For details about moving certificates, see
https://technet.microsoft.com/en-us/library/cc771103(v=ws.11).aspx.
To confirm that any issue is caused by the
COMODO RSA Code Signing CA and
Verisign Class 3 Code Signing 2010 CA certificates being installed in the wrong store:
- In an administrative, UAC-elevated cmd.exe prompt, run the following command:
mmc.exe
- In the Console1 - [Console Root] window menu, select File, Add/Remove Snap-in.
- Select Certificates and click Add.
- In the Certificates snap-in window, select Computer account and click Next.
- Select Local computer: (the computer this console is running on) and click Finish.
- In the Add/Remove Snap-ins window, click OK.
- In the Console1 - [Console Root] window, expand Console Root, Certificates (Local Computer).
- Select Trusted Root Certification Authorities.
- Select the subfolder Certificates.
In the right panel, you see the following two certificates:
COMODO RSA Code Signing CA
VeriSign Class 3 Code Signing 2010 CA
The certificates must ideally, be present only in the Intermediate Certification Authorities store.