Difference between revisions of "Microsoft Security Essentials and Defender"
Jump to navigation
Jump to search
↑ https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-windows-defender-antivirus
Michael.mast (talk | contribs) (Created page with "<ref>https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-windows-defender-antivirus</ref> * 1116 : MALWAREPROTECTION_ST...") |
Michael.mast (talk | contribs) |
||
| Line 1: | Line 1: | ||
| + | ==Text output for email reporting== | ||
| + | wevtutil qe ForwardedEvents "/q:*[System[(EventID=1116)]]" /f:text /rd:true /c:1 | ||
| + | |||
| + | ==Event IDs== | ||
<ref>https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-windows-defender-antivirus</ref> | <ref>https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-windows-defender-antivirus</ref> | ||
* 1116 : MALWAREPROTECTION_STATE_MALWARE_DETECTED | * 1116 : MALWAREPROTECTION_STATE_MALWARE_DETECTED | ||
Revision as of 13:15, 30 March 2018
Text output for email reporting
wevtutil qe ForwardedEvents "/q:*[System[(EventID=1116)]]" /f:text /rd:true /c:1
Event IDs
- 1116 : MALWAREPROTECTION_STATE_MALWARE_DETECTED
- 1117 : MALWAREPROTECTION_STATE_MALWARE_ACTION_TAKEN
- 1118 : MALWAREPROTECTION_STATE_MALWARE_ACTION_FAILED
- 1119 : MALWAREPROTECTION_STATE_MALWARE_ACTION_CRITICALLY_FAILED
- 5001 : MALWAREPROTECTION_RTP_DISABLED
