WinSecWiki > Security Settings > Local Policies > Audit Policy > Non Audit > Event Processing

Event Processing (Eventlog source)

These events are logged even if you disable all auditing. 

Coverage on events generated by this category are currently in the Security Log Encyclopedia:

Event IDTitle
1101 Audit events have been dropped by the transport.
1104 The security Log is now full
1108 The event logging service encountered an error
4612 Internal resources allocated for the queuing of audit messages have been exhausted, leading to the loss of some audits.

Back to top

 

Upcoming Webinars
  • “3 Persistent Privileged Access Methods in Active Directory: How Attackers Stick the Landing with AdminSdHolder, SIDHistory, DCShado”
Additional Resources
    Non Audit
    •Event Processing
    •Log Automatic Backup
    •Log Clear
    •Service Shutdown

     
     
    User name:
    Password:
      / Forgot?
      Register
    October 2025
    Patch Tuesday    		 "Patch Tuesday - 172 Updates Today and 6 Zero-Days! " - sponsored by LOGbinder
    .
    Tweet
    Follow @randyfsmith
    About | Newsletter | Contact Ultimate IT Security is a division of Monterey Technology Group, Inc. ©2006-2025 Monterey Technology Group, Inc. All rights reserved.
    Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk. For complaints, please contact abuse@ultimatewindowssecurity.com.     		Terms of Use | Privacy |
    Cookies help us deliver the best experience on our website. By using our website, you agree to the use of cookies.