Solved

What is xp013.itsupport247.net? - Warning in my DNS logs Event1014, DNS CLient Events

Posted on 2014-09-19
3
970 Views
Last Modified: 2014-09-19
Hello, I sometimes receive this DNS Event Log that I cannot put my fingers on. The site in question (xp013.itsupport247.net ) does not load and I think I know what it might be, but would like thoughts and opinions from EE.

I was thinking that this is a webpage for XP computers to get updates or something. Now that XP is no longer supported the site may be down and we can no longer connect when a machine is attempting to do so, throwing this DNS Event Warning.
(I fully understand that XP should be phased out so please do not make comments about how I should have upgraded all machines from XP).

Thoughts/ Ideas?

---------------------------------------------------------------------------------
Log Name:      System
Source:        Microsoft-Windows-DNS-Client
Date:          9/17/2014 2:06:07 AM
Event ID:      1014
Task Category: None
Level:         Warning
Keywords:      
User:          NETWORK SERVICE
Computer:     ServName.Domain.local
Description:
Name resolution for the name xp013.itsupport247.net timed out after none of the configured DNS servers responded.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-DNS-Client" Guid="{1C95126E-7EEA-49A9-A3FE-A378B03DDB4D}" />
    <EventID>1014</EventID>
    <Version>0</Version>
    <Level>3</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x4000000000000000</Keywords>
    <TimeCreated SystemTime="2014-09-17T06:06:07.504251200Z" />
    <EventRecordID>206950</EventRecordID>
    <Correlation />
    <Execution ProcessID="452" ThreadID="3228" />
    <Channel>System</Channel>
    <Computer>ServName.Domain.local</Computer>
    <Security UserID="S-1-5-20" />
  </System>
  <EventData>
    <Data Name="QueryName">xp013.itsupport247.net</Data>
    <Data Name="AddressLength">16</Data>
    <Data Name="Address">02000035C0A80B220000000000000000</Data>
  </EventData>
-</Event>
------------------------------------------------------------------------

Thanks All!
0
Comment
Question by:Michael Machie
3 Comments
 
LVL 33

Accepted Solution

by:
it_saige earned 500 total points
ID: 40333311
itsupport247.net is a managed services company (I believe its Zenith Infotech).  That event means that you probably either do use them or at one time used them and that one of your computers on the domain still has their monitoring client installed.  The monitoring client is still trying to phone home.

-saige-
0
 
LVL 79

Expert Comment

by:David Johnson, CD, MVP
ID: 40333416
they are on many mail blacklists
0
 
LVL 13

Author Closing Comment

by:Michael Machie
ID: 40333796
We did have Zenith Infotech software at one point in the past so this must be it - makes total sense... and the events did start around the time we changed over to another solution.

Time to speak to my BDR vendor for more cleanup!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question