Windows Server 2016 Cumulative Updates fail since KB5040434
- Thread starter Pihaar
- Start date
Hi,
Please run the following command in an elevated prompt and copy paste the result in your next post.
Please run the following command in an elevated prompt and copy paste the result in your next post.
Code:
certutil -hashfile C:\Windows\WinSxS\amd64_microsoft.security.powershell.cmdlets_31bf3856ad364e35_10.0.14393.4046_none_91e95322f8611f0b\SecurityCmdlets.dll-Help.xml SHA256Do you mean with elevated run as administrator?
Code:
C:\Windows\system32>certutil -hashfile C:\Windows\WinSxS\amd64_microsoft.security.powershell.cmdlets_31bf3856ad364e35_10.0.14393.4046_none_91e95322f8611f0b\SecurityCmdlets.dll-Help.xml SHA256
301.4619.0:<2024/10/26, 9:32:38>: 0xc0000006 (NT: 0xc0000006 STATUS_IN_PAGE_ERROR): 0x0 @ 0x00007FF986D05977
CertUtil: -hashfile-Befehl ist fehlgeschlagen: 0xc0000006 (NT: 0xc0000006 STATUS_IN_PAGE_ERROR)
458.2025.0:<2024/10/26, 9:32:38>: 0x80073afc (WIN32: 15100 ERROR_MUI_FILE_NOT_FOUND)
458.1949.0:<2024/10/26, 9:32:38>: 0x80073afc (WIN32: 15100 ERROR_MUI_FILE_NOT_FOUND)
820.1043.0:<2024/10/26, 9:32:38>: 0x80073afc (WIN32: 15100 ERROR_MUI_FILE_NOT_FOUND)
820.1054.0:<2024/10/26, 9:32:38>: 0x80073afc (WIN32: 15100 ERROR_MUI_FILE_NOT_FOUND)
CertUtil: Die Anweisung bei "0x%p" verwies auf Speicher bei "0x%p". Die erforderlichen Daten wurden aufgrund eines E/A-Fehlers in "0x%x" nicht an den Arbeitsspeicher übertragen.
449.199.0:<2024/10/26, 9:32:38>: 0xc0000006 (NT: 0xc0000006 STATUS_IN_PAGE_ERROR)
458.2025.0:<2024/10/26, 9:32:38>: 0x80073b01 (WIN32: 15105 ERROR_MUI_FILE_NOT_LOADED)
458.1949.0:<2024/10/26, 9:32:38>: 0x80073b01 (WIN32: 15105 ERROR_MUI_FILE_NOT_LOADED)
820.1043.0:<2024/10/26, 9:32:38>: 0x80073b01 (WIN32: 15105 ERROR_MUI_FILE_NOT_LOADED)
820.1054.0:<2024/10/26, 9:32:38>: 0x80073b01 (WIN32: 15105 ERROR_MUI_FILE_NOT_LOADED)Yes, that's correct. Could you please attach a copy of this folder to look at.
C:\Windows\WinSxS\amd64_microsoft.security.powershell.cmdlets_31bf3856ad364e35_10.0.14393.4046_none_91e95322f8611f0b
C:\Windows\WinSxS\amd64_microsoft.security.powershell.cmdlets_31bf3856ad364e35_10.0.14393.4046_none_91e95322f8611f0b
That's odd, the "SecurityCmdlets.dll-Help.xml" is completely empty, so something is modifying this file during the reboot?
Which security software is installed, I would also check for potential malware just to be sure this server is not infected!
Which security software is installed, I would also check for potential malware just to be sure this server is not infected!
I would suggest to use ESET Online Scanner.
Download
ESET Online Scanner and save it to your desktop.
Download
- Right-click on esetonlinescanner_enu.exe and select Run as Administrator.
- When the tool opens select the English language and click on Get Started.
- Accept the license agreement, and select in the "Before we start..." screen the following options:
- No thanks, I am not interested. (if you don't want to share anonymous data with ESET.)
- Enable feedback system (recommended).
- Click on Continue and click on the Full Scan option.
- Select Enable ESET to detect and quarantine potentially unwanted applications - then click Start scan. (This may take some time.)
- When the scan is ready and if threats have been detected, select Save scan log. Save it to your desktop as Eset.txt. Click on Continue.
- ESET Online Scanner will now ask if you'd like to turn on the Periodic Scan feature. Disable this option if you don't want to plan the periodic scan.
- Click on Continue If you left feedback, click Submit and continue. If not, Close without feedback.
- Attach the scan log Eset.txt to your next reply.