Spammed by MRxSmb event
Hi guys,
I've got a server which drives me crazy. The system event log is spammed by this event:
Event Type: Warning
Event Source: MRxSmb
Event Category: None
Event ID: 3034
Date: 10/27/2003
Time: 2:17:44 PM
User: N/A
Computer: MYSERVER
Description:
The redirector was unable to initialize security context or query context attributes.
Data:
0000: 00080000 00560002 00000000 80000bda
0010: 00000000 80090322 00000000 00000000
0020: 00000000 00000000 0000046c 80090322
The event is coming all day long, sometimes within seconds. I've looked in Microsoft KB and found some articles which have no solutions to my problem.
Regards,
Morten
I've got a server which drives me crazy. The system event log is spammed by this event:
Event Type: Warning
Event Source: MRxSmb
Event Category: None
Event ID: 3034
Date: 10/27/2003
Time: 2:17:44 PM
User: N/A
Computer: MYSERVER
Description:
The redirector was unable to initialize security context or query context attributes.
Data:
0000: 00080000 00560002 00000000 80000bda
0010: 00000000 80090322 00000000 00000000
0020: 00000000 00000000 0000046c 80090322
The event is coming all day long, sometimes within seconds. I've looked in Microsoft KB and found some articles which have no solutions to my problem.
Regards,
Morten
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi again,
I've looked at www.eventid.net where someone suggested a trace with Network Monitor. And here is some of the result:
UDP: Src Port: Unknown, (4104); Dst Port: Unknown (88); Length = 1283 (0x503)
UDP: Src Port: Unknown, (88); Dst Port: Unknown (4104); Length = 1248 (0x4E0)
The destination server is the domain controller.
I've looked at www.eventid.net where someone suggested a trace with Network Monitor. And here is some of the result:
UDP: Src Port: Unknown, (4104); Dst Port: Unknown (88); Length = 1283 (0x503)
UDP: Src Port: Unknown, (88); Dst Port: Unknown (4104); Length = 1248 (0x4E0)
The destination server is the domain controller.
ASKER
I traced the trafic as suggested on www.eventid.net, and I found out that CA was once installed on the domain controller, and tried to communicate with the server on port 88 and 4104. So it's due to a faulty uninstallation of CA.
http://support.microsoft.com/default.aspx?scid=kb;[LN];263208