access this site through FQDN,NetBIOS or IP address. Good news.
I create a certificate for the server using the FQDN as the subject, I add the Netbios and IP addresses in the Subject Alternate Names and Bind this to port 443 on the server.
I browse to https://website and all is good. I browse to https://website.domain.com I get a certificate error. Checking the certificate, everything is fine, no errors, chain is trusted. open Chrome and do the same, I get that the certificate website.domain.com
is being presented by Website and may not be the site I want.
Using either URL has never been a problem until this weekend, but it seems that IE/Windows/IIS is not liking any URL that is not EXACTLY what IIS is presenting. so my questions are:-
Is anyone else finding this?
Can we issue a certificate that covers all possible DNS resolutions for a site?
How do I control WHAT IIS advertises itself as?
SO far this has affected two major systems on our network and I can see that more will arise, so any help would be appreciated.

Read other answers

I have Windows 7 client and Cisco router is configured as Certificate Authority. Cisco calls it IOS CA. How can I do certificate enrollment of Windows 7 client with my Cisco IOS Certificate Authority?

Read other answers

Can someone walk me through the steps of having Advanced Threat Analytics (ATA) request a new certificate from Active Directory Certificate Services (ADCS)?  I'm not familiar with either product so I will need detailed steps please.  At a high-level
i'm guessing
1. ATA issues a certificate request
2. I send the request to ADCS
3. ADCS issues a cert for that request
4. Install new cert in ATA
I'll need detailed command line statements.  My ATA Center server is named ATASERVER.DOMAIN.ORG, and I but the URL is configured as ATACENTER.DOMAIN.ORG in ATA.  Can the cert handle both the servername and the URL?
Thank you in advance!

Read other answers


This update addresses the "Certificate Renewal Wizard Concatenates Certificate" issue in Internet Information Services (IIS) 5.0, and is discussed in Microsoft Knowledge Base (KB) Article Q325827. Download now to correct this issue for IIS 5.0

System Requirements
Supported Operating Systems: Windows 2000

Internet Information Services 5.0
Windows 2000 Professional
Windows 2000 Server
Windows 2000 Advanced Server




Read other answers

In Internet Explorer, when I get a certificate error, if I continue to the web site, I can then view the certificate to see what was wrong.  However, obviously it would be preferable* to see the certificate
before I make the decision to go to the site.  Is this possible?  I'm sure I could use another browser that does this, or maybe use the F12 developer tools, or write a program.   But I'm looking
for a normal-user way to do it.  I think it used to be possible in Internet Explorer, but this might have been 6.x or even earlier.  Or even
way earlier.  Yep.  I'm that old.  I believe this feature is not in Edge either...unless I'm just missing it.  But I'm using ie11 right now.
*understatement level is set to "high".

Read other answers

seems that "Microsoft Certificate Trust List Publisher" Certificate Valid:01.27.2017-04.12.2018 is missing following EKU
'Microsoft Trust List Signing' ( ?!
          [ oid]
          [ name] Microsoft Trust List Signing
     [ value] 10
Note: KB2328240 is imho not permanently fixing this problem ! (*curing only some derivated symptoms)

Read other answers

Option "Find Certificate" is missed when I try to edit certificate on another computer using mmc.Could you please let me know how can I solve that? I'm sure I'm admin on the remote machine.

Read other answers

Hi All,

I think I've just done a dumb thing! I never learn, don't make decisions first thing in the morning, before I've finished my coffee and have had a chance to boot up.

I had a pop up telling me that there was an unverified certificate from the revocation list, do you wish to proceed? There was a choice of install certificate or not to proceed, no prizes for anyone guessing what I did!

My question is, how can I now find this certificate and actually see what it's about and get rid of it if it's suspect. The prompt was accompanied by the Java Logo down on my task bar so I assumed it was ok. Big mistake, I know, as Java has been on the usual suspects list for years now so I'm feeling pretty stupid at the moment. Is it possible to find it by date of installation, I've found by searching already that all the certificate have expiry dates but nothing to show when they were installed. Can anyone help me out?


A:How do I Find the last Certificate installed

These ?

Read other 3 answers

I have IIS 7.5 running in Win7 Pro.

When I install a certificate I first create a certificate request. The certificate does install fine. After a while the certificate doesn't work any more. I try to install the certificate again and it says it doesn't match the certificate request. What is deleting the certificate request and the friendly name of the certificate so the certificate doesn't work?

Could it be CCleaner that is deleting the info?
In what file/registry is that information stored. Maybe it's a bat file I created to delete temp files?
If I knew where it was stored I could possibly figure it out.



Read other answers

I have an MCSA, MCP, etc... but got out of Network Management World in 2004, so I'm a little "rusty" in the Tech world now.  That being stated...
I just purchased a new PC from a PC manufacturer.  I will call them...Well, Inc.  I found and purchased one with a Windows 7 Professional 64 bit Operating System installed.  When I opened the box, I found that the Certificate of Authenticity
/ Product Key label is NOT on the CPU anywhere.  The COA/Product Key is NOT on the Restore and Recovery CD, either.  Which brings me to two questions:
1. Is it NOT a legal requirement for Dell to install a COA/Product Key on the outside of the box for Windows 7 Professional (or at least on their "Recovery CD"?
2. If I find myself having to reinstall the Operating System (i.e., hard drive failure, motherboard failure, super-bad virus), won't I need the Windows 7 Professional Product Key to reinstall the OS and validate as genuine? 
From experience, getting help from Well, Inc. is like pulling teeth with a pair of tweezers with blinders on.  It will take several thousand e-mails and several months for them to correct what I see as a problem.  Based on that fact, it might be
easier to ship the unit back and request another one... one that has a COA/Product Key label attached to the box, or at least on the "Recovery/Restore CD."  Am I missing something here?  Can you elaborate/educate this "rusty" ... Read more

Read other answers

Need help to overcome the issue, not able to use installed Third-party certificate for IPsec authentication in Windows 7 Embedded SP1.
Whatever Third party certificate Imported in certificate manager(Certificate store in Third-Party Root Certification Authorities) on the windows 7 system is disappears to select the certificate(CA name) from certification authority that require for IPsec
we tried to install and choose the third party certificate from IIS(Internet Information Service) and Certificate manager, but both scenarios certificate disappears.
Can you please help us to overcome issue.

Read other answers

Tech Support Guy System Info Utility version
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz, Intel64 Family 6 Model 37 Stepping 2
Processor Count: 4
RAM: 6007 Mb
Graphics Card: Intel(R) Graphics Media Accelerator HD, -1316 Mb
Hard Drives: C: 919 GB (768 GB Free);
Motherboard: Gateway, H57M01
Antivirus: Microsoft Security Essentials, Enabled and Updatedn I try to get on internet, there is a message that

When I try to get on the internet, there is a message that the certificate for the site is missing or invalid and I should shut down. This site (Tech guy forums) is ,strangely, the only one that will activate when I try to use the web from my saved sites.
When I try to access my Thunderbird email the message comes up: couldn't load XPCOM.
Not surprised. since the internet is inaccessible.
I am using another machine running Windows 10 so I can see incoming messages.
Have tried going to tools>internet options>advanced>security>and unchecked all the "certificates" options, but that did not work.

Read other answers

Have a Packard Bell Notebook ,EasyNote MZ36 running Vista Home.
The Computer came pre-installed with all software including ROXIO CENTRAL CREATOR.

Computer has been running fine , no problems until I installed CC Cleaner and ran it.

When I tried to start the ROXIO Programme I keep getting the message Certificate File Missing or Corrupted please reinstall.

I believe that there is a copy of all the software on another partition on the Computer. Though for preference I dont want to do a complete re-install , just to reinstall the corrupted Programme.

Can some kind person advise me what steps I should take to do this please.

How do I access the hidden partition? Is it possible to install only the corrupted programme?

As a matter of interest I have tried doing System restore going back a couple of months but it did not fix the problem .

Thank you for any advice that you can provide


A:Certificate File Missing or Corrupted

Sorry to say, but if the partition is a OEM manufacturers recovery partition, then no you can't access it to reinstall an individual program. The function of a recovery partition is to restore everything back to factory defaults.

Read other 2 answers

Following numerous failed attempts by McAfee's engineers to install my new virus protection subscription, they told me there was a Windows Certificate error and that I would have to contact my laptop's manufacturers, HP/Compaq.My HP/Compaq warranty ran out in 2016, but having Googled about this problem, I checked in the Certificate Manager section to see whether the certificate had perhaps expired as well ...... but no sign of any certificate at all, despite several years of problem-free McAfee and other installations.My computer is obviously unprotected at the moment and this is worrying.  Has the Certificate disappeared along with the warranty?  Can I reinstate my Certificate?  Ultimately, I need my laptop to allow McAfee to install.Or could the Certificate error be something completely different?Thanks for any help.

Read other answers

Not sure this is the correct forum, but I haven't had much luck asking these kinds of questions in other forums, so...
We have a user who just got a new computer. He used email encryption on his old machine, so we wanted to export the certificate from the old machine to the new machine. The problem is, we can't find the certificate on the old machine.
I had the employee log on to the old machine and then I opened certificates.msc and attempted to drill down to Certificates - Current User > Personal > Certificates, but the Certificates folder does not exist. So I went in to Outlook and tested
his ability to send and receive encrypted emails, and it does work. I went into the Outlook Trust Center > Email Security > Settings and selected the Choose button to select a certificate, and I see a valid certificate listed there. I also looked
through other certificate stores and did not find the email certificate. So if email encryption is working on his old machine, why can't I see the certificate in certificates.msc? Is there a way to reveal that certificate and get it exported so that I
can import it to the new machine?
Thanks in advance for any help that you can offer!

Read other answers


I recently had a very nasty infection (zlob dns changer) Which was apparently a rootkit. I don't actually know what a rootkit is but I was made to understand that it is very bad.

I got a lot of help, first from stang777 and then from Dachew. Dachew helped me for four days until we (he) finally eliminated the rootkit.
I can not sing the praises of him and this forum enough.

I am getting an error message on boot which I assume is related to the former rootkit. It says:

validation failed for c\windows\system 32\ vsinit.dll. you are probably missing a necessary root certificate.

Other than getting the message my computer seems to be working normally.

I would greatly appreciate any advice on what it means and what to do about it.

I hope I posted this in the right place, I am still learning how to use this forum.

A:root certificate missing error

This file is a component of ZoneAlarm Firewall. Try uninstalling and reinstalling ZA.

Let me know if this fixes it.


Read other 17 answers

I purchased Roxio Creator 2009 installed it and then uninstalled it. I re-installed my Roxio Record Now 10 Music Lab following the uninstallation and now receive the following error message whenever I attempt to open the program: Roxio Easy Media Creator, the certificate file is missing or has be corrupted. Please reinstall it.

Reinstalling has not made a difference. Can you offer me any suggestions for fixing the problem? Your time is appreciated. Thank you, [email protected]

Read other answers

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:14:53 AM, on 7/19/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\IE New Window Maximizer\iemaximizer.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Microsoft Location Finder\LocationFinder.exe
C:\Program Files\iPod\bin\iPodService.exe
C:... Read more

A:Zone Alarms Missing Necessary Root Certificate

Read other 13 answers

Hi n thanks for checking this post,

It had been months since id been on the internet so yesterday I updated and i ran S&D, AVG, AdAware, and updated Zone alarm from 5.5 to 6 and all was well.

I left my machine running over night, it was still running in the morning but soon after turned itself off.

Now when i turn it on it give me the same error message box, twice. ( after booting into windows )

" Validation failed for C:\WINDOWS\SYSTEM32\VSINIT.dll. Your probably missing nessassary root certificate. "

I didnt go any further and fist tryed rebooting it a couple of times

sometimes the menue apears transparent and sometimes it seems ok and lauches programms no prob.

but each time the same message comes up twice.

i also tryed system restore to an earler time, same message.

also tryed doing a repair from the Windows XP Pro cd, then i get this message

" file \i386\vgaoem.fon could not be loaded. The error code is 32768 set up cant continue. "

Now this gets me worried and after a search i get different solusions, some alien to me and some conflicting; the only one i tried is

at RUN typing sfc/scannow but windows cant find it.

Now im lost and concerned, any help much apreachated. thanks in advance

A:Validation failed, missing root certificate ?? Help!

The commnad is sfc /scannow . notice the space after c and before / . .

Read other 3 answers

Hi all
Basically, I have a Kyocera printer driver that has an expired certificate. I can get the certificate installed with no issues. When trying to deploy the driver to the machines through a script, it asks to be trusted again. This happens every time the driver
is removed and reinstalled on the same machine. It does not like the certificate that is in the store for the driver.

Is there a way to accept the certificate so it does not prompt repeatedly? 

Read other answers

I'm using Remote Desktop on a Windows 7 workstation (x64 pro) to access another machine on a local network that is not part of a domain.  When I connect I get a certificate popup (expected), but when I attempt to install the certificate on the machine;
it fails with the error MSTSC.EXE cannot find TSP1_X64.dll.  I've verified that this dll file is missing.  In fact, I've looked at several other Windows 7 machines in other environments and all of them are missing this dll (all are x64 machines). 
This is one of those times that I wish the dll database were still available.

Any thoughts?

Read other answers

Hello there guys,

I installed ZoneAlarm free firewall yesterday and during the install i recieved an error message saying "Validation failed for Vsmon.exe, this is probably due to a missing root certificate." ZoneAlarm seemed to install fine but it slowed my firefox and IE browsers down to crawling speed, so i uninstalled it, and they seem to be working fine again. I had a look around on the net for info on this 'missing root certificate' and found out that Vsmon.exe is a ZoneAlarm file and that a missing root certificate on my pc can be caused by Malicious software.

So to sum up my issue and question is that 'if' i have missing root certificates on my pc (and it wasnt related to ZoneAlarm) does it mean that i have some sort of hidden malware or even a rootkit that could be causing damage under my nose?

I have Super Antispyware, Avast Antivirus free edition, MalwareBytes Anti-malware, Spy-Bot S&D and windows defender and firewall. Have run scans with all of these (not in safe mode) with nothing malicious showing up. I'ts probly nothing just want to make sure if possible, and here is my Hijack log cheers.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:21:01 PM, on 19/05/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Program Files\Windows Defender\MSAS... Read more

Read other answers

I am having trouble decrypting some files even though I have the correct EFS certificate/private keys installed.
My original system crashed (hard drive failure). Thankfully, I had backed-up my files and the original EFS certificate that was used to encypt the files. I re-installed Windows 7 (clean install) on the new hard drive, and restored the encrypted files from
a backup. I then imported the original EFS certificate that was used to encrypt the files, and used certmgr to verify that the certificate was properly installed in Personal/Certificates. I also verified that the EFS certificate has the correct private key.
Additionally, I verified that the Thumbprint of the EFS certificate matches the "Certificate thumbprint" specified in file properties of the encrypted file.
So with the original EFS certificate/private key corresponding to my encrypted files installed, I attempted to decrypt the files using several methods... first just by simply un-checking the "Encrypt" option in file properties, and then by using "cipher"
in the command prompt. Every time the decryption failed with an error message "Access is denied." I thought it might have been a file permissions problem, so I tried to seize ownership of the file to get the correct read/write/modify privileges... same problem.
Any ideas?

A:Windows re-installed / original EFS certificate+private key imported, thumbprint matches / EFS Access denied on decrypt

I had thought that it might be a problem with the new User account not matching the original User the Certificate was issued to...  but then what would be the point of backing up the Certificate + key, if it couldn't be used to decrypt the files? Would
be totally pointless!
But I figured it out. The problem was that the EFS Certificate + key I installed were not marked as Trusted. So even though they were installed in the "Personal" directory where EFS certificates are kept, Windows refused to use them. (You can see this if
you examine the certificate properties in certmgr.) The solution is to install another copy of the certificate in "Trusted Root Certificates," then uninstall/reinstall the Certificate + key in "Personal." Then, voila, I was able to decrypt all my old encrypted
files using EFS!!
I am not in a domain environment, it's a standalone machine. I don't know if this procedure works for domain environments... I suspect that EFS might require that the User account match the User the certificate was issued to on a domain. However, this was
not a problem on my machine. It turns out that (on a standalone machine, at least) the encrypted file is not tied to a specific User account--it only cares about the Certificates that are installed.

Read other 4 answers

We are experiencing this problem with a few workstations and laptops and what we are currently doing is exporting the CA certificate from a workstation that has it in its store and importing it. The problem with this is that the certificate will eventually
expire and we will have to re import a new one again. I don't believe it is a group policy issue because other computers in the same OU are not missing the certificate.

Cany anyone shed light on how to troubleshoot this or how to force (if possible) the workstation to download the CA certificate?

Thank you in advance.

Read other answers

I am getting a SSL Certificate not trusted has self-signed- signed SSL Certificate. Also the virus pretty much does what ever it wants. If anyone good tell me what I need to do to take care of this problem I would be truly grateful. Thanks !!!


You can post your problem here Malware Removal Assistance

Please read the following before doing so

Preparation Guide Before Requesting Malware Removal Help



Read other 1 answers

I hope I'm in the right place. I am trying to create an SSL Certificate for OpenLP so that I can connect a remote android device to the app, and it is all gibberish to me. I downloaded the app, cant open it, downloaded PeaZip to open a .tar file, it extracts it, but then I am completely lost. I've gone on forums, and either they are not addressing the problem I am having, or they are explaining to someone who has the slightest clue what any of this means. I'm not sure where I am supposed to extract to, or what to do after, or how I create an openssl.cnf file. It has become very, very frustrating.

Read other answers

We've shipped an server (Proliant DL380 G7) and a switch (Procurve j9836A) to China.But the Chinese government/customs are holding up are whole container shipment, because of missing CCC certificates. Where can I obtain these certificates. I've called with HPE on serveral numbers. Spoke with several people. With each call I've given the start information like my name etc. This took 6 times 5 minutes. But still getting no where. All tech support and phone support is outsourced to India or something. Sadly they only ask information over and over again, but are not helping me with the actual request. Please, can someonetell me how to obtain CCC certificates for my HP hardware. It can't be true that HPE itself cannot help me with this. It are theire products. 

Read other answers


My dad owns a small business website and he's being told that he should get an ssl certificate. I'm supposed to be in charge of these things for him, but my knowledge in this area is hardly better than his, and even after reading guides I'm really confused by it all.

The website has zero user submitted data - no e-commerce, no log ins, not even a contact form. He's being told that come July Google will start warning people that the website is not secure. Will they really do this across the board or just on the pages where it's necessary? I know having https is supposed to boost Google rankings which would be good but is it really worth the hassle?

If I do go ahead I don't know how to go about it. The website is created with Webeden and the domain name host is 123-reg. I see there are options to get a free certificate but I don't know where or how I would install it and I doubt I have the right level of access. It looks like the most straightforward option is through 123-reg. I assume they would install it automatically but I'm not sure if something has to go through Webeden as well? 123-reg charge 30 a year after the first year - it could be worse, but for a small business any cheaper options would be appreciated!

Sorry for the long post and thanks in advance for any advice

Read other answers

Hello ,I need ACER CE certificate (Acer TMP273) . To whom can I contact?

Read other answers

Can you help. I was rung yesterday by someone who said they were in charge of my pc ssl certificate. They asked me to verify my computer number, so they told me what it was and it was my number. They went on to say that my computer had been reporting errors to them. They thought that it could be my PC ssl certificate had expired. Having had a number of computers over the years I have never heard of this. Can you verify that each computer should have its own ssl cerficate. And if they do what is my best solution.

Read other answers

My problem is with my android Galaxy S7 Mobley phone so I might be in the wrong place to even receive any help. If I am please forgive me for my mistake. If I am in the right place I would be truly grateful for any advice anyone can give me. Thanks So Much For Your Time & Help !!!!

Read other answers

We have a DLink wireless router and added a N300 usb adapter to a computer in the basement. Loaded all drivers etc. it is recognized but when attempting to connect wirelessly it connects briefly and then disconnects.

It says - unable to find certificate to log you on to the network- dlink

We were asked for the password which we correctly entered. It does have weak signal strength. That computer runs windows xp.

Not sure what to do from here

A:certificate ?

Does it work at all w/o encryption?

Please attach a screen shot of the Networks page of the Xirrus Wi-Fi Inspector.

Read other 1 answers

i am using windows xp 2000, i keep getting pop up about a security certificate, when i change settings to disable certificates and security alerts they still keep popping up. unable to even download lavasoft what to do. when i toldsystem to put all certificates in a store now i cannot even access my yahoo.com, i tried to restore system to earlier time and that didnot work either


Read other 16 answers

How do I fix a certificate error on zone.msn.games that says the certificate has ben issued for a different website's address?

Read other answers

whenever the windows start up an error appear and say
" an attempt to add the root certificate to all known browsers on your computer failed "
The pc work well but i want to get rid of that error

A:something about certificate

What browsers are you using?
All browsers download a set of safe and expired certifications, which are used for secure communications over a web browser -- whenever you see https in the url window, for example, the browser is using certificates to ensure that the data is encrypted and, more importantly, that the web site you are logged in with is in fact the genuine article and not an imposter.
This error will crop up sometimes when new software is installed, or you are hosting web pages with a self-signed certificate. Have you installed any new software lately? Also, any info on your OS and computer would be useful, along with any other error messages you may be getting.

Read other 4 answers

I'm trying to use ATA with a certificate.
I installed ATA Center silently without any certificate details so it generated a self-signed certificate for me. I've now had a certificate generated by a CA but I can't get it to work.
I had it created with Server Authentication, and the fully-qualified CN of the server.
When I right-click the .crt file as stated in the ATA install instructions, it says it's not valid. If I open MMC > Certificates (Local Computer), then do Import, select the file, install them to the place "Automatically determined by the wizard",
then after some time it says "The import was successful." This imports it into (Local Computer) > Other People > Certificates.
If I check the Console, the certificate now appears in the dropdown but it has "[Not supported]" next to it. Is there some other config I need in my certificate request?

Read other answers