[gptalk] Re: Problem with clients taking a long time to setregistryvalue
- From: "McLoughlin, Neil" <Neil.McLoughlin@xxxxxxxxxxxx>
- To: <gptalk@xxxxxxxxxxxxx>
- Date: Fri, 14 Nov 2008 09:39:41 -0000
Hi Darren,
I have already gone down the AV route and we have sysvol excluded from
on demand scanning on the AV clients L
From: gptalk-bounce@xxxxxxxxxxxxx [mailto:gptalk-bounce@xxxxxxxxxxxxx]
On Behalf Of Darren Mar-Elia
Sent: Thursday, November 13, 2008 9:59 PM
To: gptalk@xxxxxxxxxxxxx
Subject: [gptalk] Re: Problem with clients taking a long time to
setregistryvalue
Neil-
Do you have anti-virus scanning SYSVOL folders? If so, you might want to
disable it for the policies folders and see if it helps. I don't see
anything else in the logs below that lead me to a concrete solution
other than something like anti-virus. You might want to try enabling
Network Monitor on one of these clients and see what's going on on the
network when this happens.
Darren
From: gptalk-bounce@xxxxxxxxxxxxx [mailto:gptalk-bounce@xxxxxxxxxxxxx]
On Behalf Of McLoughlin, Neil
Sent: Thursday, November 13, 2008 9:02 AM
To: gptalk@xxxxxxxxxxxxx
Subject: [gptalk] Problem with clients taking a long time to
setregistryvalue
Hi,
We have a problem with some of our clients. They are taking anywhere
between 20-45 minutes to log onto the network either when they boot the
computer up or after they log in. To make it more confusing it doesn't
effect all clients, some are ok. I enabled verbose group policy logging
and found that that it was taking a long time to apply one policy which
contains some internet explorer settings. It is taking approximately 10
seconds to apply one registry setting.
The domain controllers and clients are on a decent network link, DC's
are running W2k3 SP2 and the clients are WinXP SP2.
When we reboot the domain controllers for that site the problem goes
away for a couple of days and them comes back again. We have 2 domain
controllers at the site and they are both experiencing the issue. Other
domain controllers in other sites are not affected. I have included the
log file below with the section where the problem is occurring.
Also I see on the domain controllers that the policies registry file
(\\sysvol\policies\policy\registry.pol) is being held open which I guess
it because of the time its taking for the clients to apply and read the
settings. There are anywhere between 150-250 clients which have this
file open at any one time.
Has anybody ever come across this issue before and know how to resolve
it? I've spent quite a lot of time investigating it and still haven't
found a fix L
USERENV(2a4.540) 15:10:49:649 ParseRegistryFile: Entering with
<\\s1.MS.TEST.COM\SysVol\s1.MS.TEST.COM\Policies\{242414C2-5387-4187-A0C
B-4DEC919D7BE5}\Machine\registry.pol>.
USERENV(2a4.540) 15:11:01:281 SetRegistryValue: DoNotReportSkippedFiles
=> 1 [OK]
USERENV(2a4.540) 15:11:07:832 SetRegistryValue: DoNotAllowIE70 => 1
[OK]
USERENV(2a4.540) 15:11:15:524 SetRegistryValue: NoDriveTypeAutoRun =>
255 [OK]
USERENV(2a4.540) 15:11:22:809 SetRegistryValue: PreventCheckForUpdate =>
1 [OK]
USERENV(2a4.540) 15:11:26:046 SetRegistryValue: FRW => 1 [OK]
USERENV(2a4.540) 15:11:29:751 SetRegistryValue: NoCEIP => 1 [OK]
USERENV(2a4.540) 15:11:35:395 SetRegistryValue: Deleted value
<PreventIndexingAllHardDrives>.
USERENV(2a4.540) 15:11:40:789 SetRegistryValue:
PreventIndexingNetworkShares => 1 [OK]
USERENV(c5c.c60) 15:11:41:805 LibMain: Process Name:
\\?\C:\WINDOWS\system32\WBEM\WMIADAP.EXE
USERENV(c74.c78) 15:11:42:133 LibMain: Process Name:
C:\WINDOWS\system32\wbem\wmiprvse.exe
USERENV(2a4.540) 15:11:46:698 SetRegistryValue: ListBox_Support_Allow =>
1 [OK]
USERENV(2a4.540) 15:11:55:938 SetRegistryValue: *.skillport.com =>
*.skillport.com [OK]
USERENV(2a4.540) 15:12:07:633 SetRegistryValue: *.TEST.com => *.TEST.com
[OK]
USERENV(2a4.540) 15:12:24:752 SetRegistryValue: *.TESTservices.com =>
*.TESTservices.com [OK]
USERENV(2a4.540) 15:12:34:321 SetRegistryValue:
ListBox_Support_ZoneMapKey => 1 [OK]
USERENV(2a4.540) 15:12:45:562 SetRegistryValue: *.careersatTEST.be => 2
[OK]
USERENV(2a4.540) 15:12:52:925 SetRegistryValue: *.endorsia.mro.com => 2
[OK]
USERENV(2a4.540) 15:13:00:960 SetRegistryValue: *.hul.co.in => 2 [OK]
USERENV(2a4.540) 15:13:07:837 SetRegistryValue: *.livemeeting.com => 2
[OK]
USERENV(2a4.540) 15:13:14:697 SetRegistryValue: *.meetings.teliris.com
=> 2 [OK]
USERENV(2a4.540) 15:13:21:636 SetRegistryValue: *.Misco.co.uk => 2 [OK]
USERENV(2a4.540) 15:13:28:575 SetRegistryValue: *.moredirect.com => 2
[OK]
USERENV(2a4.540) 15:13:36:312 SetRegistryValue: *.pioti.TEST.com => 2
[OK]
USERENV(2a4.540) 15:13:47:267 SetRegistryValue: *.placeware.com => 2
[OK]
USERENV(2a4.540) 15:13:57:972 SetRegistryValue: *.uccep.com => 2 [OK]
USERENV(2a4.540) 15:14:19:758 SetRegistryValue: *.TEST.at => 2 [OK]
USERENV(2a4.540) 15:14:45:842 SetRegistryValue: *.TEST.be => 2 [OK]
USERENV(2a4.540) 15:15:11:442 SetRegistryValue: *.TEST.ca => 2 [OK]
USERENV(2a4.540) 15:15:36:650 SetRegistryValue: *.TEST.ch => 2 [OK]
USERENV(2a4.540) 15:15:46:402 SetRegistryValue: *.TEST.cl => 2 [OK]
USERENV(2a4.540) 15:15:54:232 SetRegistryValue: *.TEST.co.id => 2 [OK]
USERENV(2a4.540) 15:16:03:578 SetRegistryValue: *.TEST.co.il => 2 [OK]
USERENV(2a4.540) 15:16:17:112 SetRegistryValue: *.TEST.co.jp => 2 [OK]
USERENV(2a4.540) 15:16:24:582 SetRegistryValue: *.TEST.co.ke => 2 [OK]
USERENV(2a4.540) 15:16:32:600 SetRegistryValue: *.TEST.co.kr => 2 [OK]
USERENV(2a4.540) 15:16:40:680 SetRegistryValue: *.TEST.co.th => 2 [OK]
USERENV(2a4.540) 15:16:49:666 SetRegistryValue: *.TEST.co.uk => 2 [OK]
USERENV(2a4.540) 15:16:57:777 SetRegistryValue: *.TEST.co.za => 2 [OK]
USERENV(2a4.540) 15:17:08:561 SetRegistryValue: *.TEST.com => 2 [OK]
USERENV(2a4.540) 15:17:19:485 SetRegistryValue: *.TEST.com.ar => 2 [OK]
USERENV(2a4.540) 15:17:29:159 SetRegistryValue: *.TEST.com.au => 2 [OK]
USERENV(2a4.540) 15:17:38:724 SetRegistryValue: *.TEST.com.bd => 2 [OK]
USERENV(2a4.540) 15:17:49:648 SetRegistryValue: *.TEST.com.br => 2 [OK]
USERENV(2a4.540) 15:18:01:681 SetRegistryValue: *.TEST.com.cn => 2 [OK]
USERENV(2a4.540) 15:18:14:182 SetRegistryValue: *.TEST.com.lk => 2 [OK]
USERENV(2a4.540) 15:18:25:886 SetRegistryValue: *.TEST.com.mx => 2 [OK]
USERENV(2a4.540) 15:18:35:324 SetRegistryValue: *.TEST.com.my => 2 [OK]
USERENV(2a4.540) 15:18:51:216 SetRegistryValue: *.TEST.com.ng => 2 [OK]
USERENV(2a4.540) 15:19:00:936 SetRegistryValue: *.TEST.com.ph => 2 [OK]
USERENV(2a4.540) 15:19:08:811 SetRegistryValue: *.TEST.com.pk => 2 [OK]
USERENV(2a4.540) 15:19:18:703 SetRegistryValue: *.TEST.com.ro => 2 [OK]
USERENV(2a4.540) 15:19:27:078 SetRegistryValue: *.TEST.com.tr => 2 [OK]
USERENV(2a4.540) 15:19:34:110 SetRegistryValue: *.TEST.com.tw => 2 [OK]
USERENV(2a4.540) 15:19:41:986 SetRegistryValue: *.TEST.com.uy => 2 [OK]
USERENV(2a4.540) 15:19:52:408 SetRegistryValue: *.TEST.com.vn => 2 [OK]
USERENV(2a4.540) 15:20:04:300 SetRegistryValue: *.TEST.cz => 2 [OK]
USERENV(2a4.540) 15:20:12:191 SetRegistryValue: *.TEST.de => 2 [OK]
USERENV(2a4.540) 15:20:21:645 SetRegistryValue: *.TEST.dk => 2 [OK]
USERENV(2a4.540) 15:20:37:553 SetRegistryValue: *.TEST.es => 2 [OK]
USERENV(2a4.540) 15:20:49:350 SetRegistryValue: *.TEST.fi => 2 [OK]
USERENV(2a4.540) 15:21:00:976 SetRegistryValue: *.TEST.fr => 2 [OK]
USERENV(2a4.540) 15:21:09:305 SetRegistryValue: *.TEST.gr => 2 [OK]
USERENV(2a4.540) 15:21:16:759 SetRegistryValue: *.TEST.hu => 2 [OK]
USERENV(2a4.540) 15:21:24:103 SetRegistryValue: *.TEST.ie => 2 [OK]
USERENV(2a4.540) 15:21:32:400 SetRegistryValue: *.TEST.in => 2 [OK]
USERENV(2a4.540) 15:21:40:839 SetRegistryValue: *.TEST.it => 2 [OK]
USERENV(2a4.540) 15:21:49:371 SetRegistryValue: *.TEST.jobs => 2 [OK]
USERENV(2a4.540) 15:21:59:059 SetRegistryValue: *.TEST.nl => 2 [OK]
USERENV(2a4.540) 15:22:07:216 SetRegistryValue: *.TEST.pk => 2 [OK]
USERENV(2a4.540) 15:22:21:748 SetRegistryValue: *.TEST.pl => 2 [OK]
USERENV(2a4.540) 15:22:33:624 SetRegistryValue: *.TEST.ru => 2 [OK]
USERENV(2a4.540) 15:22:42:875 SetRegistryValue: *.TEST.se => 2 [OK]
USERENV(2a4.540) 15:22:52:203 SetRegistryValue: *.TEST.ua => 2 [OK]
USERENV(2a4.540) 15:22:59:235 SetRegistryValue: *.TEST.vn => 2 [OK]
USERENV(2a4.540) 15:23:07:142 SetRegistryValue: *.TESTea.com => 2 [OK]
USERENV(dc0.dc4) 15:23:08:454 LibMain: Process Name:
C:\WINDOWS\system32\wbem\wmiprvse.exe
USERENV(2a4.540) 15:23:15:892 SetRegistryValue: *.TEST-fwa.com => 2
[OK]
USERENV(2a4.540) 15:23:23:283 SetRegistryValue: *.TESTghana.com => 2
[OK]
USERENV(2a4.540) 15:23:31:142 SetRegistryValue: *.TESTindonesia.com => 2
[OK]
And this carries on till
USERENV(2a4.540) 15:49:24:930 SetRegistryValue: C:\Program Files\WAMAS
Client\owdisp\owdisp.exe:*:Enabled:Wamas owdisp => C:\Program
Files\WAMAS Client\owdisp\owdisp.exe:*:Enabled:Wamas owdisp [OK]
USERENV(2a4.540) 15:49:34:352 SetRegistryValue: Enabled => 1 [OK]
USERENV(2a4.540) 15:49:56:244 SetRegistryValue:
26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service Port =>
26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service Port
[OK]
USERENV(2a4.540) 15:50:10:261 SetRegistryValue:
69:TCP:159.244.240.87,159.244.240.89:Enabled:owdisp.exe =>
69:TCP:159.244.240.87,159.244.240.89:Enabled:owdisp.exe [OK]
USERENV(2a4.540) 15:50:16:839 SetRegistryValue: GroupPrivacyAcceptance
=> 1 [OK]
USERENV(2a4.540) 15:50:23:058 SetRegistryValue: DisableAutoUpdate => 1
[OK]
USERENV(2a4.540) 15:50:30:403 SetRegistryValue: UserKeyPollFreq => 43200
[OK]
USERENV(2a4.540) 15:50:30:543 ParseRegistryFile: Leaving.
Neil McLoughlin
Other related posts:
