Seems there are good reasons to remove any Microsoft keys after all.. http://arstechnica.com/security/2012/06/flame-malware-was-signed-by-rogue-microsoft-certificate/ "rogue"