Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
Symantec AntiVirus Auto-Protect could not scan file <file path and name> for viruses due to low kernel stack.
|English: Request a translation of the event description in plain English.|
|Concepts to understand:|
What is the kernel?
Many of the reports for this event were pointing to ati3duag.dll (or atidrab.dll, an ATI video card driver). One solution would be to configure the antivirus to exclude this file from scanning.
This problem occurs because there is a limited amount of kernel space available for kernel drivers. See the link to "Symantec Knowledge Base Document ID: 2002071208532048" to solve this problem.
See the link to "Symantec Support Document ID: 2004101505500906" for information on fixing this problem.
|Private comment: Subscribers only. See example of private comment|
|Links: Symantec Support Document ID: 2004101505500906, Symantec Knowledge Base Document ID: 2002071208532048|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated