Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
The description for Event ID ( 1 ) in Source ( AVDiagnostics ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: .
|English: Request a translation of the event description in plain English.|
|Concepts to understand:|
What is a DLL?
What is causing the “The description for Event ID ( … ) in Source ( …. ) cannot be found… “?
Caused by Trend Micro. Access from a machine that has Trend Micro installed and you might get something similar to below -
P00000900 T000008c8 RXI32 L02 Z0000000039 10\21\2009 10:31:06.899 rxi32.cpp : Line 746 : RmiSesOpenEx FAILED.
Unfortunately I don't know what this means but this is a start.
From a post on Experts-Exchange they came up with this solution:
Turns out the NEC ViewMail program has a diagnostics section. By turning off all diagnostics, the errors will go away. According to NEC rep, diagnostics are only needed if there is a problem. If no issues exist, the diags can be turned off.
We have the program installed on our systems too but I have not yet tried this solution.
|Private comment: Subscribers only. See example of private comment|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated