Skip to content

windows_clients_troubleshooting

Jump to bottom Edit New page
Pablo Estigarribia edited this page Nov 22, 2018 · 6 revisions

This page is dedicated to windows clients specific troubleshooting.

Task scheduler

SYSTEM account rights to logon as batch jobs.

If for some reason windows doesn't allow SYSTEM to run burp.exe as job in task scheduler, check the following:

Open gpedit.msc :

 Windows Settings/Security Settings/Local Policies/User Rights Assignment/Logon As Batch Job

You can add SYSTEM account on local computer.

Or you can also add SYSTEM account to Backup operators group (should have same effect).

Task scheduler executes burp job even when running

This causes some strange behaviours on burp client, like it breaking, hanging, or just not doing anything without any apparent reason.

Affects Windows Vista, 7, 2008, 2008R2.

Error Value: 2147750687

Solution 1:

https://support.microsoft.com/en-us/help/2461249/the-task-scheduler-service-runs-the-same-job-two-times-in-windows-serv

download the patch from "Hotfix Download Available" link on top of the page.

Interaction with anti-virus programs

Dr.Web

If burp client hangs during backup (just stops doing anything until server drops connection because of inactivity), you may need to add full path to burp executable (e.g. C:\Program Files\Burp\bin\burp.exe) to the exception list of SpIDer Gate.

rs_infilebuf_fill: error in bread: Unknown error

Error mesage:

Phase 2 begin (send backup data)

z2018-11-22 07:06:00: C:\Program Files\burp\bin\burp.exe[3879240] rs_infilebuf_fill: error in bread: Unknown error
2018-11-22 07:06:00: C:\Program Files\burp\bin\burp.exe[3879240] error in rs_async for delta: 100
2018-11-22 07:06:00: C:\Program Files\burp\bin\burp.exe[3879240] error in sig/delta for f:0000:C:/Users/user/Documents/Archivos de Outlook/archive.pst (f:0000:C:/Users/user/Documents/Archivos de Outlook/archive.pst)
2018-11-22 07:23:27: C:\Program Files\burp\bin\burp.exe[3879240] MESSAGE: Running notify script: computername /storage/burp/data/computername /storage/burp/data/computername/current log backup 0 sendmail -t To: [email protected] From: someserver Subject: %b failed: %c %w

2018-11-22 07:23:27: C:\Program Files\burp\bin\burp.exe[3879240] main socket: Peer closed SSL session
2018-11-22 07:23:27: C:\Program Files\burp\bin\burp.exe[3879240] error in sig/delta for f:0000:C:/Users/user/Documents/Outlook Files (f:0000:C:/Users/user/Documents/Outlook Files)
2018-11-22 07:23:27: C:\Program Files\burp\bin\burp.exe[3879240] main socket: Peer closed SSL session

Based on comments from mailing list:

https://sourceforge.net/p/burp/mailman/message/34997501/

You must try stopping outlook.exe

But also try restarting windows and see because it was working before with no issues (Probably failed office installation? or different platform for office?)

You can remotely stop outlook:

wmic
/node:clientname
wmic process where name='cmd.exe' delete

Also I have noticed some network issue with one of the laptops when working with wireless, try to upgrade wifi driver or us ethernet.

Add a custom footer
Add a custom sidebar
Clone this wiki locally