Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 1004 Source: AVExch32Service

The McAfee GroupShield for Microsoft Exchange could not logon to MAPI.
This problem started after applying KB890175, KB891711, and KB871250 on a Windows 2000 SP4 server that is a DC running Exchange 2000 (SP3) and McAfee GroupShield for Exchange 5.2. Restarting the GroupShield service didn't fix the problem. The event log began filling up with event ID 1048 and the message "McAfee GroupShield Exchange failed to send message", when a new email that contained a virus came in. Virus scanning worked GroupShield just couldn't notify. A full reboot of the server fixed it.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.