On https://support.microsoft.com/kb/2992611 we can read
Some customers have reported an issue that is related to the changes in
this release. These changes added the following new cipher suites to
Windows Server 2008 R2 and Windows Server 2012. In order to give customers
more control over whether these cipher suites are used in the short term,
we are removing them from the default cipher suite priority list in the
registry.
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_128_GCM_SHA256
