| Event Id | 4119 |
| Source | TCP/IP |
| Description | IP could not open registry key for NdiswanX. |
| Event Information | >After uninstalling the Remote Access Service (RAS) and then restarting your computer running Windows NT, Event Viewer may log one or more of the above events (4119, 4311 from NetBT) in the System log. CAUSE : Some of the registry keys associated with RAS were not correctly removed when RAS was uninstalled. RESOLUTION : To resolve this issue, manually remove all Ndiswan keys from the registry using the following procedure: For information about how to edit the registry, view the "Changing Keys And Values" Help topic in Registry Editor (Regedit.exe) or the "Add and Delete Information in the Registry" and "Edit Registry Data" Help topics in Regedt32.exe. Note that you should back up the registry before you edit it. Start Registry Editor (Regedt32.exe or Regedit.exe). Go to the following subkey: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NetBt\Adapte Delete all the Ndiswan keys. Close Registry Editor and restart your computer. |
| Reference Links | Event ID 4119 and 4311 After Removal of Remote Access Service |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.