program has encountered a problem

[Joe]

I keep getting this error that says that such & such program "has encountered
a
problem and needs to close". it only gives me the option to "Debug" or
"Close". I get this on most of my programs. It just started.
I am running a HP Pavilion DV9420US with XP Pro w/sp3.

 

[Leonard Grey]

Find the newsgroup for "such and such program."

 

[nass]

I keep getting this error that says that such & such program "has encountered
a
problem and needs to close". it only gives me the option to "Debug" or
"Close". I get this on most of my programs. It just started.
I am running a HP Pavilion DV9420US with XP Pro w/sp3.

Hi Joe,
This can happen if their is a badly written third-party program/toolbars
installed on your machine.

Also can happen if there is a corruption in the system core files/folders
and you can repair it by running this command (system file checker):
sfc /scannow from the Run command.

Have a look in the Event Viewer and send us the error messages you will see
there in in the event viewer in your next post:
Open a Notepad, customize or minimize to the taskbar as you will need it
later for this step to copy the error message on it.
Open a run command and type in:
eventvwr.msc click [OK] you will get the Event viewer control Panel.
click on each of these:
Application
System
Security
Look in the right Pane/window for error message with red (X) or Yellow
exclamation mark /!\ , double click each one to get more info about the
causer.
On the Event error properties message you will see:
Up Arrow
Down arrow
Two pages
Click on the two pages to copy the error message then bring up the Notepad
you opened earlier and right click on the first line and select Paste from
the list, this will paste the error message on a Notepad.
Please don't duplicate the error message one of each kind will be sufficient.
HOW TO: View and Manage Event Logs in Event Viewer in Windows XP
http://support.microsoft.com/kb/308427/en-us

Please we need just the error messages with Red (X) and don't repeat the
error, just one of each kind and post them back in your next post.

If you are sure it is an infestation try these steps:
Run a thorough scan by doing the following steps:

Click start >> Control Panel >> Double Click Network and Internet
Connections >> Double click Internet Options, on the IE Properties window
you will see these Options:
General | Security | Privacy | Content | Connections | Programs
| Advanced .

Click on General Tab (1st Tab on the left) and you will see a Button called
[ Clear History ..] click on it to clear your History caches, then click on
[Delete Files..] to delete Internet Files created over the time, click on [
Delete Cookies...] to delete your cookies left by visiting websites.

= Then try to Disable the Add-Ons on your Browser somehow installed on your
browser, On how to disable the Add-ons follow this:
Click on Programs Tab and then click the Manage Add-Ons Button there Disable
the None/Not Verified Plug-ins/Add-ons ( you need to Renable them one-by-one
later and see which is the culprit .
How to manage Add-Ons:
http://support.microsoft.com/kb/883256

Then click on Advanced tab and scroll down to under the Browsing Option:
[&] Browsing
[ ] Enable Third-Party browser extensions (Req Rest) uncheck this box.

Scan for malware from here:
SuperAntispyware - Free
http://www.superantispyware.com/superantispywarefreevspro.html
http://www.malwarebytes.org/rr-update/rr-free-setup.exe
http://onecare.live.com/site/en-gb/default.htm?s_cid=sah

Run a scan from here on-line:
http://security.symantec.com/sscv6/default.asp?langid=ie&venid=sym
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
Download Avast Cleaner (offline scanner) from here:
http://www.avast.com/eng/avast-virus-cleaner.html
Comodo BOClean : Anti-Malware Version 4.27
http://www.comodo.com/boclean/boclean.html
HTH,
nass

 

[Joe]

Thank you
Here are the reports you asked for:

Application ---
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4126
Date: 6/20/2009
Time: 9:28:01 AM
User: N/A
Computer: LAPTOP
Description:
Cleaning up corrupt content index metadata on d:\system volume
information\catalog.wci. Index will be automatically restored by refiltering
all documents.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: MSDTC
Event Category: SVC
Event ID: 4112
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
Could not start the MS DTC Transaction Manager.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Error
Event Source: MSDTC
Event Category: TM
Event ID: 4185
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC Transaction Manager start failed. LogInit returned error 0x2.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Error
Event Source: MSDTC
Event Category: LOG
Event ID: 4163
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc
-resetlog to create the log file.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4124
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
Content index on d:\system volume information\catalog.wci is corrupt. Please
shutdown and restart the Indexing Service (cisvc).

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Warning
Event Source: Ci
Event Category: CI Service
Event ID: 4132
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
3 inconsistencies were detected in PropertyStore during recovery of catalog
d:\system volume information\catalog.wci.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

SYSTEM ---

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7026
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The following boot-start or system-start driver(s) failed to load:
AFD
AmdPPM
Fips
IPSec
MPFP
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7001
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The Simple TCP/IP Services service depends on the AFD Networking Support
Environment service which failed to start because of the following error:
A device attached to the system is not functioning.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7003
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The HPWJA Service service depends on the following nonexistent service:
MSSQL$HPWJA

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 6/20/2009
Time: 11:28:51 AM
User: NT AUTHORITY\SYSTEM
Computer: LAPTOP
Description:
DCOM got error "This service cannot be started in Safe Mode " attempting to
start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Warning
Event Source: NapAgent
Event Category: None
Event ID: 39
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
The Network Access Protection Agent was unable to determine which HRAs to
request a health certificate from.
A network change or if GP is configured, a configuration change will prompt
further attempts to acquire a health certificate. Otherwise no further
attempts will be made.
Contact the HRA administrator for more information.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: Ma730Pt
Event Category: None
Event ID: 18
Date: 6/20/2009
Time: 8:54:09 AM
User: N/A
Computer: LAPTOP
Description:
The description for Event ID ( 18 ) in Source ( Ma730Pt ) cannot be found.
The local computer may not have the necessary registry information or message
DLL files to display messages from a remote computer. You may be able to use
the /AUXSOURCE= flag to retrieve this description; see Help and Support for
details. The following information is part of the event: .
Data:
0000: 00 00 00 00 01 00 58 00 ......X.
0008: 00 00 00 00 12 00 06 c0 .......À
0010: 53 00 00 00 00 00 00 00 S.......
0018: 00 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

Security ---

NONE
--
Thank you for your help,
Joe

I keep getting this error that says that such & such program "has encountered
a
problem and needs to close". it only gives me the option to "Debug" or
"Close". I get this on most of my programs. It just started.
I am running a HP Pavilion DV9420US with XP Pro w/sp3.

Hi Joe,
This can happen if their is a badly written third-party program/toolbars
installed on your machine.

Also can happen if there is a corruption in the system core files/folders
and you can repair it by running this command (system file checker):
sfc /scannow from the Run command.

Have a look in the Event Viewer and send us the error messages you will see
there in in the event viewer in your next post:
Open a Notepad, customize or minimize to the taskbar as you will need it
later for this step to copy the error message on it.
Open a run command and type in:
eventvwr.msc click [OK] you will get the Event viewer control Panel.
click on each of these:
Application
System
Security
Look in the right Pane/window for error message with red (X) or Yellow
exclamation mark /!\ , double click each one to get more info about the
causer.
On the Event error properties message you will see:
Up Arrow
Down arrow
Two pages
Click on the two pages to copy the error message then bring up the Notepad
you opened earlier and right click on the first line and select Paste from
the list, this will paste the error message on a Notepad.
Please don't duplicate the error message one of each kind will be sufficient.
HOW TO: View and Manage Event Logs in Event Viewer in Windows XP
http://support.microsoft.com/kb/308427/en-us

Please we need just the error messages with Red (X) and don't repeat the
error, just one of each kind and post them back in your next post.

If you are sure it is an infestation try these steps:
Run a thorough scan by doing the following steps:

Click start >> Control Panel >> Double Click Network and Internet
Connections >> Double click Internet Options, on the IE Properties window
you will see these Options:
General | Security | Privacy | Content | Connections | Programs
| Advanced .

Click on General Tab (1st Tab on the left) and you will see a Button called
[ Clear History ..] click on it to clear your History caches, then click on
[Delete Files..] to delete Internet Files created over the time, click on [
Delete Cookies...] to delete your cookies left by visiting websites.

= Then try to Disable the Add-Ons on your Browser somehow installed on your
browser, On how to disable the Add-ons follow this:
Click on Programs Tab and then click the Manage Add-Ons Button there Disable
the None/Not Verified Plug-ins/Add-ons ( you need to Renable them one-by-one
later and see which is the culprit .
How to manage Add-Ons:
http://support.microsoft.com/kb/883256

Then click on Advanced tab and scroll down to under the Browsing Option:
[&] Browsing
[ ] Enable Third-Party browser extensions (Req Rest) uncheck this box.

Scan for malware from here:
SuperAntispyware - Free
http://www.superantispyware.com/superantispywarefreevspro.html
http://www.malwarebytes.org/rr-update/rr-free-setup.exe
http://onecare.live.com/site/en-gb/default.htm?s_cid=sah

Run a scan from here on-line:
http://security.symantec.com/sscv6/default.asp?langid=ie&venid=sym
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
Download Avast Cleaner (offline scanner) from here:
http://www.avast.com/eng/avast-virus-cleaner.html
Comodo BOClean : Anti-Malware Version 4.27
http://www.comodo.com/boclean/boclean.html
HTH,
nass

 

[nass]

Thank you
Here are the reports you asked for:

My reply in line with your Event Viewer Error messages.
Do you have a server running on this machine?


Application ---
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4126
Date: 6/20/2009
Time: 9:28:01 AM
User: N/A
Computer: LAPTOP
Description:
Cleaning up corrupt content index metadata on d:\system volume
information\catalog.wci. Index will be automatically restored by refiltering
all documents.

Index Server Catalog Corruption
http://support.microsoft.com/default.aspx?scid=kb;[LN];209304

The indexing service detected that its index of metadata associated with
documents is corrupted. These documents will not be retrieved correctly
during a search. To correct this, the indexing service will rebuild its
indexes by scanning the required folders and processing all documents again.
The documents themselves are not affected, but a search for these documents
will not be successful until the scan is complete.

Solution:
Is to stop the indexing Service.

Start >> Run >. Type in:
services.msc click [OK] or Hit [Enter]
Scroll down to locate Indexing Service and double click it. Select Disable
to disbale the service and restrat your machine.
############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: SVC
Event ID: 4112
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
Could not start the MS DTC Transaction Manager.

Microsoft Distributed Transaction Coordinator Service Startup
http://technet.microsoft.com/en-us/library/cc726307(WS.10).aspx

http://www.eventid.net/display.asp?eventid=4112&eventno=2785&source=MSDTC Event&phase=1
<Q::>
Ian M. (Last update 7/2/2004):
M205069 helped me to fix this problem.

Ionut Marin (Last update 9/1/2003):
From a newsgroup post: "I tried re-installing Service Pack 4. That didn't
fix it. I was trying to start the MSDTC service from the services applet in
control panel and it would continually failed. With more investigation I
ended up in SQL Enterprise Manager looking at the configuration properties in
MSDTC. I noticed a button that said 'RESET LOG’. I remembered that one of the
errors in the event viewer was that the log file could not be found. I than
pushed that button and started the service and everything works well now".

This error may be a result of a missing or damaged MS DTC (Microsoft
Distributed Transaction Coordinator). Make sure that all Resource Manager
that are coordinated by MS DTC have no "in-doubt" transactions. To fix the
problem:
1. Use Windows Explorer to expand the %SystemRoot%\System32\Dtclog folder.
2. If a Msdtc.log file exists, rename it to Msdtc.old.
3. Opens NOTEPAD and save an empty file as
%SystemRoot%\System32\Dtclog\Msdtc.log.
4. Open a CMD prompt and type: msdtc -resetlog and press Enter.
</Q::>

Intermittent Error: MSDTC on server 'servername' is unavailable
http://blogs.msdn.com/distributedse...sdtc-on-server-servername-is-unavailable.aspx

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: TM
Event ID: 4185
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC Transaction Manager start failed. LogInit returned error 0x2.

ME020370 - ERR: Error code: 8004e00f - COM+ was unable to talk to the MSDTC.
http://www.mailenable.com/kb/Content/Article.asp?ID=me020370

Error Number : 29503 The SQL Server service failed to start.
http://social.msdn.microsoft.com/Fo.../thread/35f3f460-9168-401f-bca5-16536b6ad7fe/

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: LOG
Event ID: 4163
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc
-resetlog to create the log file.

Solution as above, renamimg the present log as log.old then recreate the log
and reboot your machine.

#############################################################################################
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4124
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
Content index on d:\system volume information\catalog.wci is corrupt. Please
shutdown and restart the Indexing Service (cisvc).

Again, Stopping the Index Service and restart it may solve the issue.
http://www.eventid.net/display.asp?eventid=4127&eventno=993&source=Ci&phase=1

#############################################################################################
Event Type: Warning
Event Source: Ci
Event Category: CI Service
Event ID: 4132
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
3 inconsistencies were detected in PropertyStore during recovery of catalog
d:\system volume information\catalog.wci.

http://www.microsoft.com/windows/windows2000/en/advanced/help/ISMain-concepts_78.htm
<MS::>
4132 <n> inconsistencies were detected in PropertyStore during recovery of
catalog <catalog path>. <n> records in the property store were found to be
corrupt. Indexing Service will automatically rebuild the property store.
Very low disk space was detected on drive <drive>.
</MS::>
##############################################################################################
SYSTEM ---

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7026
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The following boot-start or system-start driver(s) failed to load:
AFD
AmdPPM
Fips
IPSec
MPFP
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip

An Example >>The following boot-start or system-start driver(s) failed to
load: i8042prt
http://www.dedicatedsqlserver.com/HowTo/Failed_Load_I8042prt.aspx

AMD PowerNow! Functionality May Require a Driver for AMD Mobile Athlon 4 and
Duron Processors with Windows XP
http://support.microsoft.com/kb/306458/en-us
Event ID 7026 — Basic Service Control Manager Operations
http://technet.microsoft.com/en-us/library/cc756390.aspx

This interesting Article:

http://forums.techsoup.org/cs/forums/t/18720.aspx

http://www.eventid.net/display.asp?eventid=7026&eventno=452&source=Service Control Manager&phase=1

###########################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7001
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The Simple TCP/IP Services service depends on the AFD Networking Support
Environment service which failed to start because of the following error:
A device attached to the system is not functioning.

Event ID 7001 Is Logged in the System Event Log

http://support.microsoft.com/kb/278658

http://majorgeeks.com/page.php?id=13
<Q::>

DHCP Client ~ Receives a Dynamic IP address from your DHCP server. Required
for ICS/internet client and also if you run IPSEC, disable on a standalone
system or one that has a static IP address. Take note: Most DSL/cable
providers use DHCP to provide internet access. If you disable this service
and your internet no longer works, place this back into automatic.

Dependencies:

AFD Networking Support Environment

NetBios over TCP/IP

TCP/IP Protocol Driver
</Q::>

############################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7003
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The HPWJA Service service depends on the following nonexistent service:
MSSQL$HPWJA

Event ID 7003 — Service Start Operations

http://technet.microsoft.com/en-us/library/cc756359(WS.10).aspx

http://blogs.msdn.com/sql_protocols/archive/2006/02/21/536201.aspx

Jetadmin 10.1 "waiting for service to start"
http://forums13.itrc.hp.com/service...47627+1245583370410+28353475&threadId=1280478

http://forums13.itrc.hp.com/service...47627+1245583422709+28353475&threadId=1232652


HP Web Jetadmin 10 - Determining if Your WJA 10 Database Needs More Memory
http://h20000.www2.hp.com/bizsuppor...sId=27905&prodTypeId=18972&objectID=c01212776

############################################################################################
Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 6/20/2009
Time: 11:28:51 AM
User: NT AUTHORITY\SYSTEM
Computer: LAPTOP
Description:
DCOM got error "This service cannot be started in Safe Mode " attempting to
start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Event ID: 10005
http://support.microsoft.com/kb/841996

http://www.eventid.net/display.asp?eventid=10005&eventno=612&source=DCOM&phase=1

###########################################################################################
Event Type: Warning
Event Source: NapAgent
Event Category: None
Event ID: 39
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
The Network Access Protection Agent was unable to determine which HRAs to
request a health certificate from.
A network change or if GP is configured, a configuration change will prompt
further attempts to acquire a health certificate. Otherwise no further
attempts will be made.
Contact the HRA administrator for more information.

HRA Discovery
http://technet.microsoft.com/en-us/library/cc735540(WS.10).aspx

Event ID 39 — HRA Discovery
http://technet.microsoft.com/en-us/library/cc735537(WS.10).aspx

########################################################################################
Event Type: Error
Event Source: Ma730Pt
Event Category: None
Event ID: 18
Date: 6/20/2009
Time: 8:54:09 AM
User: N/A
Computer: LAPTOP
Description:
The description for Event ID ( 18 ) in Source ( Ma730Pt ) cannot be found.
The local computer may not have the necessary registry information or message
DLL files to display messages from a remote computer. You may be able to use
the /AUXSOURCE= flag to retrieve this description;

Ma730Pt belong to Motorola phone bluetooth, is it up2date? Do you have it
installed?

It may be good idea to uninstall and then reinstall.

Can you contact me please on this address if you wish:
to_you_rossatyahoo.dot.co.dot.uk
Remove the obvious to mail me.
HTH,
nass

 

[Joe]

nass,
Thank you for your information. I do not run my laptop as a server.
I could not find a file named "Msdtc.log in folder Dtclog" I could not even
find
the folder "Dtclog". Every time I tried to "Search" System32, I would get the
error message that I mentioned at the beginning of this mess. I build a dir
named
Dtclog and opened a Notepad document and saved it as mentioned.
--
Thank you for your help,
Joe

Thank you
Here are the reports you asked for:

My reply in line with your Event Viewer Error messages.
Do you have a server running on this machine?


Application ---
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4126
Date: 6/20/2009
Time: 9:28:01 AM
User: N/A
Computer: LAPTOP
Description:
Cleaning up corrupt content index metadata on d:\system volume
information\catalog.wci. Index will be automatically restored by refiltering
all documents.

Index Server Catalog Corruption
http://support.microsoft.com/default.aspx?scid=kb;[LN];209304

The indexing service detected that its index of metadata associated with
documents is corrupted. These documents will not be retrieved correctly
during a search. To correct this, the indexing service will rebuild its
indexes by scanning the required folders and processing all documents again.
The documents themselves are not affected, but a search for these documents
will not be successful until the scan is complete.

Solution:
Is to stop the indexing Service.

Start >> Run >. Type in:
services.msc click [OK] or Hit [Enter]
Scroll down to locate Indexing Service and double click it. Select Disable
to disbale the service and restrat your machine.
############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: SVC
Event ID: 4112
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
Could not start the MS DTC Transaction Manager.

Microsoft Distributed Transaction Coordinator Service Startup
http://technet.microsoft.com/en-us/library/cc726307(WS.10).aspx

http://www.eventid.net/display.asp?eventid=4112&eventno=2785&source=MSDTC Event&phase=1
<Q::>
Ian M. (Last update 7/2/2004):
M205069 helped me to fix this problem.

Ionut Marin (Last update 9/1/2003):
From a newsgroup post: "I tried re-installing Service Pack 4. That didn't
fix it. I was trying to start the MSDTC service from the services applet in
control panel and it would continually failed. With more investigation I
ended up in SQL Enterprise Manager looking at the configuration properties in
MSDTC. I noticed a button that said 'RESET LOG’. I remembered that one of the
errors in the event viewer was that the log file could not be found. I than
pushed that button and started the service and everything works well now".

This error may be a result of a missing or damaged MS DTC (Microsoft
Distributed Transaction Coordinator). Make sure that all Resource Manager
that are coordinated by MS DTC have no "in-doubt" transactions. To fix the
problem:
1. Use Windows Explorer to expand the %SystemRoot%\System32\Dtclog folder.
2. If a Msdtc.log file exists, rename it to Msdtc.old.
3. Opens NOTEPAD and save an empty file as
%SystemRoot%\System32\Dtclog\Msdtc.log.
4. Open a CMD prompt and type: msdtc -resetlog and press Enter.
</Q::>

Intermittent Error: MSDTC on server 'servername' is unavailable
http://blogs.msdn.com/distributedse...sdtc-on-server-servername-is-unavailable.aspx

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: TM
Event ID: 4185
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC Transaction Manager start failed. LogInit returned error 0x2.

ME020370 - ERR: Error code: 8004e00f - COM+ was unable to talk to the MSDTC.
http://www.mailenable.com/kb/Content/Article.asp?ID=me020370

Error Number : 29503 The SQL Server service failed to start.
http://social.msdn.microsoft.com/Fo.../thread/35f3f460-9168-401f-bca5-16536b6ad7fe/

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: LOG
Event ID: 4163
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc
-resetlog to create the log file.

Solution as above, renamimg the present log as log.old then recreate the log
and reboot your machine.

#############################################################################################
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4124
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
Content index on d:\system volume information\catalog.wci is corrupt. Please
shutdown and restart the Indexing Service (cisvc).

Again, Stopping the Index Service and restart it may solve the issue.
http://www.eventid.net/display.asp?eventid=4127&eventno=993&source=Ci&phase=1

#############################################################################################
Event Type: Warning
Event Source: Ci
Event Category: CI Service
Event ID: 4132
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
3 inconsistencies were detected in PropertyStore during recovery of catalog
d:\system volume information\catalog.wci.

http://www.microsoft.com/windows/windows2000/en/advanced/help/ISMain-concepts_78.htm
<MS::>
4132 <n> inconsistencies were detected in PropertyStore during recovery of
catalog <catalog path>. <n> records in the property store were found to be
corrupt. Indexing Service will automatically rebuild the property store.
Very low disk space was detected on drive <drive>.
</MS::>
##############################################################################################
SYSTEM ---

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7026
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The following boot-start or system-start driver(s) failed to load:
AFD
AmdPPM
Fips
IPSec
MPFP
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip

An Example >>The following boot-start or system-start driver(s) failed to
load: i8042prt
http://www.dedicatedsqlserver.com/HowTo/Failed_Load_I8042prt.aspx

AMD PowerNow! Functionality May Require a Driver for AMD Mobile Athlon 4 and
Duron Processors with Windows XP
http://support.microsoft.com/kb/306458/en-us
Event ID 7026 — Basic Service Control Manager Operations
http://technet.microsoft.com/en-us/library/cc756390.aspx

This interesting Article:

http://forums.techsoup.org/cs/forums/t/18720.aspx

http://www.eventid.net/display.asp?eventid=7026&eventno=452&source=Service Control Manager&phase=1

###########################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7001
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The Simple TCP/IP Services service depends on the AFD Networking Support
Environment service which failed to start because of the following error:
A device attached to the system is not functioning.

Event ID 7001 Is Logged in the System Event Log

http://support.microsoft.com/kb/278658

http://majorgeeks.com/page.php?id=13
<Q::>

DHCP Client ~ Receives a Dynamic IP address from your DHCP server. Required
for ICS/internet client and also if you run IPSEC, disable on a standalone
system or one that has a static IP address. Take note: Most DSL/cable
providers use DHCP to provide internet access. If you disable this service
and your internet no longer works, place this back into automatic.

Dependencies:

AFD Networking Support Environment

NetBios over TCP/IP

TCP/IP Protocol Driver
</Q::>

############################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7003
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The HPWJA Service service depends on the following nonexistent service:
MSSQL$HPWJA

Event ID 7003 — Service Start Operations

http://technet.microsoft.com/en-us/library/cc756359(WS.10).aspx

http://blogs.msdn.com/sql_protocols/archive/2006/02/21/536201.aspx

Jetadmin 10.1 "waiting for service to start"
http://forums13.itrc.hp.com/service...47627+1245583370410+28353475&threadId=1280478

http://forums13.itrc.hp.com/service...47627+1245583422709+28353475&threadId=1232652


HP Web Jetadmin 10 - Determining if Your WJA 10 Database Needs More Memory
http://h20000.www2.hp.com/bizsuppor...sId=27905&prodTypeId=18972&objectID=c01212776

############################################################################################
Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 6/20/2009
Time: 11:28:51 AM
User: NT AUTHORITY\SYSTEM
Computer: LAPTOP
Description:
DCOM got error "This service cannot be started in Safe Mode " attempting to
start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Event ID: 10005
http://support.microsoft.com/kb/841996

http://www.eventid.net/display.asp?eventid=10005&eventno=612&source=DCOM&phase=1

###########################################################################################
Event Type: Warning
Event Source: NapAgent
Event Category: None
Event ID: 39
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
The Network Access Protection Agent was unable to determine which HRAs to
request a health certificate from.
A network change or if GP is configured, a configuration change will prompt
further attempts to acquire a health certificate. Otherwise no further
attempts will be made.
Contact the HRA administrator for more information.

HRA Discovery
http://technet.microsoft.com/en-us/library/cc735540(WS.10).aspx

Event ID 39 — HRA Discovery
http://technet.microsoft.com/en-us/library/cc735537(WS.10).aspx

########################################################################################
Event Type: Error
Event Source: Ma730Pt
Event Category: None
Event ID: 18
Date: 6/20/2009
Time: 8:54:09 AM
User: N/A
Computer: LAPTOP
Description:
The description for Event ID ( 18 ) in Source ( Ma730Pt ) cannot be found.
The local computer may not have the necessary registry information or message
DLL files to display messages from a remote computer. You may be able to use
the /AUXSOURCE= flag to retrieve this description;

Ma730Pt belong to Motorola phone bluetooth, is it up2date? Do you have it

 

[Joe]

nass,
Just a follow up, I have tried running both "Malwarebytes' Anti-Malware" and
"SUPERAntiSpyware Free Edition". I changed the ".exe." names to something
different,(trying) to fool the Troj. programs.) The programs find some
problems
but the "Blue Screen of Death" comes up before I can tell them to delete it.
Some programs will not even run. Also, my IE8 keeps telling me that I didn't
shut down correctly and wants to know if I want to return to my previous
website or to my home site. If I choose prevous site, I get a whole bunch
of sites starting up and fills my screen.
--
Thank you for your help,
Joe

nass,
Thank you for your information. I do not run my laptop as a server.
I could not find a file named "Msdtc.log in folder Dtclog" I could not even
find
the folder "Dtclog". Every time I tried to "Search" System32, I would get the
error message that I mentioned at the beginning of this mess. I build a dir
named
Dtclog and opened a Notepad document and saved it as mentioned.
--
Thank you for your help,
Joe

Thank you
Here are the reports you asked for:

My reply in line with your Event Viewer Error messages.
Do you have a server running on this machine?


Application ---
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4126
Date: 6/20/2009
Time: 9:28:01 AM
User: N/A
Computer: LAPTOP
Description:
Cleaning up corrupt content index metadata on d:\system volume
information\catalog.wci. Index will be automatically restored by refiltering
all documents.

Index Server Catalog Corruption
http://support.microsoft.com/default.aspx?scid=kb;[LN];209304

The indexing service detected that its index of metadata associated with
documents is corrupted. These documents will not be retrieved correctly
during a search. To correct this, the indexing service will rebuild its
indexes by scanning the required folders and processing all documents again.
The documents themselves are not affected, but a search for these documents
will not be successful until the scan is complete.

Solution:
Is to stop the indexing Service.

Start >> Run >. Type in:
services.msc click [OK] or Hit [Enter]
Scroll down to locate Indexing Service and double click it. Select Disable
to disbale the service and restrat your machine.
############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: SVC
Event ID: 4112
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
Could not start the MS DTC Transaction Manager.

Microsoft Distributed Transaction Coordinator Service Startup
http://technet.microsoft.com/en-us/library/cc726307(WS.10).aspx

http://www.eventid.net/display.asp?eventid=4112&eventno=2785&source=MSDTC Event&phase=1
<Q::>
Ian M. (Last update 7/2/2004):
M205069 helped me to fix this problem.

Ionut Marin (Last update 9/1/2003):
From a newsgroup post: "I tried re-installing Service Pack 4. That didn't
fix it. I was trying to start the MSDTC service from the services applet in
control panel and it would continually failed. With more investigation I
ended up in SQL Enterprise Manager looking at the configuration properties in
MSDTC. I noticed a button that said 'RESET LOG’. I remembered that one of the
errors in the event viewer was that the log file could not be found. I than
pushed that button and started the service and everything works well now".

This error may be a result of a missing or damaged MS DTC (Microsoft
Distributed Transaction Coordinator). Make sure that all Resource Manager
that are coordinated by MS DTC have no "in-doubt" transactions. To fix the
problem:
1. Use Windows Explorer to expand the %SystemRoot%\System32\Dtclog folder.
2. If a Msdtc.log file exists, rename it to Msdtc.old.
3. Opens NOTEPAD and save an empty file as
%SystemRoot%\System32\Dtclog\Msdtc.log.
4. Open a CMD prompt and type: msdtc -resetlog and press Enter.
</Q::>

Intermittent Error: MSDTC on server 'servername' is unavailable
http://blogs.msdn.com/distributedse...sdtc-on-server-servername-is-unavailable.aspx

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: TM
Event ID: 4185
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC Transaction Manager start failed. LogInit returned error 0x2.

ME020370 - ERR: Error code: 8004e00f - COM+ was unable to talk to the MSDTC.
http://www.mailenable.com/kb/Content/Article.asp?ID=me020370

Error Number : 29503 The SQL Server service failed to start.
http://social.msdn.microsoft.com/Fo.../thread/35f3f460-9168-401f-bca5-16536b6ad7fe/

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: LOG
Event ID: 4163
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc
-resetlog to create the log file.

Solution as above, renamimg the present log as log.old then recreate the log
and reboot your machine.

#############################################################################################
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4124
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
Content index on d:\system volume information\catalog.wci is corrupt. Please
shutdown and restart the Indexing Service (cisvc).

Again, Stopping the Index Service and restart it may solve the issue.
http://www.eventid.net/display.asp?eventid=4127&eventno=993&source=Ci&phase=1

#############################################################################################
Event Type: Warning
Event Source: Ci
Event Category: CI Service
Event ID: 4132
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
3 inconsistencies were detected in PropertyStore during recovery of catalog
d:\system volume information\catalog.wci.

http://www.microsoft.com/windows/windows2000/en/advanced/help/ISMain-concepts_78.htm
<MS::>
4132 <n> inconsistencies were detected in PropertyStore during recovery of
catalog <catalog path>. <n> records in the property store were found to be
corrupt. Indexing Service will automatically rebuild the property store.
Very low disk space was detected on drive <drive>.
</MS::>
##############################################################################################
SYSTEM ---

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7026
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The following boot-start or system-start driver(s) failed to load:
AFD
AmdPPM
Fips
IPSec
MPFP
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip

An Example >>The following boot-start or system-start driver(s) failed to
load: i8042prt
http://www.dedicatedsqlserver.com/HowTo/Failed_Load_I8042prt.aspx

AMD PowerNow! Functionality May Require a Driver for AMD Mobile Athlon 4 and
Duron Processors with Windows XP
http://support.microsoft.com/kb/306458/en-us
Event ID 7026 — Basic Service Control Manager Operations
http://technet.microsoft.com/en-us/library/cc756390.aspx

This interesting Article:

http://forums.techsoup.org/cs/forums/t/18720.aspx

http://www.eventid.net/display.asp?eventid=7026&eventno=452&source=Service Control Manager&phase=1

###########################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7001
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The Simple TCP/IP Services service depends on the AFD Networking Support
Environment service which failed to start because of the following error:
A device attached to the system is not functioning.

Event ID 7001 Is Logged in the System Event Log

http://support.microsoft.com/kb/278658

http://majorgeeks.com/page.php?id=13
<Q::>

DHCP Client ~ Receives a Dynamic IP address from your DHCP server. Required
for ICS/internet client and also if you run IPSEC, disable on a standalone
system or one that has a static IP address. Take note: Most DSL/cable
providers use DHCP to provide internet access. If you disable this service
and your internet no longer works, place this back into automatic.

Dependencies:

AFD Networking Support Environment

NetBios over TCP/IP

TCP/IP Protocol Driver
</Q::>

############################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7003
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The HPWJA Service service depends on the following nonexistent service:
MSSQL$HPWJA

Event ID 7003 — Service Start Operations

http://technet.microsoft.com/en-us/library/cc756359(WS.10).aspx

http://blogs.msdn.com/sql_protocols/archive/2006/02/21/536201.aspx

Jetadmin 10.1 "waiting for service to start"
http://forums13.itrc.hp.com/service...47627+1245583370410+28353475&threadId=1280478

http://forums13.itrc.hp.com/service...47627+1245583422709+28353475&threadId=1232652


HP Web Jetadmin 10 - Determining if Your WJA 10 Database Needs More Memory
http://h20000.www2.hp.com/bizsuppor...sId=27905&prodTypeId=18972&objectID=c01212776

############################################################################################
Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 6/20/2009
Time: 11:28:51 AM
User: NT AUTHORITY\SYSTEM
Computer: LAPTOP
Description:
DCOM got error "This service cannot be started in Safe Mode " attempting to
start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Event ID: 10005
http://support.microsoft.com/kb/841996

http://www.eventid.net/display.asp?eventid=10005&eventno=612&source=DCOM&phase=1

###########################################################################################
Event Type: Warning
Event Source: NapAgent

 

[Joe]

Another thing, Sometimes when I run the Malwarebytes' & Spyware programs
they get almost to the end and then just disappear.
--
Thank you for your help,
Joe

nass,
Thank you for your information. I do not run my laptop as a server.
I could not find a file named "Msdtc.log in folder Dtclog" I could not even
find
the folder "Dtclog". Every time I tried to "Search" System32, I would get the
error message that I mentioned at the beginning of this mess. I build a dir
named
Dtclog and opened a Notepad document and saved it as mentioned.
--
Thank you for your help,
Joe

Thank you
Here are the reports you asked for:

My reply in line with your Event Viewer Error messages.
Do you have a server running on this machine?


Application ---
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4126
Date: 6/20/2009
Time: 9:28:01 AM
User: N/A
Computer: LAPTOP
Description:
Cleaning up corrupt content index metadata on d:\system volume
information\catalog.wci. Index will be automatically restored by refiltering
all documents.

Index Server Catalog Corruption
http://support.microsoft.com/default.aspx?scid=kb;[LN];209304

The indexing service detected that its index of metadata associated with
documents is corrupted. These documents will not be retrieved correctly
during a search. To correct this, the indexing service will rebuild its
indexes by scanning the required folders and processing all documents again.
The documents themselves are not affected, but a search for these documents
will not be successful until the scan is complete.

Solution:
Is to stop the indexing Service.

Start >> Run >. Type in:
services.msc click [OK] or Hit [Enter]
Scroll down to locate Indexing Service and double click it. Select Disable
to disbale the service and restrat your machine.
############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: SVC
Event ID: 4112
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
Could not start the MS DTC Transaction Manager.

Microsoft Distributed Transaction Coordinator Service Startup
http://technet.microsoft.com/en-us/library/cc726307(WS.10).aspx

http://www.eventid.net/display.asp?eventid=4112&eventno=2785&source=MSDTC Event&phase=1
<Q::>
Ian M. (Last update 7/2/2004):
M205069 helped me to fix this problem.

Ionut Marin (Last update 9/1/2003):
From a newsgroup post: "I tried re-installing Service Pack 4. That didn't
fix it. I was trying to start the MSDTC service from the services applet in
control panel and it would continually failed. With more investigation I
ended up in SQL Enterprise Manager looking at the configuration properties in
MSDTC. I noticed a button that said 'RESET LOG’. I remembered that one of the
errors in the event viewer was that the log file could not be found. I than
pushed that button and started the service and everything works well now".

This error may be a result of a missing or damaged MS DTC (Microsoft
Distributed Transaction Coordinator). Make sure that all Resource Manager
that are coordinated by MS DTC have no "in-doubt" transactions. To fix the
problem:
1. Use Windows Explorer to expand the %SystemRoot%\System32\Dtclog folder.
2. If a Msdtc.log file exists, rename it to Msdtc.old.
3. Opens NOTEPAD and save an empty file as
%SystemRoot%\System32\Dtclog\Msdtc.log.
4. Open a CMD prompt and type: msdtc -resetlog and press Enter.
</Q::>

Intermittent Error: MSDTC on server 'servername' is unavailable
http://blogs.msdn.com/distributedse...sdtc-on-server-servername-is-unavailable.aspx

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: TM
Event ID: 4185
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC Transaction Manager start failed. LogInit returned error 0x2.

ME020370 - ERR: Error code: 8004e00f - COM+ was unable to talk to the MSDTC.
http://www.mailenable.com/kb/Content/Article.asp?ID=me020370

Error Number : 29503 The SQL Server service failed to start.
http://social.msdn.microsoft.com/Fo.../thread/35f3f460-9168-401f-bca5-16536b6ad7fe/

#############################################################################################
Event Type: Error
Event Source: MSDTC
Event Category: LOG
Event ID: 4163
Date: 6/20/2009
Time: 9:21:03 AM
User: N/A
Computer: LAPTOP
Description:
MS DTC log file not found. After ensuring that all Resource Managers
coordinated by MS DTC have no indoubt transactions, please run msdtc
-resetlog to create the log file.

Solution as above, renamimg the present log as log.old then recreate the log
and reboot your machine.

#############################################################################################
Event Type: Error
Event Source: Ci
Event Category: CI Service
Event ID: 4124
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
Content index on d:\system volume information\catalog.wci is corrupt. Please
shutdown and restart the Indexing Service (cisvc).

Again, Stopping the Index Service and restart it may solve the issue.
http://www.eventid.net/display.asp?eventid=4127&eventno=993&source=Ci&phase=1

#############################################################################################
Event Type: Warning
Event Source: Ci
Event Category: CI Service
Event ID: 4132
Date: 6/20/2009
Time: 9:02:04 AM
User: N/A
Computer: LAPTOP
Description:
3 inconsistencies were detected in PropertyStore during recovery of catalog
d:\system volume information\catalog.wci.

http://www.microsoft.com/windows/windows2000/en/advanced/help/ISMain-concepts_78.htm
<MS::>
4132 <n> inconsistencies were detected in PropertyStore during recovery of
catalog <catalog path>. <n> records in the property store were found to be
corrupt. Indexing Service will automatically rebuild the property store.
Very low disk space was detected on drive <drive>.
</MS::>
##############################################################################################
SYSTEM ---

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7026
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The following boot-start or system-start driver(s) failed to load:
AFD
AmdPPM
Fips
IPSec
MPFP
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip

An Example >>The following boot-start or system-start driver(s) failed to
load: i8042prt
http://www.dedicatedsqlserver.com/HowTo/Failed_Load_I8042prt.aspx

AMD PowerNow! Functionality May Require a Driver for AMD Mobile Athlon 4 and
Duron Processors with Windows XP
http://support.microsoft.com/kb/306458/en-us
Event ID 7026 — Basic Service Control Manager Operations
http://technet.microsoft.com/en-us/library/cc756390.aspx

This interesting Article:

http://forums.techsoup.org/cs/forums/t/18720.aspx

http://www.eventid.net/display.asp?eventid=7026&eventno=452&source=Service Control Manager&phase=1

###########################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7001
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The Simple TCP/IP Services service depends on the AFD Networking Support
Environment service which failed to start because of the following error:
A device attached to the system is not functioning.

Event ID 7001 Is Logged in the System Event Log

http://support.microsoft.com/kb/278658

http://majorgeeks.com/page.php?id=13
<Q::>

DHCP Client ~ Receives a Dynamic IP address from your DHCP server. Required
for ICS/internet client and also if you run IPSEC, disable on a standalone
system or one that has a static IP address. Take note: Most DSL/cable
providers use DHCP to provide internet access. If you disable this service
and your internet no longer works, place this back into automatic.

Dependencies:

AFD Networking Support Environment

NetBios over TCP/IP

TCP/IP Protocol Driver
</Q::>

############################################################################################
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7003
Date: 6/20/2009
Time: 11:29:24 AM
User: N/A
Computer: LAPTOP
Description:
The HPWJA Service service depends on the following nonexistent service:
MSSQL$HPWJA

Event ID 7003 — Service Start Operations

http://technet.microsoft.com/en-us/library/cc756359(WS.10).aspx

http://blogs.msdn.com/sql_protocols/archive/2006/02/21/536201.aspx

Jetadmin 10.1 "waiting for service to start"
http://forums13.itrc.hp.com/service...47627+1245583370410+28353475&threadId=1280478

http://forums13.itrc.hp.com/service...47627+1245583422709+28353475&threadId=1232652


HP Web Jetadmin 10 - Determining if Your WJA 10 Database Needs More Memory
http://h20000.www2.hp.com/bizsuppor...sId=27905&prodTypeId=18972&objectID=c01212776

############################################################################################
Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 6/20/2009
Time: 11:28:51 AM
User: NT AUTHORITY\SYSTEM
Computer: LAPTOP
Description:
DCOM got error "This service cannot be started in Safe Mode " attempting to
start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Event ID: 10005
http://support.microsoft.com/kb/841996

http://www.eventid.net/display.asp?eventid=10005&eventno=612&source=DCOM&phase=1

###########################################################################################
Event Type: Warning
Event Source: NapAgent

 

[nass]

Another thing, Sometimes when I run the Malwarebytes' & Spyware programs
they get almost to the end and then just disappear.

Joe,
Try to Run them in Safe Mode and can you contact me on my email with your
hijackthis.
Also can you restore your system to an earlier date in Safe Mode?

Download the Hijackthis and send the report to one of
many forums for analysis and troubleshooting or you can send it to me on my
email provided at the bottom:
When all else fails, HijackThis v2.0.2
(http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php)

Can you please send me a copy at (e-mail address removed) ,
remove the obvious to email me, note ( _ it is underscore not - ).

 

[Joe]

Ness,
I tried to e-mail this to you but it kept coming back. I will post it here:

Thank you for this ness.
Here is the report that you requested.
Joe

Joseph M. Wies
1355 Springhill Dr.
Pittsburg, CA 94565-6337
H (925) 439-0993
C (925) 437-2215
(e-mail address removed)


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:39:19 PM, on 6/21/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ICO.EXE
C:\Program Files\AWS\WeatherBug\Weather.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\dllhost.exe
C:\Program Files\Kodak\printer\center\KodakSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TomTom DesktopSuite\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\System32\vssvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Internet Explorer\Iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.comcast.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
C:\Documents and Settings\All Users\Application
Data\Intuit\Quicken\Inet\Common\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
C:\Documents and Settings\All Users\Application
Data\Intuit\Quicken\Inet\Common\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
Favorites
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program
Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper -
{AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} -
C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User
'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting]
"C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User
'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKCU\Software\Policies\Microsoft\Internet
Explorer\Toolbars\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Append Link Target to Existing PDF -
res://C:\Program Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program
Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF -
res://C:\Program Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program
Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber
Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Do&wnload by ReGet Deluxe - C:\Program
Files\Common Files\ReGet Shared\CC_Link.htm
O8 - Extra context menu item: Download A&ll by ReGet Deluxe - C:\Program
Files\Common Files\ReGet Shared\CC_All.htm
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://E:\JOE'SB~1\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber
Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program
Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber
Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Send To &Bluetooth - C:\Program
Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage
Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab)
-
http://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) -
https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
https://kodak.webex.com/client/T26L10NSP49EP10/support/ieatgpc.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program
Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: 601d9f97486 - C:\WINDOWS\
O20 - Winlogon Notify: AutorunsDisabled - C:\WINDOWS\
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. -
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. -
C:\Program Files\Common Files\Macrovision Shared\FLEXnet
Publisher\FNPLicensingService.exe
O23 - Service: HPWJA Service (HPWJAService) - Hewlett-Packard Company -
C:\Program Files\Hewlett-Packard\Web Jetadmin 10\bin\HPWJAService.exe
O23 - Service: HPWJAUpdateService - Unknown owner - C:\Program Files\Common
Files\Hewlett-Packard\WJA Update Service\HPWJAUpdateService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero
7\InCD\InCDsrv.exe
O23 - Service: Kodak AiO Device Service (KodakSvc) - Eastman Kodak Company -
C:\Program Files\Kodak\printer\center\KodakSvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero
BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common
Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: sp_rssrv - Crawler.com - C:\Program Files\Spyware
Terminator\sp_rsser.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom
DesktopSuite\TomTom HOME 2\TomTomHOMEService.exe

 

[nass]

Joe
You must not include your Email address in an open Newsgroup, forums, chat
rooms..etc
The NG get crawled by Good and bad Robots which get data, information from
this NG. The bad ones look for email addresses like yours to send spam and
the like. So, in the future please don't include your email address in an
open newsgroup. Or at least munge it like I did say (e-mail address removed),
so I will have to remove REMOVENUMBERS to get your email right to email you.
This way you are fooling the Bots but not the human side of it!
Address Munging Considered Harmful
http://www.interhack.net/pubs/munging-harmful/

I will email you with the instructions.
Regards,
nass

 

[Joe]

Thank you Nass,
That is good advice.
Since I had this invasive Virus/Trojan/Malware and that you were able to
give me such GREAT advise, I would like to give you 5 of the biggest Stars
*****.
You are the best.

 

[nass]

You are welcome Joe and good luck.
Regards
nass

Thank you Nass,
That is good advice.
Since I had this invasive Virus/Trojan/Malware and that you were able to
give me such GREAT advise, I would like to give you 5 of the biggest Stars
*****.
You are the best.