Thanks, there is a link to this old thread:
The user certificate store of the Local System account. Curious.
So if IIS runs under a special account, the user certificate store of that account should be checked.
But it's impossible to do that in a Shared Hosting environment.