Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
The description for Event ID ( 65535 ) in Source ( STacSV ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: Connection to BassMgrHDA COM interface failed.
|English: Request a translation of the event description in plain English.|
|Concepts to understand:|
What is a DLL?
What is causing the “The description for Event ID ( … ) in Source ( …. ) cannot be found… “?
In my case, the information part of the event said "Connection to the Storage interface failed". It resulted in a Windows crash (BSOD) with Error code 0x000000c2 (Bad Pool Caller).
The process STacSV Module belongs to the software SigmaTel Audio or C-Major Audio or SigmaTel Audio Service or IDT Audio by SigmaTel, Inc or IDT, Inc.
STacSV.exe is located in a subfolder of "C:\Program Files". Known file sizes on Windows XP are 90112 bytes (69% of all occurrence), 53248 bytes, 86016 bytes, 73728 bytes, 94208 bytes, 77824 bytes. The program has no visible window. The file is not a Windows core file. STacSV.exe is able to hide itself. Therefore the technical security rating is 41% dangerous.
If STacSV.exe is located in the folder C:\Windows\System32 then the security rating is 50% dangerous. File size is 81920 bytes (38% of all occurrence), 90112 bytes, 86016 bytes, 94208 bytes, 102400 bytes, 98304 bytes. The program is not visible. It is not a Windows system file. It is located in the Windows folder, but it is not a Windows core file. STacSV.exe is able to hide itself.
Some malware camouflage themselves as STacSV.exe, particularly if they are located in c:\windows or c:\windows\system32 folder.
I just turned off all Sigmatel services via msconfig.
|Private comment: Subscribers only. See example of private comment|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated