Solved

SBS 2008 spontaneous shutdown

Posted on 2013-10-28
3
661 Views
Last Modified: 2013-10-28
I've got a client with sbs 2008 running exchange and AD/DC onsite. This afternoon, the server spontaneously shut itself down, cleanly i might add, twice. 53 mins apart. I've reviewed the event logs and both times:

The process Explorer.EXE has initiated the shutdown of computer SRASERVER09 on behalf of user srafoods\Administrator for the following reason: Other (Planned)
 Reason Code: 0x85000000
 Shutdown Type: shutdown
 Comment: jake

I've changed the administrator password and a third shutdown, 53 mins later or somewhere there abouts, has not occurred, which I would expect were this a service or application related error. I hesitate to make this accusation, because it has large implications in this case, but in the absence of other errors in the event log, does this error not point to the fact that someone intentionally shut this server down by way of the administrator account? I need to entertain all other possibilities.
0
Comment
Question by:sdholden28
  • 2
3 Comments
 
LVL 3

Expert Comment

by:ltechsolutions
ID: 39607531
Reason code 0x85000000 usually indicates someone has manually requested the shutdown.

When you select Shutdown, you're required to enter a 'comment' as a reason for the shutdown. In your example, whoever shut the server down entered "jake" as the comment before clicking OK.

Based on what I'm seeing, I find it highly unlikely that this was caused by any sort of program or script - it's fairly clear that this was done manually.
0
 

Author Comment

by:sdholden28
ID: 39607539
My thoughts exactly. Just wanted some other opinions. If I report my findings as "user initiated shutdown" then it's needs to be more than accurate.
0
 
LVL 3

Accepted Solution

by:
ltechsolutions earned 500 total points
ID: 39607544
Based on your post, I see no evidence to the contrary.

My official diagnosis is that the shutdown was manually initiated by the Administrator account.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

OfficeMate Freezes on login or does not load after login credentials are input.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now