Can't run dowloaded files(msi or exe) from Microsoft. Error is Certificate signature invalid (doesn't match MS). Also can't validate signatures/certificates on downloaded files from Adobe, Java, etc. I noticed that several MS Updates (completed successfully) had issues updating the certificates (error found in KB-update-log shown below).
OS is WinXP Home SP3 with latest MS security&OS updates, Java 6 update37(jre), IE8 (220.127.116.1101.18702).
There are a few other symptoms/issues noted:
1. Also found is that MS Updates are creating multiple OS-related files (e.g. ialmdd.dll, ialmdd(2).dll, ialmdd(3).dll or hkcmd(2).exe, hkcmd(3).exe, and many others). Here's an entry from the App Event log for HHCTRL.dll on boot only (there are six Error Events as well as 6 files as described above).
The description for Event ID ( 1904 ) in Source ( HHCTRL ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: about:blank, http://go.microsoft.com/fwlink?LinkID=45840.If I'm not mistaken this is a catalogue error? and means they're not properly registered? When I go to the above-referenced link (45840), it's redirected to a KB896358 which describes a windows security update that subsequently had multiple problems that were fixed by later revision updates and doesn't seem to be related.
2. Another error on boot is the Application Manager Service in system Events showsThe Application Management service terminated with the following error: The specified module could not be found. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Note that both event errors occur on a clean boot (Msconfig with nothing loaded/ran except service running) as well.
3. Tried updating JRE (Java), but no luck. Error isSyntax error in manifest or policy file "C:\Documents and Settings\no_name\My Documents\downloads\IEAddons\jre-7u9-windows-i586.exe" on line 8. The file runs fine on other PCs.
4) On one of the downloads I attempted, MS required to validate Genuine Windows (had years ago, but this PC hadn't been used for a couple of years). Tried downloading the latest Windows Genuine validation tool and tried running the ActiveX version directly off MS site, however Windows says the the signature doesn't match a valid certificate. Have the old version Windows Genuine validation installed, but when I run it, error is:
- - - - - - - - - - - - -
Application popup: GenuineCheck.exe - Entry Point Not Found : The procedure entry point GetComputoUninitialize could not be located in the dynamic link library KERNEL32.dll.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
5) Several of the KB logs show an error that the ROOT certificates could not be updated, however each update ended as successful.
6)Ran Windows File Protection Scan SFC -results fine
Here's what has been validate thus far:
1) Returned to MS Update site, but no updates found
2) No malware, no virus, etc (Validated by Symantec Norton and MBAM and manually verified/checked user(s) path directories.
3) Nothing showing up with HJT (hijackthis) either.
There are no other apparent negative symptoms except IE 8 having issues viewing all sites properly, which I'll post in a different thread once this certificate issue is resolved. I've search MS site(s) trying to find a MS file specific to root certificates to download and run, but can't (not sure I'll be able to run it if the signature doesn't match lol).
I'm thinking about writing a script to delete all the 'duplicate' OS files leaving the latest revision and reregistering all of them...Thoughts? I'd unistall some updates to try and force a cumulative update with BITS, but I'm not sure that will work without some type of cleanup tool. Searched for a cleanup tool, but only found one for Windows 7/8.
I'd appreciate any ideas to help resolve these issues.