EVConverterSandbox.exe may crash intermittently, generating event ID 1000 in the Application log

  • Modified Date:
  • Article ID:000017887


The EVConverterSandbox.exe process may crash intermittently when converting large or complex files for indexing.  This is as a result of the default conversion timeout of 10 minutes being exceeded.

The Faulting Module Name logged in the event may vary but will be followed by "_unloaded" as per the example in the Error section of this article.

Error Message

Type: Error
Event: 1000
Source: Application Error
Category:  Application Crashing Events
User: N/A
Description: Faulting application name: EVConverterSandbox.exe, version:, time stamp: 0x4fee1131
Faulting module name: SCCTA.DLL_unloaded, version:, time stamp: 0x4e0a9e07
Exception code: 0xc0000005
Fault offset: 0x663b2224
Faulting process id: 0x4888
Faulting application start time: 0x01cdc75807a16dcb
Faulting application path: C:\Program Files (x86)\Enterprise Vault\EVConverterSandbox.exe
Faulting module path: SCCTA.DLL
Report Id: ae4eb1b7-334c-11e2-a942-0026554de1dc


A workaround of increasing the registry values listed below is available.  However, prior to putting this workaround in place the TMP and TEMP variable locations for the Vault Service Account should be adjusted to ensure that they are hosted on a disk that has a large amount of free disk space, as the increase in the timeout value will allow large items that would have exceeded the timeout period (and been discarded from the conversion process) to be fully converted.  Large and complex items temporarily take up a significant amount of disk space when being converted.

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\KVS\Enterprise Vault\     (64 Bit)

HKEY_LOCAL_MACHINE\SOFTWARE\KVS\Enterprise Vault\   (32 Bit)



Both these values have a default value of 10 minutes.  Increase them by 30 minute increments until the Event ID 1000 events are no longer logged for EVConverterSandbox.exe.  A service restart is not required for these changes to take effect.



Symantec Corporation has acknowledged that the above-mentioned issue is present in the current version(s) of the product(s) mentioned at the end of this article.

Symantec Corporation is committed to product quality and satisfied customers. There are currently no plans to address this issue by way of a patch or hotfix in the current or previous versions of the software at the present time. This issue may be resolved in a future major revision of the software at a later time. However, this particular issue is not currently scheduled for any release. If you feel this issue has a direct business impact for you and your continued use of the product, please contact your Symantec Sales representative or the Symantec Sales group to discuss these concerns.

For information on how to contact Symantec Sales, please see http://www.symantec.com Please be sure to refer back to this document periodically as any changes to the status of the issue will be reflected here.

Terms of use for this information are found in Legal Notices.



Did this article answer your question or resolve your issue?


Did this article save you the trouble of contacting technical support?


How can we make this article more helpful?

Email Address (Optional)