Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-18-2016 07:33 PM
I would like to create some reports based on Windows Defender events.
Did a search and did find any reports.
Bascially I want to pull the scan event and/or if anything was found.
Separate reports are fine.
If someone can point me in the right direction or starting query example, I am more then glad to continue on myself to figure the rest out.
Thanks in advance.
Did a search and did find any reports.
Bascially I want to pull the scan event and/or if anything was found.
Separate reports are fine.
If someone can point me in the right direction or starting query example, I am more then glad to continue on myself to figure the rest out.
Thanks in advance.
Solved! Go to Solution.
Labels:
- Labels:
-
General Discussion
1 ACCEPTED SOLUTION
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-19-2016 02:28 PM
The problem in your situation is that Lansweeper only can read the standard Windows event logs.
Windows defender event logs are under Application and Services log.
Microsoft\Windows\Windows Defender\Operational
It is on the Lansweeper wishlist.
Maybe a Deployment or Action can do the job?
Using Powershell:
https://blogs.technet.microsoft.com/heyscriptingguy/2013/10/25/use-powershell-to-see-what-windows-defender-detected/
==================
Update:
Maybe you can create an 'On Event' Taskschedule that starts a EventCreate?
The EventCreate can write an custom event to the standard Windows Event logs.
Windows defender event logs are under Application and Services log.
Microsoft\Windows\Windows Defender\Operational
It is on the Lansweeper wishlist.
Maybe a Deployment or Action can do the job?
Using Powershell:
https://blogs.technet.microsoft.com/heyscriptingguy/2013/10/25/use-powershell-to-see-what-windows-defender-detected/
==================
Update:
Maybe you can create an 'On Event' Taskschedule that starts a EventCreate?
The EventCreate can write an custom event to the standard Windows Event logs.
2 REPLIES 2
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-19-2016 03:02 PM
Ahhh, I got you.
As I am still evaluating, I do not have the option to Deploy.
Actions don't seem to work for me (I have a separate post for that issue).
Thanks for the link ict, very useful and informative.
Seems to be my best option while this is just a wish.
As I am still evaluating, I do not have the option to Deploy.
Actions don't seem to work for me (I have a separate post for that issue).
Thanks for the link ict, very useful and informative.
Seems to be my best option while this is just a wish.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-19-2016 02:28 PM
The problem in your situation is that Lansweeper only can read the standard Windows event logs.
Windows defender event logs are under Application and Services log.
Microsoft\Windows\Windows Defender\Operational
It is on the Lansweeper wishlist.
Maybe a Deployment or Action can do the job?
Using Powershell:
https://blogs.technet.microsoft.com/heyscriptingguy/2013/10/25/use-powershell-to-see-what-windows-defender-detected/
==================
Update:
Maybe you can create an 'On Event' Taskschedule that starts a EventCreate?
The EventCreate can write an custom event to the standard Windows Event logs.
Windows defender event logs are under Application and Services log.
Microsoft\Windows\Windows Defender\Operational
It is on the Lansweeper wishlist.
Maybe a Deployment or Action can do the job?
Using Powershell:
https://blogs.technet.microsoft.com/heyscriptingguy/2013/10/25/use-powershell-to-see-what-windows-defender-detected/
==================
Update:
Maybe you can create an 'On Event' Taskschedule that starts a EventCreate?
The EventCreate can write an custom event to the standard Windows Event logs.
