karthik's blog

While troubleshooting, most of the times you can see Windows OS is throwing error in Hexadecimal code. You may find this error in event viewer or msi logs, or CBS logs. Most of the time there wont be any description for this error code in the logs or events. You can convert this error codes into Simple error description. Here I am going to show how to do this. Lets take the below error code as an example. You can see from the above error message that calling of vbscript.dll was failed with error code 0x80004005. The error code is in Hexadecimal. You have to convert the code into decimal before finding out its error description. Lets convert the code 0x80004005 in to decimal. You donot need to convert whole number into decimal. Take only last four or three last digits from the error code. Here we are going to convert last 3 digit of the error code "005".  Open the calculator in Programmer mode.   Enter the value in Hexadecimal Click on Decimal to ge

  resolution for “Unable to Start Windows Event Log service”. When you try to start the Windows Event Log service from the services console on either Windows Server 2008 computers, the Windows Event Log service fails. Additionally, you receive the following error message: "Error 5: Access denied" CAUSE This problem happens if any of the following conditions are true. 1. The built-in security group EventLog missing permission on folder C:\Windows\System32\winevt\Logs 2. Local Service account do not have default permission on registry key HKLM\Software\Microsoft\Windows\CurrentVersion\Reliability *** Resolution *** Default permissions on C:\Windows\system32\winevt\logs Folder should be Authenticated user - List folder/read data, Read attributes, Read Extended attributes, Read permissions Administrators - Full control SYSTEM - Full control EventLog - Full control To restore default permissions on folder "C:\Windows\system32\winevt\logs", follow these steps. 1. Rig

Microsoft provides two types of cluster: 1. Network load balancing 2. Windows Fail over cluster (For 2008 on wards servers), Microsoft Cluster service (For 2003 and before servers). First one is to distribute the network traffic on servers Using virtual IP address. NLB (Network Load Balancing) Suppose there are two nodes in NLB , both the nodes will host the website. Client accessing the website will be redirected to anyone of the node depending upon configuration of NLB (By default it works on round robin methods) Microsoft Cluster Service (MSCS) Unlike NLB , in MSCS, resource will be online at only one of the nodes at a time . Microsoft Cluster Service is based on the shared-nothing clustering model. The shared-nothing model dictates that while several nodes in the cluster may have access to a device or resource, the resource is owned and managed by only one system at a time. There are mainly three Components of MSCS: 1.Cluster service 2. Resource monitor 3.Resource DLL. Suppose You

The default user profile is located in C:\Users\default and it is used for customizing the user profiles for the new users logging in to the machine. When the new user logs into the machine it will fetch the profile configuration information from the default folder and creates its own new user profile in C:\users\%username%.   For examples if we decide what are the favorites links should appear in new user’s internet explorer, we need to just copy the favorite links to the default folder in C:\users\default\.   So that the new user logs in to the machine for the first time, all the favorites will be copied into the C:\users\%username%\favorites folder. I have found an issue where the favorites links are not copying to the new users directory. The issue was that the files are copying from the default folder to the new user’s favorites  folder when he logs in. But it got deleted automatically when user launches IE. I have reset the IE settings but still the issue was persist. Late

Here I am going to show you how to analyze the minidump file to identify the cause of BSOD which  happend in my laptop. The minidump file will be located in C:\Windows\minidump\ where we can find the dump file in date month year time format. eg: 150513-22994-01.dmp. You have to download the Windbg tool from the below link to analyze the minidump file. http://msdn.microsoft.com/en-US/windows/hardware/gg463009/ After installation of the Windbg tool, you have to configure the sysmbol path before analayzing the dump file. You can set the sysmbol path by going to File menu, Select Symbol file path and add the below line SRV*c:\localsymbols*http://msdl.microsoft.com/download/symbols Now your Windbg tool is ready for analyzing the dump file. You can open the dump file by clicking on File menu and then open crashdump. Then enetr the command !analyze -v in the console as shown in the below figure. After executing the command you can see a lot of information.  If you sc

If you want to enable features like Telnet , ISS in Windwso 7 you may have to go to Windows feature on or off from Programs and features of control panel. Some times you may get a blank window as below There may be multilple reason you may get this above issue. I have come accross same issue and resolved it. The generic steps for resolving the issue is explained here. Step 1: Perform a SFC /Scannow to scan all protected system files and repair it. Ref: http://support.microsoft.com/kb/931712 Step 2 : If step 1 doesnot helped you, then run System update readiness tool on the machine and look for the errors generated in C:\windows\logs\cbs\checksur.log. You can download the system update readiness tool  from microsoft. 32bit : http://www.microsoft.com/en-us/download/details.aspx?id=3132 64bit : http://www.microsoft.com/en-us/download/details.aspx?id=20858 I ran the tool on the problamatic machine and found the following entries in it. ------------------------------------

Sfc /scannow will inspect all of the important Windows files on your computer, including Windows DLL files. If System File Checker finds an issue with any of these protected files, it will replace it. You can find the sfc logs inside CBS.log under C:\Windows\logs\CBS\ folder. There will be a lot of entries in cbs logs. You can filter out the log for SFC by running the below command.  findstr /c:"[SR]" cbs.log > sfcdetails.txt The above command will search for the string [SR] and if it found , then it copies the corresponding entry in to the sfcdetails.txt Below is sample text extracted from CBS log by using the above command ----------------------------------------------------------------------------------------------------------- 2013-06-24 12:55:44, Info                  CSI    00000210 [SR] Verify complete 2013-06-24 12:55:44, Info                  CSI    00000211 [SR] Verifying 100 (0x00000064) components 2013-06-24 12:55:44, Info                  CSI    000