Event ID - 11

Event Id11
SourceMicrosoft-Windows-CAPI2
DescriptionFailed extract of third-party root list from auto update cab at: <%1> with error: <%2>.
Event InformationAccording to Microsoft :

Cause :

This event is logged when Failed extract of third-party root list from auto update cab.

Resolution :

Check permissions on the temporary directory

The Automatic Root Certificates Update component downloads a cabinet (.cab) file to the temporary directory on the local computer, extracts the contents of the file, and then updates the root certificate list. The correct permissions must be applied to the temporary directory in order for the cabinet file to install correctly.
To check the permissions on the temporary directory:
1.Navigate to the temporary directory on the local computer. By default, the temporary directory is located at %userprofile%\AppData\Local\Temp.
2.Right-click the temporary directory, and then click Properties.
3.Click the Security tab.
4.Ensure that the user account logged on to the computer has Full Control permissions.
Verify :
You can verify that the Automatic Root Certificates Update component is working properly by using a Web browser to open a Web site that requires the Automatic Root Certificates Update component. When you open this Web site, a new root certificate is downloaded from the Microsoft Windows Update Web site. If the certificate is downloaded successfully, Event ID 1 in the Microsoft-Windows-CAPI2 event source will be written to the event log.
To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.
To verify that Event ID 1 is being written to the event log:
1.Click Start, and then click Control Panel.
2.Double-click Administrative Tools, and then click Event Viewer.
3.If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.
4.Expand Windows Logs, and then click Application.
5.Look for an event with a Source named CAPI2 and an Event ID of 1.
Reference LinksEvent ID 11 from Microsoft-Windows-CAPI2

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.