Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 4786 Source: COM

The system has called a custom component and that component has failed and generated an exception. This indicates a problem with the custom component. Notify the developer of this component that a failure has occurred and provide them with the information below.
Component Prog ID:
Server Application ID: {F992314D-C0F6-48E3-B2B6-56A2E6A3214F}
Exception: C0000005
Address: 0x00000738
Call Stack: <stack>.
EV100136 (Troubleshooting Crashes in COM+ Applications) is an article from Microsoft's Distributed Services Support Team about the debugging applications that cause this type of problem. While it is probably useful just to the developers of a particular application it may provide an understanding on why is this happening.
When the Microsoft SQL OLE DB Provider (SQLOLEDB) tries to access the sqlxmlx.dll file, and the sqlxmlx.dll file unloads unexpectedly, an access violation occurs, the SQLOLEDB provider stops responding and this event is logged. See ME838976 for a hotfix applicable to Microsoft Data Access Components.

See ME906092 for a hotfix applicable to Microsoft Windows Server 2003.

See ME898921, ME906429, ME917069, ME917848, ME918329 and ME924394 for additional information on this event.
This event might occur when you send an e-mail message that has the Content-Transfer-Encoding value set to a value that is not valid, such as "plain". See ME885422 for a hotfix applicable to Microsoft Exchange Server 2003.

Read McAfee solution kb46675 if the SpamKiller/GroupShield Spam Router application terminates unexpectedly. Go to the McAfee Knowledge Search page and search for this solution to read it.
See ME896989 for a hotfix applicable to Microsoft Operations Manager (MOM) 2005, when used with Microsoft Windows Server 2003 Service Pack 1.

From a newsgroup post: “MOM 2005 currently has an issue on W2K3 Server SP1. For the time being there is a possible workaround you could use to help mitigate this issue until a fix is available. You can go to the MOM Server you are trying to remotely connect through and using a MOM Admin account and the local MOM Administrators Console on that server (if one is not there you will need to install one), you can create a Computer Group with a name starting with an “_” character. This will reorder the offending Configuration group name out of first position and should allow you to conduct business as usual”.
This type of event indicates a bug in a program component. If the component is developed internally (by developers from your company) then notify them about this error. If the application generating this error is a 3rd party application contact the developer and report the problem, verify that you have the latest patches for that application and that the application is compatible with the operating system where you have it installed.

When the component is used for database connectivity, some newsgroup posts suggest installing the latest drivers for connecting to that database (i.e the latest ODBC drivers if ODBC is used or the latest version of Oracle OLEDB Provider if Oracle native client is used).

If you have identified the component, you may also try to re-register it using the regsvr32 command.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.