Share via

explorer.exe ApplicationHangout due to waiting

Sergi Vendrell 0 Reputation points
2024-12-11T13:47:51.95+00:00

Hi,

I'm encountering an annoying issue in my Windows Server 2022 virtualized in VMWare. At first it all started with a slow login (with AD and two DC) into the machine but then when I managed to login I found errors in event viewer. The error was an application hangup of explorer.exe that is freezing task bar and desktop load.

I've seen in the task manager that a thread of explorer.exe starts with then when the application stop responding Windows seems to kill the thread and start a new one until one of them achieve to get explorer.exe loading and everything works just fine.

This is what I've tried so far:

  • Downloaded ShellExView and made sure that there is not a third party extension causing problems.
  • Use Process Monitor filtering explorer.exe and Result is not SUCCESS. A lot of things happen here and I didn't find anything remarkable.
  • Reading WER report in case of a third party DLL failing to load.
  • Using ProcDump I've made a dump and analyzed it with WinDbg, found out that the process seems to remains stuck in a method called ntdll.dll!NtWaitForMultipleObjects(). Running
    "!analyze v" I can see that it seems stuck in cdp.dll.
  • Already scanned with sfc without any issue and tried to repair with dism with same result.
  • I've tried to make a crash user dump using a regkey but didn't manage to write a file. I think it is because it is not a crash but a controlled hangout.
  • I've updated machine to latest and did the same thing into another Windows Server 2022 in another machine, this machine is working flawless while the other one is clearly not.

I don't know what else to try/do, any help would be really appreciated. I'm about to make a new machine but I'm afraid about happening again

Here is the result of the WER.

Version=1

EventType=AppHangB1

EventTime=133783853000788933

ReportType=3

Consent=1

UploadTime=133783853007504344

ReportFlags=524288

ReportStatus=268435456

ReportIdentifier=c9ca18f2-2e93-46c1-a44f-6e04fd849db4

IntegratorReportIdentifier=d49a5a36-2816-49c0-b39a-23c80566518f

Wow64Host=34404

NsAppName=explorer.exe

OriginalFilename=EXPLORER.EXE

AppSessionGuid=000018fc-0003-0023-06c1-4997b44bdb01

TargetAppId=W:0000f519feec486de87ed73cb92d3cac802400000000!0000b7044adfacfa7f7d76544ec3fc34f8f31cb5b664!explorer.exe

TargetAppVer=2080//10//03:00:00:44!4a5142!explorer.exe

BootId=4294967295

TargetAsId=1459

IsFatal=1

EtwNonCollectReason=1

Response.BucketId=083144e576c1dcc7c3f5c87ffa4ca925

Response.BucketTable=5

Response.LegacyBucketId=1438276108000471333

Response.type=4

Sig[0].Name=Application Name

Sig[0].Value=explorer.exe

Sig[1].Name=Application Version

Sig[1].Value=10.0.20348.2849

Sig[2].Name=Application Timestamp

Sig[2].Value=d05397ac

Sig[3].Name=Hang Signature

Sig[3].Value=7b99

Sig[4].Name=Hang Type

Sig[4].Value=134217728

DynamicSig[1].Name=Versión del sistema operativo

DynamicSig[1].Value=10.0.20348.2.0.0.272.7

DynamicSig[2].Name=Id. de configuración regional

DynamicSig[2].Value=3082

DynamicSig[22].Name=Additional Hang Signature 1

DynamicSig[22].Value=7b994b897618db9871db6490936f5693

DynamicSig[23].Name=Additional Hang Signature 2

DynamicSig[23].Value=342d

DynamicSig[24].Name=Additional Hang Signature 3

DynamicSig[24].Value=342dd1448a9db9018a7721f38f1b9ba3

DynamicSig[25].Name=Additional Hang Signature 4

DynamicSig[25].Value=7b99

DynamicSig[26].Name=Additional Hang Signature 5

DynamicSig[26].Value=7b994b897618db9871db6490936f5693

DynamicSig[27].Name=Additional Hang Signature 6

DynamicSig[27].Value=342d

DynamicSig[28].Name=Additional Hang Signature 7

DynamicSig[28].Value=342dd1448a9db9018a7721f38f1b9ba3

UI[3]=Windows Explorer no responde

UI[4]=Si reinicia o cierra el programa, podría perder información.

UI[5]=Reiniciar el programa

UI[6]=Reiniciar el programa

LoadedModule[0]=C:\Windows\explorer.exe

LoadedModule[1]=C:\Windows\SYSTEM32\ntdll.dll

LoadedModule[2]=C:\Windows\System32\KERNEL32.DLL

LoadedModule[3]=C:\Windows\System32\KERNELBASE.dll

LoadedModule[4]=C:\Windows\System32\msvcp_win.dll

LoadedModule[5]=C:\Windows\System32\ucrtbase.dll

LoadedModule[6]=C:\Windows\System32\combase.dll

LoadedModule[7]=C:\Windows\System32\RPCRT4.dll

LoadedModule[8]=C:\Windows\System32\OLEAUT32.dll

LoadedModule[9]=C:\Windows\System32\shcore.dll

LoadedModule[10]=C:\Windows\System32\advapi32.dll

LoadedModule[11]=C:\Windows\System32\msvcrt.dll

LoadedModule[12]=C:\Windows\System32\sechost.dll

LoadedModule[13]=C:\Windows\System32\bcrypt.dll

LoadedModule[14]=C:\Windows\System32\shlwapi.dll

LoadedModule[15]=C:\Windows\System32\user32.dll

LoadedModule[16]=C:\Windows\System32\win32u.dll

LoadedModule[17]=C:\Windows\System32\GDI32.dll

LoadedModule[18]=C:\Windows\System32\gdi32full.dll

LoadedModule[19]=C:\Windows\System32\SHELL32.dll

LoadedModule[20]=C:\Windows\SYSTEM32\AEPIC.dll

LoadedModule[21]=C:\Windows\SYSTEM32\TWINAPI.dll

LoadedModule[22]=C:\Windows\SYSTEM32\USERENV.dll

LoadedModule[23]=C:\Windows\SYSTEM32\powrprof.dll

LoadedModule[24]=C:\Windows\SYSTEM32\windows.storage.dll

LoadedModule[25]=C:\Windows\SYSTEM32\dxgi.dll

LoadedModule[26]=C:\Windows\SYSTEM32\kernel.appcore.dll

LoadedModule[27]=C:\Windows\SYSTEM32\PROPSYS.dll

LoadedModule[28]=C:\Windows\SYSTEM32\WININET.dll

LoadedModule[29]=C:\Windows\SYSTEM32\UxTheme.dll

LoadedModule[30]=C:\Windows\SYSTEM32\dwmapi.dll

LoadedModule[31]=C:\Windows\SYSTEM32\twinapi.appcore.dll

LoadedModule[32]=C:\Windows\SYSTEM32\SspiCli.dll

LoadedModule[33]=C:\Windows\SYSTEM32\WTSAPI32.dll

LoadedModule[34]=C:\Windows\System32\bcryptPrimitives.dll

LoadedModule[35]=C:\Windows\SYSTEM32\ntmarta.dll

LoadedModule[36]=C:\Windows\SYSTEM32\UMPDC.dll

LoadedModule[37]=C:\Windows\System32\IMM32.DLL

LoadedModule[38]=C:\Windows\SYSTEM32\NInput.dll

LoadedModule[39]=C:\Windows\System32\MSCTF.dll

LoadedModule[40]=C:\Windows\System32\ole32.dll

LoadedModule[41]=C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.20348.2849_none_947683b1eef1cae2\comctl32.dll

LoadedModule[42]=C:\Windows\System32\clbcatq.dll

LoadedModule[43]=C:\Windows\System32\appresolver.dll

LoadedModule[44]=C:\Windows\SYSTEM32\profapi.dll

LoadedModule[45]=C:\Windows\System32\OneCoreUAPCommonProxyStub.dll

LoadedModule[46]=C:\Windows\SYSTEM32\CFGMGR32.dll

LoadedModule[47]=C:\Windows\System32\StartTileData.dll

LoadedModule[48]=C:\Windows\SYSTEM32\usermgrcli.dll

LoadedModule[49]=C:\Windows\System32\Windows.StateRepositoryPS.dll

LoadedModule[50]=C:\Windows\System32\OneCoreCommonProxyStub.dll

LoadedModule[51]=C:\Windows\System32\Windows.ApplicationModel.dll

LoadedModule[52]=C:\Windows\System32\usermgrproxy.dll

LoadedModule[53]=C:\Windows\System32\AppXDeploymentClient.dll

LoadedModule[54]=C:\Windows\System32\IDStore.dll

LoadedModule[55]=C:\Windows\System32\Windows.CloudStore.dll

LoadedModule[56]=C:\Windows\System32\wlidprov.dll

LoadedModule[57]=C:\Windows\System32\Bcp47Langs.dll

LoadedModule[58]=C:\Windows\SYSTEM32\policymanager.dll

LoadedModule[59]=C:\Windows\SYSTEM32\msvcp110_win.dll

LoadedModule[60]=C:\Windows\System32\AppExtension.dll

LoadedModule[61]=C:\Windows\SYSTEM32\SndVolSSO.DLL

LoadedModule[62]=C:\Windows\SYSTEM32\MMDevAPI.DLL

LoadedModule[63]=C:\Windows\SYSTEM32\DEVOBJ.dll

LoadedModule[64]=C:\Windows\SYSTEM32\OLEACC.dll

LoadedModule[65]=C:\Windows\System32\Windows.StateRepositoryClient.dll

LoadedModule[66]=C:\Windows\SYSTEM32\TextShaping.dll

LoadedModule[67]=C:\Windows\system32\windowscodecs.dll

LoadedModule[68]=C:\Windows\System32\WinTypes.dll

LoadedModule[69]=C:\Windows\SYSTEM32\dcomp.dll

LoadedModule[70]=C:\Windows\System32\Windows.CloudStore.Schema.Shell.dll

LoadedModule[71]=C:\Windows\system32\dataexchange.dll

LoadedModule[72]=C:\Windows\SYSTEM32\apphelp.dll

LoadedModule[73]=C:\Windows\System32\TileDataRepository.dll

LoadedModule[74]=C:\Windows\System32\Windows.StateRepository.dll

LoadedModule[75]=C:\Windows\System32\StateRepository.Core.dll

LoadedModule[76]=C:\Windows\system32\explorerframe.dll

LoadedModule[77]=C:\Windows\System32\coml2.dll

LoadedModule[78]=C:\Windows\system32\twinui.pcshell.dll

LoadedModule[79]=C:\Windows\system32\iertutil.dll

LoadedModule[80]=C:\Windows\system32\wincorlib.DLL

LoadedModule[81]=C:\Windows\system32\srvcli.dll

LoadedModule[82]=C:\Windows\system32\netutils.dll

LoadedModule[83]=C:\Windows\System32\windows.immersiveshell.serviceprovider.dll

LoadedModule[84]=C:\Windows\System32\twinui.appcore.dll

LoadedModule[85]=C:\Windows\System32\RMCLIENT.dll

LoadedModule[86]=C:\Windows\system32\twinui.dll

LoadedModule[87]=C:\Windows\SYSTEM32\textinputframework.dll

LoadedModule[88]=C:\Windows\SYSTEM32\windows.staterepositorycore.dll

LoadedModule[89]=C:\Windows\SYSTEM32\cldapi.dll

LoadedModule[90]=C:\Windows\SYSTEM32\FLTLIB.DLL

LoadedModule[91]=C:\Windows\System32\MrmCoreR.dll

LoadedModule[92]=C:\Windows\System32\Windows.UI.dll

LoadedModule[93]=C:\Windows\System32\bcp47mrm.dll

LoadedModule[94]=C:\Windows\System32\thumbcache.dll

LoadedModule[95]=C:\Windows\SYSTEM32\edputil.dll

LoadedModule[96]=C:\Windows\SYSTEM32\WLDP.DLL

LoadedModule[97]=C:\Windows\SYSTEM32\WINSTA.dll

LoadedModule[98]=C:\Windows\SYSTEM32\SLC.dll

LoadedModule[99]=C:\Windows\SYSTEM32\sppc.dll

LoadedModule[100]=C:\Windows\System32\ApplicationFrame.dll

LoadedModule[101]=C:\Windows\SYSTEM32\PhotoMetadataHandler.dll

LoadedModule[102]=C:\Windows\System32\Windows.UI.Immersive.dll

LoadedModule[103]=C:\Windows\System32\AboveLockAppHost.dll

LoadedModule[104]=C:\Windows\SYSTEM32\ntshrui.dll

LoadedModule[105]=C:\Windows\System32\InputHost.dll

LoadedModule[106]=C:\Windows\System32\CoreMessaging.dll

LoadedModule[107]=C:\Windows\System32\Windows.UI.Core.TextInput.dll

LoadedModule[108]=C:\Windows\System32\npsm.dll

LoadedModule[109]=C:\Windows\System32\Windows.Web.dll

LoadedModule[110]=C:\Windows\System32\Windows.Shell.BlueLightReduction.dll

LoadedModule[111]=C:\Windows\SYSTEM32\directxdatabasehelper.dll

LoadedModule[112]=C:\Windows\System32\mscms.dll

LoadedModule[113]=C:\Windows\System32\ColorAdapterClient.dll

LoadedModule[114]=C:\Windows\SYSTEM32\CRYPTBASE.DLL

LoadedModule[115]=C:\Windows\System32\NotificationControllerPS.dll

LoadedModule[116]=C:\Windows\System32\ActXPrxy.dll

LoadedModule[117]=C:\Windows\System32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll

LoadedModule[118]=C:\Windows\System32\Windows.Networking.Connectivity.dll

LoadedModule[119]=C:\Windows\system32\windowsudk.shellcommon.dll

LoadedModule[120]=C:\Windows\SYSTEM32\d3d11.dll

LoadedModule[121]=C:\Windows\SYSTEM32\d3d10warp.dll

LoadedModule[122]=C:\Windows\SYSTEM32\dxcore.dll

LoadedModule[123]=C:\Windows\SYSTEM32\d2d1.dll

LoadedModule[124]=C:\Windows\System32\UIAnimation.dll

LoadedModule[125]=C:\Windows\System32\Windows.StateRepositoryBroker.dll

LoadedModule[126]=C:\Windows\SYSTEM32\CoreUIComponents.dll

LoadedModule[127]=C:\Windows\System32\PCShellCommonProxyStub.dll

LoadedModule[128]=C:\Windows\SYSTEM32\dsreg.dll

LoadedModule[129]=C:\Windows\SYSTEM32\cryptngc.dll

LoadedModule[130]=C:\Windows\System32\ShellCommonCommonProxyStub.dll

LoadedModule[131]=C:\Windows\SYSTEM32\dmEnrollEngine.DLL

LoadedModule[132]=C:\Windows\SYSTEM32\cflapi.dll

LoadedModule[133]=C:\Windows\system32\execmodelproxy.dll

LoadedModule[134]=C:\Windows\SYSTEM32\daxexec.dll

LoadedModule[135]=C:\Windows\System32\container.dll

LoadedModule[136]=C:\Windows\System32\IPHLPAPI.DLL

LoadedModule[137]=C:\Windows\SYSTEM32\UIAutomationCore.DLL

LoadedModule[138]=C:\Windows\system32\stobject.dll

LoadedModule[139]=C:\Windows\system32\BatMeter.dll

LoadedModule[140]=C:\Windows\System32\InputSwitch.dll

LoadedModule[141]=C:\Windows\system32\WMICLNT.dll

LoadedModule[142]=C:\Windows\system32\es.dll

LoadedModule[143]=C:\Windows\system32\prnfldr.dll

LoadedModule[144]=C:\Windows\System32\Windows.UI.Shell.dll

LoadedModule[145]=C:\Windows\SYSTEM32\LINKINFO.dll

LoadedModule[146]=C:\Windows\SYSTEM32\MPR.dll

LoadedModule[147]=C:\Windows\system32\dxp.dll

LoadedModule[148]=C:\Windows\System32\SETUPAPI.dll

LoadedModule[149]=C:\Windows\system32\SHDOCVW.dll

LoadedModule[150]=C:\Windows\SYSTEM32\windows.media.devices.dll

LoadedModule[151]=C:\Windows\SYSTEM32\atlthunk.dll

LoadedModule[152]=C:\Windows\System32\Windows.System.Launcher.dll

LoadedModule[153]=C:\Windows\system32\Syncreg.dll

LoadedModule[154]=C:\Windows\System32\cdp.dll

LoadedModule[155]=C:\Windows\System32\Actioncenter.dll

LoadedModule[156]=C:\Windows\System32\Windows.FileExplorer.Common.dll

LoadedModule[157]=C:\Windows\System32\npmproxy.dll

LoadedModule[158]=C:\Windows\System32\NSI.dll

LoadedModule[159]=C:\Windows\system32\wpdshserviceobj.dll

LoadedModule[160]=C:\Windows\System32\PortableDeviceTypes.dll

LoadedModule[161]=C:\Windows\System32\PortableDeviceApi.dll

LoadedModule[162]=C:\Windows\System32\cscui.dll

LoadedModule[163]=C:\Windows\System32\WINTRUST.dll

LoadedModule[164]=C:\Windows\System32\CRYPT32.dll

LoadedModule[165]=C:\Windows\SYSTEM32\MSASN1.dll

LoadedModule[166]=C:\Windows\System32\cscobj.dll

LoadedModule[167]=C:\Windows\System32\pnidui.dll

LoadedModule[168]=C:\Windows\System32\netprofm.dll

LoadedModule[169]=C:\Windows\System32\CSCAPI.dll

LoadedModule[170]=C:\Windows\System32\srchadmin.dll

LoadedModule[171]=C:\Windows\SYSTEM32\windows.storage.search.dll

LoadedModule[172]=C:\Windows\System32\NetworkUXBroker.dll

LoadedModule[173]=C:\Windows\System32\EthernetMediaManager.dll

LoadedModule[174]=C:\Windows\System32\CapabilityAccessManagerClient.dll

LoadedModule[175]=C:\Windows\system32\mssprxy.dll

LoadedModule[176]=C:\Windows\System32\wpnclient.dll

LoadedModule[177]=C:\Windows\System32\bthprops.cpl

LoadedModule[178]=C:\Windows\SYSTEM32\dhcpcsvc6.DLL

LoadedModule[179]=C:\Windows\System32\SyncCenter.dll

LoadedModule[180]=C:\Windows\SYSTEM32\dhcpcsvc.DLL

LoadedModule[181]=C:\Windows\System32\imapi2.dll

LoadedModule[182]=C:\Windows\SYSTEM32\sxs.dll

LoadedModule[183]=C:\Windows\SYSTEM32\bluetoothapis.dll

State[0].Key=Transport.DoneStage1

State[0].Value=1

OsInfo[0].Key=vermaj

OsInfo[0].Value=10

OsInfo[1].Key=vermin

OsInfo[1].Value=0

OsInfo[2].Key=verbld

OsInfo[2].Value=20348

OsInfo[3].Key=ubr

OsInfo[3].Value=2966

OsInfo[4].Key=versp

OsInfo[4].Value=0

OsInfo[5].Key=arch

OsInfo[5].Value=9

OsInfo[6].Key=lcid

OsInfo[6].Value=3082

OsInfo[7].Key=geoid

OsInfo[7].Value=217

OsInfo[8].Key=sku

OsInfo[8].Value=7

OsInfo[9].Key=domain

OsInfo[9].Value=1

OsInfo[10].Key=prodsuite

OsInfo[10].Value=272

OsInfo[11].Key=ntprodtype

OsInfo[11].Value=3

OsInfo[12].Key=platid

OsInfo[12].Value=10

OsInfo[13].Key=sr

OsInfo[13].Value=0

OsInfo[14].Key=tmsi

OsInfo[14].Value=222970198

OsInfo[15].Key=osinsty

OsInfo[15].Value=2

OsInfo[16].Key=iever

OsInfo[16].Value=11.1.20348.0-11.0.1000

OsInfo[17].Key=portos

OsInfo[17].Value=0

OsInfo[18].Key=ram

OsInfo[18].Value=16384

OsInfo[19].Key=svolsz

OsInfo[19].Value=89

OsInfo[20].Key=wimbt

OsInfo[20].Value=0

OsInfo[21].Key=blddt

OsInfo[21].Value=210507

OsInfo[22].Key=bldtm

OsInfo[22].Value=1500

OsInfo[23].Key=bldbrch

OsInfo[23].Value=fe_release

OsInfo[24].Key=bldchk

OsInfo[24].Value=0

OsInfo[25].Key=wpvermaj

OsInfo[25].Value=0

OsInfo[26].Key=wpvermin

OsInfo[26].Value=0

OsInfo[27].Key=wpbuildmaj

OsInfo[27].Value=0

OsInfo[28].Key=wpbuildmin

OsInfo[28].Value=0

OsInfo[29].Key=osver

OsInfo[29].Value=10.0.20348.2966.amd64fre.fe_release.210507-1500

OsInfo[30].Key=buildflightid

OsInfo[31].Key=edition

OsInfo[31].Value=ServerStandard

OsInfo[32].Key=ring

OsInfo[32].Value=Retail

OsInfo[33].Key=expid

OsInfo[34].Key=fconid

OsInfo[34].Value=19193644,0,2,0;35681102,0,1,0

OsInfo[35].Key=containerid

OsInfo[36].Key=containertype

OsInfo[37].Key=edu

OsInfo[37].Value=0

OsInfo[38].Key=servicinginprogress

OsInfo[38].Value=0

FriendlyEventName=Stopped responding and was closed

ConsentKey=AppHangXProcB1

AppName=Windows Explorer

AppPath=C:\Windows\explorer.exe

ReportDescription=A problem caused this program to stop interacting with Windows.

NsPartner=windows

NsGroup=windows8

ApplicationIdentity=5CA87A40ABDF4DE560FEF90AFB9F94F8

MetadataHash=497490265

Windows Server Setup
Windows Server Setup
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Setup: The procedures involved in preparing a software program or application to operate within a computer or mobile device.
259 questions
0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.