Windows 10: windows defender event viewer

Discus and support windows defender event viewer in Windows 10 Customization to solve the problem; Hi , I have a concern regarding the windows event viewer Microsoft-Windows-Windows Defender/Operational. How to fetch the current signature version... Discussion in 'Windows 10 Customization' started by sarathgovind2, Jul 20, 2020.

  1. SARATHGOVIND2
    sarathgovind2 Win User

    windows defender event viewer


    Hi ,


    I have a concern regarding the windows event viewer Microsoft-Windows-Windows Defender/Operational.

    How to fetch the current signature version alone for the defender event id 2000 .


    I have written a code below


    LPWSTR pwsPath = L"Microsoft-Windows-Windows Defender/Operational";

    //<xpath query goes here>

    LPWSTR pwsQuery = L"*[System/EventID=2000]";
    EVT_HANDLE hResults = NULL;
    hResults = EvtQueryNULL, pwsPath, pwsQuery, EvtQueryChannelPath EvtQueryReverseDirection;
    if NULL == hResults
    {
    EvtSeekhResults, 0, NULL, 0, EvtSeekRelativeToCurrent;
    }


    this will display all the details of eventid 2000 , I need only the current signature version of the latest event event id :2000


    how to write the pwsQuery to obtain the required result

    :)
     
    sarathgovind2, Jul 20, 2020
    #1
  2. SHAROON AUSTIN
    Sharoon Austin Win User

    Location of Windows Defender events saved in Event Viewer

    In this https://docs.microsoft.com/en-us/wi...virus/troubleshoot-windows-defender-antivirus.
    According to the the mentioned link the generated events should be displayed at the following location in the Event Viewer:- Application and Services Logs/Microsoft/Windows/Windows Defender Antivirus/Operational.

    But on performing actions, Events are getting stored at this location in the event viewer:- Application and Services Logs/Microsoft/Windows/Windows Defender/Operational.

    How can I get Microsoft Windows Defender Antivirus folder at this location:- Application and Services Logs/Microsoft/Windows in the event viewer. So that events start getting stored at this location:- Application and Services Logs/Microsoft/Windows/Windows
    Defender Antivirus/Operational.

    ***Original title: Microsoft Defender Antivirus***
     
    Sharoon Austin, Jul 20, 2020
    #2
  3. PAINTYOURWORLD
    Paintyourworld Win User
    Windows Firewall Event Viewer questions

    * Merged *

    What does mean in the Event Viewer

    "A rule has been added to the Windows Defender Firewall exception list"
     
    Paintyourworld, Jul 20, 2020
    #3
  4. PRAKHAR_KHARE
    Prakhar_Khare Win User

    windows defender event viewer

    Location of Windows Defender events saved in Event Viewer

    Hi Sharoon,



    Thank you for writing to Microsoft Community Forums.



    I understand that your query related to saving the logs of Windows Defender on Event viewer.



    The logs generated in Event Viewer for Windows Defender are saved by default under Windows Defender folder. We don’t have the option to create a custom folder to save the logs.



    However, there is no such difference between Windows Defender Antivirus folder and Windows Defender folder in Event viewer, the events stored can still be used to analyze the logs created by Windows Defender.



    I thank you for bringing this to our notice, you can provide the valuable feedback regarding the same using

    Feedback Hub application     on Windows 10 to improve the experience of using Windows.



    Regards,

    Prakhar Khare

    Microsoft Community – Moderator
     
    Prakhar_Khare, Jul 20, 2020
    #4
Thema:

windows defender event viewer

Loading...

  1. windows defender event viewer - Similar Threads - defender event viewer

  2. New Event Details in "Windows Defender > Operational" Log Event Viewer

    in Windows 10 Network and Sharing
    New Event Details in "Windows Defender > Operational" Log Event Viewer: I've discovered that starting from the 29th of November, there is a new kind of event in Event Viewer > Applications and Services > Windows Defender > OperationalEvent 5007 is nothing new, that's like the most standard event you'll find in there, but the contents of some of...

  3. New Event Details in "Windows Defender > Operational" Log Event Viewer

    in Windows 10 Gaming
    New Event Details in "Windows Defender > Operational" Log Event Viewer: I've discovered that starting from the 29th of November, there is a new kind of event in Event Viewer > Applications and Services > Windows Defender > OperationalEvent 5007 is nothing new, that's like the most standard event you'll find in there, but the contents of some of...

  4. New Event Details in "Windows Defender > Operational" Log Event Viewer

    in Windows 10 Software and Apps
    New Event Details in "Windows Defender > Operational" Log Event Viewer: I've discovered that starting from the 29th of November, there is a new kind of event in Event Viewer > Applications and Services > Windows Defender > OperationalEvent 5007 is nothing new, that's like the most standard event you'll find in there, but the contents of some of...

  5. Windows Event Viewer

    in Windows 10 BSOD Crashes and Debugging
    Windows Event Viewer: Hi, I was wondering if the Windows Event Viewer Process alerts if it has failed. More specifically, what if the feature that actually generates the logs fails on a windows pc? I understand that crash dumps after a BSOD still would be drawn from the same logging place. Does...

  6. Windows Defender Antivirus Service service terminated in Event Viewer

    in AntiVirus, Firewalls and System Security
    Windows Defender Antivirus Service service terminated in Event Viewer: Hello, I have problem with Windows Defender on Windows 10 Home 20H2 version with all updates installed. I'm still getting this error in Event Viewer: The Windows Defender Antivirus Service service terminated with the following error: General access denied error Event 7023...

  7. Windows Event Viewer

    in Windows 10 Customization
    Windows Event Viewer: So I had an issue with my audio and went through the event viewer, and found a critical issue that said: "Source: Microsoft-Windows-Kernel-Power Date: 9/29/2020 7:58:57 AM Event ID: 41 Task Category: 63 Level: Critical Description: The...

  8. windows event viewer

    in Windows 10 BSOD Crashes and Debugging
    windows event viewer: I just built my first gaming computer and i experienced my first bsod a couple of days ago while playing gears of war 5. i went to the event viewer and noticed while i was playing, every second, the event viewer was created this warning over and over event 51 an error was...

  9. Location of Windows Defender events saved in Event Viewer

    in AntiVirus, Firewalls and System Security
    Location of Windows Defender events saved in Event Viewer: In this https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-windows-defender-antivirus. According to the the mentioned link the generated events should be displayed at the following location in the Event Viewer:-...

  10. Windows Defender error spamming my event viewer.

    in AntiVirus, Firewalls and System Security
    Windows Defender error spamming my event viewer.: The last couple days I've gotten this error about 40 times saying, Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON (error BA060000). Its labeled eventid 16, I've tried updating windows and its say there no updates and I tried updating...