[SOLVED] Windows 8.1 - 0x80096002 error

Synth · Jun 12, 2015

The last time my installation managed to update itself is February now and that was a .NET update so hard to see why its stop working.

I've run both SFC and SFCFix, neither of which found anything wrong. Windows update log says this...

Code:

2015-06-12 07:42:55:684  844 174 IdleTmr Incremented idle timer priority operation counter to 1
2015-06-12 07:43:00:934  844 174 AU Triggering AU detection through DetectNow API
2015-06-12 07:43:00:934  844 174 AU Triggering Online detection (interactive)
2015-06-12 07:43:00:934  844 174 AU Adding timer: 
2015-06-12 07:43:00:934  844 174 AU     Timer: 31DA7559-FE27-4810-8FF6-987195B1FD98, Expires 2015-06-12 12:43:00, not idle-only, not network-only
2015-06-12 07:43:00:934  844 77c AU #############
2015-06-12 07:43:00:934  844 77c AU ## START ##  AU: Search for updates
2015-06-12 07:43:00:934  844 77c AU #########
2015-06-12 07:43:00:934  844 77c SLS Retrieving SLS response from server...
2015-06-12 07:43:00:934  844 77c SLS Making request with URL [URL]https://sls.update.microsoft.com/SLS/{9482F4B4-E343-43B6-B170-9A65BC822C77}/x64/6.3.9600.0/0?CH=522&L=en-US&P=&PT=0x30&WUA=7.9.9600.17238[/URL]
2015-06-12 07:43:01:278  844 77c Misc Validating signature for C:\WINDOWS\SoftwareDistribution\SLS\9482F4B4-E343-43B6-B170-9A65BC822C77\sls.cab with dwProvFlags 0x00000080:
2015-06-12 07:43:01:278  844 77c Misc FATAL: Error: 0x80096002 when verifying trust for C:\WINDOWS\SoftwareDistribution\SLS\9482F4B4-E343-43B6-B170-9A65BC822C77\sls.cab
2015-06-12 07:43:01:278  844 77c Misc WARNING: Digital Signatures on file C:\WINDOWS\SoftwareDistribution\SLS\9482F4B4-E343-43B6-B170-9A65BC822C77\sls.cab are not trusted: Error 0x80096002
2015-06-12 07:43:01:278  844 77c SLS FATAL: Quorum Signing Check failed: 0x80096002
2015-06-12 07:43:01:278  844 77c EP FATAL: EP: CSLSEndpointProvider::GetWUClientData - failed to get SLS data, error = 0x80096002
2015-06-12 07:43:01:278  844 77c EP FATAL: EP: CSLSEndpointProvider::GetEndpointFromSLS - Failed to get client data, error = 0x80096002
2015-06-12 07:43:01:278  844 77c EP FATAL: Failed to obtain 9482F4B4-E343-43B6-B170-9A65BC822C77 redir SecondaryServiceAuth URL, error = 0x80096002
2015-06-12 07:43:01:278  844 77c Agent WARNING: Failed to obtain the authorization cab URL for service 117cab2d-82b1-4b5a-a08c-4d62dbee7782, hr=0
2015-06-12 07:43:01:278  844 77c Agent FATAL: Caller Service Recovery failed to opt in to service 117cab2d-82b1-4b5a-a08c-4d62dbee7782, hr=0X80096002

etc..

One thing I did note is that cab file it references doesn't exist but maybe that's a temporary file created when update is started? If not, I guess that's my problem, but no clue what I should do to restore the certificate(s). I have tried some fixes I've found elsewhere but most seemed to be related to WSUS which I'm not using. I don't have a restore point that goes back far enough either.

Any help/pointers greatly appreciated.

BrianDrab · Jun 17, 2015

Hi and welcome to Sysnative. Sorry for the delay. If you still need assistance, please do the following.

Step#1 - DISM /RestoreHealth Scan
Warning: this fix is specific to the user in this thread. No one else should follow these instructions as it may cause more harm than good. If you are after assistance, please start a thread of your own.

Right-click on the Start

button and select Command Prompt (Admin)
When command prompt opens, Copy (Ctrl+C) and Paste (Right-click > Paste) the following command into it, then press Enter
Dism /Online /Cleanup-Image /RestoreHealth
Once it finishes, copy and paste the following into the command-prompt window and press Enter. If prompted to overwrite the existing file go ahead.
copy %windir%\logs\cbs\cbs.log "%userprofile%\Desktop\cbs.txt"
Once this has completed please go to your Desktop and you will find CBS.txt => Please zip/upload to this thread.
Please Note:: if the file is too big (over 7MB) to upload to your next post, please upload via a service such as Dropbox or One Drive or SendSpace and just provide the link.

Synth · Jun 18, 2015

Yes I still need help! Log file is attached.

I had run dism before actually, although this time it reported repairing corruption (no change in windows update behavior though).

BrianDrab · Jun 18, 2015

Thank you. I know you have done this previously but I would like a current log. Please do the following.

SFC Scan
1. Right-click on the Start

button and select Command Prompt (Admin)
2. When command prompt opens, Copy (Ctrl+C) and Paste (Right-click > Paste) the following command into it, then press Enter
sfc /scannow

3. Once it finishes, copy and paste the following into the command-prompt window and press Enter.
copy %windir%\logs\cbs\cbs.log "%userprofile%\Desktop\cbs.txt"

4. Once this has completed please go to your Desktop and you will find CBS.txt => Please upload CBS.txt to this thread

Please Note:: if the file is too big to upload to your next post please upload via a service such as Dropbox or One Drive or SendSpace and just provide the link.

Synth · Jun 18, 2015

Ok, heres the cbs.log with the current results of sfc /scannow

BrianDrab · Jun 18, 2015

When you go to Windows Update I assume you see a bunch of updates that need to install. Can you provide me the name of one of the updates (KB???????).

Thank you.

Synth · Jun 18, 2015

As things stand, I get the error as soon as I check for updates. As you can see from the windows update log I posted, it doesn't get very far. This is a screenshot of the last windows updates that were installed.

I've been through that list but nothing struck me as being particularly relevant to this.

BrianDrab · Jun 18, 2015

Thank you for the info. Please reset Windows Update following the link below. If you already did anything I suggest please let me know. Thanks.

https://support.microsoft.com/en-us/kb/971058

Synth · Jun 18, 2015

I'd already tried it but ran it again. It always claims its fixed something but still the same error.

BrianDrab · Jun 18, 2015

Thanks. Please do the following.

Gather Registry Info
1. Right-click on the Start

button and select Command Prompt (Admin)
2. When command prompt opens, Copy (Ctrl+C) and Paste (Right-click > Paste) the following command into it, then press Enter
reg query HKLM\SOFTWARE\Microsoft\Cryptography /S >1 | notepad 1

3. Notepad will open with a bunch of test. Please copy/paste this into your next post.

Synth · Jun 18, 2015

Here we go...

Code:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography
    MachineGuid    REG_SZ    56efc17c-c2ad-440b-8804-4cfb69f5266e
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\Cache
    (Default)    REG_DWORD    0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\Current
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\Readers
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\SmartCards
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\SmartCards\Identity Device (Microsoft Generic Profile)
    Crypto Provider    REG_SZ    Microsoft Base Smart Card Crypto Provider
    80000001    REG_SZ    C:\Windows\System32\msclmd.dll
    Smart Card Key Storage Provider    REG_SZ    Microsoft Smart Card Key Storage Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Calais\SmartCards\Identity Device (NIST SP 800-73 [PIV])
    Crypto Provider    REG_SZ    Microsoft Base Smart Card Crypto Provider
    80000001    REG_SZ    C:\Windows\System32\msclmd.dll
    Smart Card Key Storage Provider    REG_SZ    Microsoft Smart Card Key Storage Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\CatalogDB
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\CatDBTempFiles
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Cryptographic Provider v1.0
    Image Path    REG_SZ    %SystemRoot%\system32\rsaenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Base DSS and Diffie-Hellman Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\dssenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0xd
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Base DSS Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\dssenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x3
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Base Smart Card Crypto Provider
    Image Path    REG_SZ    C:\Windows\System32\basecsp.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x1
    AllowPrivateExchangeKeyImport    REG_DWORD    0x0
    AllowPrivateSignatureKeyImport    REG_DWORD    0x0
    DefaultPrivateKeyLenBits    REG_DWORD    0x800
    RequireOnCardPrivateKeyGen    REG_DWORD    0x0
    TransactionTimeoutMilliseconds    REG_DWORD    0x5dc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft DH SChannel Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\dssenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x12
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Enhanced Cryptographic Provider v1.0
    Image Path    REG_SZ    %SystemRoot%\system32\rsaenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\dssenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0xd
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Enhanced RSA and AES Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\rsaenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x18
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft RSA SChannel Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\rsaenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0xc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\Microsoft Strong Cryptographic Provider
    Image Path    REG_SZ    %SystemRoot%\system32\rsaenh.dll
    SigInFile    REG_DWORD    0x0
    Type    REG_DWORD    0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types\Type 001
    TypeName    REG_SZ    RSA Full (Signature and Key Exchange)
    Name    REG_SZ    Microsoft Strong Cryptographic Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types\Type 003
    TypeName    REG_SZ    DSS Signature
    Name    REG_SZ    Microsoft Base DSS Cryptographic Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types\Type 012
    TypeName    REG_SZ    RSA SChannel
    Name    REG_SZ    Microsoft RSA SChannel Cryptographic Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types\Type 013
    TypeName    REG_SZ    DSS Signature with Diffie-Hellman Key Exchange
    Name    REG_SZ    Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types\Type 018
    TypeName    REG_SZ    Diffie-Hellman SChannel
    Name    REG_SZ    Microsoft DH SChannel Cryptographic Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider Types\Type 024
    TypeName    REG_SZ    RSA Full and AES
    Name    REG_SZ    Microsoft Enhanced RSA and AES Cryptographic Provider
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\DRM_RNG
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllCreateCertificateChainEngine
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllCreateCertificateChainEngine\Config
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllCreateCertificateChainEngine\Config\Default
    WeakMd5ThirdPartyFlags    REG_DWORD    0x88900000
    WeakMd5ThirdPartySha256Allow    REG_MULTI_SZ    01A8F438E1A14A904BA530942BEDBD94708CA654B8DF3C4585F17B60DA6690D1\08421A0182C854C1F4266C95FC8302E217A14C7797FE41F2A87CA6B2734C43F1D\01AD335187A1DC540738FB2EA82B7366678C2EEDCDAE75FEADD6ECD89779CB983\04B480E8EE1B8DFF231005E9DC5D8267227684D07A38BA6FECDB288DE53FB0A3E\0E059080EF4409BC0D96FBCBDDEEE6C0AFBE871AD3D68BBA6A743C64631F599C9\026ED148B33F377BA01B68A9A97FEB2391FBED7D51E3F6EB83BEBC2FBA90920B1
    WeakMd5ThirdPartyAfterTime    REG_BINARY    00C029B8439AC901
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\#16
    FuncName    REG_SZ    LdapProvOpenStore
    Dll    REG_SZ    C:\Windows\System32\cryptnet.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllOpenStoreProv\Ldap
    FuncName    REG_SZ    LdapProvOpenStore
    Dll    REG_SZ    C:\Windows\System32\cryptnet.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllProtectedRootMessageBox
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllProtectedRootMessageBox\DEFAULT
    Dll    REG_MULTI_SZ    C:\Windows\System32\cryptui.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindLocalizedName
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindLocalizedName\LocalizedNames
    TrustedDevices    REG_SZ    @%systemroot%\system32\wsdapi.dll,-200
    EKROOT    REG_SZ    @%SystemRoot%\System32\CertCA.dll,-304
    EKCA    REG_SZ    @%SystemRoot%\System32\CertCA.dll,-305
    Remote Desktop    REG_SZ    @%SystemRoot%\System32\SessEnv.dll,-101
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\1.3.6.1.4.1.311.47.1.1!7
    Name    REG_SZ    @%SystemRoot%\system32\qagentrt.dll,-10
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\1.3.6.1.4.1.311.64.1.1!7
    Name    REG_SZ    @%SystemRoot%\system32\dnsapi.dll,-103
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\1.3.6.1.4.1.311.67.1.1!7
    Name    REG_SZ    @%SystemRoot%\System32\fveui.dll,-843
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\1.3.6.1.4.1.311.67.1.2!7
    Name    REG_SZ    @%SystemRoot%\System32\fveui.dll,-844
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\1.3.6.1.4.1.311.76.6.1!7
    Name    REG_SZ    @%SystemRoot%\System32\wuaueng.dll,-400
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\2.16.840.1.101.3.4.2.1!1
    Name    REG_SZ    SHA-256
    Algid    REG_DWORD    0x800c
    CNGAlgid    REG_SZ    SHA256
    Flags    REG_DWORD    0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllProtectPrompt
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllProtectPrompt\DEFAULT
    Dll    REG_MULTI_SZ    C:\Windows\System32\cryptui.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{000C10F1-0000-0000-C000-000000000046}
    FuncName    REG_SZ    MsiSIPCreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\MSISIP.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{06C9E010-38CE-11D4-A2A3-00104BD35090}
    FuncName    REG_SZ    CreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\wshext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{0AC5DF4B-CE07-4DE2-B76E-23C839A09FD1}
    FuncName    REG_SZ    AppxSipCreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\AppxSip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{0F5F58B3-AADE-4B9A-A434-95742D92ECEB}
    FuncName    REG_SZ    AppxBundleSipCreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\AppxSip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{1629F04E-2799-4DB5-8FE5-ACE10F17EBAB}
    FuncName    REG_SZ    CreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\wshext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{1A610570-38CE-11D4-A2A3-00104BD35090}
    FuncName    REG_SZ    CreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\wshext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{5598CFF1-68DB-4340-B57F-1CACF88C9A51}
    FuncName    REG_SZ    P7SipCreateIndirectData
    Dll    REG_SZ    C:\Windows\System32\AppxSip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{603BCC1F-4B59-4E08-B724-D2C6297EF351}
    FuncName    REG_SZ    PsCreateHash
    Dll    REG_SZ    C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPCreateIndirectData
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{BA08A66F-113B-4D58-9329-A1B37AF30F0E}
    Dll    REG_SZ    C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
    FuncName    REG_SZ    XAP_CryptSIPCreateIndirectData
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{C689AAB8-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPCreateIndirectData
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{C689AABA-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPCreateIndirectData
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{DE351A42-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPCreateIndirectData
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{DE351A43-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPCreateIndirectData
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetCaps
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetCaps\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetCaps
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetCaps\{C689AAB8-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetCaps
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetCaps\{C689AABA-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetCaps
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetCaps\{DE351A42-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetCaps
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetCaps\{DE351A43-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetCaps
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSealedDigest
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest\{C689AAB8-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSealedDigest
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest\{C689AAB9-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSealedDigest
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest\{C689AABA-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSealedDigest
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest\{DE351A42-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSealedDigest
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSealedDigest\{DE351A43-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSealedDigest
    Dll    REG_SZ    C:\Windows\System32\WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{000C10F1-0000-0000-C000-000000000046}
    FuncName    REG_SZ    MsiSIPGetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\MSISIP.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{06C9E010-38CE-11D4-A2A3-00104BD35090}
    FuncName    REG_SZ    GetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\wshext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{0AC5DF4B-CE07-4DE2-B76E-23C839A09FD1}
    FuncName    REG_SZ    AppxSipGetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\AppxSip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{0F5F58B3-AADE-4B9A-A434-95742D92ECEB}
    FuncName    REG_SZ    AppxBundleSipGetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\AppxSip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{1629F04E-2799-4DB5-8FE5-ACE10F17EBAB}
    FuncName    REG_SZ    GetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\wshext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{1A610570-38CE-11D4-A2A3-00104BD35090}
    FuncName    REG_SZ    GetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\wshext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{5598CFF1-68DB-4340-B57F-1CACF88C9A51}
    FuncName    REG_SZ    P7xSipGetSignedDataMsg
    Dll    REG_SZ    C:\Windows\System32\AppxSip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{603BCC1F-4B59-4E08-B724-D2C6297EF351}
    FuncName    REG_SZ    PsGetSignature
    Dll    REG_SZ    C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSignedDataMsg
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{BA08A66F-113B-4D58-9329-A1B37AF30F0E}
    Dll    REG_SZ    C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
    FuncName    REG_SZ    XAP_CryptSIPGetSignedDataMsg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{C689AAB8-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSignedDataMsg
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{C689AABA-8E78-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSignedDataMsg
    Dll    REG_SZ    WINTRUST.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{DE351A42-8E59-11D0-8C47-00C04FC295EE}
    FuncName    REG_SZ    CryptSIPGetSignedDataMsg
    Dll    REG_SZ

BrianDrab · Jun 18, 2015

I'm guessing you have Entrust Entelligence Security Provider 9.2 for Windows installed? If so, it appears that uninstalling this program will fix your issue. If you want to try to keep the program installed and delete the offending registry key instead then you can try the fix below. It's also possible they have an updated version of the software that doesn't have this issue. Let me know what you decide. Thanks.

Step#1 - SFCFix Script
Warning: this fix is specific to the user in this thread. No one else should follow these instructions as it may cause more harm than good. If you are after assistance, please start a thread of your own.

Download SFCFix.exe (by niemiro) and save this to your Desktop. If you still have this on your desktop from downloading previously, you don't need to re-download.
Download the file below, SFCScript.txt, and save this to your Desktop.
Save any open documents and close all open windows.
On your Desktop, you should see two files: SFCFix.exe and SFCScript.txt.
Drag the file SFCScript.txt onto the file SFCFix.exe and release it.
SFCFix will now process the script.
Upon completion, a file should be created on your Desktop: SFCFix.txt.
Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this file into your next post for me to analyse please

References
https://social.technet.microsoft.co...s-8-update-and-defender?forum=w8itprosecurity

Synth · Jun 19, 2015

Unfortunately, I don't have Entrust Entelligence Security Provider installed and never have.

BrianDrab · Jun 19, 2015

That's fine. It was worth a shot. Go ahead and run the fix I provided. Let's see if that fixes it.

Synth · Jun 19, 2015

The result of the script is..

Code:

RegistryScript::
Successfully took ownership and permissions for registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\2.16.840.1.101.3.4.2.1!1.
WARNING: Failed to create backup for registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\2.16.840.1.101.3.4.2.1!1.
Successfully deleted registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\2.16.840.1.101.3.4.2.1!1.
Failed to open registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CryptDllFindOIDInfo\2.16.840.1.101.3.4.2.1!1 with error code ERROR_FILE_NOT_FOUND.
RegistryScript:: directive failed to complete successfully.
 

Failed to process all directives successfully.
SFCFix version 2.4.5.0 by niemiro has completed.
Currently storing 1 datablocks.
Finish time: 2015-06-18 23:09:10.068
Script hash: 7PpvoEOSt/8Pou5O+854YCinUh02/TQvZdbSsELF82A=
----------------------EOF-----------------------

BrianDrab · Jun 19, 2015

Awesome. See if Windows Updates works now.

Synth · Jun 19, 2015

Ah, forgot to say, still the same error.

BrianDrab · Jun 19, 2015

Thanks. Please do the following.

Step#1 - Gather Registry Info
1. Right-click on the Start

button and select Command Prompt (Admin)
2. When command prompt opens, Copy (Ctrl+C) and Paste (Right-click > Paste) the following command into it, then press Enter
reg query HKLM\SOFTWARE\Microsoft\Cryptography /S >1 | notepad 1

3. Notepad will open with a bunch of test. Please copy/paste this into your next post.

Step#2 - FRST Scan
1. Please download Farbar Recovery Scan Tool and save it to your Desktop.
Note: You need to run the 64-bit Version so please ensure you download that one.
2. Right click to run as administrator. When the tool opens click Yes to disclaimer.
3. Please ensure you place a check mark in the Addition.txt check box at the bottom of the form before running (if not already).
4. Press Scan button.
5. It will produce a log called FRST.txt in the same directory the tool is run from (which should now be the desktop)
6. Please copy and paste log back here.
7. Another log (Addition.txt - also located in the same directory as FRST64.exe) will be generated Please also paste that along with the FRST.txt into your reply.

Synth · Jun 19, 2015

Huh....

So before running the malware scanner I decided to reboot and not start some of the services I usually have running, specifically Splashtop, Apache & MySQL Server. Windows Update is currently working its way through 1.3gig of updates. Its hard to imagine its any of those 3 things given I've had them running for years now. Possibly the registry change needed a reboot? Either way its working. Thanks for all your help!

I wont tempt fate and mark the thread as solved just yet, I'll let windows update finish first and do another reboot and see if its still functioning.

BrianDrab · Jun 19, 2015

Crap. I forgot to have you reboot. Yes you are correct. Sorry for omitting that step. Glad it's working. I'd love to hear when you are all updated.

[SOLVED] Windows 8.1 - 0x80096002 error

Member

Emeritus

Member

Attachments

Emeritus

Member

Attachments

Emeritus

Member

Emeritus

Member

Emeritus

Member

Emeritus

Attachments

Member

Emeritus

Member

Emeritus

Member

Emeritus

Member

Emeritus