We're experiencing a lot of logon errors:
"Windows cannot load the locally stored profile. Possible causes of this error include insufficient security rights or a corrupt local profile. If this problem persists, contact your network administrator. DETAIL - The process cannot access the file because it is being used by another process. "
These logon errors seem to be triggered after we run a vulnerability scan (authenticated scans -- Only on ports 135, 139 and 445, with 5 threads). Our system administrators seem to find this as the sole correlation (running scans) for their Terminal Server failures.
So far, we've only collected this data from Windows Server 2003, all of which are grossly out of date on patches.
Has anyone else seen this issue in their environment? Is our appliance DDoSing these servers?
Any advice would be appreciated.