Over 1 million tech questions and answers.

EMET detected that the SSL certificate for *.facebook.com is not trusted

Q: EMET detected that the SSL certificate for *.facebook.com is not trusted

http://myonlinesecurity.co.uk/emet-4-0-emet-detected-ssl-certificate-facebook-com-trusted/

Facebook buttons and links are embedded in so many websites, that any user who has EMET 4.0 installed will get the alert when generally surfing the web. This alert does not mean in this particular case that there is a problem with Facebook or any hijack or divert is taking place. All this “EMET detected that the SSL certificate for *.facebook.com is not trusted” means is that the rule checking the certificates inside EMET has expired on 30 December 2013. It does not mean in this particular case that the Facebook SSL certificate has expired or that anybody is intercepting or diverting your secure SSL connection to Facebook.

There are 3 cures to stop the EMET detected that the SSL certificate for *.facebook.com is not trusted alert message:

By far Cure 1 is the safest to do. All that option 2 does is delay the warning until the new date you set.

1.Update EMET 4.0 to 4.1 by going to Microsoft EMET 4.1 download and download and install EMET 4.1. This installs over the top of EMET 4.0 and retains any specific rules and settings that you have configured yourself.

2.Open up EMET 4.0, click on TRUST ( CONFIGURE CERTIFICATE TRUST) –> Click on the Pinning Rules Tab –> Under Rule Expiration for FacebookCA you can change the rule to expire next month or later and the message will go away. You can set it to when the YahooCA rule will expire on 3/13/2014 if you like and you won’t receive the message any longer. ( this just delays the warning for a further short period of time)

3.Open up EMET 4.0, click on TRUST ( CONFIGURE CERTIFICATE TRUST) –> Click on the Protected Websites Tab –> Uncheck the box beside Facebook. ( this option is potentially unsafe, because it will remove the checking to see if your “secure” connection to Facebook has been tampered with )

Read other answers
RELEVANCY SCORE 200
Preferred Solution: EMET detected that the SSL certificate for *.facebook.com is not trusted

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 81.6

Hi,
I am trying to install CA root certificate on Windows 7, IE 9.
Encounter error: "Untrusted Certificate".  "This certificate cannot be verified up to a trusted certificate authority."
I have tried to install the certificate to Trusted Root Certificate Authorities->local computer and import was successful. BUT on IE->Internet Options->Certificate->Trusted Root Certificate Authorities, I am unable to find this root CA on
the list.
On mmc->Certificates->Trusted Root Certificate Authorities->certificates, I am able to view this root CA.
I then restarted the IE and view the ssl site again but failed too, "Untrusted Certificate".
Anyone, any idea ?
Regards,
Eye Gee

A:Unable to Install Root CA Certificate - Certificate cannot be verified up to a trusted certificate authority.

May the following workarounds work for you:
Workaround 1:
Modify the Windows settings to allow the Update Root Certificate feature to update the root certificates automatically. For details, see the following Microsoft TechNet article:
Certificate Support and Resulting Internet Communication in Windows Server 2008
http://technet.microsoft.com/en-us/library/cc771121(WS.10).aspx
Workaround 2?
If the Update Root Certificate feature cannot automatically update the root certificates, you may contact the website vender to see if there is a hotfix can fix the issue.

Read other 8 answers
RELEVANCY SCORE 75.2

(I'm cross posting this from
https://answers.microsoft.com/en-us/ie/forum/ie11-windows_7/a-certificate-chain-processed-but-terminated-in-a/e6895c7e-c6b9-4a96-a5f5-a4dcd40b7b45 as directed by the forum moderator there.)
Hello,

First, I have reviewed the other posts with similar questions and noted that I can install the certificate into root certificates and most likely this problem will go away, some specifics:

1) When a client reported this error using a pop.secureserver.net on an outlook 2003 client, I just figured it was godaddy or the REALLY old Outlook client, but nonetheless, I went in to troubleshoot it and was convinced it was godaddy, but when I tried
to start my Outlook 2016 client on my Windows 10 computer on their network, I got the same error.  Two notes are important: 1) I use godaddy as well and 2) I used the same computer at a different client just yesterday without a single error message.
2) They use POP 995 w/ SSL & SMTP 465 w/ SSL to pop.secureserver.net & smtpout.secureserver.net repsectively
3) I called the company that manages their firewall and was told that everything was fine, but was sent a certificate from the firewall that might fix the problem.
4) The firewall company tells me they use a fortinet firewall

I have some questions that I'm hoping one of the experts here can answer for me:

- What in a firewall setup can cause a certificate to fail as listed in the subject?
- Is there a port or configuration change they... Read more

Read other answers
RELEVANCY SCORE 65.6

Very annoying problem.
XP Pro with IE6 on desktop computer.
Trusted Sites contains: https://pilotweb.nas.faa.gov

When ever I go to the following site I get a Security Alert that states that the certificate was issued by a company that I have not chosen to trust...would I like to proceed, or install the certificate. Normally, I just click "YES" to proceed and I get my data. Sometimes I'll re-install the certificate as if it will do any good for next time...but it doesn't.

Here's the URL:

https://pilotweb.nas.faa.gov/geo/fl...Z&icao_id=RDU&icao_id=RWI&radius=10&options=A

Any ideas of what I can do so that this site is always trusted and I no longer get the Security Alert?

Thanks so much,
Tom
 

A:IE6 trusted certificate

Read other 7 answers
RELEVANCY SCORE 64.8

My work involves several sites we use on a daily basis. One of these sites (via Chrome) has started coming back as "unsecure", and no fixes I've done are working. I've modified the settings (and then) turned off the warnings, I've added -ignore-certification-error to the shortcut properties, and I've added the site to the list of Trusted Sites. I still keep getting the damn "not secure" warning.

The PCs in question are Dell Optiplex 7040. Does anyone have any other ideas? I've looked at doing Copy To File for the site certification, but the one in question is grayed out.
 

Read other answers
RELEVANCY SCORE 64.8

Hi All ,
How to fix this Vulnerability ?

The following certificate was at the top of the certificate
chain sent by the remote host, but it is signed by an unknown
certificate authority :


|-Subject : CN=
|-Issuer  : CN=NACH-HYPERV


https://www.itu.int/rec/T-REC-X.509/en
https://en.wikipedia.org/wiki/X.509

Read other answers
RELEVANCY SCORE 64.8

Am running XP Pro SP3 on Dell Latitude D820.  All Windows XP & IE updates have been installed.
Suddenly, I am seeing (Topic) appearing when I attempt to login to some websites, even one for software downloaded from this site (Sun Trust...).
Most disturbing is that the login to one of my investment companies is now showing the "..not trusted" pop-up.  This is one of the largest investment companies in the U.S., so I doubt that there is a problem with their certificate, while I could easily believe that my local newspaper (another "not trusted") might not be up to date.
I have Norton installed and updated and have run Hitman, Emsisoft, AdwCleaner & ComboFix without incident but also without the desired result.
Any ideas?

A:Security Certificate not Trusted

Try installing this update http://www.microsoft.com/en-us/download/details.aspx?id=42092
 
It updates the list of root certificates on your PC (theses tell your PC how to recognise certificates that it should trust). The update is not installed automatically with other critical or important updates, so if you've only done those, you may have missed this one.

Read other 7 answers
RELEVANCY SCORE 64.8

I cannot get EMET 5.2 certificate pinning to work in Windows 10.
When I test it by pinning an invalid Root CA certificate to the website, EMET does not block website access in Windows 10 like it does in Windows 8.1
Has EMET certificate pinning been disabled in Windows 10 ? If so, has this functionality been superceded by a better technique ?

I have searched high and low, and this is the only anecdotal reference to this I can find:
"Windows 10 does not use certificate pinning, means someone can easily apply a man-in-the-middle-attack for each Microsoft cloud-access for example"
http://www.z80.eu/blog/index.php?entry=entry150804-200247

..... Para Dox

Read other answers
RELEVANCY SCORE 64

I use the Chrome Browser for my internet surfing. When I attempt to log on to the Federal Government's website "ebenefits.gov", I get a warning that states "The sites security certificate is not trusted". I tell it to proceed anyway and it goes to the Veterans Administration website where I can check the status of a disability claim I filed last year. With Firefox, you could tell the browser to accept the certificate once, and it never asked presented the error again. With Chrome, you have to do it every time you go to the website. This is a primary government site for the VA and DOD and I trust it. Any idea how I can get Chrome to accept its certificate as valid? Thanks for reading and sharing.
 

A:This site's security certificate is not trusted

Make sure you have the correct date and time on your computer.
 

Read other 2 answers
RELEVANCY SCORE 64

Hi,
I am in the process to deploy EMET in my organization. My goal is to set all the settings using GPO.
As it is indicated in the User Guide 5.2, I already copied the EMET.admx and EMET.adml in the domain server and I managed to set the settings. I run gpupdate /force in the client and it works flawless.
But now, I wanted to configure the Certification Trust as well using the CertTrust.xml included in the EMET package.
how could I manage this globally in the domain?  I dont see any option in the GPO... and unfortunately, we dont use SCCM.
Many thanks in advance.
Jose

Read other answers
RELEVANCY SCORE 63.6

Seems Comodo has inserted itself into my list of Trusted Publishers in IE8 and my "Remove" button is disabled. I don't appreciate this one bit, especially since one of the certs has expired. Is this normal or cause for concern? How can I get my Remove option back? Any suggestions much appreciated. Thanks a lot!

A:Comodo Certificate Signing in IE8 Trusted Publishers

i don't see this as an issue but you are right that there should be an opt-out.You could use DelDomains - but. as it states, it will remove everythingFirstly download: DelDomains.infLocate DelDomains.inf right-click and select: InstallNote: you will not see any on-screen action ...This will remove all entries in the Trusted, Restricted,and Enhanced Security Configuration Zones.Note once you do this, any previous restricted zone hacks (spywareblaster, ie-spyad, etc) will need to be reapplied.

Read other 3 answers
RELEVANCY SCORE 62

When I go through the MMC, I add the snap in for certificate. When I go through the import process for Trusted People, in Win 7 you can click "show physical stores" and "local computer" becomes an option for "trusted people".
I don't see this in Win 8. I see registry, enterprise, and group policy. Which do I use, or how do I get "local computer" to show up?

Read other answers
RELEVANCY SCORE 58

I am receiving the following error (see below) when trying to open a large excel workbook. The workbook is located on an internal site and my coworkers have had trouble opening this workbook for a few days now. I was able to open without issue until today
and now I am receiving the same error. What does this error mean and how can I fix this without losing the workbook?

EMET 5.5
EMET detected caller mitigation and will close the application:

EXCEL.EXE

Read other answers
RELEVANCY SCORE 58

Hello.. I recently downloaded EMET and I am really happy with the possibilities. For some unknown reason ,though, whenever I open google chrome (chrome.exe) EMET decides to kill the process with the following notification : 'EMET detected SimExecFlow mitigation
and will close the application: chrome.exe'.. There are no details of this issue so I had no other choice but to come here.. I've also tracked down the problem and found out that disabling 'Export Address Table Access Filtering' and 'ROP Simulate Execution
Flow (SimExecFlow)' fixes the problem. Could anyone shed some light?
Thank you for your time, Happy new year

Read other answers
RELEVANCY SCORE 58

Hi,
I encountered the following whenever I launched my IE11. Did not encounter this in EMET 5.2
Anyone also encountered the same?
EMET version 5.5.5871.31892
EMET detected ASR mitigation in iexplore.exe

ASR check failed:
  Application : C:\Program Files\Internet Explorer\iexplore.exe
  User Name : 
  Session ID : 1
  PID : 0x213C (8508)
  TID : 0x2F3C (12092)
  Module : VBScript.dll

Read other answers
RELEVANCY SCORE 57.2

So I have been getting on FB with no issues until today. None of the browsers I use will let me on do to certificate errors:

Chrome - Your connection is not private NET::ERR_CERT_INVALID

Firefox - Secure connection failed. SEC_ERR_BAD_SIGNATURE

IE and Microsoft Edge - Security certificate presented by this website is not secure.

I was on yesterday with no issues. Turned the computer on today and have encountered the issues stated above. And yes, the date and time on my computer are correct.

Any helpful thoughts would be appreciated.

Thank you.

Shari

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 10 Home, 64 bit
Processor: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz, Intel64 Family 6 Model 15 Stepping 13
Processor Count: 2
RAM: 4095 Mb
Graphics Card: ATI Radeon HD 3450, 256 Mb
Hard Drives: C: Total - 953316 MB, Free - 905848 MB;
Motherboard: MICRO-STAR INTERNATIONAL CO.,LTD, G31TM-P21 (MS-7529)
Antivirus: Windows Defender, Disabled
 

Read other answers
RELEVANCY SCORE 56.4

OS Version:  Windows 7 Enterprise x 86
IE Version:  IE 11
When a file is being downloaded from an internal website, an error prompt occurs, "certificate is not trusted".
However, it occurs, file can be downloaded properly.
If it can be controlled by Group Policy, please advise
Best solution: an error prompt can be suppressed

Read other answers
RELEVANCY SCORE 56.4

I have been having an intermittent problem with Facebook for the past month or two, and I can't figure out how to correct it. Sometimes when I go to Facebook I get an SSL error saying that I have actually reached a server identifying itself as a248.e.akamai.net. It gives me the option to proceed anyway, but when I do I get an "Invalid URL" message. I have found other questions about Akamai and about Facebook here, but I haven't found this particular problem addressed. I usually use Google Chrome as my browser, but if the problem appears on Chrome and I go to IE9, the problem appears there also. My operating system is Windows Vista Home Basic 32 bit. Any help would be gratefully appreciated.

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft® Windows Vista™ Home Basic, Service Pack 2, 32 bit
Processor: AMD Athlon(tm) Processor LE-1640, x64 Family 15 Model 127 Stepping 2
Processor Count: 1
RAM: 1917 Mb
Graphics Card: NVIDIA GeForce 6150SE nForce 430, 128 Mb
Hard Drives: C: Total - 142385 MB, Free - 50647 MB;
Motherboard: eMachines, MCP61PM-GM
Antivirus: Trend Micro Titanium Maximum Security 2012, Updated: Yes, On-Demand Scanner: Enabled
 

A:Solved: Facebook Certificate Error

Read other 16 answers
RELEVANCY SCORE 56.4

Windows 7 Ultimate x64
I installed IE 11 from Windows Update.  The machine had IE 8 before.
When I opened IE 11 for the first time I got the screen that asks if you want to use the defaults.  I left that checked and went to the next page where I got:

I clicked on View Certificate and got:


The machine had just been booted. 
I also noticed that the TrustedInstaller.exe was using a lot of CPU time.
Any idea why IE 11 Setup is using a Facebook certificate?

http://www.saberman.com

Read other answers
RELEVANCY SCORE 56.4

We are experiencing this problem with a few workstations and laptops and what we are currently doing is exporting the CA certificate from a workstation that has it in its store and importing it. The problem with this is that the certificate will eventually
expire and we will have to re import a new one again. I don't believe it is a group policy issue because other computers in the same OU are not missing the certificate.

Cany anyone shed light on how to troubleshoot this or how to force (if possible) the workstation to download the CA certificate?

Thank you in advance.
Jose

Read other answers
RELEVANCY SCORE 56.4

Hello,
I've a very nasty issue with root CA certificate that's disappearing from the trusted root authorities store. I'll shortly describe the environment: 
- Two tier PKI infrastructure with a offline, standalone root CA and a domain joined Enterprise issuing CA (both W2012R2); root CA certificate is published in AD
- There's a parent and child domain. Issuing CA lives in parent domain (2012R2 domain&forest level)
- Employees are working on a 2012R2 RDS&Citrix XenApp 76 server in the child domain
- In the parent domain several servers are using a SSL certificate signed by the company owned issuing CA; it's a SAN certificate
- The root CA's certificate is in the Trusted Root Certification Authorities store of all member servers in parent & child domain (so, that's also valid for the 2012R2 RDS servers)
The issue is that the certificate of the root CA that's in the trusted CA store of all RDS servers is being deleted on a regular base (at least once a day on each RDS-server). I enabled CAPI2 logging, but I couldn't find anything that makes sense. However
I'm able to reproduce this issue in very simple way: if I start IE11 on a RDS-server and browse to the IP-adres or NETBIOS-name of a webserver that host a site that's using a certificate from our PKI (so, it's clear that the URL isn't matching the names entered
in the SAN certificate) and I click on 'Continue to this website (not recommended)', the root CA's certificate is being removed from trusted... Read more

Read other answers
RELEVANCY SCORE 56

Hello all,
I would need to run a specific script in EMET (using local CLI) when it detects some "attack" or security problem.
This script should receive the filename and path of the file, executable or process who "launched the attack".
Please, do you know if this can be done? Through Active Directory scheduled tasks I can schedule a task triggered by a specific event however, I cannot tell the script the filename affected in this way, if I'm not wrong.
Any help?

Thanks!
Mat.

Read other answers
RELEVANCY SCORE 56

I get this message and cannot open OneNote with the Office 265 update.

Read other answers
RELEVANCY SCORE 56

Hello,
I have recently Installed EMET 5.5 on my Windows 7 Professional Operating Sysytem...
I have followed the guide, and imported the 'Popular software.xml'.
So this morning, Outlook was no longer able to open, reporting that: 
EMET detected Caller mitigation and will close the application: OUTLOOK.EXE

Caller check failed:
  Application : C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
  User Name : DOMAIN\User
  Session ID : 1
  PID : 0x2A14 (10772)
  TID : 0x2AA0 (10912)
  API Name : kernel32.LoadLibraryExW
  ReturnAddress : 0x7522A271
  CalledAddress : 0x76744925
  TargetAddress : 0x75225020
  StackPtr : 0x009EEA08

I have ended up unticking 'ROP Caller Check' Mitigation technology against outlook.exe to get outlook working again.
Can anyone give me some guidance with further diagnosing this? Or if this is a potential false positive?
Thankyou,
Callum.

Read other answers
RELEVANCY SCORE 56

So, I haven't had internet connection for 2-3 days, I just payed it a couple of hours ago and now when I try to connect to facebook it gives me this "facebook invalid security certificate". I tried using google chrome and that's what I got. After trying with mozilla and IE I got something compleately different. It lets me type my login info and when I press login, it re-directs me to the login page again...please help me, I have no idea what to do :/
 

A:Facebook invalid security certificate problem

Read other 11 answers
RELEVANCY SCORE 55.6

Hi There,
i have a problem to add updates on the http://catalog.update.microsoft.com site.
I can not add Updates and download them.
http://catalog.update.microsoft.com/v7/site/Search.aspx?q=ms15-124
I get the notice from EMET: EMET detected ASR mitigation in IEXPLORE.EXE
Component: Microsoft Script Runtime
When i configure EMET to Audit only instead of Stop on exploit everything works great.
How can i add a URL to a whitelist, or how can i Stop this issue ?
Thanks
Lukas
EMET Version is 5.5

Read other answers
RELEVANCY SCORE 55.2

Hi all
more details here
BBC News - Black Friday iTunes infected credit malware alert

I hate "i-CHOONES" anyway so I'm not bothered but users check carefully. Probably even worse if you use a smart phone app to download music too.

Cheers
jimbo

A:Itunes Gift certificate scam and facebook phishing

I agree with you completely. As for Farcebook, i will never understand why you would want 500 friends who in reality
you do not know anyway.
I know of an instance where someone wanted to have more info on a farcebook member and he applied to become a friend. The agreement came within less than 10 seconds! Go and figure that one out.

Read other 1 answers
RELEVANCY SCORE 54.8

I hope I posted this in the correct forum. I think this may have something to do with a program I recently installed - IObit Advanced System Care. I ran a "Deep Care" and when I restarted and tried getting onto facebook, it gave me 3 security certificate errors. now I'm down to one error and facebook still looks all messed up. I used the "Rescue Center" and undid changes but that didn't help.

attached image to show the error and what facebook looks like.

Any help would be greatly appreciated!
 

Read other answers
RELEVANCY SCORE 54.8

Hello,
I have ATT.NET. I use google chrome as my browser. For the last few weeks, when I go to ATT.NET and go to my mail,,,, a red screen appears and says " security sertificate not trusted, dont proceed. I proceed anyway to get to my email,, but I cant tell if im secure or not. Happens on some other sites as well. Someone said to check my time and date on my computer. I is up to date. Can anyone help me ???
Thanks
 

A:" security certificate not trusted "

Read other 16 answers
RELEVANCY SCORE 54.8

Hello 

After Install Windows 7 and windows 10 on  trusted  root certificate  i get minimal Certificate i need all Certificate 

for example ( verisign, comodo)

i work offline ,  no Wsus Server 

Read other answers
RELEVANCY SCORE 53.6

Hello,

I am trying to resolve an issue where multiple client computers in the organisation are using an internally deployed Root CA certificate (before my time and no longer required) to sign the end entity certificate for external websites, google.co.uk
for example. All SSL sites appeared to be affected by this.




However this is not the case as sub domains of sites with issues show the correct cert chain, the below is for mail.google.com




Removing or untrusting this root ca cert breaks access to these sites.

I have reset root certs in various ways, removed machines from the domain, applied no GPOs, manually updated CRL and pulled down updated certs with rootsupd.exe.
It always attempts to use this rouge CA cert to sign the websites cert.

Any assistance would be much appreciated.

Read other answers
RELEVANCY SCORE 52.4

When Enhanced Protected Mode of IE10 is enabled, column of Running EMET become blank.

It is which about whether this is a problem only of a display, or whether actually not effective?

Such a phenomenon did not occur in version 2.1.

A:EMET GUI reports not Running EMET in IE10 when Enhanced Protected Mode enabled

Hi
It appears to be a problem of display.
Thanks,
EMET Team

Read other 2 answers
RELEVANCY SCORE 52.4

I have Windows 7 SP1 Home premium 32 bit
press close the program is turned on, press retry the program returns to the same window.

Looked services. EMET service depends on shadow copying service and Windows event log, I have them included!
Maybe what is wrong with Internet Explorer or should a certain port be enabled? telemetry?

Read other answers
RELEVANCY SCORE 52.4

?To help make the transition to Windows 10, we will publish a detailed guide for administrators currently using EMET.?
Where? Schedule?
https://blogs.technet.microsoft.com/srd/2016/11/03/beyond-emet
https://insights.sei.cmu.edu/cert/2016/11/windows-10-cannot-protect-insecure-applications-like-emet-can.html
https://social.technet.microsoft.com/Forums/security/en-US/c9bb0ec5-847d-412c-96ca-7d609290653a/windows-10-cannot-protect-applications-like-emet-can?forum=emet

Read other answers
RELEVANCY SCORE 52

this is more of a bug report. So ...

On Windows 7 x64UAC disabledEMET 5.5 installed

If a user(user account privileges) launches the EMET GUI they will receive the following error and the GUI will crash.
<image removed because account wasnt verified ?> 
Here is the output from the error message
See the end of this message for details on invoking
just-in-time (JIT) debugging instead of this dialog box.

************** Exception Text **************
System.UnauthorizedAccessException: Access to the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Custom' is denied.
at Microsoft.Win32.RegistryKey.Win32Error(Int32 errorCode, String str)
at Microsoft.Win32.RegistryKey.CreateSubKeyInternal(String subkey, RegistryKeyPermissionCheck permissionCheck, Object registrySecurityObj, RegistryOptions registryOptions)
at Microsoft.Win32.RegistryKey.CreateSubKey(String subkey, RegistryKeyPermissionCheck permissionCheck)
at MitigationInterface.ShimUtil..ctor(Arch SysArch)
at MitigationInterface.ApplicationMitigations..ctor(SystemMitigations SysMits, IReportingActions Logging, ApplicationMitigationsMode mode, RegistryKey emetKey)
at GraphicalApp.MainForm.RefreshSystemAndAppMitigations()
at System.EventHandler.Invoke(Object sender, EventArgs e)
at System.Windows.Forms.Form.OnLoad(EventArgs e)
at DevExpress.XtraEditors.XtraForm.OnLoad(EventArgs e)
at System.Windows.Forms.Control.CreateControl... Read more

Read other answers
RELEVANCY SCORE 50.8

Since deploying EMET 5.2 via group policy and taking standard application default values exept for EAF on IE 11 (So IE opens in Windows 10), I have an issue with Photoshop 12.0.4.0 opening on a users Windows 7 Professional workstation.  The event log
error is:
Faulting application name: Photoshop.exe, version: 12.0.4.0, time stamp: 0x4d9d8cbc
Faulting module name: EMET.DLL, version: 5.2.0.1, time stamp: 0x5503c3e4
Exception code: 0xc0000005
Fault offset: 0x00066011
Faulting process id: 0x2154
Faulting application start time: 0x01d0df38094e67d3
Faulting application path: C:\Program Files (x86)\Adobe\Adobe Photoshop CS5\Photoshop.exe
Faulting module path: C:\Windows\AppPatch\EMET.DLL
Report Id: 4b0b4387-4b2b-11e5-a484-90b11c6babbe


What would be the first thing you would change in EMET under the group policy to take off of Photoshop.exe?  Would it be EAF, because that fixed IE 11.  Would it be something else?  There's multiple things it could be, but whats the most common
protection that may solve this so I don't spend hours updating group policy, gp refreshes and testing?

Read other answers
RELEVANCY SCORE 50.4

We are running EMET 5.5 on Windows 10 Enterprise LTSB 64-bit. Whenever we open IE or open a new tab in IE, we see the warning referenced in the title and the event listed below is logged. We have applied a slew of recommended security settings from the DISA
STIGs. I see several people complain about this, but they have worked around the issue by either adding a site to trusted sites or disabling ASR completely. Unfortunately, when I try to disable ASR, I still get the warning and I am assuming that is because
of the policy settings we have enforced. Either way, disabling a security feature is never the right answer, so I'd really like to figure out what is causing this. The default homepage is set to about:blank. Even if we change the homepage to something in Trusted
Sites, the warning still appears. Like previously mentioned, it also appears when opening a new tab, which isn't opening any page, so it seems the settings for ASR for iexplore.exe are not behaving correctly. Can anyone offer any guidance? Thanks!

Log Name:      Application

Source:        EMET

Date:          5/19/2016 4:40:43 PM

Event ID:      1

Task Category: None

Level:         Warning

Keywords:      Classic

User:          N/A

Computer:&n... Read more

Read other answers
RELEVANCY SCORE 48.8

We have a GPO called EMET Deployment and Configuration.  Inside this GPO is a computer configuration > assigned applications, EMET 5.2.  Can I just repoint this to EMET 5.5 and will clients automatically update at next GPO refresh interval?
 Or will they update at next restart?
In here is also under Administrative Templates > Windows Components > EMET there are some application configuration, default action and mitigation settings, default protections for popular software, reporting, system aslr, system dep and system sehop
GP elements defined.  Will these elements automatically be configured in EMET 5.5?  I installed EMET 5.5 on my workstation and when I click on the group policy element and click on the apps button it just doesn't seem right.  It shows a list
of the following
** devals.
APP1
APP2
APP3
APP4
APP5
APP6
APP7
Also when I refresh the main EMET 5.5 screen it doesn't show that any process is running EMET.  I'm in chrome now and that I know should be running in EMET based on "Default Protections for Popular Software" set to enabled in the group policy.

Thanks for your help!

Read other answers
RELEVANCY SCORE 48.8

We have EMET 5.2 installed and configured via Group Policy.  I'd like to upgrade the domain GPO to the latest EMET 5.5 ADMX then follow with removal and upgrade from EMET 5.2 to 5.5 on all workstations.  During the time frame where EMET 5.2 is
still running will the EMET 5.5 ADMX settings work correctly on those workstations that have not been upgraded yet?  Also, it is unclear to me if there is any need to use the 5.5 conversion tool if all of our settings are pushed via Group Policy, is there
any need to use the conversion tool in this case?
thank you

Read other answers
RELEVANCY SCORE 48.4

Any help appreciated! I think was proxy related.
 

 rogue.png   288.14KB
  0 downloads
 
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016 01
Ran by robert (administrator) on WHITEKNIGHT (22-08-2016 20:57:24)
Running from C:\Users\robert\Desktop
Loaded Profiles: robert (Available Profiles: robert & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUSTeK Computer In... Read more

Read other answers
RELEVANCY SCORE 45.2

Is there a rvkroots.exe available for download for the mentioned KB so that I can remediate a Nessus finding?
We are on a disconnected network so windows update is disabled in our network.
In the past we are able to just download rvkroots.exe and push it out to all our Win7 computers.

Read other answers
RELEVANCY SCORE 45.2

I have some Windows 7 systems which have not run Windows Updates for many years, and cannot due to regulatory reasons.   We rely upon Windows to automatically update the Trusted Root Certificate store whenever we browse to a web site/web service
that uses a certificate the system doesn't recognize. 
Sometime recently, the Trusted Root Certificate Store no longer updates automatically.  The Windows Event Log shows an error stating that the certificates cannot be downloaded from:
http : // ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
If we browse to this location manually, the cab file contains an invalid Microsoft certificate. 

This was also an issue in Sept 2018.  At that time, the certificate had expired, and Microsoft eventually updated the certificate to resolve the issue.   This time, the certificate does not appear to have expired.  Why is the certificate
invalid this time, and can Microsoft fix it again?

Thanks

Read other answers
RELEVANCY SCORE 45.2

so whats up with this error message ??
Revocation information for the security certificate for this site is not available. Do you want to proceed? [Yes] [No] [View certificate]


i know it can be unchecked in security option under advanced. but is that really safe to do ???

Thx


Steven J Einhorn

Read other answers
RELEVANCY SCORE 44.4

In Internet Explorer, when I get a certificate error, if I continue to the web site, I can then view the certificate to see what was wrong.  However, obviously it would be preferable* to see the certificate
before I make the decision to go to the site.  Is this possible?  I'm sure I could use another browser that does this, or maybe use the F12 developer tools, or write a program.   But I'm looking
for a normal-user way to do it.  I think it used to be possible in Internet Explorer, but this might have been 6.x or even earlier.  Or even
way earlier.  Yep.  I'm that old.  I believe this feature is not in Edge either...unless I'm just missing it.  But I'm using ie11 right now.
*understatement level is set to "high".

Read other answers
RELEVANCY SCORE 44.4

Hi,

Really confusing one here. Since this weekend (16/17 July) we have started getting Certificate errors on some sites and applications. This seems to be due to the structure of the URL compared to the "advertised" name IIS is presenting. I'll try
to explain.
I have a site, Website. This is in my domain, domain.com. Therefore the FQDN is website.domain.com. IIS is running and I can access this site through FQDN,NetBIOS or IP address. Good news.
I create a certificate for the server using the FQDN as the subject, I add the Netbios and IP addresses in the Subject Alternate Names and Bind this to port 443 on the server.
I browse to https://website and all is good. I browse to https://website.domain.com I get a certificate error. Checking the certificate, everything is fine, no errors, chain is trusted. open Chrome and do the same, I get that the certificate website.domain.com
is being presented by Website and may not be the site I want.
Using either URL has never been a problem until this weekend, but it seems that IE/Windows/IIS is not liking any URL that is not EXACTLY what IIS is presenting. so my questions are:-
Is anyone else finding this?
Can we issue a certificate that covers all possible DNS resolutions for a site?
How do I control WHAT IIS advertises itself as?
SO far this has affected two major systems on our network and I can see that more will arise, so any help would be appreciated.

Read other answers
RELEVANCY SCORE 44.4

Hiya

This update addresses the "Certificate Renewal Wizard Concatenates Certificate" issue in Internet Information Services (IIS) 5.0, and is discussed in Microsoft Knowledge Base (KB) Article Q325827. Download now to correct this issue for IIS 5.0

System Requirements
Supported Operating Systems: Windows 2000

Internet Information Services 5.0
Windows 2000 Professional
Windows 2000 Server
Windows 2000 Advanced Server

http://www.microsoft.com/downloads/...43-c72f-4652-b912-065ee2a83c02&DisplayLang=en

Regards

eddie
 

Read other answers