Virtual server on Windows Server 2012 R2 - BSOD

August 21, 2018, 2:46 am

≫ Next: "settings could not be read" issue on language copy settings

Hi Guys,

All of the sudden a virtual machines started periodically go into BSOD.

Crash Dump Analysis provided by OSR Open Systems Resources, Inc. (http://www.osr.com) 
Online Crash Dump Analysis Service 
See http://www.osronline.com for more information 
Windows 8 Kernel Version 9600 MP (8 procs) Free x64 
Product: Server, suite: TerminalServer DataCenter 
Built by: 9600.19067.amd64fre.winblue_ltsb_escrow.180619-2033 
Machine Name: 
Kernel base = 0xfffff803`c5076000 PsLoadedModuleList = 0xfffff803`c5341610 
Debug session time: Mon Aug 13 21:45:07.299 2018 (UTC - 4:00) 
System Uptime: 0 days 7:14:49.311 
******************************************************************************* 
*                                                                             * 
*                        Bugcheck Analysis                                    * 
*                                                                             * 
******************************************************************************* 

SYSTEM_SERVICE_EXCEPTION (3b) 
An exception happened while executing a system service routine. 
Arguments: 
Arg1: 00000000c0000005, Exception code that caused the bugcheck 
Arg2: 0000000000000000, Address of the instruction which caused the bugcheck 
Arg3: ffffd000208860a0, Address of the context record for the exception that caused the bugcheck 
Arg4: 0000000000000000, zero. 

Debugging Details: 
------------------ 

TRIAGER: Could not open triage file : e:\dump_analysis\program\triage\modclass.ini, error 2 

EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at "0x%08lx" referenced memory at "0x%08lx". The memory could not be "%s". 

FAULTING_IP: 
+13 
00000000`00000000 ??              ??? 

CONTEXT:  ffffd000208860a0 -- (.cxr 0xffffd000208860a0) 
rax=0000000000000000 rbx=000000000f1212a5 rcx=fffff9014318bca8 
rdx=0000000080003d42 rsi=fffff9014318bca8 rdi=0000000080003d42 
rip=0000000000000000 rsp=ffffd00020886ac8 rbp=0000000080003d42 
 r8=000000000f1212a5  r9=0000014200000690 r10=fffff96000922aa0 
r11=ffffd00020886a40 r12=fffff9600019ae80 r13=000000d29dfa0b30 
r14=fffff90140162010 r15=0000000000000001 
iopl=0         nv up ei pl zr na po nc 
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00010246 
00000000`00000000 ??              ??? 
Resetting default scope 

DEFAULT_BUCKET_ID:  WIN8_DRIVER_FAULT_SERVER 

BUGCHECK_STR:  0x3B 

PROCESS_NAME:  dwm.exe 

CURRENT_IRQL:  0 

LAST_CONTROL_TRANSFER:  from fffff96000918da3 to 0000000000000000 

STACK_TEXT:  
ffffd000`20886ac8 fffff960`00918da3 : 00000000`0f1212a5 00000000`80003d42 fffff901`423787a0 fffff960`001a3704 : 0x0 
ffffd000`20886ad0 fffff960`0044b504 : fffff901`423787a0 00000000`0f1212a5 000012a5`0f1212a5 00000142`00000690 : cdd!RmtAssociateSharedSurface+0x5f 
ffffd000`20886b20 fffff960`002b4c84 : 00000000`0f1212a5 fffff901`423787a0 00000000`80003d42 00000000`00000000 : win32k!MulAssociateSharedSurface+0x24 
ffffd000`20886b50 fffff960`002b4a1b : 00000000`c000000d ffffd000`20886cc0 000000d2`9c82eef0 00000000`00005902 : win32k!GreSetRedirectionSurfaceSignaling+0x110 
ffffd000`20886bc0 fffff803`c51db3a3 : ffffe000`4db57880 00000000`00000000 000000d2`00000000 ffffe000`49b97d00 : win32k!NtGdiHLSurfSetInformation+0x243 
ffffd000`20886c40 00007ffc`5b2027ca : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x13 
000000d2`9c82ee28 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x7ffc`5b2027ca 


FOLLOWUP_IP: 
cdd!RmtAssociateSharedSurface+5f 
fffff960`00918da3 488d4c2420      lea     rcx,[rsp+20h] 

SYMBOL_STACK_INDEX:  1 

SYMBOL_NAME:  cdd!RmtAssociateSharedSurface+5f 

FOLLOWUP_NAME:  MachineOwner 

MODULE_NAME: cdd 

IMAGE_NAME:  cdd.dll 

DEBUG_FLR_IMAGE_TIMESTAMP:  54506444 

STACK_COMMAND:  .cxr 0xffffd000208860a0 ; kb 

FAILURE_BUCKET_ID:  X64_0x3B_cdd!RmtAssociateSharedSurface+5f 

BUCKET_ID:  X64_0x3B_cdd!RmtAssociateSharedSurface+5f 

Followup: MachineOwner

Looks like something related to display driver.

Run sfc /scannow - nothing found related to resource integrity violations.

Microsoft Windows [Version 6.3.9600] 
(c) 2013 Microsoft Corporation. All rights reserved. 

C:\Users\administrator.INCLOUD>sfc /scannow 

Beginning system scan.  This process will take some time. 

Beginning verification phase of system scan. 
Verification 100% complete. 

Windows Resource Protection did not find any integrity violations.

Checked updates and programs installed close to the day it happened. Can't see any suspicious.

Please advise what else should be checked.

↧

"settings could not be read" issue on language copy settings

August 20, 2018, 3:22 am

≫ Next: NT Testing TCP Tool for Linux - How to test network speed Windows Versus Linux?

≪ Previous: Virtual server on Windows Server 2012 R2 - BSOD

I have an issue on our server 2012 R2 server. with users getting the wrong date format due to the windows display language being US.

I changed this on the server and ran copy settings to "welcome screen" and "new user accounts" the welcome screen shows fine but new accounts show as above error after applying and going back in

I have ran an SFC scan and it found some errors and rebooted but still hasn't solved this issue.

thank you.

Mahesh

↧

NT Testing TCP Tool for Linux - How to test network speed Windows Versus Linux?

August 21, 2018, 6:42 am

≫ Next: advice on automatic migration of local user profiles to domain user profiles

≪ Previous: "settings could not be read" issue on language copy settings

NT Testing TCP Tool for Linux - How to test network speed Windows Versus Linux?

How can i do network speed test using NTTTCP tool, in Linux? There is a port for Linux?

↧

advice on automatic migration of local user profiles to domain user profiles

August 12, 2018, 5:15 pm

≫ Next: Can't log in with Domain Account

≪ Previous: NT Testing TCP Tool for Linux - How to test network speed Windows Versus Linux?

I need to find a best way to migrate all the user local profiles to domain user profiles automatically after the computers join the domain. Can someone give the advice on the best way or best tool to do this migration including joining all the computers into the domain automatically? Our domain is 2012 R2 domain.

Thank you very much!!!

↧

Can't log in with Domain Account

August 21, 2018, 6:51 am

≫ Next: Roll-up KB4338818 Fails in Server 2008 R2 SP1

≪ Previous: advice on automatic migration of local user profiles to domain user profiles

We are in the process of replacing some of our Windows 2008 R2 servers. I have a couple that will not allow us to login with a domain account and we have to use the local administrator account. Not really an issue as they are being replaced.

However, if I create my new serer and give it the same name the login issue moves to the new server. If I give the new server a different name it works fine but due to how our desktop redirection and drive mappings work the server needs to be the same.

I've left the domain, deleted the server and rejoined it several times with no change.

I've confirmed the date and time are correct.

I asked our DNS server technician to remove any DNS records and I've even checked the Attribute editor and confirmed that dNSHostName and ServicePrincipalName entries are correct.

Suggestions?

↧

Roll-up KB4338818 Fails in Server 2008 R2 SP1

July 17, 2018, 8:32 am

≫ Next: Can't start Server service - Error 67

≪ Previous: Can't log in with Domain Account

I am unable to install KB4338818 on three different 2008 R2 SP1 servers in three different networks. Error 80070020.

Any help?

↧

Can't start Server service - Error 67

August 21, 2018, 9:29 am

≫ Next: Windows Server 2016 Event 1000, Application Error Faulting application name: mmc.exe

≪ Previous: Roll-up KB4338818 Fails in Server 2008 R2 SP1

I am having an issue with a standard Windows 2008 R2 server. It is just used as a Terminal Server.

The Server service will not start. I get Error 67: The network name cannot be found.

I have no UNC path in the path variable.

srvsvc.dll is 6.1.7601.17514 dated 11/20/2010

DNS is working properly.

I don't know what else to try to get this working again.. Any help would be appreciated.

↧

Windows Server 2016 Event 1000, Application Error Faulting application name: mmc.exe

July 31, 2018, 5:30 pm

≫ Next: ROBOCOPY TOOL

≪ Previous: Can't start Server service - Error 67

Faulting application name: mmc.exe, version: 10.0.14393.2097, time stamp: 0x5a820e5d
Faulting module name: GPOAdmin.dll, version: 10.0.14393.2068, time stamp: 0x5a7e7062
Exception code: 0xc0000005
Fault offset: 0x00000000000be1d6
Faulting process id: 0x3a8
Faulting application start time: 0x01d428f2d03e703a
Faulting application path: C:\Windows\system32\mmc.exe
Faulting module path: C:\Windows\System32\GPOAdmin.dll
Report Id: a87fb79e-672e-4311-b356-b574aa4c2245
Faulting package full name:
Faulting package-relative application ID:

↧

ROBOCOPY TOOL

August 21, 2018, 1:38 pm

≫ Next: DHCP split scope question

≪ Previous: Windows Server 2016 Event 1000, Application Error Faulting application name: mmc.exe

We are planning to copy files from one folder (shared path) to another Folder (Shared path).

How to copy files using ROBOCOPY.

The Robocopy should contains below parameters:

1. Should not delete files at Source Folder.

2. Should not copy already existed files in Target (If file already there in target it discard/ignore)

3. Should not delete any files at Target Folder

Please help me that how to right ROBOCOPY

↧

DHCP split scope question

August 21, 2018, 2:06 pm

≫ Next: SYSTEM_SERVICE_EXCEPTION BSOD during Windows Server 2012 R2 Standard installation

≪ Previous: ROBOCOPY TOOL

Hi,

We have Windows 2008 R2 domain. I have 2 DHCP servers and I set up the load balance by using split-scope.

I noticed the IP exclusion range are different on the same scope on the two DHCP servers. I am confused why this happened.

Please advise!

Thanks in advance!

Grace

↧

SYSTEM_SERVICE_EXCEPTION BSOD during Windows Server 2012 R2 Standard installation

August 16, 2018, 2:03 pm

≫ Next: Access share folder without prompting for password

≪ Previous: DHCP split scope question

Hey guys,

I'm attempting to get a Windows Server 2012 R2 Standard Edition installed on a custom SuperMicro build consisting of:

Intel Xeon E3-1245

Supermicro X11-SAE motherboard

16GB (8GB x 2) PC4-17000 RAM

x2 Samsung 860 Pro SSD in RAID1 mirrored

Upon configuring the RAID and BIOS, I boot into the installation media, which is a Windows Server 2012 R2 Standard DVD, I can get all the way through where it begins installing. It copies the files then immediate blue screens with SYSTEM_SERVICE_EXCEPTION. I have tried different RAM, breaking the raid configuration and trying a single drive, and at this point I've even ordered a new motherboard and I tried that, all to no avail.

Any help would be greatly appreciated. Thanks in advance!

↧

Access share folder without prompting for password

March 27, 2011, 12:21 am

≫ Next: Create new domain user by copy and home directory

≪ Previous: SYSTEM_SERVICE_EXCEPTION BSOD during Windows Server 2012 R2 Standard installation

Dear Techies,

I am having windows 2008 server in my environment and i have shared one folder with every one access. It is prompting password when ever users access share folder. But I don't want any password windows to be prompt to network users and they have to get access to the share folder easily. Can any one of you help to take windows Default restrictions out.

Any immediate help will be highly Appreciated.

Thanks in Advance....

Cheers,

Gowtham.

↧

Create new domain user by copy and home directory

August 21, 2018, 11:31 pm

≫ Next: the requested security information is either unavailable or cannot be displayed

≪ Previous: Access share folder without prompting for password

If I create a new domain user at Active Directory by using "Copy" option, the home directory of the new account will also copied from the account I copy from, eg. \\Server\user1$ , but if I change the path to \\Server\user2$ , an error show the path not found. How can I create \\Server\user2$ manually?

↧

the requested security information is either unavailable or cannot be displayed

February 8, 2012, 3:30 am

≫ Next: Poolmon Tag LS$S for SMB reads 16GB in the bytes column, possible memory leak, total RAM 24GB.

≪ Previous: Create new domain user by copy and home directory

Hi all,

I've a file server Windows 2008 (not R2) with Service Pack 2, 32 bit. I've a shared directory this directory is the target of a remote FTP server. In this directory I've some files (that a user has put in via FTP) but if I try to view their NTFS settings I get:

"the requested security information is either unavailable or cannot be displayed"

????

↧

Poolmon Tag LS$S for SMB reads 16GB in the bytes column, possible memory leak, total RAM 24GB.

August 8, 2018, 8:44 am

≫ Next: Windows Deployment Services

≪ Previous: the requested security information is either unavailable or cannot be displayed

High memory Usage on Windows 2008 R2 Sp1 DC problem. - Physical machine, Not a VM.

Problem started approx 4 months ago. Seeing High memory Usage on Windows 2008 R2 Sp1 DC. Paged Pool memory seems very high at approx 16GB. The top tag LS$S reads 16GB in the bytes column and the Tag relates to srv.sys and srv2.sys drivers. We installed KB4056897 in April and KB4103718 Addresses an issue that may cause a memory leak on SMB servers after installing KB4056897. But our servers do not match the exact conditions detailed in KB4103718.

From Poolmon we see Tag: LS$S Allocs at 1000,016,900 bytes and Frees at 829,796,212 bytes and Diff at 170,220,677 bytes we also see LSASS.exe Memory(Private) at over 8GB in Task Mgr.

Other DC's also have very high memory usage and Paged Pool memory usage is increasing daily. We reboot the servers to prevent them from running out of resources, it could take a few months for them to deplete their resources.

Are their any known issues that you are aware of regarding SMB and paged pool memory that has arisen recently?

Regards,

Derek

↧

Windows Deployment Services

August 20, 2018, 4:07 am

≫ Next: Rename windows server 2012

≪ Previous: Poolmon Tag LS$S for SMB reads 16GB in the bytes column, possible memory leak, total RAM 24GB.

Hi,

I am facing one issue with Windows Deployment Services on Server 2012 R2 Standard Edition, In UEFI mode client cant be contact with the server, every time I got an error Press F1 to retry boot.

In Legacy mode every thing is working good, but we need to install OS on UEFI mode.

Can someone please help me to solve this problem.

Thanks in advance.

Arora, Jitender

↧

Rename windows server 2012

July 11, 2018, 9:11 am

≫ Next: An attempt was made to reset an account's password for Exchange 2010 Database account?

≪ Previous: Windows Deployment Services

Hello Everyone!

I was asked to rename the Windows Server 2012 oldname eg: STweb to newname:TSweb which has ADDS,IIS7,MS SQL server2012 and MySQL workbench .There are close to 900 website hosted on this server. User access their folders through ftp and shared drive. Though I read several blogs but I did not get a clear picture yet . What I am planning to do is to rename the server using netdom utility after which i will be renaming MS SQL server. For IIS i think i might not involve much changes but I require a script that renames all the shared network drive. Please guide me through this process and also let me know if have some misunderstanding with this process.

↧

An attempt was made to reset an account's password for Exchange 2010 Database account?

August 22, 2018, 12:02 pm

≫ Next: world of tank blitz

≪ Previous: Rename windows server 2012

Hi,

I've never seen this before. Why would there be an attempt to reset an account password of our Exchange 2010 DAG database? I didn't even know that DAG uses an account (for example, "CORP.DAG$"). I know that SQL does this from time to time but never seen in Exchange. Is this something routine or normal?

21 Aug 2018 06:58:13 PM
Computer: [DOMAIN CONTROLLER]
Monitor: [A User Account was changed]
Description:
* Event Time: 21 Aug 2018 06:57:28 PM
* Source: Microsoft-Windows-Security-Auditing
* Event Log: Security
* Type: Audit Success
* Event ID: 4724
* Event User: N/A
* An attempt was made to reset an account's password.

Subject:
Security ID: DOMAIN\CORP.DAG$ {S-1-5-21-xx}
Account Name: CORP.DAG$
Account Domain:DOMAIN
Logon ID: 0x6xx

Target Account:
Security ID: DOMAIN\CORP.DAG$ {S-1-5-21-xx}
Account Name: CORP.DAG$
Account Domain:DOMAIN

↧

world of tank blitz

August 22, 2018, 2:03 pm

≫ Next: Losing iSCSI conenctions to EqualLogic SAN

≪ Previous: An attempt was made to reset an account's password for Exchange 2010 Database account?

I am having trouble with updating World of Tank Blitz. Every time I go to play World of Tank Blitz the log in screen comes up and say's I need to update game so I click on update and it takes me to Microsoft store screen were it tells me I need to update world of tank blitz I click on it and it takes me to another window and to play game click here I click it and it takes me right back were I started.

↧

Losing iSCSI conenctions to EqualLogic SAN

August 22, 2018, 3:01 pm

≫ Next: Windows Deployment Services

≪ Previous: world of tank blitz

We have a windows 2008 R2 with SQL. We configure 4 NICs connecting to target/SAN. We have some problems to access the SQL database recently. After reviewing both SAN Management console and iSCSI, we find there are only two connections show on iSCSI and SAN. Whenever we add other two connections, they are disappeared in a few seconds on both iSCSI and SAN. There are no errors in the Event Viewer and SAN log. Any suggestions?

Bob Lin, MCSE & CNE Networking, Internet, Routing, VPN Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net How to Install and Configure Windows, VMware, Virtualization and Cisco on http://www.HowToNetworking.com

↧