Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 2001 Source: MicrosoftAntimalware

Level
Description
Microsoft Antimalware has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.109.66.0
Update Source: Microsoft Update Server
Update Stage: Search
Source Path: http://www.microsoft.com
Signature Type: AntiVirus
Update Type: Full
User: NT AUTHORITY\SYSTEM
Current Engine Version:
Previous Engine Version: 1.1.7104.0
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates see Help and Support.
Comments
 
Error code 0x80072ee7 - We have seen this message recorded when there was a temporary issue with Internet connectivity. Once the connectivity was restored, the problem went away.
According to Microsoft, this error occurs if there is a problem while trying to update definitions.

Recommended user action:
- If you are having problems updating definitions, the following steps can help:
- Ensure your configuration for definition updates is correct. For more information, see Configuring definition updates (http://go.microsoft.com/fwlink/?LinkId=214996).
- Check your WSUS configuration settings. For more information, see Updates and Windows Server Update Services Definition Updates (http://go.microsoft.com/fwlink/?LinkId=214315).
- Try to update the definitions manually by downloading the full definitions files. To download the definitions, see the alternative download location (http://go.microsoft.com/fwlink/?LinkId=214316).

For more information about this error, review the entries in the %Windir%\WindowsUpdate.log log file.
T774005 provides a list of error message recorded in this event and suggestions on how to troubleshoot each of them.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...