Message Types: | ||
Message Details: |
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:54.834302100Z"/> <EventRecordID>148</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{92A34CC9-208F-4DFA-8C44-A546DDD499DE}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:54.849927600Z"/> <EventRecordID>149</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{92A34CC9-208F-4DFA-8C44-A546DDD499DE}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>10</EventID> <Version>0</Version> <Level>4</Level> <Task>11</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000003</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:56.206021900Z"/> <EventRecordID>150</EventRecordID> <Correlation/> <Execution ProcessID="2004" ThreadID="3456"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-18"/> </System> <UserData> <CertGetCertificateChainStart> <EventAuxInfo ProcessName="TiWorker.exe"/> <CorrelationAuxInfo TaskId="{A1082955-2942-442E-B96D-B5BB1BB8A0CA}" SeqNumber="1"/> </CertGetCertificateChainStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>90</EventID> <Version>0</Version> <Level>4</Level> <Task>90</Task> <Opcode>0</Opcode> <Keywords>0x4000000000000200</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:56.207115400Z"/> <EventRecordID>151</EventRecordID> <Correlation/> <Execution ProcessID="2004" ThreadID="3456"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-18"/> </System> <UserData> <X509Objects> <Certificate fileRef="3B1EFD3A66EA28B16697394703A72CA340A05BD5.cer" subjectName="Microsoft Root Certificate Authority 2010"> <Subject> <CN>Microsoft Root Certificate Authority 2010</CN> <O>Microsoft Corporation</O> <L>Redmond</L> <S>Washington</S> <C>US</C> </Subject> <SubjectKeyID computed="false" hash="D5F656CB8FE8A25C6268D13D94905BD7CE9A18C4"/> <SignatureAlgorithm oid="1.2.840.113549.1.1.11" hashName="SHA256" publicKeyName="RSA"/> <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="4096"/> <Issuer> <CN>Microsoft Root Certificate Authority 2010</CN> <O>Microsoft Corporation</O> <L>Redmond</L> <S>Washington</S> <C>US</C> </Issuer> <SerialNumber>28CC3A25BFBA44AC449A9B586B4339AA</SerialNumber> <NotBefore>2010-06-23T21:57:24Z</NotBefore> <NotAfter>2035-06-23T22:04:01Z</NotAfter> <Extensions> <KeyUsage value="86" CERT_DIGITAL_SIGNATURE_KEY_USAGE="true" CERT_KEY_CERT_SIGN_KEY_USAGE="true" CERT_CRL_SIGN_KEY_USAGE="true"/> <BasicConstraints critical="true" cA="true"/> </Extensions> <Properties> <FriendlyName>Microsoft Root Certificate Authority 2010</FriendlyName> </Properties> </Certificate> <Certificate fileRef="580A6F4CC4E4B669B9EBDC1B2B3E087B80D0678D.cer" subjectName="Microsoft Windows Production PCA 2011"> <Subject> <CN>Microsoft Windows Production PCA 2011</CN> <O>Microsoft Corporation</O> <L>Redmond</L> <S>Washington</S> <C>US</C> </Subject> <SubjectKeyID computed="false" hash="A92902398E16C49778CD90F99E4F9AE17C55AF53"/> <SignatureAlgorithm oid="1.2.840.113549.1.1.11" hashName="SHA256" publicKeyName="RSA"/> <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048"/> <Issuer> <CN>Microsoft Root Certificate Authority 2010</CN> <O>Microsoft Corporation</O> <L>Redmond</L> <S>Washington</S> <C>US</C> </Issuer> <SerialNumber>61077656000000000008</SerialNumber> <NotBefore>2011-10-19T18:41:42Z</NotBefore> <NotAfter>2026-10-19T18:51:42Z</NotAfter> <Extensions> <KeyUsage value="86" CERT_DIGITAL_SIGNATURE_KEY_USAGE="true" CERT_KEY_CERT_SIGN_KEY_USAGE="true" CERT_CRL_SIGN_KEY_USAGE="true"/> <BasicConstraints critical="true" cA="true"/> <AuthorityKeyIdentifier> <KeyID hash="D5F656CB8FE8A25C6268D13D94905BD7CE9A18C4"/> </AuthorityKeyIdentifier> </Extensions> </Certificate> <Certificate fileRef="FF82BC38E1DA5E596DF374C53E3617F7EDA36B06.cer" subjectName="Microsoft Windows"> <Subject> <CN>Microsoft Windows</CN> <O>Microsoft Corporation</O> <L>Redmond</L> <S>Washington</S> <C>US</C> </Subject> <SubjectKeyID computed="false" hash="ADABCB4D16F5D6E833FAECDABE19A4E7D1C5BB5A"/> <SignatureAlgorithm oid="1.2.840.113549.1.1.11" hashName="SHA256" publicKeyName="RSA"/> <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048"/> <Issuer> <CN>Microsoft Windows Production PCA 2011</CN> <O>Microsoft Corporation</O> <L>Redmond</L> <S>Washington</S> <C>US</C> </Issuer> <SerialNumber>330000023241FB59996DCC4DFF000000000232</SerialNumber> <NotBefore>2019-05-02T21:24:36Z</NotBefore> <NotAfter>2020-05-02T21:24:36Z</NotAfter> <Extensions> <ExtendedKeyUsage> <Usage oid="1.3.6.1.4.1.311.10.3.6" name="Проверяет системные компоненты Windows"/> <Usage oid="1.3.6.1.5.5.7.3.3" name="Подписывание кода"/> </ExtendedKeyUsage> <SubjectAltName> <DirectoryName> <SERIALNUMBER>229879+454112</SERIALNUMBER> <OU>Microsoft Ireland Operations Limited</OU> </DirectoryName> </SubjectAltName> <AuthorityKeyIdentifier> <KeyID hash="A92902398E16C49778CD90F99E4F9AE17C55AF53"/> </AuthorityKeyIdentifier> <BasicConstraints critical="true" cA="false"/> </Extensions> </Certificate> <EventAuxInfo ProcessName="TiWorker.exe"/> <CorrelationAuxInfo TaskId="{A1082955-2942-442E-B96D-B5BB1BB8A0CA}" SeqNumber="2"/> </X509Objects> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>11</EventID> <Version>0</Version> <Level>2</Level> <Task>11</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000003</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:56.207115400Z"/> <EventRecordID>152</EventRecordID> <Correlation/> <Execution ProcessID="2004" ThreadID="3456"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-18"/> </System> <UserData> <CertGetCertificateChain> <Certificate fileRef="FF82BC38E1DA5E596DF374C53E3617F7EDA36B06.cer" subjectName="Microsoft Windows"/> <AdditionalStore> <Certificate fileRef="580A6F4CC4E4B669B9EBDC1B2B3E087B80D0678D.cer" subjectName="Microsoft Windows Production PCA 2011"/> <Certificate fileRef="FF82BC38E1DA5E596DF374C53E3617F7EDA36B06.cer" subjectName="Microsoft Windows"/> </AdditionalStore> <ExtendedKeyUsage> <Usage oid="1.3.6.1.5.5.7.3.3" name="Подписывание кода"/> <Usage oid="1.3.6.1.4.1.311.10.3.6" name="Проверяет системные компоненты Windows"/> </ExtendedKeyUsage> <Flags value="100" CERT_CHAIN_DISABLE_AUTH_ROOT_AUTO_UPDATE="true"/> <ChainEngineInfo context="machine"/> <CertificateChain chainRef="{36A46897-F419-4175-B929-878B631A5CDC}"> <TrustStatus> <ErrorStatus value="1" CERT_TRUST_IS_NOT_TIME_VALID="true"/> <InfoStatus value="100" CERT_TRUST_HAS_PREFERRED_ISSUER="true"/> </TrustStatus> <ChainElement> <Certificate fileRef="FF82BC38E1DA5E596DF374C53E3617F7EDA36B06.cer" subjectName="Microsoft Windows"/> <SignatureAlgorithm oid="1.2.840.113549.1.1.11" hashName="SHA256" publicKeyName="RSA"/> <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048"/> <TrustStatus> <ErrorStatus value="1" CERT_TRUST_IS_NOT_TIME_VALID="true"/> <InfoStatus value="102" CERT_TRUST_HAS_KEY_MATCH_ISSUER="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true"/> </TrustStatus> <ApplicationUsage> <Usage oid="1.3.6.1.4.1.311.10.3.6" name="Проверяет системные компоненты Windows"/> <Usage oid="1.3.6.1.5.5.7.3.3" name="Подписывание кода"/> </ApplicationUsage> <IssuanceUsage/> </ChainElement> <ChainElement> <Certificate fileRef="580A6F4CC4E4B669B9EBDC1B2B3E087B80D0678D.cer" subjectName="Microsoft Windows Production PCA 2011"/> <SignatureAlgorithm oid="1.2.840.113549.1.1.11" hashName="SHA256" publicKeyName="RSA"/> <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048"/> <TrustStatus> <ErrorStatus value="0"/> <InfoStatus value="102" CERT_TRUST_HAS_KEY_MATCH_ISSUER="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true"/> </TrustStatus> <ApplicationUsage any="true"/> <IssuanceUsage/> </ChainElement> <ChainElement> <Certificate fileRef="3B1EFD3A66EA28B16697394703A72CA340A05BD5.cer" subjectName="Microsoft Root Certificate Authority 2010"/> <SignatureAlgorithm oid="1.2.840.113549.1.1.11" hashName="SHA256" publicKeyName="RSA"/> <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="4096"/> <TrustStatus> <ErrorStatus value="0"/> <InfoStatus value="13C" CERT_TRUST_HAS_NAME_MATCH_ISSUER="true" CERT_TRUST_IS_SELF_SIGNED="true" CERT_TRUST_AUTO_UPDATE_CA_REVOCATION="true" CERT_TRUST_AUTO_UPDATE_END_REVOCATION="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true"/> </TrustStatus> <ApplicationUsage any="true"/> <IssuanceUsage any="true"/> </ChainElement> </CertificateChain> <EventAuxInfo ProcessName="TiWorker.exe"/> <CorrelationAuxInfo TaskId="{A1082955-2942-442E-B96D-B5BB1BB8A0CA}" SeqNumber="3"/> <Result value="800B0101">Истек/не наступил срок действия требуемого сертификата при проверке по системным часам или по отметке времени в подписанном файле.</Result> </CertGetCertificateChain> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>30</EventID> <Version>0</Version> <Level>4</Level> <Task>30</Task> <Opcode>0</Opcode> <Keywords>0x4000000000000001</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:56.207115400Z"/> <EventRecordID>153</EventRecordID> <Correlation/> <Execution ProcessID="2004" ThreadID="3456"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-18"/> </System> <UserData> <CertVerifyCertificateChainPolicy> <Policy type="CERT_CHAIN_POLICY_BASE" constant="1"/> <Certificate fileRef="FF82BC38E1DA5E596DF374C53E3617F7EDA36B06.cer" subjectName="Microsoft Windows"/> <CertificateChain chainRef="{36A46897-F419-4175-B929-878B631A5CDC}"/> <Flags value="CE05" CERT_CHAIN_POLICY_IGNORE_NOT_TIME_VALID_FLAG="true" CERT_CHAIN_POLICY_IGNORE_NOT_TIME_NESTED_FLAG="true" CERT_CHAIN_POLICY_IGNORE_CTL_SIGNER_REV_UNKNOWN_FLAG="true" CERT_CHAIN_POLICY_IGNORE_CA_REV_UNKNOWN_FLAG="true" CERT_CHAIN_POLICY_IGNORE_ROOT_REV_UNKNOWN_FLAG="true" CERT_CHAIN_POLICY_TRUST_TESTROOT_FLAG="true" CERT_CHAIN_POLICY_ALLOW_TESTROOT_FLAG="true"/> <Status chainIndex="-1" elementIndex="-1"/> <EventAuxInfo ProcessName="TiWorker.exe"/> <CorrelationAuxInfo TaskId="{B9B0F7DF-2B98-4FB2-B7F3-5699E2306DB4}" SeqNumber="1"/> <Result value="0"/> </CertVerifyCertificateChainPolicy> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>30</EventID> <Version>0</Version> <Level>4</Level> <Task>30</Task> <Opcode>0</Opcode> <Keywords>0x4000000000000001</Keywords> <TimeCreated SystemTime="2022-01-31T11:40:56.207115400Z"/> <EventRecordID>154</EventRecordID> <Correlation/> <Execution ProcessID="2004" ThreadID="3456"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-18"/> </System> <UserData> <CertVerifyCertificateChainPolicy> <Policy type="CERT_CHAIN_POLICY_MICROSOFT_ROOT" constant="7"/> <Certificate fileRef="FF82BC38E1DA5E596DF374C53E3617F7EDA36B06.cer" subjectName="Microsoft Windows"/> <CertificateChain chainRef="{36A46897-F419-4175-B929-878B631A5CDC}"/> <Flags value="10000" MICROSOFT_ROOT_CERT_CHAIN_POLICY_ENABLE_TEST_ROOT_FLAG="true"/> <Status chainIndex="0" elementIndex="0"/> <EventAuxInfo ProcessName="TiWorker.exe"/> <CorrelationAuxInfo TaskId="{FFF1B1D3-A2F5-4CDE-9AB8-5CF556FBBBC2}" SeqNumber="1"/> <Result value="0"/> </CertVerifyCertificateChainPolicy> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:07.605401200Z"/> <EventRecordID>155</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{32ACA31C-C68D-4670-B97C-5C9C9EE19363}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:07.605401200Z"/> <EventRecordID>156</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{32ACA31C-C68D-4670-B97C-5C9C9EE19363}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:26.487018500Z"/> <EventRecordID>157</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{477011E7-FE92-4D32-8128-CC420CE03F48}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:26.487018500Z"/> <EventRecordID>158</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{477011E7-FE92-4D32-8128-CC420CE03F48}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:36.913764200Z"/> <EventRecordID>159</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{69F8F033-5A18-4A53-8966-968329C7F864}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:36.913764200Z"/> <EventRecordID>160</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{69F8F033-5A18-4A53-8966-968329C7F864}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:59.408563900Z"/> <EventRecordID>161</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{D0DEB98E-DD5B-4FBB-8FEA-D788D2A64EC9}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:41:59.408563900Z"/> <EventRecordID>162</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{D0DEB98E-DD5B-4FBB-8FEA-D788D2A64EC9}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:42:09.804039200Z"/> <EventRecordID>163</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{FC4C95DF-709E-4EB2-99C1-06753F1ABFA3}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:42:09.804039200Z"/> <EventRecordID>164</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{FC4C95DF-709E-4EB2-99C1-06753F1ABFA3}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:42:29.230680400Z"/> <EventRecordID>165</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{AC90E3A4-356F-4C6E-959F-CE92D8C1199F}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:42:29.230680400Z"/> <EventRecordID>166</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="57">Параметр задан неверно.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{AC90E3A4-356F-4C6E-959F-CE92D8C1199F}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>
<events> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>80</EventID> <Version>0</Version> <Level>4</Level> <Task>80</Task> <Opcode>1</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:42:39.772905400Z"/> <EventRecordID>167</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrustStart> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{2DBF326A-395D-4515-BCC8-D8EA3D3CE0CF}" SeqNumber="1"/> </WinVerifyTrustStart> </UserData> </Event> <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}"/> <EventID>81</EventID> <Version>0</Version> <Level>2</Level> <Task>80</Task> <Opcode>2</Opcode> <Keywords>0x4000000000000040</Keywords> <TimeCreated SystemTime="2022-01-31T11:42:39.772905400Z"/> <EventRecordID>168</EventRecordID> <Correlation/> <Execution ProcessID="2288" ThreadID="2184"/> <Channel>Microsoft-Windows-CAPI2/Operational</Channel> <Computer>PC151</Computer> <Security UserID="S-1-5-21-2633579703-1755105232-1665030018-1002"/> </System> <UserData> <WinVerifyTrust> <ActionID>{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}</ActionID> <UIChoice value="2">WTD_UI_NONE</UIChoice> <RevocationCheck value="0"/> <StateAction value="1">WTD_STATEACTION_VERIFY</StateAction> <Flags value="80000040" WTD_REVOCATION_CHECK_CHAIN="true" CPD_USE_NT5_CHAIN_FLAG="true"/> <FileInfo filePath="D:\6ddaca7a975a85965d1fabe9bfe2\TMP4A7.tmp" hasFileHandle="true"/> <DigestInfo digestAlgorithm="" digest=""/> <RegPolicySetting value="23C00" WTPF_OFFLINEOK_IND="true" WTPF_OFFLINEOK_COM="true" WTPF_OFFLINEOKNBU_IND="true" WTPF_OFFLINEOKNBU_COM="true" WTPF_IGNOREREVOCATIONONTS="true"/> <StepError stepID="3" stepName="TRUSTERROR_STEP_SIP"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="9" stepName="TRUSTERROR_STEP_MSG_SIGNERCOUNT"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="32" stepName="TRUSTERROR_STEP_FINAL_OBJPROV"> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </StepError> <StepError stepID="33" stepName="TRUSTERROR_STEP_FINAL_SIGPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <StepError stepID="34" stepName="TRUSTERROR_STEP_FINAL_CERTPROV"> <Result value="800B0100">В этом объекте нет подписи.</Result> </StepError> <EventAuxInfo ProcessName="Setup.exe"/> <CorrelationAuxInfo TaskId="{2DBF326A-395D-4515-BCC8-D8EA3D3CE0CF}" SeqNumber="2"/> <Result value="800B0003">Указанная форма субъекта не поддерживается выбранным поставщиком доверия.</Result> </WinVerifyTrust> </UserData> </Event> </events>