Monitor unlimited number of servers
Filter log events
Create email and web-based reports
Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content
Event ID: 5019 Source: McLogEvent
Various reported details:
Build Feb 13 2000 14:47:12 Crash address 0x7800d0b9 (naiann) Code 0xc0000005 Flags 0x00000000 2 Parameters : 0x00000001 0x0045004a Progress = 11 CRT = Packet = Type = 2, size=146, members=9
Exception in McShield.Exe! Exception details follow : Build 402a branch / 1.75 Crash address 0x0152088f Code 0xc0000005 Flags 0x00000000 2 Parameters : 0x00000000 0x00000000 Object being scanned = \Device\Harddisk0\Partition1\WINNT\Profiles\xxx\Application Data\Microsoft\Excel\Excel.xlb ( @ 4)
FAQs:
Question: I am getting Event ID 5019 in my event viewer when McShield crashes. What fixes this?
Answer: This occurs due to an invalid API call made by Windows NT. Download and install the NetShield 4.5 Service Pack to resolve these errors. The service pack is under Product Upgrades at http://www.nai.com/naicommon/download/introduction/default.asp. There is further information in the README.TXT file for the service pack for registry changes that need to be made if the problem persists"
Windows Event Log Analysis Splunk App
Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.
Cisco ASA Log Analyzer Splunk App
Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.