Sida loo hagaajiyo DCOM Event ID 10016 qaladka Windows 10

Boostada maanta, waxaan ku aqoonsan doonaa sababta ka dibna waxaan bixin doonaa xalalka suurtagalka ah ee arrinta DCOM (DistributedCOM) Dhacdada ID 10016(DCOM (DistributedCOM) Event ID 10016) qalad kaas oo laga yaabo inuu ka soo muuqdo daawadayaasha dhacdada Windows inta lagu jiro howlaha caadiga ah ee Windows 10 .

Qaabka  Shayga La Qaybiyay (DCOM)(Distributed Component Object Model (DCOM)) waa qayb ka mid ah xidhiidhka isku xidhan ee kombiyuutarada Windows . Waa tignoolajiyada Microsoft ee iska leh oo hir galisa mar kasta oo codsi uu sameeyo xidhiidh internet. COM-dhaqameedku wuxuu kaliya ka heli karaa macluumaadka isla mashiinka, halka DCOM ay ka heli karto xogta server-yada fog.

Tusaale ahaan, shabakado iyo adeegyo badan ayaa adeegsada qoraallo gelaya server fog. Marka nidaamkaagu sameeyo codsi isagoo isticmaalaya qoraal ama si kale, DCOM waxay codsiga u gudbisaa shayga qoraalka gaarka ah. Marka la eego inta jeer ee codsiyada casriga ah ay isticmaalaan isku xirka shabakada iyo isticmaalkeena guud ee kombiyuutarada, waxaad arki kartaa inta jeer ee DCOM loo isticmaalo.

Aqoonsiga Dhacdada DCOM 10016 khalad

Aqoonsiga Dhacdada DCOM 10016 khalad

Waxaad ogaan kartaa dhacdadan hoose ee 10016 oo soo gashay diiwaanka dhacdooyinka nidaamka kombiyuutarka ku shaqeeya Windows 10 , Windows Server 2016 , Windows Server 2019, Windows Server , nooca 1903 ama Windows Server 1909 :

Source: Microsoft-Windows-DistributedCOM
Event ID: 10016
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Caadi ahaan, waxaad la kulmi doontaa cilada sare ee la soo galiyay daawadayaasha dhacdada. Si kastaba ha noqotee, waxaa xusid mudan inay jiraan kala duwanaansho qaladka Aqoonsiga Dhacdada 10016 . (Event ID 10016)Si kastaba ha ahaatee(Nevertheless) , habka lagu yareynayo qaladka asal ahaan waa isku mid.

Khaladka DCOM wuxuu badanaa dhacaa marka codsi ama adeeg uu isku dayo inuu isticmaalo DCOM laakiin aanu haysan ogolaanshaha saxda ah. Inta badan, khaladaadka DCOM ma saameeyaan nidaamkaaga, aan ka ahayn xidhidhiyahaaga Dhacdada(Viewer) . Dhacdooyinkan 10016 waxa la diiwaan galiyay marka qaybaha Microsoft ay isku dayaan inay galaan qaybaha DCOM iyaga oo aan haysan ogolaanshaha loo baahan yahay. Xaaladdan oo kale, tan ayaa la filayaa iyo naqshadeynta.

Khaladaadka DCOM maahan wax laga werwero - si badbaado leh ayaad iskaga indho tiri kartaa. Si kastaba ha ahaatee, waxaa jira habab aad raaci karto si aad u xalliso qaladka aqoonsiga dhacdada 10016(ID 10016) mar kasta oo ay dhacdo.

Sida loo xalliyo qaladka aqoonsiga dhacdada DCOM 10016(ID 10016)

Si arrintan loo xalliyo, Microsoft waxay soo jeedinaysaa abuurista shaandhada XML si loo xakameeyo qaladka aqoonsiga dhacdada DCOM 10016(ID 10016) .

Waa kan sida:

  • Fur Event Viewer ( Riix furaha Windows(Press Windows) + R. Run sanduuqa wada hadalka, ku qor Eventvwr oo ku dhufo Gelida).
  • Riix Logs Windows(Windows Logs) > System .
  • Guji  shaandhaynta log hadda jirta ee ku (Filter current log ) hoos jirta muraayadda Action .
  • Dooro tab XML oo hubi su'aasha(Edit query manually) wax ka beddel ikhtiyaarka gacanta.
  • Nuqul ka samee oo ku dheji qoraalka XML soo socda ee wada hadalka filter.
<QueryList>
  <Query Id="0" Path="System">
    <Select Path="System">*</Select>
    <Suppress Path="System">
      *[System[(EventID=10016)]]
      and
      *[EventData[
        (
          Data[@Name='param4'] and Data='{D63B10C5-BB46-4990-A94F-E40B9D520160}' and
          Data[@Name='param5'] and Data='{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}' and
          Data[@Name='param8'] and Data='S-1-5-18'
        ) 
        or
        (
          Data[@Name='param4'] and Data='{260EB9DE-5CBE-4BFF-A99A-3710AF55BF1E}' and
          Data[@Name='param5'] and Data='{260EB9DE-5CBE-4BFF-A99A-3710AF55BF1E}'
        ) 
        or
        (
          Data[@Name='param4'] and Data='{C2F03A33-21F5-47FA-B4BB-156362A2F239}' and
          Data[@Name='param5'] and Data='{316CDED5-E4AE-4B15-9113-7055D84DCC97}' and
          Data[@Name='param8'] and Data='S-1-5-19'
        )
        or
        (
          Data[@Name='param4'] and Data='{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}' and
          Data[@Name='param5'] and Data='{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}' and
          Data[@Name='param8'] and Data='S-1-5-19'
        ) 
      ]]
    </Suppress>
  </Query>
</QueryList>

Su'aashan ,  param4  waxay u dhigantaa codsiga COM Server CLSIDparam5  waxay u dhigantaa APPID,  param8  waxay u dhigantaa amniga macnaha SID , kuwaas oo dhammaantood lagu duubay diiwaanka dhacdooyinka 10016.

  • Guji OK _

Gelida qaladka DCOM ee leh aqoonsiga dhacdada 10016(Event ID 10016) hadda waa laga qariyey aragtida.

Haddii kale, waxaad xallin kartaa arrinta Ogolaanshaha DCOM adigoo isticmaalaya (DCOM Permissions)Tifaftiraha Diiwaangelinta(Registry Editor) & Qalabka Config ee DCom(DCom Config) .

Waa kan sida:

Hagaajintu waxay ku lug leedahay hagaajinta diiwaangelinta - markaa si taxaddar leh, waxaa lagugula talinayaa inaad dib u soo celiso diiwaanka(back up the registry) ama aad sameyso barta soo celinta nidaamka .

Si looga hortago in dhacdooyinka la soo galiyo, raac tillaabooyinkan si aad oggollaansho u siiso qaybaha DCOM ee leh CLSID-yada gaarka ah iyo APPID (CLSIDs)-yada(APPIDs) .

Marka hore, waxaad u baahan doontaa inaad ogaato habka ama adeega la xidhiidha aqoonsiga CLASS(CLASS ID) ee ku taxan khaladka. Si tan loo sameeyo, horay u soco oo koobiyi CLSID(CLSID) ku taxan sharaxaadda dhacdada. Xaaladdan oo kale, waa {D63B10C5-BB46-4990-A94F-E40B9D520160} . Hubi inaad koobiyayso labada tiir ee laablaaban sidoo kale.

Hadda, bilaw Tifaftiraha Diiwaangelinta . Markaad hesho tafatiraha diiwaanka la furay, dhagsii  Edit  ka dibna  Raadi(Find) . Hore u soco oo ku dheji CLSID(CLSID) sanduuqa raadinta oo ku dhufo Gelida(Enter) .

Diiwaangelinta hadda waxay bilaabi doontaa raadinta. Muddo ka dib, waa in aad natiijada ka heshaa hoosta HK_CLASSES_ROOT\CLSID  furaha. Dhanka midigta, waa inay lahaataa laba fure oo midda  caadiga(Default) ah waa inay taxdaa magaca adeegga. Xaaladdan oo kale, waa inay noqotaa RuntimeBroker .

Hadda oo aad aqoonsatay habka, waxaad hadda u sii wadi kartaa sida soo socota si aad u saxdo qaladka.

  • Weli, gudaha tafatiraha diiwaanka, u gudub furaha AppID ee soo socda ee la xidhiidha RuntimeBroker:

HKEY_CLASSES_ROOT\AppID\{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}

Sida caadiga ah, TrustedInstaller ayaa(TrustedInstaller) iska leh furaha diiwaangelinta iyo furayaasha hoose. U deji maamulaha(Set Administrator) inuu yahay mulkiilaha furaha iyo furayaasha hoose. Fiiri  sida aad u yeelan karto lahaanshaha furayaasha diiwaanka(how to take ownership of registry keys)  wixii macluumaad dheeraad ah.

  • Ka dib markaad u dejiso maamulayaasha(Administrators)  mulkiilaha, u  dir kooxda maamulayaasha(Administrators)  iyo   koontada NIDAAMKA(SYSTEM) waxay heystaan ​​ogolaansho buuxda oo ah furaha iyo furayaasha hoose.(Full Control)
  • Ka bax Tifaftiraha Diiwaanka

Marka xigta, billow qalabka isku xirka DCOM(DCOM Configuration) (riix furaha Windows + R. In the Run box dialog, ku qor dcomcnfg.exe  oo ku dhufo Gelida.

  • Guji Adeegyada Qaybaha(Component Services) > Kombiyuutarrada > Kombuyuutarkayga(Computers) > Koonfigga (My Comput)DCOM(DCOM Config) .
  • Midig ku dhufo(Right-click) arjiga u dhigma AppID -ka ee lagu duubay diiwaanka dhacdada, ka dibna dooro Guryaha(Properties) .

Magaca codsiga ee tusaalahan waa RuntimeBroker kaas oo aan horay u aqoonsannay. Haddii aaladda Config ee DCom(DCom Config) ay liis gareyso laba RuntimeBroker gelis(RuntimeBroker) . Si aad u hesho midda saxda ah, ku dhufo shay midigta oo guji Properties oo dhig aqoonsiga App(App ID) -ka iyo kan ku jira diiwaanka.

  • Dooro tab Amniga(Security)
  • Hoosta Oggolaanshaha Launch and Activation(Launch and Activation Permissions) , dooro Customize , oo guji Edit .

Haddii badhanka Tafatirka uu ka baxo RuntimeBroker arjiga(Edit) Guryaha ee(Properties) DCOM Config(DCOM Config) , waxaad u baahan doontaa inaad xaqiijiso oggolaanshaha furaha diiwaangelinta AppID .

  • Hoosta kooxda ama magacyada isticmaale(Group or user names) , dooro ku dar(Add) .
  • Geli(Enter) kooxda ama magaca isticmaalaha ee ku diiwaan gashan diiwaanka dhacdada. Tusaale ahaan, koontada ku diiwaan gashan loggu waxa ay noqon kartaa NT AUTHORITY\NETWORK SERVICE , NT AUTHORITY\SYSTEM , ama koox kale ama akoon.
  • Guji OK _
  • U qoondee rukhsad firfircoonida maxaliga(Assign Local Activation) ah isticmaale ama kooxda aad ku dartay, oo dhamaystir nidaamka.

Habkani waxa uu ka hortagayaa khaladaadka diiwaanka dhacdada aqoonsiga dhacdada(Event ID) : 10016 ee la xidhiidha ogolaanshaha DCOM .

Fiiro gaar(Note) ah : Microsoft kuma talinayso habka wax ka beddelka oggolaanshaha qaybaha DCOM si looga hortago in khaladkan la galo sababtoo ah khaladaadkani si xun uma saameeya shaqeynta iyo wax ka beddelka oggolaanshaha waxay yeelan kartaa saameyno aan loo baahnayn.

Hope this helps!



Mario Morgan

About the author

Waxaan ahay injineer software ah oo khibrad u leh Xbox Explorer, Microsoft Excel, iyo Windows 8.1 Explorer. Waqtiga firaaqada, waxaan jeclahay inaan ciyaaro ciyaaraha fiidiyaha oo aan daawado TV-ga. Waxaan shahaadada ka qaatay Jaamacadda Utah, waxaanan hadda u shaqeynayaa sidii injineer software ah oo shirkad caalami ah.


Related posts