I get about 30-40 errors of event 10009 every 3-4 seconds.
DCOM was unable to communicate with the computer (computer name) using any of the configured protocols.
Log Name: system
Source: DistributedCOM
Event ID: 10009
Level: Error
User: N/A
Here is the full situation, a distributor has brought his laptop to this site, from another domain, and it is spamming DNS requests for computers from his domain, which in turn our server is picking them up and re-requesting them, then giving a DCOM error every time it cant find one of the computers from that other domain. We are talking thousands of errors a minute, it is overflowing the eventlog and has caused the event log to crash a few times now, plus it is causing the network to slow down because the server is using a good chunk of resources handling the thousands of connection requests its creating.
I need a way to stop system from searching for these devices that don't exist.
I have spent days searching online and not found a solution to this, or even someone who actually has the same issue as me and not just something similar.
I even went as far as to completely close off the distributors laptop from the network by having the firewall stop all lan and wan communications from his NICs MAC address. It did not help, it continued for over 8 hours with the original machine uncontactable.
Again, the devices DCOM is looking for have never been on the network, they are 100% unknown to this network except for the one non-domain computer is looking for them.
How do I make the server stop looking for them also?