I've found a new cause of this Windows Update error, and this problem does
not appear to have been documented anywhere else. How do I go about
contacting Microsoft to inform their Windows Update programmers of this
potential problem?
----------------
The scenario:
- Windows XP Media Center, NTFS
- multiple user accounts, all set as Administrator
- one account is using encryption to hide its files from everyone else
The solution:
* Login as the one user with file-encryption enabled, and open:
* C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\
* Select the "drmclien.cat" file, show its properties
* Under the General tab, click the Advanced button
* UNCHECK the box "Encrypt contents to secure data"
After doing this, all the manual Windows Updates installed successfully.
----------------
Background / Debugging Details:
The one user's home directory in "C:\Documents and Settings\" is encrypted,
and it seems that this use of encryption managed to accidently spread outside
the home directory and into the Windows directory to drmclient.cat".
At some point in the past this user with the encrypted files may have used
Windows Update, though whether Automatic or through Internet Explorer I do
not know.
However, when a regular account recently tried to use the manual Windows
Update, which involved a new Windows Genuine Advantage update, the downloader
was half-broken, and some of the updates would fail to install. The system
actually hung on the WGA install process and would not finish, and finally
had to be powered-off to get out of the hang.
Here's a typical install log following the WGA hang (though WGA did not try
to reinstall itself):
Downloading Cumulative Security Update for Outlook Express for Windows XP
(KB911567) (update 1 of 11)... error!
Downloading Security Update for Windows XP (KB911562) (update 2 of 11)...
error!
Downloading Update for Windows XP (KB900485) (update 3 of 11)... error!
Downloading Security Update for Windows XP (KB908531) (update 4 of 11)...
error!
(etc)
The Windows Update log of the failures looked like this:
2006-05-06 19:18:40 1072 6534 Handler Updateci:
WinSEUpdateHandler::_Inventory: Installer returned 0x5 (5)
2006-05-06 19:18:40 1072 6534 Handler FATAL: UH: 0x80070005: Inventory failed
2006-05-06 19:18:40 1072 6534 Handler FATAL: UH: 0x80070005:
GetNextRequiredFiles failed
2006-05-06 19:18:40 1072 6534 Handler FATAL: UH: 0x80070005:
GetRequiredFilesForSandboxState failed
2006-05-06 19:18:40 1072 6534 DnldMgr FATAL:
DM:CAgentDownloadManager::GenerateAllDownloadReque sts:
GenerateDownloadRequest failed with 0x80070005.
2006-05-06 19:18:40 1072 6534 DnldMgr Error 0x80070005 occurred while
downloading update; notifying dependent calls.
2006-05-06 19:18:40 22768 5b7c DtaStor Update service properties: service
registered with AU is {9482F4B4-E343-43B6-B170-9A65BC822C77}
2006-05-06 19:18:40 22768 5b7c DtaStor WARNING: Update Service: Failed to
update backup store
I attempted to do all the usual suggestions to fix Windows Updates, such as
described in KB316524, and none of these helped:
http://support.microsoft.com/kb/316524/en-us
- turn off automatic updates and rename the SoftwareDistribution folder
- clear IE's temporary files
- verify user's group membership in Administrators
- check access permissions for
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Win dowsUpdate
- stop the crpto services and rename the CatRoot2
I downloaded and ran the MGADiag.exe tool that has been posted in this
Windows Update forum. It didn't help.
I went to the Microsoft Genuine Advantage diagnostic website and it didn't
help.
I installed the KB892130 update manually. It sucessfully installed, but
didn't help.
.........
FINALLY, I decided to take matters into my own hands and debug this problem
myself.
I download FileMon and RegMon from
www.sysinternals.com and ran both of them
while running Windows Update in Internet Explorer.
FileMon logged the following ACCESS DENIED error during the attempted update:
9:06:32
AM update.exe:200 OPEN C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\drmclien.cat ACCESS DENIED NT_AUTHORITY\SYSTEM
When I checked the file from the regular user account, the name for
drmclien.cat showed up in green, indicating it was encrpyted. Checking the
file showed the encryption was keyed for the one user with home-directory
encryption enabled.
However, when I logged in as the user with encryption enabled, Windows
Update still failed to function, and reported all the same errors. This
appears to be because the account "NT_AUTHORITY\SYSTEM" was trying to open
the file, and not this user. Apparantly not even SYSTEM can decrypt this file
by itself.
--------
The solution:
* Login as the one user with encryption enabled, and open:
* C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\
* Select the "drmclien.cat" file, show its properties
* Under the General tab, click the Advanced button
* UNCHECK the box "Encrypt contents to secure data"
After doing this, all the manual Windows Updates installed successfully.
Similar Threads
Linear Mode
