List of AppLocker hotfixes post SP1 for Windows 7 SP1 and Windows Server 2008 R2 SP1

Applies to:

Windows Server 2008 R2 Service Pack 1
Windows Server 2008 R2 SP1
W2K8 R2 Service Pack 1
W2K8 R2 SP1

Windows 7 Service Pack 1
Windows 7 SP1
Win7 Service Pack 1
Win7 SP1

Note: You should check https://support.microsoft.com/ for the latest version of the different files.

Note 2: These may not available in Windows Update.

Note 3: You can download them without entering your e-mail address and captcha if you are a Microsoft Premier customer and have a https://premier.microsoft.com/ account.

Note 4: Carefully review the list and decide which might be applicable to your unique environment.

Note 5: Test in your test and your quality assurance environment.

List of AppLocker related hotfixes post SP1 for Windows 7 SP1 and Windows Server 2008 R2 SP1 as of Sep. 2015.

3083992 Microsoft security advisory: Update to improve AppLocker certificate handling: September 8, 2015
https://support.microsoft.com/?id=3083992

Update(s):

Adtschema.dll 6.1.7601.23153

Adtschema.dll.mui 6.1.7601.23153

Apisetschema.dll 6.1.7601.23153

Appid.sys 6.1.7601.18950

Appid.sys 6.1.7601.23153

Appidapi.dll 6.1.7601.18950

Appidapi.dll 6.1.7601.23153

Appidcertstorecheck.exe 6.1.7601.18950

Appidcertstorecheck.exe 6.1.7601.23153

Appidpolicyconverter.exe 6.1.7601.18950

Appidpolicyconverter.exe 6.1.7601.23153

Appid-ppdlic.xrm-ms

Appid-ppdlic.xrm-ms

Appidsvc.dll 6.1.7601.18950

Appidsvc.dll 6.1.7601.23153

Auditpol.exe 6.1.7601.23153

Auditpol.exe.mui 6.1.7601.23153

Ci.dll 6.1.7601.18519

Ci.dll 6.1.7601.22730

Ci.dll.mui 6.1.7601.18950

Ci.dll.mui 6.1.7601.23153

Cng.sys 6.1.7601.22946

Credssp.dll 6.1.7601.23153

Cryptbase.dll 6.1.7601.23153

Csrsrv.dll 6.1.7601.23153

Driver.stl

Driver.stl

Kerberos.dll 6.1.7601.23153

Ksecdd.sys 6.1.7601.23153

Ksecpkg.sys 6.1.7601.23153

Lsasrv.dll 6.1.7601.23153

Lsasrv.dll.mui 6.1.7601.23153

Lsasrv.mof

Lsass.exe 6.1.7601.23153

Mrxsmb.sys 6.1.7601.23153

Mrxsmb10.sys 6.1.7601.23153

Mrxsmb20.sys 6.1.7601.23153

Msaudite.dll 6.1.7601.23153

Msaudite.dll.mui 6.1.7601.23153

Msobjs.dll 6.1.7601.23153

Msobjs.dll.mui 6.1.7601.23153

Msv1_0.dll 6.1.7601.23153

Ncrypt.dll 6.1.7601.23153

Ntdll.dll 6.1.7601.23153

Ntkrnlpa.exe 6.1.7601.23153

Ntoskrnl.exe 6.1.7601.23153

Rpchttp.dll 6.1.7601.23153

Rpcrt4.dll 6.1.7601.23153

Rstrui.exe 6.1.7601.23153

Schannel.dll 6.1.7601.23153

Secur32.dll 6.1.7601.23153

Setbcdlocale.dll 6.1.7601.18950

Setbcdlocale.dll 6.1.7601.23153

Setbcdlocale.dll 6.1.7601.18950

Setbcdlocale.dll 6.1.7601.23153

Smss.exe 6.1.7601.23153

Srclient.dll 6.1.7601.23153

Srcore.dll 6.1.7601.23153

Sspisrv.dll 6.1.7601.23153

Tspkg.dll 6.1.7601.23153

Tspkg.mof

Wdigest.dll 6.1.7601.23153

Winload.exe 6.1.7601.18649

Winload.exe 6.1.7601.23003

Winload.exe.mui 6.1.7601.18950

Winload.exe.mui 6.1.7601.23153

Winresume.exe 6.1.7601.18519

Winresume.exe 6.1.7601.23003

Winresume.exe 6.1.7601.18950

Winresume.exe 6.1.7601.23153

Winresume.exe.mui 6.1.7601.18950

Winresume.exe.mui 6.1.7601.23153

Winresume.exe.mui 6.1.7601.18950

Winresume.exe.mui 6.1.7601.23153

Winresume.exe.mui 6.1.7601.18950

Winresume.exe.mui 6.1.7601.23153

Winresume.exe.mui 6.1.7601.18950

Winresume.exe.mui 6.1.7601.23153

3008790 "Rules cannot be created for the following files" error message in AppLocker when you try to select certain files
https://support.microsoft.com/?id=3008790

<Not a hotfix>

2894252 Process that runs in Untrusted integrity level is reported as an AppContainer after you install KB2532445 in Windows 7 SP1 and Windows Server 2008 R2 SP1
https://support.microsoft.com/?id=2894252

Update(s):

Apisetschema.dll 6.1.7601.22469

Apisetschema.dll 6.1.7601.22469

Appid.sys 6.1.7601.22469

Appidapi.dll 6.1.7601.22469

Appidcertstorecheck.exe 6.1.7601.22469

Appidpolicyconverter.exe 6.1.7601.22469

Appid-ppdlic.xrm-ms

Appidsvc.dll 6.1.7601.22469

Csrsrv.dll 6.1.7601.22469

Ntdll.dll 6.1.7601.22469

Ntkrnlpa.exe 6.1.7601.22469

Ntoskrnl.exe 6.1.7601.22469

Smss.exe 6.1.7601.22469

Smss.exe 6.1.7601.22469

2862565 AppLocker blocks administrators and other high privileged group’s users from executing files on a Windows 7 SP1-based or Windows Server 2008 R2 SP1-based computer
https://support.microsoft.com/?id=2862565

Update(s):

Apisetschema.dll 6.1.7601.22382

Appid-ppdlic.xrm-ms

Appid.sys 6.1.7601.22382

Appidapi.dll 6.1.7601.22382

Appidcertstorecheck.exe 6.1.7601.22382

Appidpolicyconverter.exe 6.1.7601.22382

Appidsvc.dll 6.1.7601.22382

Csrsrv.dll 6.1.7601.22382

Ntkrnlpa.exe 6.1.7601.22382

Ntoskrnl.exe 6.1.7601.22382

Smss.exe 6.1.7601.22382

2768362 You cannot open Office documents in Protected View if an AppLocker policy restricts the use of Office 2010
https://support.microsoft.com/?id=2768362

2750770 "This app has been blocked by your system administrator" error when you to start Microsoft Store apps
https://support.microsoft.com/?id=2750770

<Not a hotfix>

2749690 "0x800700C1: not a valid Win32 application" error when you create an AppLocker hash rule for a file in Windows 8, Windows Server 2012, Windows 7, or Windows Server 2008 R2
https://support.microsoft.com/?id=2749690

<Not a hotfix>

2659440 AppLocker path condition does not work when a file name contains international characters in Windows 7 or in Windows Server 2008 R2
https://support.microsoft.com/?id=2659440

Update(s):

Appid-ppdlic.xrm-ms

Appid.sys 6.1.7601.21915

Appidpolicyconverter.exe 6.1.7601.21915

Appidsvc.dll 6.1.7601.21915

Ntkrnlpa.exe 6.1.7601.21915

Ntoskrnl.exe 6.1.7601.21915

2568071 Nested Windows Installer (MSI) package failes to install when Applocker policy is enabled
https://support.microsoft.com/?id=2568071

<Not a hotfix>

2568041 You cannot access allowed applications that are managed by AppLocker in Windows 7 or in Windows Server 2008 R2
https://support.microsoft.com/?id=2568041

Update(s):

Appid.sys 6.1.7600.21010

Appid.sys 6.1.7601.17514

Appidapi.dll 6.1.7600.16385

Appidapi.dll 6.1.7600.16385

Appidcertstorecheck.exe 6.1.7600.16385

Appidcertstorecheck.exe 6.1.7600.16385

Appidpolicyconverter.exe 6.1.7600.21010

Appidpolicyconverter.exe 6.1.7601.21772

Appid-ppdlic.xrm-ms

Appid-ppdlic.xrm-ms

Appidsvc.dll 6.1.7600.21010

Appidsvc.dll 6.1.7601.21772

2532445 You can circumvent AppLocker rules by using an Office macro on a computer that is running Windows 7 or Windows Server 2008 R2
https://support.microsoft.com/?id=2532445

Update(s):

Api-ms-win-core-console-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-console-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-datetime-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-datetime-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-debug-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-debug-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-delayload-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-delayload-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-errorhandling-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-errorhandling-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-fibers-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-fibers-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-file-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-file-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-handle-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-handle-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-heap-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-heap-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-interlocked-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-interlocked-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-io-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-io-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-libraryloader-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-libraryloader-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-localization-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-localization-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-localregistry-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-localregistry-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-memory-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-memory-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-misc-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-misc-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-namedpipe-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-namedpipe-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-processenvironment-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-processenvironment-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-processthreads-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-processthreads-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-profile-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-profile-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-rtlsupport-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-rtlsupport-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-string-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-string-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-synch-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-synch-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-sysinfo-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-sysinfo-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-threadpool-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-threadpool-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-util-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-util-l1-1-0.dll 6.1.7601.21798

Api-ms-win-core-xstate-l1-1-0.dll 6.1.7600.21035

Api-ms-win-core-xstate-l1-1-0.dll 6.1.7601.21798

Api-ms-win-security-base-l1-1-0.dll 6.1.7600.21035

Api-ms-win-security-base-l1-1-0.dll 6.1.7601.21798

Appid.sys 6.1.7600.21035

Appid.sys 6.1.7601.21798

Appidapi.dll 6.1.7600.16385

Appidapi.dll 6.1.7600.16385

Appidcertstorecheck.exe 6.1.7600.16385

Appidcertstorecheck.exe 6.1.7600.16385

Appidpolicyconverter.exe 6.1.7600.21035

Appidpolicyconverter.exe 6.1.7601.21798

Appid-ppdlic.xrm-ms

Appid-ppdlic.xrm-ms

Appidsvc.dll 6.1.7600.21035

Appidsvc.dll 6.1.7601.21798

Conhost.exe 6.1.7600.21035

Conhost.exe 6.1.7601.21798

Kernel32.dll 6.1.7600.21035

Kernel32.dll 6.1.7601.21798

Kernelbase.dll 6.1.7600.21035

Kernelbase.dll 6.1.7601.21798

Ntkrnlpa.exe 6.1.7600.21035

Ntkrnlpa.exe 6.1.7601.21798

Ntoskrnl.exe 6.1.7600.21035

Ntoskrnl.exe 6.1.7601.21798

Winsrv.dll 6.1.7600.21035

Winsrv.dll 6.1.7601.21798

983551 Windows 7 or Windows Server 2008 R2 stops responding at the "Please wait" screen before you are requested to press Ctrl+ALT+DEL
https://support.microsoft.com/?id=983551

Appid.sys 6.1.7600.20710

Appidapi.dll 6.1.7600.16385

Appidcertstorecheck.exe 6.1.7600.16385

Appidpolicyconverter.exe 6.1.7600.20710

Appid-ppdlic.xrm-ms

Appidsvc.dll 6.1.7600.16385

976922 The "Run only allowed Windows applications" Group Policy setting displays no entries
https://support.microsoft.com/?id=976922

<Not a hotfix>