IIS6 web application security exception

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ IIS
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - IIS 5.0 and ADO locking up I've run into this problem recently and I haven't been able to pin it on anything. I've been doing ADO connections to Access databases for small databases before, but now they aren't working. I've double-checked the ASP code on two different pages, one that works and the new one and they are completely similar, I've even copied it over, but changed the paths. Here is a sample: <% Do While Not rsCat.EOF %>  <% rsCat.MoveNext Loop %> If I remove that part of the code the page works fine, but obviously doesn't show anything. The problem I'm having is that this will lock up the current site on my web server until I restart the site. I also get a few errors in the system event log such as Event ID 37, "Out of process application '/LM/W3SVC/1/Root' terminated unexpectedly." or "The Remote Procedure Call Failed and Did Not Execute." in the browser. The only help I've come across is that a possible Microsoft Patch for RPC could have caused it. I've updated to MDAC 2.8 on a different web server, but it seems to still have the same issues. The databases created earlier and the ASP pages they use still work fine, it seems to be anything I try to create now. Thanks in advance for any insight. Tag: IIS6 web application security exception Tag: 309768
  - 2
    - Custom 500 Error Pages I've set up a custom 500 error ASP page that displays when I deliberately force a 500 error. In IE this page displays AS LONG AS THE VBSCRIPT CODE doesn't exceed 165 characters. Netscape thinks I'm trying to download a file of type application/octet-stream. Is there anything I can tweak in IIS to resolve this problem? I already posted this problem to asp.general but I got no replies. Tag: IIS6 web application security exception Tag: 309760
  - 3
    - IIS6 Server Application Unavailable I know there are tons of posts regarding this issue with IIS5.1 and there are quite a few with IIS6. My problem is a bit different though. I have ASP and ASP.NET running on Windows Server 2003. Whenever I hit an ASP.NET page, I get the Server Application unavailable message and it says to look in the event log. So I did... Nothing. So while reading through several posts it talks about security settings. I changed them all... Still Application Unavailable. Next I went into the App Pool that I have my site running under (by default it is set to run under NETWORK SERVICE) and I changed this to Local System. By gosh, the Application Unavailable message goes away. I don't want to run under Local System. I am sure this is just a permission problem, but I am not sure which folder to set permissions to that I haven't done already. Here is what I have done.... installroot\Microsoft.NET I have given full control to the NETWORK SERVICE, ASPNET, IUSR_MachineName, and IWAM_MachineName systemroot\system32 I have given Read & Execute, Read, and List Folder Contents permission to NETWORK SERVICE, ASPNET, IUSR_MachineName, and IWAM_MachineName systemroot\Temp I have given Full Control to NETWORK SERVICE, ASPNET, IUSR_MachineName, and IWAM_MachineName Documents and settings\MachineName I have given Full Control to NETWORK SERVICE, ASPNET, IUSR_MachineName, and IWAM_MachineName application directory I have given Full Control to NETWORK SERVICE, ASPNET, IUSR_MachineName, and IWAM_MachineName Is there something I missed? Thanks, Keith Tag: IIS6 web application security exception Tag: 309759
  - 4
    - Base Exception:System.OutOfMemoryException Hi, We are running IIS 5.0 cluster with cisco local director. We are running a website on 2 webservers and I have been observing that from past few days we have are getting this error message of and on. Error Message Remote IP:66.122.242.65 Host:216.211.212.22 Platform:Win98 Browser:IE Type:IE6 Version:6.0 Cookies:True Path: /frmChangePhone.aspx Full Path: /frmChangePhone.aspx? dcid=57&adid=89&hfid=4448tsid=7877&ptptid=&ptid=78787878&s fid=1291&qqdi=8&tmid=8989&attid=898&glhdh=12_2313_5545_857 876_55__12&coslid=erw_FSadf_FSDsf_fsfds_fsf&fksf=42&nmncnz m=535&nmmnmf=66&bnbcbn=4444&afid=22&crid=12&prid=305&rpid= 118&pmid=&zpcd=92122&guid=&rtid=7000970&stid=.7WaaTN6umc- D0nx_uXLQeOvOvxnsFEW4Q&d1cid=ws3&a2did=89&4hfid=34348&tasi d=7873e2&agtid=&ptsid=7834444&sfiad=391&cqqdi=2123&btmid=8 93232&gattid=8&lhdh=51215_857876_55__12&slid=erw_FS333adf_ &fksa=412&nnzm=5123125&mmnf=12366&bnbcbn=114&ZipCode=92122 Referer: http://www.a1wireless.com/frmChangePhone.aspx? dcid=57&adid=89&hfid=4448tsid=7877&ptptid=&ptid=78787878&s fid=1291&qqdi=8&tmid=8989&attid=898&glhdh=12_2313_5545_857 876_55__12&coslid=erw_FSadf_FSDsf_fsfds_fsf&fksf=42&nmncnz m=535&nmmnmf=66&bnbcbn=4444&afid=22&crid=12&prid=305&rpid= 118&pmid=&zpcd=92122&guid=&rtid=7000970&stid=.7WaaTN6umc- D0nx_uXLQeOvOvxnsFEW4Q&d1cid=ws3&a2did=89&4hfid=34348&tasi d=7873e2&agtid=&ptsid=7834444&sfiad=391&cqqdi=2123&btmid=8 93232&gattid=8&lhdh=51215_857876_55__12&slid=erw_FS333adf_ &fksa=412&nnzm=5123125&mmnf=12366&bnbcbn=114&ZipCode=92122 Zip Code: 92122 Product Code: 305 Plan Code: 118 AffiliateID: 22 CarrierID: 12 PromotionID: Error Msg: Exception of type System.Web.HttpUnhandledException was thrown. Error Src: System.Web Stack: at System.Web.UI.Page.HandleError(Exception e) at System.Web.UI.Page.ProcessRequestMain() at System.Web.UI.Page.ProcessRequest() at System.Web.UI.Page.ProcessRequest(HttpContext context) at System.Web.CallHandlerExecutionStep.System.Web.HttpApplica tion+IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) Target:HandleError Base Exception:System.OutOfMemoryException: Exception of type System.OutOfMemoryException was thrown. Can anyone tell me what does System.OutOfMemoryException means or indicates here? Any precautionary steps we can take to prevent this error popping up. Any sort of help would be highly appreciated. Regards Ripul Tag: IIS6 web application security exception Tag: 309758
  - 5
    - 007 Tag: IIS6 web application security exception Tag: 309753
  - 6
    - server extentions I am running a Windows 2003 server web edition with frontpage 2002 extentions on it and IIs6. When I try to publish a website to the server it gives me an error " server does not have fp server extentions installed. Some of the pages server components like forms etc will not run either. What can be done i am totally frustrated pls help Tag: IIS6 web application security exception Tag: 309752
  - 7
    - Improving performance of a specific Cold Fusion webpage I run a third party application that uses compiled Cold Fusion web pages. I have been tracking any slow processes through Cold Fusion and determined that one .cfm page is used quite often and really is slowing down an important process. The .cfm page connects to a SQL Server db and uses a stored procedure (as best I can tell). I have tried to tune the Cold Fusion server and SQL Server and am only getting minor improvement. The % CPU utilized is really quite low on the server but the Cold Fusion performance monitor shows really bad performance when the specific .cfm file is called. I cannot recode the .cfm page itself to improve any code inefficiency as it is proprietary code so... Is there a good way to improve the performance of a specific .cfm page in IIS 5? One person suggested setting it up as a virtual directory but I am not sure if that is viable - would it really help improve performance? If any other information is needed please let me know. Any thoughts on this would really be appreciated. Thanks in advance. Tag: IIS6 web application security exception Tag: 309751
  - 8
    - Custom error pages - how to access full HTTP request string When a page is requested and not found (common error 404), we can get control back at IIS level and, for instance, trough an ASP page, provide the user with some hints to redirect his request. Unfortunately, the custom error page (ASP) is not given any mean for retrieving variables of the request if those were sent through GET (or POST) method. QUERY_STRING variable contains the path to the page asked without "?variable=value" information, QueryString and Form collections are empty. The QUERY_STRING server variable is filled with "404;<original URL without parameters>". Do anyone have idea on how to get access to those parameters transferred by the browser to the server in the original request? Pierre Hubaut ATOFINA / TOTAL - Brussels Tag: IIS6 web application security exception Tag: 309749
  - 9
    - Is it possible to install IIS 6.0 multiple times on one server? I have an applicatin that absolutely requires to be installed on the root of the default website. However, it seems like a waste to dedicate one server to one website when I know that IIS is capable of many more (as is my hardware). I have heard rumblings that it is possible to install IIS more than once on the same server, is this true? If so, does someone have a link to MS documentation on how to do this. Tag: IIS6 web application security exception Tag: 309745
  - 10
    - Datetime issues when querying SQL Server Hi, I have an IIS query that selects information from a table within SQL Server 2000. When the function is called, it gives error message "Microsoft OLE DB Provider for SQL Server error '80040e07'". A Datetime error. The line that fails is: SELECT Name, Description, Reason, StartDate, EndDate, Forename, Surname FROM V_GetPartnerships WHERE PartnershipId = 2 AND (StartDate <= 'Wednesday, October 29, 2003' AND EndDate >= 'Wednesday, October 29, 2003') ORDER BY name; The datetime field works OK when using correct date terms, as tested by manually manipulating the date format, it is only when it using this extended 'Wednesday, October 29, 2003' that is NOT recognised by the field. I have checked the outputs of the date formats using a simple VB script, and they are as expected (i.e. October 29, 2003). Where is it getting this extended date from?? This database has been developed over several years and recently migrated to new servers. This error only appears on the new system. It DOES NOT affect the old system. Tag: IIS6 web application security exception Tag: 309743
  - 11
    - Web Site Really Slow We are currently trying to cut our website over to a new server running Windows 2003 Web Edition with IIS 6.0 The same website (PRODUCTION) is on a Windows 2000 Advanced Server box running IIS 5.0 The production site seems to be MUCH faster. There are certain pages I go to that come up within seconds. ON the New server the same page takes near a minute to come up? Just wondering if there are any differences I need to look for in the Windows 2003 environment? Tag: IIS6 web application security exception Tag: 309740
  - 12
    - ISS error Hello all, I am running Exchange 2000 on a Windows 2000 Domain Controler. I would like to use OWA but IIS keeps coming up with errors. When I bring up "Internet Services Manager" three of the default webpages (public, Exchange, Exadmin) have a red "Error" symbol beside them instead of the typical folder & globe icon. When I restart IIS the error symbol goes away, but the websites still don't work. It looks like IIS is having trouble creating the Virtual root directories from the event log. This leads me to believe it is a permission based issue. I get this error in the event log when trying to access the default IIS webpage: Event Type: Warning Event Source: W3SVC Event Category: None Event ID: 36 Date: 10/29/2003 Time: 9:53:18 AM User: N/A Computer: MORDAC Description: The server failed to load application '/LM/W3SVC/1/ROOT'. The error was 'No such interface supported '. For additional information specific to this message please visit the Microsoft Online Support site located at: http://www.microsoft.com/contentredirect.asp Thanks for your time, Todd Tag: IIS6 web application security exception Tag: 309736
  - 13
    - FrontPage E-mail Form Results Question... Hi all, Our SMTP server which is used by a W2K/IIS5 server w/FrontPage extensions to send form results via e-mail is experiencing some problems. Can anyone out there tell me where the e-mailed results would go should the IIS server be unable to communicate with the SMTP server? Thanks! Anthony gunia@calumet.purdue.edu Tag: IIS6 web application security exception Tag: 309730
  - 14
    - Maximum number of Concurrent Connections? Hi, I just heard something that IIS supports only 256 concurrent connections? Is that true? Is there any documentation regarding concurrent connections to IIS? Thanks for the help. MAQ Tag: IIS6 web application security exception Tag: 309728
  - 15
    - iis 5 - custom error pages quick question please, can I create a custom 404 error page with a .php extension or does need to be .htm,.html or .asp? thanks andy Tag: IIS6 web application security exception Tag: 309718
  - 16
    - Tough IIS Problems - help needed! (2nd request) Hello, I am trying to use IIS 5.1 with my OEM XP Pro (SP1). I have installed, uninstalled, and reinstalled IIS from the XP CD, but I still have the same problem. I can go into the MMConsole, but when I start the IIS application, I only get the top level of directory tree item of IIS. There are no web sites or FTP sites displayed or that can be expanded in the IIS window. The tree does not have a "+" sign next to it to expand. How do I get IIS to show my "wwwroot" (it is there on the c:\drive) in the directory tree structure of the IIS window? Is this a security rights issue? I am logged on as an administrator. What do I have to turn on or change security on to make IIS work? Something appears to be "broken" in the software, and I haven't been able to find any other posts or information to correct this issue. I have installed XP Pro (SP1) on separate laptop and the IIS worked just fine. I have installed all of the Windows updates as of 10-27-03. I have .net installed versions 1 and 1.1. Some new information - If I go into MMC, services, and try to start IIS, I get the following message: "Could not start IIS Admin service on local computer; Error 1068: The dependency service or group failed to start." Also, when trying to install the Message Queing Client off of the XP Pro CD, I get an error message:"Queing Client Setup Failure; Error Code 0x42c; Error Description - The dependency service or group failed to start." I tried to uninstall everything again starting with .net; however, the msi file was missing and .net 1.0 would not uninstall. I did uninstall all other networking applications, .net 1.1, IIS, IE, and then reinstalled again. The interserv folder under the system32 folder did not have a metabase.bin file. I could not find a metabase.bin file anywhere on my PC except on an old hard drive d:. I copied that metabase.bin file to the interserv folder to see if anything changed, but IIS still would not show my computer (same problem as before) and I could not start IIS (same error as before). since there was no change, I then deleted the metabase file. I cannot restore my metabase.bin as suggested in one of the MS knowledgebase articles because it talks about Windows NT 4.0, (which I don't have) because it does not exist, and reinstalling IIS doesn't put or create another copy on my computer. How do I get the (*((XX IIS program to install correctly? Thanks in advance for your help, Still Confused Releng Tag: IIS6 web application security exception Tag: 309716
  - 17
    - MS Authority , Cert- Help Hello, I have a valid certificate that is issued in my MS Authority and is sitting in the issued folder. When I try to install the certificate in the properties of the website in the ,Internet Service Manager, the cert is no where to be found. What am I doing wrong? Chris Tag: IIS6 web application security exception Tag: 309715
  - 18
    - where are exception monitor? Hello where i can download the tool "exception monitor"? thanks Tag: IIS6 web application security exception Tag: 309707
  - 19
    - What patches are installed? Hello i have a problem and i want to know how know what patches are installed? thanks you Tag: IIS6 web application security exception Tag: 309706
  - 20
    - IIS 5.1 install Failed I loaded the IIS package on my WinXP professional, verified from IIS admin the web services were running. But when I entered "localhost" on my broiwser (IE) I get The page cannot be displayed HTTP 500 - Internal server error Internet Explorer or wth friendly errors disabled Server Error The following error occurred: Bad URL I have installed IIS before on a Win2K machine and I sucessfully got the default IIS help pages. I un-installed and re-installed. Still no luck. Tag: IIS6 web application security exception Tag: 309702
  - 21
    - Error ASP 0178 on Windows 2003 Server Hi, I try to use one test ActiveX DLL (created in VB 6.0) with Server.CreateObject("xxxx.xxx") in a Server 2003. This works fine in Server 2000. The error message are: Server object, ASP 0178 (0x80070005) The call to Server.CreateObject failed while checking permissions. Access is denied to this object. /test.asp, line 10 I have it registred as an application in COM+ with a separate user "comPlus" also included in the group IIS_WPG. I read a lot in this newsgroup and some are talking about a document 332167, whats this? What are different in 2003 and are there any Step By Step how to do/set up a website with COM+ in 2003? Rgds Cyril *** Sent via Developersdex http://www.developersdex.com *** Don't just participate in USENET...get rewarded for it! Tag: IIS6 web application security exception Tag: 309696
  - 22
    - asp will not run I am trying to use IIS to emulate a web site. However whenever I open IE I am asked to make a connection. If I simply say try again my default page does show. Is this normal? While I can get htm forms to display and run using iis, I cannot get asp pages to run. I either get 404, or http 500 errors. I have given myself permissions to run scripts, and I have administrator access. Please help as it is driving me to despair. Tag: IIS6 web application security exception Tag: 309695
  - 23
    - Setting an ISAPI DLL as default document in IIS 5.X I have written an ISAPI DLL which works okay if I put it in the /scripts subfolder (/inetpub/scripts) and call it with http://url/scripts/dllname. I currently call this from a link in a simple HTML page. What I would like to do is make the DLL the default document for IIS, so when user goes to http://url they get an instance of the DLL, thus excluding the need for the HTML page in the middle. Can anyone tell me how to do this please? cheers Sean. Tag: IIS6 web application security exception Tag: 309694
  - 24
    - HELP: IIS crash! Hi! I have a cluster (WLBS) with IIS5 (w2k). Every 50 to 60 minutes, evere IIS crashes with this error in drwatson.log c000005 (access vioaltion) System is upgraded with lastest service packs and windows update service. Can anyone helpme to solve this? Thank you. Pet. Tag: IIS6 web application security exception Tag: 309693
  - 25
    - IIS6, ASP.NET, WebRequest, impersonation Hi, I have an ASP.NET app that sends HTTP WebRequests to an exchange server that requires NTLM authentication. To do so, the ASP.NET app is configured to impersonate the current user. Everything works fine, except on our test Win 2003 machine, where the web requests fail with a 401 answer form the exchange machine ! Here's the code that I use : WebRequest req = ... ; req.Credentials = CredentialCache.DefaultCredentials; req.GetResponse(); .... <identity impersonate ="true"/> in the web.config I did not touch ma IIS 6 config : the app runs in the default app pool (NETWORK SERVICE identity) By tracing the WindowsIdentity.GetCurrent at various stages, I can tell that the impersonation was successful. I tried to give all applicable privileges to the NETWORK SERVICE identity, rebooted, without any success. Thanks for any hints ! Sebastien MCP Tag: IIS6 web application security exception Tag: 309691
- Next
  - 1
    - Load Handled by IIS I have a 2 CPU Xeon processor server with a 6 GB Memory. Would like to know what is the maximum number of concurrent users who can access my application over the intranet / Internet. Tag: IIS6 web application security exception Tag: 309690
  - 2
    - WindowsXP SP1 + IIS5.1 + IE6 SP1 - http://localhost Bad URL Server Error The following error occurred: Bad URL ---------------------------------------------------------------------------- ---- Please contact the administrator. Also, ftp://localhost works OK ( it shows test.htm in that root folder) However ftp://localhost/test.htm results in : Server Error The following error occurred: Could not connect to the server ---------------------------------------------------------------------------- ---- Please contact the administrator. I followed the instructions at : http://www.aspfaq.com/show.asp?id=2109 but still could not resolve the issues. Thanks for your help, PhiHo. Tag: IIS6 web application security exception Tag: 309685
  - 3
    - HTTP 500 internal server error and IIS 6.0 New machine install of Win 2003 std edition sever w/ IIS 6.0. Copied existing sites which are functioning under IIS 5.0 to IIS 6.0 instances. We have been unsuccessful getting any IIS 5.0 site to come up under IIS6.0. Some things we have tried to resolve the subject error. 1. Moving the site as virtual directory under IIS 5.0 to seperate Web site under IIS 6.0 2. Jacked with security setting at Dir level on the machine. 3. set root level to static page and this successfully worked so seems IIS 6.0 is working. Any one with ideas would greatly appreciate input. Our plans to move our data center to Windows 2003 are on hold until we can resolve this issue. Thanks for your help! John Ph: 814.234.0992 Tag: IIS6 web application security exception Tag: 309672
  - 4
    - how come ip address shows up? My friend registered a domain name. He has a web server set up using IIS 6. When someone go to his domain name http://www.domainname.com in a browser, the URL in the browser changes instantly to the ip address of the web server. Why? Tag: IIS6 web application security exception Tag: 309668
  - 5
    - Making Web server visible to the internet Hello all! I recently set up a web server at home using my DSL connection configured with a static IP from my local ISP. I registered my domain name with internic and can find it in whois. My DSL connection is configured with IP forwarding. The page comes up successfully on the server from the server, but I still cannot see the page from another computer on the internet which is not on the same home network. What am I missing? The name servers for my ISP show up in WHOIS. I am using XP Professional. Tag: IIS6 web application security exception Tag: 309664
  - 6
    - Tool Bars This may not be the appropriate place to post this but I need help. Is there a way to delete a tool bar? I have a tool bar that has Adult Links, DVDS and Viagra on it. I want it deleted completely not just hidden. Can someone tell me how to do this? Tag: IIS6 web application security exception Tag: 309658
  - 7
    - Page cannot be found with exe files Hi, Any help you can provide would be appreciated. I ran the IISLockdown tool, and now all links to exe files result in a Page Cannot be Found error. Is there a security setting that needs to be tweaked in IIS 5.0? Thanx in advance. Tag: IIS6 web application security exception Tag: 309643
  - 8
    - Need Help with IISSTATE LOG Would someone help me find the source of my problem in this IISSTATE log. My IIS4 server acted up again showing the exact same symptoms as before. The symptoms were the Inetinfo.exe process started utilizing 100% cpu and *.asp pages were no longer being served however html pages were still working. From what I could tell, the problem seems to be a lock problem during a query to a database but i'm not sure. If this is the case how do I find the culprit. Thanks for you help in advance. The IISSTATE log is as follows: *********************** Starting new log output IISState version 3.2 Tue Oct 28 15:20:59 2003 OS = NT4 Executable: inetinfo.exe PID = 1527 Note: Thread times are formatted as HH:MM:SS.ms *********************** Thread ID: 0 System Thread ID: 110 Kernel Time: 0:0:0.15 User Time: 0:0:0.0 Thread Type: Other # ChildEBP RetAddr 00 0006fd44 77f0d2ca ntdll!NtReadFile+0xb 01 0006fdb0 77dd8a61 KERNEL32!ReadFile+0x1a6 02 0006fde4 77dd84ad ADVAPI32!ScGetPipeInput+0x28 03 0006fe48 77dd82ca ADVAPI32!ScDispatcherLoop+0x46 04 0006fe6c 0100182c ADVAPI32!StartServiceCtrlDispatcherA+0x82 05 0006fea4 010015d5 inetinfo!StartDispatchTable+0x61 06 0006ff70 01001e7f inetinfo!main+0x2a5 07 0006ffc0 77f1bbb5 inetinfo!mainCRTStartup+0xff 08 0006fff0 00000000 KERNEL32!BaseProcessStart+0x40 Thread ID: 1 System Thread ID: 5eb Kernel Time: 0:0:0.0 User Time: 0:0:0.31 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 0085fe2c 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0085fe54 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0085fe64 683a18fe KERNEL32!WaitForSingleObject+0xf 03 0085fe80 0100175d iisadmin!ServiceEntry+0x11b 04 0085ffa8 77dd8c41 inetinfo!InetinfoStartService+0xfb 05 0085ffb8 77f04ef0 ADVAPI32!ScSvcctrlThreadA+0xe 06 0085ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 2 System Thread ID: ce Kernel Time: 0:0:0.31 User Time: 0:0:0.31 *** ERROR: Symbol file could not be found. Defaulted to export symbols for INFOCOMM.dll - Thread Type: Other # ChildEBP RetAddr 00 00e8fd28 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 00e8fd80 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 00e8fddc 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 00e8fdf8 685992a3 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 0028dbcc 00000000 INFOCOMM!IIS_SERVICE::StartServiceOperation+0xd4 Thread ID: 3 System Thread ID: 5ef Kernel Time: 0:11:39.265 User Time: 0:7:3.703 *** ERROR: Symbol file could not be found. Defaulted to export symbols for ISATQ.dll - Thread Type: HTTP Listener # ChildEBP RetAddr 00 00ecfe9c 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 00ecfef4 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 00ecff50 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 00ecff6c 68624ab9 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 00000001 00000000 ISATQ!ScheduleAdjustTime+0x116 Thread ID: 4 System Thread ID: 5c4 Kernel Time: 0:12:30.937 User Time: 0:6:37.812 Thread Type: HTTP Listener # ChildEBP RetAddr 00 00f0fe9c 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 00f0fef4 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 00f0ff50 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 00f0ff6c 68624ab9 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 00000001 00000000 ISATQ!ScheduleAdjustTime+0x116 Thread ID: 5 System Thread ID: 57b Kernel Time: 0:0:9.812 User Time: 0:0:13.687 *** ERROR: Symbol file could not be found. Defaulted to export symbols for w3svc.dll - Thread Type: HTTP Listener # ChildEBP RetAddr 00 00f8f9d8 77f10f30 ntdll!ZwCreateFile+0xb 01 00f8fa7c 685a6e35 KERNEL32!CreateFileW+0x396 WARNING: Stack unwind information not available. Following frames may be wrong. 02 00f8fd78 68c0c2f1 INFOCOMM!TsCreateFileFromURI+0x340 03 00f8fdc4 68c15f9c w3svc!CLIENT_CONN::Free+0x155d 04 00f8ff20 68c0a362 w3svc!HTTP_REQUEST::GetInfoForName+0x21a0 05 00f8ff40 68c0ae08 w3svc!ScanForTerminator+0x3ca 06 00f8ff88 6862731c w3svc!CLIENT_CONN::Free+0x74 07 00f8ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x63c 08 00f8ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 6 System Thread ID: 565 Kernel Time: 0:0:6.328 User Time: 0:0:9.328 Thread Type: HTTP Listener # ChildEBP RetAddr 00 00fcff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 00fcff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 00fcffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 00fcffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 7 System Thread ID: 5b6 Kernel Time: 0:5:36.421 User Time: 0:1:0.828 Thread Type: Other # ChildEBP RetAddr 00 0104ff30 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0104ff88 685a7e98 KERNEL32!WaitForMultipleObjectsEx+0xef WARNING: Stack unwind information not available. Following frames may be wrong. 02 685b35a0 01dc7080 INFOCOMM!TS_OPEN_FILE_INFO::MakeStrongETag+0x7eb 03 000979c0 685b35a0 0x1dc7080 04 00098198 000979c0 INFOCOMM!MB::GetMultisz+0x649c 05 00098970 00098198 0x979c0 06 00099148 00098970 0x98198 07 00099920 00099148 0x98970 08 0009a0f8 00099920 0x99148 09 0009a8d0 0009a0f8 0x99920 0a 000a3100 0009a8d0 0x9a0f8 0b 000c8d38 000a3100 0x9a8d0 0c 000c9510 000c8d38 0xa3100 0d 000c9d78 000c9510 0xc8d38 0e 000ca550 000c9d78 0xc9510 0f 000cad28 000ca550 0xc9d78 10 000cb500 000cad28 0xca550 11 000d2020 000cb500 0xcad28 12 000d27f8 000d2020 0xcb500 13 000d2fd0 000d27f8 0xd2020 14 000d39e0 000d2fd0 0xd27f8 15 000d41b8 000d39e0 0xd2fd0 16 000d4990 000d41b8 0xd39e0 17 000e25b0 000d4990 0xd41b8 18 000e2d88 000e25b0 0xd4990 19 000e3560 000e2d88 0xe25b0 1a 000efed0 000e3560 0xe2d88 1b 000f06a8 000efed0 0xe3560 1c 000f0e80 000f06a8 0xefed0 1d 000fd900 000f0e80 0xf06a8 1e 000fe0d8 000fd900 0xf0e80 1f 000fe8b0 000fe0d8 0xfd900 20 0010b220 000fe8b0 0xfe0d8 21 0010b9f8 0010b220 0xfe8b0 22 0010c1d0 0010b9f8 0x10b220 23 00119cc8 0010c1d0 0x10b9f8 24 0011a4a0 00119cc8 0x10c1d0 25 0011ac78 0011a4a0 0x119cc8 26 00127660 0011ac78 0x11a4a0 27 00127e38 00127660 0x11ac78 28 00128610 00127e38 0x127660 29 00135108 00128610 0x127e38 2a 001358e0 00135108 0x128610 2b 001360b8 001358e0 0x135108 2c 00143a98 001360b8 0x1358e0 2d 00144270 00143a98 0x1360b8 2e 00144a48 00144270 0x143a98 2f 001513f0 00144a48 0x144270 30 00151bc8 001513f0 0x144a48 31 001523a0 00151bc8 0x1513f0 Thread ID: 8 System Thread ID: 58e Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Possible ASP page. Possible DCOM activity Executing Page: *** ERROR: Symbol file could not be found. Defaulted to export symbols for asp.dll - ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 0108fdec 77e17f96 ntdll!NtReplyWaitReceivePort+0xb 01 0108ff90 77e17f38 RPCRT4!WMSG_ADDRESS::ReceiveLotsaCalls+0x5b 02 0108ff94 77e17b56 RPCRT4!RecvLotsaCallsWrapper+0x9 03 0108ffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x22 04 0108ffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 05 0108ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 9 System Thread ID: 599 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Possible ASP page. Possible DCOM activity Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 0114fd20 776689ce ntdll!NtWaitForSingleObject+0xb 01 0114fd78 77664a12 msafd!SockWaitForSingleObject+0x204 02 0114fea0 776ba274 msafd!WSPSelect+0x28e 03 0114fef0 74fa21e2 WS2_32!select+0xfc 04 0114ff2c 77e20fae RpcLtScm!COMMON_ServerReceiveAny+0x2b8 05 0114ff60 77e1da44 RPCRT4!TRANS_ADDRESS::TransReceive+0x7c 06 0114ff90 77e1f495 RPCRT4!OSF_ADDRESS::ReceiveLotsaCalls+0x1e 07 0114ff94 77e17b56 RPCRT4!ReceiveLotsaCallsWrapper+0x9 08 0114ffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x22 09 0114ffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 0a 0114ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 10 System Thread ID: 5cf Kernel Time: 0:0:0.15 User Time: 0:0:0.0 Thread Type: Possible ASP page. Possible DCOM activity Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 012dfee8 77e013c4 ntdll!ZwWaitForMultipleObjects+0xb 01 012dff2c 77e20fae rpclts1!ServerReceiveAny+0x133 02 012dff60 77e1da44 RPCRT4!TRANS_ADDRESS::TransReceive+0x7c 03 012dff90 77e1f495 RPCRT4!OSF_ADDRESS::ReceiveLotsaCalls+0x1e 04 012dff94 77e17b56 RPCRT4!ReceiveLotsaCallsWrapper+0x9 05 012dffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x22 06 012dffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 07 012dffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 11 System Thread ID: 5d8 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 0131fca0 776689ce ntdll!NtWaitForSingleObject+0xb 01 0131fcf8 77664a12 msafd!SockWaitForSingleObject+0x204 02 0131fe20 776ba274 msafd!WSPSelect+0x28e 03 0131fe70 68563c07 WS2_32!select+0xfc 04 0131ffb8 77f04ef0 inetsloc!SocketListenThread+0x51 05 0131ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 12 System Thread ID: 112 Kernel Time: 0:0:0.31 User Time: 0:0:0.109 Thread Type: Other # ChildEBP RetAddr 00 0135fd34 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0135fd8c 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 0135fde8 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 0135fe04 685992a3 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 0023eec4 00000000 INFOCOMM!IIS_SERVICE::StartServiceOperation+0xd4 Thread ID: 13 System Thread ID: 5c0 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Possible ASP page. Possible DCOM activity Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 0139fdec 77e17f96 ntdll!NtReplyWaitReceivePort+0xb 01 0139ff90 77e17f38 RPCRT4!WMSG_ADDRESS::ReceiveLotsaCalls+0x5b 02 0139ff94 77e17b56 RPCRT4!RecvLotsaCallsWrapper+0x9 03 0139ffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x22 04 0139ffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 05 0139ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 14 System Thread ID: 5d7 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Possible ASP page. Possible DCOM activity Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 013dfee8 77e013c4 ntdll!ZwWaitForMultipleObjects+0xb 01 013dff2c 77e20fae rpclts1!ServerReceiveAny+0x133 02 013dff60 77e1da44 RPCRT4!TRANS_ADDRESS::TransReceive+0x7c 03 013dff90 77e1f495 RPCRT4!OSF_ADDRESS::ReceiveLotsaCalls+0x1e 04 013dff94 77e17b56 RPCRT4!ReceiveLotsaCallsWrapper+0x9 05 013dffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x22 06 013dffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 07 013dffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 15 System Thread ID: 10a Kernel Time: 0:0:0.0 User Time: 0:0:0.0 *** ERROR: Symbol file could not be found. Defaulted to export symbols for SMTPSVC.dll - Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 0152ff10 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0152ff68 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 0152ff84 678b9333 KERNEL32!WaitForMultipleObjects+0x16 WARNING: Stack unwind information not available. Following frames may be wrong. 03 0152ffec 00000000 SMTPSVC!MIME_MAP::Print+0x4063 Thread ID: 16 System Thread ID: c5 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 0156ff10 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0156ff68 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 0156ff84 678b9333 KERNEL32!WaitForMultipleObjects+0x16 WARNING: Stack unwind information not available. Following frames may be wrong. 03 0028f9e8 0028f9e8 SMTPSVC!MIME_MAP::Print+0x4063 Thread ID: 17 System Thread ID: 1df Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 015aff10 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 015aff68 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 015aff84 678b9333 KERNEL32!WaitForMultipleObjects+0x16 WARNING: Stack unwind information not available. Following frames may be wrong. 03 0028f9e8 0028f9e8 SMTPSVC!MIME_MAP::Print+0x4063 Thread ID: 18 System Thread ID: 592 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 015eff10 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 015eff68 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 015eff84 678b9333 KERNEL32!WaitForMultipleObjects+0x16 WARNING: Stack unwind information not available. Following frames may be wrong. 03 0028f9e8 0028f9e8 SMTPSVC!MIME_MAP::Print+0x4063 Thread ID: 19 System Thread ID: e5 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 0162ff10 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0162ff68 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 0162ff84 678b9333 KERNEL32!WaitForMultipleObjects+0x16 WARNING: Stack unwind information not available. Following frames may be wrong. 03 0162ffec 00000000 SMTPSVC!MIME_MAP::Print+0x4063 Thread ID: 20 System Thread ID: 113 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 0166ff64 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0166ff8c 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0166ff9c 678d0d07 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 0166ffb8 77f04ef0 SMTPSVC!MIME_MAP::Print+0x1ba37 04 0028fa00 00000358 KERNEL32!BaseThreadStart+0x51 Thread ID: 21 System Thread ID: 5bb Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 016aff64 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 016aff8c 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 016aff9c 678d0d07 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 016affb8 77f04ef0 SMTPSVC!MIME_MAP::Print+0x1ba37 04 0028fa60 00000364 KERNEL32!BaseThreadStart+0x51 Thread ID: 22 System Thread ID: 5fb Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 016eff64 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 016eff8c 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 016eff9c 678d0d07 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 016effb8 77f04ef0 SMTPSVC!MIME_MAP::Print+0x1ba37 04 0028fac0 00000370 KERNEL32!BaseThreadStart+0x51 Thread ID: 23 System Thread ID: 1c2 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 0172ff6c 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0172ff94 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0172ffa4 678d5c44 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 0172ffec 00000000 SMTPSVC!MIME_MAP::Print+0x20974 Thread ID: 24 System Thread ID: 604 Kernel Time: 0:0:0.500 User Time: 0:0:0.15 Thread Status: Thread is in a WAIT state. Thread Type: SMTP Service Worker Thread # ChildEBP RetAddr 00 017aff64 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 017aff8c 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 017aff9c 678d0d07 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 017affb8 77f04ef0 SMTPSVC!MIME_MAP::Print+0x1ba37 04 0028fbe0 000003a0 KERNEL32!BaseThreadStart+0x51 Thread ID: 25 System Thread ID: 60c Kernel Time: 0:0:0.0 User Time: 0:0:0.15 Thread Type: Other # ChildEBP RetAddr 00 017efd28 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 017efd80 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 017efddc 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 017efdf8 685992a3 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 0023f5c4 00000000 INFOCOMM!IIS_SERVICE::StartServiceOperation+0xd4 Thread ID: 26 System Thread ID: 17a Kernel Time: 0:0:0.0 User Time: 0:0:0.0 *** ERROR: Symbol file could not be found. Defaulted to export symbols for MFC42.DLL - *** ERROR: Symbol file could not be found. Defaulted to export symbols for MSVCRT.dll - Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 01a3fe68 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 01a3fe90 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 01a3fea0 5f41a6b7 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 01a3ff18 5f45e7ee MFC42!Ordinal4168+0xd 04 01a3ff84 78003820 MFC42!Ordinal6109+0xa6 05 01a3ffb8 77f04ef0 MSVCRT!beginthreadex+0xb2 06 01a3ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 27 System Thread ID: c4 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 01a7fe6c 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 01a7fe94 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 01a7fea4 5f41a6b7 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 01a7ff18 5f45e7ee MFC42!Ordinal4168+0xd 04 01a7ff84 78003820 MFC42!Ordinal6109+0xa6 05 01a7ffb8 77f04ef0 MSVCRT!beginthreadex+0xb2 06 01a7ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 28 System Thread ID: 5c7 Kernel Time: 0:0:0.0 User Time: 0:0:0.15 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 01affdc4 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 01affdec 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 01affdfc 5f41a6b7 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 01afff18 5f45e7ee MFC42!Ordinal4168+0xd 04 01afff84 78003820 MFC42!Ordinal6109+0xa6 05 01afffb8 77f04ef0 MSVCRT!beginthreadex+0xb2 06 01afffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 29 System Thread ID: 609 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Other # ChildEBP RetAddr 00 01b3fe70 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 01b3fec8 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 01b3ff24 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 01b3ff40 68c22d44 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 01b3ff84 7800b995 w3svc!HTTP_HEADERS::Cleanup+0x2f55 05 01b3ffb8 77f04ef0 MSVCRT!beginthread+0xce 06 01b3ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 30 System Thread ID: ea Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Other # ChildEBP RetAddr 00 01b7fea8 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 01b7ff00 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 01b7ff5c 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 01b7ff78 68c1acea USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 01b7ffb8 77f04ef0 w3svc!ServiceEntry+0x6d7 05 01b7ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 31 System Thread ID: 5ff Kernel Time: 0:0:6.968 User Time: 0:0:8.796 Thread Type: HTTP Listener # ChildEBP RetAddr 00 01ebff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 01ebff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 01ebffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 01ebffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 32 System Thread ID: 5e8 Kernel Time: 0:0:0.15 User Time: 0:0:0.0 *** ERROR: Symbol file could not be found. Defaulted to export symbols for MtxDm.dll - Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 0227ff58 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0227ff80 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0227ff90 69a21998 KERNEL32!WaitForSingleObject+0xf WARNING: Stack unwind information not available. Following frames may be wrong. 03 0227ffb8 77f04ef0 MtxDm+0x1998 04 ffffffff 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 33 System Thread ID: 585 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 022efe70 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 022efec8 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 022eff24 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 022eff40 680c5fa5 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 022eff84 7800b995 asp!AspStatusHtmlDump+0x276d 05 022effb8 77f04ef0 MSVCRT!beginthread+0xce 06 022effec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 34 System Thread ID: 602 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0232fe70 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0232fec8 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 0232ff24 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 0232ff40 680bbf64 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 0232ff84 7800b995 asp!DllCanUnloadNow+0x2ff0 05 0232ffb8 77f04ef0 MSVCRT!beginthread+0xce 06 0232ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 35 System Thread ID: 5fd Kernel Time: 0:0:0.0 User Time: 0:0:0.0 *** WARNING: Unable to verify checksum for pdm.dll *** ERROR: Symbol file could not be found. Defaulted to export symbols for pdm.dll - Thread Type: PDM (Debugger) Thread. # ChildEBP RetAddr 00 0236fdd8 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0236fe30 77e7ae4d KERNEL32!WaitForMultipleObjectsEx+0xef 02 0236fe8c 77e7ae92 USER32!MsgWaitForMultipleObjectsEx+0x127 03 0236fea8 4a003b19 USER32!MsgWaitForMultipleObjects+0x1d WARNING: Stack unwind information not available. Following frames may be wrong. 04 77e7ae75 0110247c pdm+0x3b19 05 83ec8b55 00000000 0x110247c Thread ID: 36 System Thread ID: 5aa Kernel Time: 0:1:10.500 User Time: 0:1:1.250 *** ERROR: Symbol file could not be found. Defaulted to export symbols for vbscript.dll - Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0240ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0240ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0240ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0240eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0240eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0240ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0240f054 1f458678 msado15!_ConnectAsync+0x9c 07 0240f200 1f461d27 msado15!CConnection::Open+0xf1a 08 0240f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 37 System Thread ID: 5bf Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Other # ChildEBP RetAddr 00 0256fefc 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 0256ff54 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 0256ff70 65352a46 KERNEL32!WaitForMultipleObjects+0x16 03 0256ffb8 77f04ef0 OLEAUT32!RegistryWatchThread+0x86 04 0256ffc4 77f3fcb0 KERNEL32!BaseThreadStart+0x51 05 77f4177f 416d6f74 KERNEL32!_NULL_IMPORT_DESCRIPTOR+0x1b30 WARNING: Frame IP not in any known module. Following frames may be wrong. 06 41646441 00000000 0x416d6f74 Thread ID: 38 System Thread ID: 1ad Kernel Time: 0:1:2.531 User Time: 0:1:16.890 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0285ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0285ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0285ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0285eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0285eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0285ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0285f054 1f458678 msado15!_ConnectAsync+0x9c 07 0285f200 1f461d27 msado15!CConnection::Open+0xf1a 08 0285f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 39 System Thread ID: 584 Kernel Time: 0:0:3.234 User Time: 0:0:4.375 Thread Type: HTTP Listener # ChildEBP RetAddr 00 084bff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 084bff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 084bffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 084bffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 40 System Thread ID: 407 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 08a3ff60 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 08a3ff88 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 08a3ff98 1f948267 KERNEL32!WaitForSingleObject+0xf 03 08a3ffb8 77f04ef0 oledb32!ReleaseResourceThread+0xd 04 08a3ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 41 System Thread ID: 22e Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 08a7ff5c 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 08a7ff84 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 08a7ff94 1f948431 KERNEL32!WaitForSingleObject+0xf 03 08a7ffb8 77f04ef0 oledb32!ResetResourceThread+0x16 04 08a7ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 42 System Thread ID: 605 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Other # ChildEBP RetAddr 00 083dfc60 77f1d034 ntdll!ZwWaitForMultipleObjects+0xb 01 083dfcb8 77f1cf41 KERNEL32!WaitForMultipleObjectsEx+0xef 02 083dfcd4 5e289ad3 KERNEL32!WaitForMultipleObjects+0x16 03 083dff58 5e289a11 idq!CWQueryCache::ProcessCacheEvents+0xa3 04 083dff80 5e2899af idq!CWQueryCache::WatchDogThread+0x2f 05 083dffb8 77f04ef0 idq!CThread::_ThreadFun+0x41 06 083dffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 43 System Thread ID: 1eb Kernel Time: 0:0:1.312 User Time: 0:0:1.781 Thread Type: HTTP Listener # ChildEBP RetAddr 00 095dff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 095dff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 095dffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 095dffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 44 System Thread ID: 1c3 Kernel Time: 0:0:4.15 User Time: 0:0:4.640 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0176ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0176ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0176ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0176ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 45 System Thread ID: 5d5 Kernel Time: 0:0:1.421 User Time: 0:0:1.671 Thread Type: HTTP Listener # ChildEBP RetAddr 00 075eff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 075eff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 075effb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 075effec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 46 System Thread ID: 5f4 Kernel Time: 0:0:6.515 User Time: 0:0:9.250 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0954ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0954ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0954ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0954ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 47 System Thread ID: e0 Kernel Time: 0:0:4.609 User Time: 0:0:6.312 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0961ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0961ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0961ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0961ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 48 System Thread ID: 5f1 Kernel Time: 0:0:4.906 User Time: 0:0:6.781 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0965ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0965ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0965ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0965ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 49 System Thread ID: 10e Kernel Time: 0:1:2.171 User Time: 0:0:56.62 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 100cee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 100cee84 1f693694 KERNEL32!SwitchToThread+0x6 02 100cee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 100ceea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 100ceef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 100cef50 1f45732a oledb32!CDPO::Initialize+0x137 06 100cf054 1f458678 msado15!_ConnectAsync+0x9c 07 100cf200 1f461d27 msado15!CConnection::Open+0xf1a 08 100cf480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 50 System Thread ID: 59f Kernel Time: 0:0:56.109 User Time: 0:1:18.468 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 1014ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 1014ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 1014ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 1014eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 1014eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 1014ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 1014f054 1f458678 msado15!_ConnectAsync+0x9c 07 1014f200 1f461d27 msado15!CConnection::Open+0xf1a 08 1014f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 51 System Thread ID: 10b Kernel Time: 0:0:19.656 User Time: 0:2:31.812 Thread Status: Thread is in a WAIT state. Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 1018e94c 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 1018e974 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 1018e984 08a8901a KERNEL32!WaitForSingleObject+0xf 03 1018e9d4 08aad685 odbcjt32!PostODBCThreadRequest+0xba 04 1018e9f8 1f802448 odbcjt32!SQLBulkOperations+0x45 05 1018ea18 1f6f5c78 ODBC32!SQLBulkOperations+0x148 06 1018ea2c 1f6f5540 msdasql!CDataModifyODBC3::DoODBCUpdate+0x6c 07 1018ee58 1f6f6562 msdasql!CDataModify::ServerOperation+0x1f 08 1018ee94 1f6f2664 msdasql!CUpdateODBC::Update+0x5ac 09 1018eef4 1f547fa5 msdasql!CImpIRowsetUpdate::Update+0x457 0a 1018ef20 1f467960 msadrh15!CRowsetHelper::Update+0x55 0b 1018ef8c 1f4a131b msado15!CRecordset::_UpdateBatch+0x21e 0c 1018ef9c 1f46680b msado15!CRecordset::ImplicitUpdate+0x23 0d 1018efe4 1f4666da msado15!CRecordset::_Update+0xce 0e 1018f048 1f49cb06 msado15!CRecordset::Update+0x12b 0f 1018f480 6b61869d msado15!CRecordset::Invoke+0x284c WARNING: Stack unwind information not available. Following frames may be wrong. 10 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 52 System Thread ID: 600 Kernel Time: 0:1:9.453 User Time: 0:0:58.671 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 101cee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 101cee84 1f693694 KERNEL32!SwitchToThread+0x6 02 101cee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 101ceea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 101ceef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 101cef50 1f45732a oledb32!CDPO::Initialize+0x137 06 101cf054 1f458678 msado15!_ConnectAsync+0x9c 07 101cf200 1f461d27 msado15!CConnection::Open+0xf1a 08 101cf480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 53 System Thread ID: 5f5 Kernel Time: 0:1:59.843 User Time: 0:1:53.171 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 1020ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 1020ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 1020ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 1020eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 1020eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 1020ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 1020f054 1f458678 msado15!_ConnectAsync+0x9c 07 1020f200 1f461d27 msado15!CConnection::Open+0xf1a 08 1020f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 54 System Thread ID: 174 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 652 Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 1024edcc 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 1024ee3c 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 1024ee44 1b00575c ntdll!RtlEnterCriticalSection+0x46 03 1024ee4c 1b0056e4 msjet40!UtilEnterCriticalSection+0xb 04 1024ee64 1b56a598 msjet40!JetInit+0x2f 05 1024ee90 1b56a4e9 msjetoledb40!CDataSource::UtilInitialize+0xab 06 1024eebc 1f93699b msjetoledb40!CImpIDBInitialize::Initialize+0x5a 07 1024eee8 1f936936 oledb32!CDBInitialize::DoInitialize+0x31 08 1024ef14 1f960540 oledb32!CDBInitialize::Initialize+0x57 09 1024ef50 1f45732a oledb32!CDPO::Initialize+0x80 0a 1024f054 1f458678 msado15!_ConnectAsync+0x9c 0b 1024f200 1f461d27 msado15!CConnection::Open+0xf1a 0c 1024f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 0d 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 55 System Thread ID: 527 Kernel Time: 0:0:1.421 User Time: 0:0:8.953 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 652 Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 1466ea00 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 1466ea70 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 1466ea78 1b00575c ntdll!RtlEnterCriticalSection+0x46 03 1466ea80 1b0056e4 msjet40!UtilEnterCriticalSection+0xb 04 1466ea98 1b56a598 msjet40!JetInit+0x2f 05 1466eac4 1b56a4e9 msjetoledb40!CDataSource::UtilInitialize+0xab 06 1466eaf0 1f93699b msjetoledb40!CImpIDBInitialize::Initialize+0x5a 07 1466eb1c 1f936936 oledb32!CDBInitialize::DoInitialize+0x31 08 1466eb48 1f960540 oledb32!CDBInitialize::Initialize+0x57 09 1466eb84 1f45732a oledb32!CDPO::Initialize+0x80 0a 1466ec88 1f458678 msado15!_ConnectAsync+0x9c 0b 1466ee34 1f49dc4a msado15!CConnection::Open+0xf1a 0c 1466ee88 1f497986 msado15!CRecordset::SetActiveConnection+0x17d 0d 1466eec4 1f4975c3 msado15!CRecordset::put_ActiveConnection+0x63 0e 1466f03c 1f46161b msado15!CRecordset::Open+0x2a3 0f 1466f480 6b61869d msado15!CRecordset::Invoke+0x1e60 WARNING: Stack unwind information not available. Following frames may be wrong. 10 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 56 System Thread ID: 58 Kernel Time: 0:0:3.281 User Time: 0:0:40.609 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 10b Thread Type: Other # ChildEBP RetAddr 00 146edfa4 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 146ee014 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 146ee01c 08a88fb3 ntdll!RtlEnterCriticalSection+0x46 03 146ee068 08a837b5 odbcjt32!PostODBCThreadRequest+0x53 04 146ee094 1f7f439f odbcjt32!SQLSetConnectAttrW+0x85 05 146ee0cc 1f7f408c ODBC32!FinishConnection+0x47c 06 146ee0f0 1f7f328f ODBC32!SQLInternalDriverConnectW+0x16 07 146ee834 1f6d38f5 ODBC32!SQLDriverConnectW+0x71d 08 146ee898 1f6d3089 msdasql!CODBCHandle::OHDriverConnect+0x83 09 146ee8e0 1f93699b msdasql!CImpIDBInitialize::Initialize+0x158 0a 146ee90c 1f936936 oledb32!CDBInitialize::DoInitialize+0x31 0b 146ee938 1f9379be oledb32!CDBInitialize::Initialize+0x57 0c 146ee9d4 69a2280d oledb32!CDCMPool::CreateResource+0x1e6 WARNING: Stack unwind information not available. Following frames may be wrong. 0d 146eea10 69a234a0 MtxDm!DispManGetContext+0xe0d 0e 01481cc0 69a215c0 MtxDm!DispManGetContext+0x1aa0 0f 69a215e8 69a23180 MtxDm+0x15c0 10 69a230f0 0824448b MtxDm!DispManGetContext+0x1780 11 0c24548b 00000000 0x824448b Thread ID: 57 System Thread ID: 5af Kernel Time: 0:1:53.609 User Time: 0:1:27.765 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 1472ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 1472ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 1472ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 1472eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 1472eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 1472ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 1472f054 1f458678 msado15!_ConnectAsync+0x9c 07 1472f200 1f461d27 msado15!CConnection::Open+0xf1a 08 1472f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 58 System Thread ID: 2e8 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 20c8ff40 776689ce ntdll!NtWaitForSingleObject+0xb 01 20c8ff98 77661e92 msafd!SockWaitForSingleObject+0x204 02 20c8ffb8 77f04ef0 msafd!SockAsyncThread+0x2c 03 20c8ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 59 System Thread ID: 60a Kernel Time: 0:0:0.937 User Time: 0:0:1.390 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0a9cff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0a9cff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0a9cffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0a9cffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 60 System Thread ID: 517 Kernel Time: 0:0:2.890 User Time: 0:0:3.828 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0aa4ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0aa4ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0aa4ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0aa4ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 61 System Thread ID: 5f3 Kernel Time: 0:0:3.640 User Time: 0:0:5.171 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0aa8ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0aa8ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0aa8ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0aa8ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 62 System Thread ID: e8 Kernel Time: 0:0:1.218 User Time: 0:0:0.984 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0ab0ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0ab0ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0ab0ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0ab0ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 63 System Thread ID: 619 Kernel Time: 0:0:0.46 User Time: 0:0:0.156 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0898ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0898ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0898ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0898ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 64 System Thread ID: 1c5 Kernel Time: 0:0:0.234 User Time: 0:0:0.187 Thread Type: HTTP Listener # ChildEBP RetAddr 00 096bff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 096bff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 096bffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 096bffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 65 System Thread ID: 613 Kernel Time: 0:0:0.609 User Time: 0:0:0.765 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0a19ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0a19ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0a19ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0a19ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 66 System Thread ID: 62e Kernel Time: 0:0:2.296 User Time: 0:0:3.625 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0a43ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0a43ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0a43ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0a43ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 67 System Thread ID: 622 Kernel Time: 0:0:3.359 User Time: 0:0:5.296 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0a5bff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0a5bff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0a5bffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0a5bffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 68 System Thread ID: 632 Kernel Time: 0:0:0.31 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 652 Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a6aea00 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 0a6aea70 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 0a6aea78 1b00575c ntdll!RtlEnterCriticalSection+0x46 03 0a6aea80 1b0056e4 msjet40!UtilEnterCriticalSection+0xb 04 0a6aea98 1b56a598 msjet40!JetInit+0x2f 05 0a6aeac4 1b56a4e9 msjetoledb40!CDataSource::UtilInitialize+0xab 06 0a6aeaf0 1f93699b msjetoledb40!CImpIDBInitialize::Initialize+0x5a 07 0a6aeb1c 1f936936 oledb32!CDBInitialize::DoInitialize+0x31 08 0a6aeb48 1f960540 oledb32!CDBInitialize::Initialize+0x57 09 0a6aeb84 1f45732a oledb32!CDPO::Initialize+0x80 0a 0a6aec88 1f458678 msado15!_ConnectAsync+0x9c 0b 0a6aee34 1f49dc4a msado15!CConnection::Open+0xf1a 0c 0a6aee88 1f497986 msado15!CRecordset::SetActiveConnection+0x17d 0d 0a6aeec4 1f4975c3 msado15!CRecordset::put_ActiveConnection+0x63 0e 0a6af03c 1f46161b msado15!CRecordset::Open+0x2a3 0f 0a6af480 6b61869d msado15!CRecordset::Invoke+0x1e60 WARNING: Stack unwind information not available. Following frames may be wrong. 10 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 69 System Thread ID: 647 Kernel Time: 0:1:11.234 User Time: 0:0:58.609 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a72ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0a72ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0a72ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0a72eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0a72eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0a72ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0a72f054 1f458678 msado15!_ConnectAsync+0x9c 07 0a72f200 1f461d27 msado15!CConnection::Open+0xf1a 08 0a72f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 70 System Thread ID: 654 Kernel Time: 0:1:34.546 User Time: 0:1:56.546 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a76ee4c 1f691b3d KERNEL32!GetCurrentThreadId 01 0a76ee64 1f6936d8 MSDART!CReaderWriterLock3::_TryWriteLock+0x65 02 0a76ee80 1f693640 MSDART!CReaderWriterLock3::_LockSpin+0x5f 03 0a76eea0 1f93afbf MSDART!CReaderWriterLock3::_WriteLockSpin+0x40 04 0a76eea8 1f933fcd oledb32!CAutoRWLock::WriteLock+0x23 05 0a76eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0xd6 06 0a76ef50 1f45732a oledb32!CDPO::Initialize+0x137 07 0a76f054 1f458678 msado15!_ConnectAsync+0x9c 08 0a76f200 1f461d27 msado15!CConnection::Open+0xf1a 09 0a76f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 0a 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 71 System Thread ID: 65d Kernel Time: 0:1:12.500 User Time: 0:0:59.828 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0ae1ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0ae1ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0ae1ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0ae1eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0ae1eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0ae1ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0ae1f054 1f458678 msado15!_ConnectAsync+0x9c 07 0ae1f200 1f461d27 msado15!CConnection::Open+0xf1a 08 0ae1f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 72 System Thread ID: 64a Kernel Time: 0:1:1.609 User Time: 0:0:59.640 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0ae9ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0ae9ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0ae9ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0ae9eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0ae9eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0ae9ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0ae9f054 1f458678 msado15!_ConnectAsync+0x9c 07 0ae9f200 1f461d27 msado15!CConnection::Open+0xf1a 08 0ae9f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 73 System Thread ID: 64b Kernel Time: 0:1:32.328 User Time: 0:1:13.937 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0986ee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0986ee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0986ee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0986eea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0986eef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0986ef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0986f054 1f458678 msado15!_ConnectAsync+0x9c 07 0986f200 1f461d27 msado15!CConnection::Open+0xf1a 08 0986f480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 74 System Thread ID: 657 Kernel Time: 0:0:0.31 User Time: 0:0:0.93 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 652 Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a6eea00 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 0a6eea70 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 0a6eea78 1b00575c ntdll!RtlEnterCriticalSection+0x46 03 0a6eea80 1b0056e4 msjet40!UtilEnterCriticalSection+0xb 04 0a6eea98 1b56a598 msjet40!JetInit+0x2f 05 0a6eeac4 1b56a4e9 msjetoledb40!CDataSource::UtilInitialize+0xab 06 0a6eeaf0 1f93699b msjetoledb40!CImpIDBInitialize::Initialize+0x5a 07 0a6eeb1c 1f936936 oledb32!CDBInitialize::DoInitialize+0x31 08 0a6eeb48 1f960540 oledb32!CDBInitialize::Initialize+0x57 09 0a6eeb84 1f45732a oledb32!CDPO::Initialize+0x80 0a 0a6eec88 1f458678 msado15!_ConnectAsync+0x9c 0b 0a6eee34 1f49dc4a msado15!CConnection::Open+0xf1a 0c 0a6eee88 1f497986 msado15!CRecordset::SetActiveConnection+0x17d 0d 0a6eeec4 1f4975c3 msado15!CRecordset::put_ActiveConnection+0x63 0e 0a6ef03c 1f46161b msado15!CRecordset::Open+0x2a3 0f 0a6ef480 6b61869d msado15!CRecordset::Invoke+0x1e60 WARNING: Stack unwind information not available. Following frames may be wrong. 10 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 75 System Thread ID: 656 Kernel Time: 0:1:35.453 User Time: 0:1:18.812 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a7bee80 77f1de22 ntdll!ZwYieldExecution+0xb 01 0a7bee84 1f693694 KERNEL32!SwitchToThread+0x6 02 0a7bee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x6e 03 0a7beea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 04 0a7beef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 05 0a7bef50 1f45732a oledb32!CDPO::Initialize+0x137 06 0a7bf054 1f458678 msado15!_ConnectAsync+0x9c 07 0a7bf200 1f461d27 msado15!CConnection::Open+0xf1a 08 0a7bf480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 09 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 76 System Thread ID: 109 Kernel Time: 0:1:29.656 User Time: 0:1:20.859 Thread Type: ASP Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a7fee84 1f6936ef MSDART!CReaderWriterLock3::_TryReadLock+0x9 01 0a7fee9c 1f947918 MSDART!CReaderWriterLock3::_LockSpin+0x5f 02 0a7feea8 1f933f13 oledb32!CAutoRWLock::ReadLock+0x20 03 0a7feef0 1f933cf6 oledb32!CDCMPoolManager::DrawResource+0x7f 04 0a7fef50 1f45732a oledb32!CDPO::Initialize+0x137 05 0a7ff054 1f458678 msado15!_ConnectAsync+0x9c 06 0a7ff200 1f461d27 msado15!CConnection::Open+0xf1a 07 0a7ff480 6b61869d msado15!CConnection::Invoke+0xc46 WARNING: Stack unwind information not available. Following frames may be wrong. 08 00000000 00000000 vbscript!DllCanUnloadNow+0xd248 Thread ID: 77 System Thread ID: 5de Kernel Time: 0:0:0.46 User Time: 0:0:0.31 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0bf2ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0bf2ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0bf2ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0bf2ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 78 System Thread ID: 64c Kernel Time: 0:0:0.718 User Time: 0:0:1.46 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0bf6ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0bf6ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0bf6ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0bf6ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 79 System Thread ID: 43d Kernel Time: 0:0:0.15 User Time: 0:0:0.46 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0bfaff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0bfaff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0bfaffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0bfaffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 80 System Thread ID: 589 Kernel Time: 0:0:0.31 User Time: 0:0:0.46 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0bfeff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0bfeff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0bfeffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0bfeffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 81 System Thread ID: 638 Kernel Time: 0:0:0.140 User Time: 0:0:0.31 Thread Type: HTTP Listener # ChildEBP RetAddr 00 0982ff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 0982ff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 0982ffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 0982ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 82 System Thread ID: 611 Kernel Time: 0:0:0.312 User Time: 0:0:0.515 Thread Type: HTTP Listener # ChildEBP RetAddr 00 098cff54 77f0c2da ntdll!NtRemoveIoCompletion+0xb 01 098cff84 686272c6 KERNEL32!GetQueuedCompletionStatus+0x27 WARNING: Stack unwind information not available. Following frames may be wrong. 02 098cffb8 77f04ef0 ISATQ!AtqBandwidthGetInfo+0x5e6 03 098cffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 83 System Thread ID: 66c Kernel Time: 0:0:0.0 User Time: 0:0:0.78 Thread Type: Possible ASP page. Possible DCOM activity Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 089cfdec 77e17f96 ntdll!NtReplyWaitReceivePort+0xb 01 089cff90 77e17f38 RPCRT4!WMSG_ADDRESS::ReceiveLotsaCalls+0x5b 02 089cff94 77e17bd3 RPCRT4!RecvLotsaCallsWrapper+0x9 03 089cffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x9f 04 089cffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 05 089cffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 84 System Thread ID: 652 Kernel Time: 0:0:0.0 User Time: 0:0:0.31 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 650 Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a5ff3a0 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 0a5ff410 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 0a5ff418 1b27204d ntdll!RtlEnterCriticalSection+0x46 03 0a5ff430 1b27d1a4 msrd3x40!System::Schedule+0xb3 04 0a5ff460 1b27d0b8 msrd3x40!Database::ScheduleFlush+0xd8 05 0a5ff4a4 1b27cede msrd3x40!Database::CommitPDs+0x15c 06 0a5ff4d8 1b2acf8f msrd3x40!Transaction::Commit+0x51 07 0a5ff544 1b2934ad msrd3x40!TblPage::NextRecordNumber+0xa3 08 0a5ff584 1b01a1b9 msrd3x40!Cursor::SetAutoincrement+0x33 09 0a5ff58c 1b04f483 msjet40!ErrUtilFreeSeg+0xa 0a 0a5ff5b4 1b021405 msjet40!BMPFreeBitmap+0x17 0b 0a5ff5c8 1b06028b msjet40!ErrDispPrepareUpdate+0x3e 0c 0a5ff608 1b021405 msjet40!ErrJprvtPrepareUpdate+0x274 0d 0a5ff61c 1b0585e2 msjet40!ErrDispPrepareUpdate+0x3e 0e 0a5ff6b8 08aaca62 msjet40!JetPrepareUpdate+0x95 0f 0a5ff740 08aabef2 odbcjt32!SQLInternalSetPos+0xb62 10 0a5ff75c 08a895aa odbcjt32!SQLSetPosCover+0x42 11 0a5ff774 08a891c2 odbcjt32!ProcessODBCCommand+0x21a 12 0a5fff84 7800b995 odbcjt32!ODBCThreadProc+0x132 WARNING: Stack unwind information not available. Following frames may be wrong. 13 0a5fffb8 77f04ef0 MSVCRT!beginthread+0xce 14 0a5fffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 85 System Thread ID: 5b1 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a63fef0 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0a63ff18 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0a63ff28 1b009982 KERNEL32!WaitForSingleObject+0xf 03 0a63ff34 1b00994a msjet40!Semaphore::Wait+0xe 04 0a63ff5c 1b003508 msjet40!Queue::GetMessageW+0xc5 05 0a63ffb8 77f04ef0 msjet40!System::WorkerThread+0x41 06 0a63ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 86 System Thread ID: 643 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0892fef0 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0892ff18 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0892ff28 1b009982 KERNEL32!WaitForSingleObject+0xf 03 0892ff34 1b00994a msjet40!Semaphore::Wait+0xe 04 0892ff5c 1b003508 msjet40!Queue::GetMessageW+0xc5 05 0892ffb8 77f04ef0 msjet40!System::WorkerThread+0x41 06 0892ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 87 System Thread ID: 673 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Jet DB Query. Possible ASP Page Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. # ChildEBP RetAddr 00 0a47fef0 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0a47ff18 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0a47ff28 1b009982 KERNEL32!WaitForSingleObject+0xf 03 0a47ff34 1b00994a msjet40!Semaphore::Wait+0xe 04 0a47ff5c 1b003508 msjet40!Queue::GetMessageW+0xc5 05 0a47ffb8 77f04ef0 msjet40!System::WorkerThread+0x41 06 0a47ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 88 System Thread ID: 5dc Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 0a4cfee8 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0a4cff10 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0a4cff20 1b272235 KERNEL32!WaitForSingleObject+0xf 03 0a4cff2c 1b272184 msrd3x40!Semaphore::Wait+0xe 04 0a4cff5c 1b28c7c7 msrd3x40!Queue::GetMessageW+0xd9 05 0a4cffb8 77f04ef0 msrd3x40!System::WorkerThread+0x41 06 0a4cffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 89 System Thread ID: 374 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Thread Type: Other # ChildEBP RetAddr 00 0a50fee8 77f1ce6b ntdll!NtWaitForSingleObject+0xb 01 0a50ff10 77f04f49 KERNEL32!WaitForSingleObjectEx+0x73 02 0a50ff20 1b272235 KERNEL32!WaitForSingleObject+0xf 03 0a50ff2c 1b272184 msrd3x40!Semaphore::Wait+0xe 04 0a50ff5c 1b28c7c7 msrd3x40!Queue::GetMessageW+0xd9 05 0a50ffb8 77f04ef0 msrd3x40!System::WorkerThread+0x41 06 0a50ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 90 System Thread ID: 650 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Status: Thread is in a WAIT state. Other information: Thread is waiting for a lock to be released. Looking for lock owner. Owning thread System ID: 652 Thread Type: Other # ChildEBP RetAddr 00 0a55feb8 77f6cfe2 ntdll!NtWaitForSingleObject+0xb 01 0a55ff28 77f67646 ntdll!RtlpWaitForCriticalSection+0xa5 02 0a55ff30 1b296669 ntdll!RtlEnterCriticalSection+0x46 03 0a55ff58 1b2a8f0e msrd3x40!Database::SurrenderMemory+0x33 04 0a55ffb8 77f04ef0 msrd3x40!System::WorkerThread+0x19b 05 0a55ffec 00000000 KERNEL32!BaseThreadStart+0x51 Thread ID: 91 System Thread ID: 671 Kernel Time: 0:0:0.0 User Time: 0:0:0.0 Thread Type: Possible ASP page. Possible DCOM activity Executing Page: ASP.dll symbols not found. Unable to locate ASP page. Continuing with other analysis. No remote call being made # ChildEBP RetAddr 00 0adbfdec 77e17f96 ntdll!NtReplyWaitReceivePort+0xb 01 0adbff90 77e17f38 RPCRT4!WMSG_ADDRESS::ReceiveLotsaCalls+0x5b 02 0adbff94 77e17bd3 RPCRT4!RecvLotsaCallsWrapper+0x9 03 0adbffac 77e17c09 RPCRT4!BaseCachedThreadRoutine+0x9f 04 0adbffb8 77f04ef0 RPCRT4!ThreadStartRoutine+0x17 05 0adbffec 00000000 KERNEL32!BaseThreadStart+0x51 Tag: IIS6 web application security exception Tag: 309641
  - 9
    - Creating a Web Site Programmatically Hi all: Anybody knows how can I create a new web site in IIS with ADSI (or other way) with parameters like Host Header Name, Port, Home Directory Path, Description I know how can I add a Virtual Folder with ADSI but I think this is not the same way Thnaks in advance Tito Tag: IIS6 web application security exception Tag: 309635
  - 10
    - IIS FP posting extended webs question! I have Win NT 4 server running IIS 4 with FP server extensions loaded. Is it possible to publish an extended web without an ISP? when I attempt to publish to "http:\\<IPaddress_ here>\<my_web>" I get server dose not have FP extensions installed. Is this because I am not published thru an ISP? Can any one tell me a way I.E. "the correct syntax" to publish to a extended web server from FrountPage 2000? Tag: IIS6 web application security exception Tag: 309633
  - 11
    - IIS needs to keep desktop awake I know this is a really stupid question, but I normally don't use Microsoft machines as servers and I'm not sure how this works. I'm using IIS 5.0 on a W2K desktop. For some reason, if I'm away from the computer for awhile, IIS is "shutting down." I need the site to be available 24x7, at least for a little while longer (until I can get production space for the content). I went into the "Power Management" options for W2K and told it to never go into standby, never turn off the hard drive, and never suspend. For some reason this didn't solve the problem. Any thoughts? Please email me your responses as I might not be back to this board today. TIA Rudejohn Tag: IIS6 web application security exception Tag: 309631
  - 12
    - OWA Popup Login Box...Change Site/Realm names? Changing Site/Realm? e.g. when logging into OWA you are prompted with the Site: www.domain.com Realm: www.domain.com I want to change it to: Site: www.domain.com Realm: OWA Is there a way to do that? (*NOTE: currently the Basic Authentication is set as \ so that users do not have to type in the domain). Tag: IIS6 web application security exception Tag: 309628
  - 13
    - IIS 5.0 I have set up a default FTP site on server WEB. I don't want anonymous access. I want the domain users to be able to log in and be directed to their home directory. The domain controller is DOMAIN. It has their home directories located on it. When I set up Virtual Directories on WEB for ftp access I start by naming the Alias the users domain name that will be using it. Next i set the Path of that virtual directory to \\DOMAIN\user\joe.bob. Then it asks for Security Credentials(Specify a username and password that will be used to gain access to the network path). This is where I'm confused. If I put in the domain admins account and password everything works fine, except for the fact that the user will be able to access all the other virtual directories because he was given admin security credentials. I just want it to be where the domain user joe.bob has to put in his account name and password so that he can access \\DOMAIN\user\joe.bob and nothing else. When it asks for Security Credentials for the Virtual Directory of Joe.Bob I can't put his username and password in because I don't know his password, or anyone else that I make a virtual directory for. Can someone point me in the right direction, because I looked at some of the authentication methods for IIS and it's not to clear. Tag: IIS6 web application security exception Tag: 309627
  - 14
    - IIS Permissions ASP 0201 Invalid Default Script Language Error Hi, I'm getting a really confusing error while trying to get IIS running on a win2k box, IIS 5.0 IIS lockdown tool installed. I've already read MS KB 271071 How To: Set Basic NTFS Permissions for IIS 5.0 and applied the changes to the server. When I set the IUSR account as an admin asp iis everything runs fine including my web app. When I change the IUSR account back to just Guest and Web User (new account created by IIS lockdown tool) I get an Invalid Default Script Language error. If add the IUSR account back to the admin group, everything is fine again, as expected. This to me seems like a permissions thing, but like I said I did exactly what the KB article above instructed. Anyone have any ideas. I've searched all over and found nothing except instructions on how to add the default language to the website or to install the latest script components. Tag: IIS6 web application security exception Tag: 309624
  - 15
    - IIS USERS I have added a server to my domain for intranet applications The proglem is with the IUSR account created for the server. The account is not showing up as a user for the domain. What do I have to do to make the computer a menber of the domain Tag: IIS6 web application security exception Tag: 309621
  - 16
    - MetaEdit 2.2 We have finished migrating a W2000/IIS5 Server the metabase has been exported with MetaEdit. But I no longer have the FrontPage extensions setting for each site. Can I automate this process? Tag: IIS6 web application security exception Tag: 309612
  - 17
    - There are too many people accessing the Web site at this time. we are running web site on IIS 5.0 on win2k some my users getting below Error Can pls some can help to solve this problem web site is not that too many hits also still below message is getting at users end. ************ Message at user end on Browser ************** The page cannot be displayed There are too many people accessing the Web site at this time. ----------------------------------------------------------- --------------------- Please try the following: Click the Refresh button, or try again later. Open the web site name home page, and then look for links to the information you want. HTTP 403.15 - Forbidden: Client Access Licenses exceeded Internet Information Services ----------------------------------------------------------- --------------------- Technical Information (for support personnel) Background: The server you are attempting to access has exceeded its Client Access License limit. More information: Microsoft Support Tag: IIS6 web application security exception Tag: 309610
  - 18
    - Authentication across trusted domains in IIS 6.0 We just migrated to IIS 6.0 from IIS 5, and in our previous production environment, we had basic authentication across trusted domains, specifying "\" as the default domain in basic authentication. The same setting does not work with IIS 6.0; and users are forced to specify their domain name in the login box before gaining access to applications. I would appreciate any help on information on how to achieve the same in IIS 6 Thanks Tag: IIS6 web application security exception Tag: 309609
  - 19
    - IIS is Very Slow Hello, We just upgraded a test machine from Windows 2000 Server to Windows Server 2003. The App is a mixture of ASP and ASP.NET. We connect to an Oracle 9i DB running on a SUN ( Unix) box. Everything works, but all of the pages take forever to load. The app was built using IIS 5 on Windows 2000. There's nothing fancy with the app and like I said everything works, it's just really slow. I am stuck on this. Can anyone suggest something for me to check? IIS is pretty much running out of the box, so I am hoping there is some setting I can change. Thanks Alot!!!! Ken Fitzpatrick Tag: IIS6 web application security exception Tag: 309608
  - 20
    - IIS Version How can I tell what version of IIS I have? I'm running win2k server sp4. Tag: IIS6 web application security exception Tag: 309598
  - 21
    - IIS 5.0 Isapi Filters I added a Webtrends cookie filter (iiscookieserver.dll) to an IIS web site. It successfully added, but when I try to access the web via FrontPage (2000/2002) this new isapi filter prevents web access. When I remove the filter, access is restored. Any suggestions as to why this filter would prevent FrontPage web access? Tag: IIS6 web application security exception Tag: 309597
  - 22
    - Urlscan (2) Hi Everyone ! I have : Urlscan.ini optimized for IIS has "HEAD" in allowed verbs. Urlscan.ini optimized for OWA doesn't have "HEAD" in allowed verbs. Sometimes, using OWA file, i can see on my urlscan logfiles that some internet user try to send a HEAD command. Why is that? What he suppose to do by using that HEAD command ? And why in OWA file is disallowed and in IIS file is allowed ? Thank You :) Tag: IIS6 web application security exception Tag: 309596
  - 23
    - ISAPI I have ISAPI filters(couple of dlls) loaded on my website. How do I know which event is calling the specific ISAPI filter loaded on the site. What I mean to ask is how do I find what part of IIS or User code is calling the loaded ISAPI filter on the site. thanks Vani Tag: IIS6 web application security exception Tag: 309594
  - 24
    - UrlScan Urlscan.ini optimized for IIS had "HEAD" in allowed verbs. Urlscan.ini optimized for OWA doesn't have "HEAD" in allowed verbs. Sometimes, using OWA file, i can see on my urlscan logfiles that some internet user try to send a HEAD command. Why is that? What he suppose to do by using that HEAD command ? And why in OWA file is disallowed and in IIS file is allowed ? Thank You :) Tag: IIS6 web application security exception Tag: 309593
  - 25
    - Passive FTP I am running Microsoft FTP on Windows 2000 SP3 and IIS 5.0. Does anyone know of a way to restrict the passive ports that the server is allowed to use? Or a way to turn off Passive FTP? Thanks, Keith Tag: IIS6 web application security exception Tag: 309592

On IIS6 on w2k3, I have a problem with a specific web appliation. The
application in question is Outlook Mobile Access for Exchange 2003
(/oma).

When accessing the virtual directory, I get the following error:
Security Exception
Description: The application attempted to perform an operation not
allowed by the security policy. To grant this application the required
permission please contact your system administrator or change the
application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Request for the
permission of type System.Security.Permissions.RegistryPermission,
mscorlib, Version=1.0.5000.0, Culture=neutral,
PublicKeyToken=b77a5c561934e089 failed.

How do I change the trust level, or is there another solution?

Best regards, Rasmus

Top

RE: IIS6 web application security exception by bbooth

bbooth
Mon Nov 03 15:06:00 CST 2003

Rasmus,

Since this problem is directly related to configuring IIS for the purpose
of getting OMA to work, this question would be best answered on an Exchange
2003 discussion group. This group is primarily monitored by people that are
experienced with IIS and not necessarily the various applications that
people use on top of it.

Thanks,
Brian Murphy-Booth

Top