This is what if found in help file, this should help you out.
Symantec Client Security events
Table 1 lists events that are forwarded to the Symantec System Center. Many, but not all, of these events appear in the Windows 2000/XP Application Log.
Also, the Windows Application Log might not completely conform to this list. For example, event number 34 appears as a log forwarding error in the Symantec System Center, but the event number 34 appears as an Information event for starting Event and Settings Manager.
Table 1. Events
Event
Event number
Description
Scan Stopped
2
Occurs when antivirus scanning completes.
Scan Started
3
Occurs when antivirus scanning starts.
Definition File Sent To Server
4
Occurs when a parent server sends a .vdb file to a secondary server.
Virus Found
5
Occurs when scanning detects a virus.
Scan Omission
6
Occurs when scanning fails to gain access to a file or directory.
Definition File Loaded
7
Occurs when Symantec Client Security loads a new .vdb file.
Checksum
10
Occurs when a checksum error occurs when verifying a digitally signed file.
Auto-Protect
11
Occurs when Auto-Protect is not fully operational.
Configuration Changed
12
Occurs when a server updates its configurations according to the changes made from the console, excluding configuration changes made in the PRODUCTCONTROL or DOMAINDATA registry keys.
let me know if you have any question...