{"id":11904,"date":"2019-11-14T03:19:00","date_gmt":"2019-11-14T01:19:00","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=11904"},"modified":"2024-10-03T00:44:41","modified_gmt":"2024-10-02T22:44:41","slug":"windows-7-error-0x800b0109-bei-update-kb890830-mrst","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2019\/11\/14\/windows-7-error-0x800b0109-bei-update-kb890830-mrst\/","title":{"rendered":"Windows 7: Update KB890830 (MSRT) drops Error 0x800B0109"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"win7\" src=\"http:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2012\/03\/win7_thumb1.jpg\" alt=\"win7\" width=\"44\" height=\"42\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2019\/11\/14\/windows-7-error-0x800b0109-bei-update-kb890830-mrst\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]Another supplement to the Patchday (November 12, 2019). A number of users under Windows 7 SP1 and Windows Server 2008\/R2 get the error 0x800B0109 when installing the update KB890830 (MSRT). Here is some information about the topic and what was going on.<\/p>\n<p><!--more--><\/p>\n<h2>What does update KB890830 (MSRT) do?<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg07.met.vgwort.de\/na\/689a2bf2f3b2449aada885adae0d4ff2\" alt=\"\" width=\"1\" height=\"1\" \/>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/890830\/remove-specific-prevalent-malware-with-windows-malicious-software-remo\" target=\"_blank\" rel=\"noopener noreferrer\">KB890830<\/a>\u00a0 is the 'Windows Malicious Software Removal Tool' (MSRT). The tool is available for all versions of Windows and is rolled out cyclically on patchday as an update to clean the systems from malicious software (certain <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/890830\/remove-specific-prevalent-malware-with-windows-malicious-software-remo#covered\" target=\"_blank\" rel=\"noopener noreferrer\">common threats<\/a> such as Trickbot).<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/web.archive.org\/web\/20191115090630\/https:\/\/a38.imgup.net\/MRT2-17bb21.jpg\" \/><\/p>\n<p>Windows needs to be restarted to take effect after installation. Those who want to run the tool manually can download it from the Microsoft Download Center or run an online version of microsoft.com. This tool cannot replace an antivirus product. You should therefore use an antivirus product to help protect your computer.<\/p>\n<h2>Installation issues with November 12, 2019 version<\/h2>\n<p>The MSRT version that was released on November 12, 2019 as update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/890830\/remove-specific-prevalent-malware-with-windows-malicious-software-remo\" target=\"_blank\" rel=\"noopener noreferrer\">KB890830<\/a> causes problems under Windows 7 SP1 and Windows Server 2008\/R2. Already on the patchday there were (German) <a href=\"https:\/\/www.borncity.com\/blog\/2019\/11\/13\/microsoft-security-update-summary-12-november-2019\/#comment-80326\" target=\"_blank\" rel=\"noopener noreferrer\">comments like this<\/a>:<\/p>\n<blockquote><p>With KB890830 all my installation attempts fail.<br \/>\nError Code 0x800B0109<\/p><\/blockquote>\n<p>Further comments indicate that there are install issues with the 32-bit version of Windows 7 SP1. The <a href=\"https:\/\/www.borncity.com\/blog\/2019\/11\/13\/microsoft-security-update-summary-12-november-2019\/#comment-80328\" target=\"_blank\" rel=\"noopener noreferrer\">German comment here<\/a> also shows the installation error with the 64-bit version. I have also received reports that the tool is being installed on a recurring basis. Woody Leonhard also mentioned this installation error in <a href=\"https:\/\/www.computerworld.com\/article\/3453322\/patch-tuesday-arrives-with-access-error-1909-in-tow-and-a-promise-of-no-more-optional-patches-this.html\" target=\"_blank\" rel=\"noopener noreferrer\">an article at ComputerWorld<\/a>.<\/p>\n<h2>What does error 0x800B0109 means?<\/h2>\n<p>The error code 0x800B0109 stands for CERT_E_UNTRUSTEDROOT, and the message is in plain text:<\/p>\n<blockquote><p>A certificate chain was processed, but ended with a root certificate that is not trusted by the trust provider.<\/p><\/blockquote>\n<p>This simply means that the certificate used to verify the signed update file cannot be trusted. A digital signature is included in the update package. But the certificate chain used to verify the trustworthiness of the digital signature ends with a root certificate that is not considered trustworthy.<\/p>\n<p>Ad-hoc I would have suspected a missing Servicing Stack Update (SSU) or a SHA-2 update as the cause for Windows 7 SP1 and Windows Server 2008\/R2. The support article for update <a href=\"https:\/\/support.microsoft.com\/en-sg\/help\/890830\/remove-specific-prevalent-malware-with-windows-malicious-software-remo\" target=\"_blank\" rel=\"noopener noreferrer\">KB890830<\/a> says:<\/p>\n<blockquote><p><strong>Note:<\/strong> Starting November 2019, MSRT will be SHA-2 signed exclusively. Your devices must be updated to support SHA-2 in order to run MSRT. To learn more, see 2019 SHA-2 Code Signing Support requirement for Windows and WSUS.<\/p><\/blockquote>\n<p>But that's not the root cause this time. Rather, Microsoft made a mistake signing the update package in question. There is this Technet Forenthread, where the issue is discussed.<\/p>\n<blockquote><p>It is interesting to note that the certificate in the MSRT works with Windows 8.1 and higher and its server counterparts &#8211; only Windows 7 and Windows Server 2008\/R2 had a certificate error.<\/p><\/blockquote>\n<p>In the meantime update <a href=\"https:\/\/support.microsoft.com\/en-sg\/help\/890830\/remove-specific-prevalent-malware-with-windows-malicious-software-remo\" target=\"_blank\" rel=\"noopener noreferrer\">KB890830<\/a> is no longer available via Windows Update (see <a href=\"https:\/\/www.borncity.com\/blog\/2019\/11\/13\/microsoft-security-update-summary-12-november-2019\/#comment-80391\" target=\"_blank\" rel=\"noopener noreferrer\">this German comments<\/a> within my blog). Within the <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB890830\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> there is update KB890830 still available with v5.77. However, for Windows 7, Windows Server 2008 and Windows Server 2008 R2, this has the update date 11\/13\/2019, while the counterparts for Windows 8.1 to Windows 10 and the server counterparts have the update date 11\/12\/2019.<\/p>\n<p>So Microsoft has updated the package for Windows 7 and Server 2008\/r2 and replaced the faulty certificate. I have now downloaded the MSRT v5.77 in a 64-bit version for my Windows 7 SP1. The tool ran smoothly.<\/p>\n<blockquote><p>The <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB890830\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> offerst two MSRT packaged to download. One is a delta update, which may be used in WSUS.<\/p><\/blockquote>\n<p><strong>Similar article:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/win\/2017\/04\/13\/issued-with-update-kb890830-microsoft-removal-tool\/\">Issues with Update KB890830 (Windows Malicious Removal Tool<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Another supplement to the Patchday (November 12, 2019). A number of users under Windows 7 SP1 and Windows Server 2008\/R2 get the error 0x800B0109 when installing the update KB890830 (MSRT). Here is some information about the topic and what was &hellip; <a href=\"https:\/\/borncity.com\/win\/2019\/11\/14\/windows-7-error-0x800b0109-bei-update-kb890830-mrst\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[463,22,2],"tags":[2182,1137,17],"class_list":["post-11904","post","type-post","status-publish","format-standard","hentry","category-issue","category-update","category-windows","tag-error-0x800b0109","tag-update-kb890830","tag-windows-7"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/11904","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=11904"}],"version-history":[{"count":1,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/11904\/revisions"}],"predecessor-version":[{"id":35408,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/11904\/revisions\/35408"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=11904"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=11904"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=11904"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}