DHCP client service won’t start – access denied
If you are unable to start the dhcp client service and receive an access denied message, it’s due to the network service account not having the permissions. Follow the below instructions to resolve:
1) Click start
2) Click run
3) Type regedit (please be careful when editing the registry – Always take a backup)
4) Navigate to \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dhcp\Paramaters
5) Right click the parameters folder/key and click permissions
6) Check that the network service is visible and has full control permissions
7) If the network service account does not exisit, add and grant full control
8.) Start the dhcp client service
Citrix Ticket Logon attempted on expired ticket
The above alert usually occurs when a user (using NFuse) right clicks a citrix application and saves the ica file. By default the ticket will expire after 200 seconds. To replicate the above error, save the ica file to your desktop and launch after 5 minutes, you should receive the same error as above within your server event log.
An update failed with error fffff894
VirusScan Enterprise is installed on the same server as GroupShield. They both use the McAfee Common Management Agent.
The Agent automatically checks for updates for all products installed on the same machine, and therefore only one product needs to have a scheduled update task configured.
Solution
1. From the GroupShield console, select Scheduled Tasks.
2. Click Delete to eliminate updates.
3. When the dialog for task permanently deleted is displayed click OK
Run update again
If this does not work download and install the latest superdat from here
Source: McAfee
Files last modified and total size script
The below script will search for all files and folders modified after a certain date and then provide you with a total size in MB.
Amend the date and disk letter within the script as required, or add the path to the folder you wish to run the script against.
To be able to run the below script download Powershell and make sure you have a minimum of .net 2 installed. Powershell can be downloaded for free.
Write-Host $size
$length = (gci ‘C:\’ -Recurse |?{$_.lastwritetime -gt ‘03/06/2009′}| Measure-Object length -Sum).sum
$size = ($length/1MB)
Write-Host $size
How to check if teamed network cards are conflicting
If you are receiving the below error within your event log and want to know if teamed up network cards are causing the problem, follow the instructions below:
Error: The name “DC name :1d” could not be registered on the Interface with IP address
1) Click start
2) Click run
3) Type cmd and click ok
4) Type nbtstat -n and press enter
Check the server name status. If it shows conflict, access the WINS server and under active sessions > display records, locate the server name and delete the server record.
Next go back to the server and within the command prompt type nbtstat -R. Next restart the server and follow steps 1 to 4 again. The state should now be showing as registered and the above error should no longer appear.
List local netbios names
1) Click start
2) Click run
3) Type cmd and click ok
4) Type nbtstat -n and press enter
For more switches type nbtstat /? and press enter
The name “MYDOMAIN :1d” could not be registered
If you are continuosly receiving the alert below, i would recommend you click here to find a list of solutions.
One solution is to disable lmhostlookup within WINS located under Network connections – TCP/IP settings.
Error:
The name “MYDOMAIN :1d” could not be registered on the Interface with IP
address ***.***.***.***. The machine with the IP address ***.***.***.*** did not
allow the name to be claimed by this machine.
Deploy Sophos version 9 via group policy
Copy the below code to a notepad and rename as a batch file. e.g. InstallSAV.bat
@ECHO OFF
REM — Check for an existing installation of Sophos Anti-Virus
if exist “C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe” goto _End
REM — Deploy to Windows 2000/XP/2003
\\servernamehere\SophosUpdate\CIDs\S000\SAVSCFXP\Setup.exe -updp \\servernamehere\SophosUpdate\CIDs\S000\SAVSCFXP -user domain\username -pwd passwordhere -mng yes
REM — End of the script
:_End
Replace ’servernamehere’ in both locations.
Replace ‘Domain\Username’
Replace ‘passwordhere’
Always test on one machine before pushing out to all.
Exchange offline defrag paused
If you are running an Exchange 2003 offline defrag and it’s hung or not progressing, it is highly likely that you have paused/stopped the offline defrag. Check the status bar of the dos window, if it states Select Command Prompt – eseutil…
then you have clicked within the command window to pause/stop the progress of the offline defrag.
To resume, press the F5 key on your keyboard. You will notice that the status bar will change from ‘Select Command Prompt’ to ‘Command Prompt’.
Please note that clicking within the command prompt will pause/stop the offline defrag.
Restart issues after installing KB977165
I am writing to let you know that we are aware that after installing the February security updates a limited number of users are experiencing issues restarting their computers. Our initial analysis suggests that the issue occurs after installing MS10-015 (KB977165). However, we have not confirmed that the issue is specific to MS10-015 or if it is an interoperability problem with another component or third-party software. Our teams are working to resolve this as quickly as possible. We also stopped offering this update through Windows Update as soon as we discovered the restart issues. However, those using enterprise deployment systems such as SMS or WSUS will still see and be able to deploy these packages.
As you may recall from previous blog posts, MS10-015 is an Elevation of Privilege that would require the attacker to have valid credentials in order to be able to leverage the vulnerability in an attack. Several other updates in this release were identified as having a high priority for deployment and we continue to encourage customers to thoroughly test the updates and deploy them immediately. At this time, we are not aware of any issues with the other updates that were released this month and we continue to encourage customers to install them as soon as possible in order to help ensure that they protected from the vulnerabilities they address.
While we work to address this issue, customers who choose not to install the update can implement the workaround outlined in the bulletin. CVE-2010-0232 was publicly disclosed and we previously issued Security Advisory 979682 in response. Customers can disable the NTVDM subsystem as a workaround and we have provided an automated method of doing that with a Microsoft Fix It that you can find here: http://support.microsoft.com/kb/979682.
Customers who are experiencing issues after installing any of our security updates can get help resolving the issues by either going to https://consumersecuritysupport.microsoft.com or by calling 1-866-PCSafety (1-866-727-2338). International customers can find local support contact numbers here: http://support.microsoft.com/common/international.aspx.
Source: Microsoft
