AddToAny

Want your TV Series Automatically Downloaded?

Its now more easier than ever before. With this step by step guide using Sickbeard , Plex and SABnzb Want your TV Series Automatically Downloaded?
Powered by Blogger.

Latest Updates

Sunday, January 2, 2022

Message deferred by categorizer agent

Posted By: The Funky Tech Guy - 5:32:00 AM

 

Message deferred by categorizer agent

 

I woke up to a new years surprise in January 2022,  as did many e-mail , infrastructure and network admins out there.

The Issue:

 

 

E-mail is down and messages are piling up in the message queue. You did the usual things already like check exchange server resources, disk space, cpu ,memory , check back pressure mode , restart Exhange transport services and even restart the servers themselves.

 

The Cause

 

 

Due of a latent date problem in a signature file utilized by the malware scanning engine inside Exchange Server, messages are blocked in transport queues on Exchange Server 2016 and Exchange Server 2019. When the problem arises you will notice the following error messages:

Error messages

In the message queue you see error message “message deferred by categorizer”

clip_image001

you'll observe problems in the Exchange Server's Application event log, notably events 5300 and 1106 (FIPFS), as seen below:

Event ID 5300

The FIP-FS "Microsoft" Scan Engine failed to load. PID: 38648, Error Code: 0x80004005. Error Description: Can't convert "2201010009" to long.

clip_image001[4]

Event ID 1106

The FIP-FS Scan Process failed initialization. Error: 0x80004005. Error Details: Unspecified error

clip_image001[6]

Additional Errors:

Event ID 5801
Source: MSExchange Antimalware

The anti-malware agent encountered an error while scanning. MessageId: XXXXXXX391.1641112993320.JavaMail.SERVER$@DOMAIN.COM Message sent: 2022-01-02 08:43:13 AM From: EMAILADDRESS@DOMAIN.COM Size: 6756 Bytes Error: Microsoft.Filtering.ScanAbortedException: Exception of type 'Microsoft.Filtering.ScanAbortedException' was thrown.

at Microsoft.Filtering.InteropUtils.ThrowPostScanErrorAsFilteringException(WSM_ReturnCode code, String message)

at Microsoft.Filtering.FilteringService.EndScan(IAsyncResult ar)

at Microsoft.Exchange.Transport.Agent.Malware.MalwareAgent.OnScanCompleted(IAsyncResult ar)

 

The Workaround

 

 

1. Find the exchange scripts folder and run the disable antimalware script. Its not instant so give it a minute or two.

cd "C:\Program Files\Microsoft\Exchange Server\V15\Scripts"

.\Disable-AntimalwareScanning.ps1

clip_image001[8]

2. Restart the Microsoft Exchange Transport Services

Get-Service MSExchangeTransport |Restart-Service

clip_image001[10]

I hope this has been helpful to you and saved you some New Years time Smile

Let me know in the comments down below.

Additional Information can be sourced from:

https://techcommunity.microsoft.com/t5/exchange-team-blog/email-stuck-in-transport-queues/ba-p/3049447

https://www.itwriting.com/blog/11910-exchange-emails-stuck-in-queue-because-message-deferred-by-categorizer-agent-happy-new-year-admins.html

Update:

 

 

Source:

[PS] C:\Program Files\Microsoft\Exchange Server\V15\Scripts>.\Reset-ScanEngineVersion.ps1
EXCH1 Stopping services...
EXCH1 Removing Microsoft engine folder...
EXCH1 Emptying metadata folder...
EXCH1 Starting services...
WARNING: Waiting for service 'Microsoft Filtering Management Service (FMS)' to start...
WARNING: Waiting for service 'Microsoft Filtering Management Service (FMS)' to start...
WARNING: Waiting for service 'Microsoft Filtering Management Service (FMS)' to start...
WARNING: Waiting for service 'Microsoft Filtering Management Service (FMS)' to start...
WARNING: Waiting for service 'Microsoft Exchange Transport (MSExchangeTransport)' to start...
EXCH1 Starting engine update...
Running as EXCH1-DOM\Administrator.
--------
Connecting to EXCH1.CONTOSO.com.
Dispatched remote command. Start-EngineUpdate -UpdatePath http://amupdatedl.microsoft.com/server/amupdate
--------
[PS] C:\Program Files\Microsoft\Exchange Server\V15\Scripts>Get-EngineUpdateInformation

Engine                : Microsoft

LastChecked       : 01/01/2022 08:58:22 PM -08:00
LastUpdated        : 01/01/2022 08:58:31 PM -08:00
EngineVersion         : 1.1.18800.4
SignatureVersion      : 1.355.1227.0
SignatureDateTime     : 01/01/2022 03:29:06 AM -08:00
UpdateVersion         : 2112330001
UpdateStatus          : UpdateAttemptSuccessful

Manual Solution

Source:

In lieu of using the script, customers can also manually perform steps to resolve the issue and restore service. To manually resolve this issue, you must perform the following steps on each Exchange server in your organization:

Remove existing engine and metadata
1. Stop the Microsoft Filtering Management service.  When prompted to also stop the Microsoft Exchange Transport service, click Yes.
2. Use Task Manager to ensure that updateservice.exe is not running.
3. Delete the following folder: %ProgramFiles%\Microsoft\Exchange Server\V15\FIP-FS\Data\Engines\amd64\Microsoft.
4. Remove all files from the following folder: %ProgramFiles%\Microsoft\Exchange Server\V15\FIP-FS\Data\Engines\metadata.

Update to latest engine
1. Start the Microsoft Filtering Management service and the Microsoft Exchange Transport service.
2. Open the Exchange Management Shell, navigate to the Scripts folder (%ProgramFiles%\Microsoft\Exchange Server\V15\Scripts), and run Update-MalwareFilteringServer.ps1 <server FQDN>.

Verify engine update info
1. In the Exchange Management Shell, run Add-PSSnapin Microsoft.Forefront.Filtering.Management.Powershell.
2. Run Get-EngineUpdateInformation and verify the UpdateVersion information is 2112330001.

After updating the engine, we also recommend that you verify that mail flow is working and that FIPFS error events are not present in the Application event log.

Friday, March 8, 2019

how to convert a shared mailbox back to normal - Microsoft Exchange

Posted By: The Funky Tech Guy - 1:19:00 AM


At some point in time you may be required to convert an exchange mailbox from a shared mailbox back to a normal mailbox.

It should be as simple as set-Mailbox -Identity [mailboxname] -type regular

However,I got the following error (See above)

Error on proxy command 
Active Directory operation failed on [DC name] The value provided for the new password does not meet the length and complexity requirements

As we know a shared mailbox is usually disabled and no password set.

Solution


Simply set a password for the mailbox in Active Directory and run the command again.

Wednesday, February 7, 2018

How to use BITCOIN on Takealot.com

Posted By: The Funky Tech Guy - 4:10:00 AM


image

Bitcoin has seen a large uptake in recent months pushing it to record highs until recently when it experience a quite remarkable crash. Each person has their opinion on the value of bitcoin and the difference between price vs value. A debate that by itself can take hours.

On a lighter note, why not use some of that bitcoin to spoil yourself and go buy something on takealot. Takealot does allow you to buy with your bitcoin its very very hidden. Not sure why though.

So this is how to buy on takealot with bitcoin.

1. Select your product

image

2. Click Add to Cart

image

3. Click your Cart

image

4. Proceed to Checkout

image

5. Here's the “hidden” section.

    Select ETF & ETF with PayFast then click Proceed at the bottom

image

6. On the next page verify your order information and click Proceed again.


7. Click Pay Now when choosing a Payment Method

8. Select Bitcoin

image

9. Pay the specified amount of bitcoin to that wallet address and click I have completed payment

image

10. That's it


What do you think of the recent Bitcoin crash? Do you think it will recover?

Monday, December 18, 2017

How to buy mobile data with Bitcoin or Ethereum

Posted By: The Funky Tech Guy - 2:23:00 AM



Technorati Tags: ,,


So bitcoin is the latest craze, it solves a world problem and is very attractive to many people. It has a level of anonymity, if you so choose, its decentralised and its very nice to know that no government or federal reserve can own it. However ,the currency is not mainstream….yet and hence there isn't many things you can buy with it unless you sell it for another currency, but why do we have to?  Well here is at least one simple way of buying mobile date and airtime with your bitcoin using Luno.

  1. From within the Luno mobile app click on Prepaid

    WhatsApp Image 2017-12-12 at 19.37.41

  2. Enter the mobile number you buying for. You can buy for yourself or someone else

    WhatsApp Image 2017-12-12 at 19.37.41 (1)

  3. Enter beneficiary name and select your mobile network

  4. Enter your pin code or sign in with your finger print

    WhatsApp Image 2017-12-12 at 19.37.42

  5. Specify the type and amount of data or airtime you wish to buy with your bitcoin or ethereum.

    WhatsApp Image 2017-12-12 at 19.37.42 (1) - Copy




  6. Enter an optional reference number for the transaction and select if you want to buy with your Bitcoin or Ethereum wallet

    WhatsApp Image 2017-12-12 at 19.37.43



  7. Confirm your purchase details and Enter your pin code or use finger print authentication

    WhatsApp Image 2017-12-12 at 19.37.43 (1)

  8. That's it. Good job on your first purchase using Bitcoin or Ethereum.


Let me know in the comments below if you think bitcoin is the currency of the future or if its just a bubble? Also if you found this help don't forget to share.

Thursday, December 7, 2017

Recover GUI in Windows Server 2012

Posted By: The Funky Tech Guy - 1:13:00 AM


Today, while trying to fix another issue on my SCCM server I created another.

I was trying to uninstall and reinstall .NET 3.5 and 4.5. After a successful removal I rebooted the server and after logging in I was confronted with a Server 2012 alternative shell command prompt. I rebooted and still server 2012 r2 only boots to command prompt.I could CTRL+ALT+DEL and open the task manager and open things like firefox but not able to reinstall it. Obviously, I learned the hard way the effects of removing .NET as a windows server feature.

The Fix


On the command prompt window, run the following and wait till it asks you to restart. See Image below.




Dism /online /enable-feature /featurename:Server-Gui-Mgmt /featurename:Server-Gui-Shell /featurename:ServerCore-FullServer /all




This solution worked perfectly for me.

Be sure to let me know in the comments below if this quick post has been helpful or not.

Wednesday, November 22, 2017

UBER HACKED! Massive Data Leak

Posted By: The Funky Tech Guy - 1:18:00 AM

image
Yesterday another large global company became the victim of a data security breach and had 57 million customers and drivers personal data records stolen.
The sad part of it was that the Chief Security Officer (Joe Sullivan) and also one of Ubers executives tried to sweep this breach under the carpet by paying the attackers $100 000. They managed for a whole year and you must question their motives. Stolen data included email addresses , telephone numbers as well as names.Uber said no credit card information or trip location details was taken but considering the fact that they were trying to conceal it I definitely wouldn't take their word for it.
In light of this breach you have to notice that these breaches are becoming more common and attacks occurring more frequently.  No company is too large or too secure to be breached and its happening to “reputable” companies.
There is a database by an Australian security expert where you can check if any of your data has been compromised. You can visit https://haveibeenpwned.com/
Below is some of the more well known companies that has been compromised and what is available for you to search.
image
image
image
image
image
image


image
image
image
image
image
image
image
There is a list of hundreds more so be sure to check if you have been compromised.
You might also want to view these security tips to help you stay safe online.
The surface web is one big play area for hackers and cyber criminals looking to exploit and monetise the information you are already freely providing on the internet. Exercise some caution when using the internet and don’t get caught with your pants down and say you didn't know. Start protecting yourself by using the tor internet browser and take it from there. For further reading on the this hack you can view this post
If you have any questions or comments I'd love to hear from you.

Featured Post

Infrastructure Matters

Copyright © 2013 The Funky Tech Guy ™ is a registered trademark.

Designed by Templateism . Built with Blogger Templates .