Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 2025 Source: Srv

The server has detected an attempted Denial-Of-Service attack from client \\<client name or IP address>, and has disconnected the connection.
I got this error on my host PC when I copied/installed files from the host PC to my VMWare client machine. Adding or changing the following registry key on the host PC resolves the problem:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters -> "DisableDos" -> "REG_DWORD" -> "1"
This event occurs on VMware hosts when you use a virtual machine and try to run a setup program from the file system of the host computer. See the link to “Problems with networking (Denial of Service)” to resolve this problem.
This problem may occur if you have Transmission Control Protocol (TCP) segmentation offloading enabled on the host computer's network adapter. See ME888750 to solve this problem.
See ME898468 for a workaround on this problem on Windows Server 2003.
We got this from a Windows 98 Second Edition machine, trying to copy a file from a domain controller shared folder. The win98 would get various error messages about being unable to copy the file, and the server logs that information.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.