|
Measures reported by WinDefenderEvtTest
Microsoft Windows Defender aims to keep your PC safe with built-in, real-time protection against viruses, ransomware, spyware, and other security threats. It records events with IDs in the event log in Application and Services Logs/Microsoft/Windows/Windows Defender/Operational folder. This test periodically scans the Windows Defender event logs for configured patterns of errors/warnings and promptly captures and reports error/warning messages that match the specified patterns. This test is disabled by default.
Outputs of the test :One set of results for the FILTER configured.
The measures made by this test are as follows:
| Measurement |
Description |
Measurement Unit |
Interpretation |
| Information_count |
This refers to the number of application information events generated when the test was last executed. |
Number |
A change in the value of this measure may indicate infrequent but successful operations performed by one or more applications. |
| Warning_count |
This refers to the number of warnings that were generated when the test was last executed. |
Number |
A high value of this measure indicates problems with the broker that may not have an immediate impact, but may cause future problems in one or more machines of this broker. |
| Error_count |
This refers to the number of application error events that were generated. |
Number |
A very low value (zero) indicates that the system is in a healthy state and all applications are running smoothly without any potential problems.
An increasing trend or high value indicates the existence of problems like loss of functionality or data in one or more applications. |
| Critical_count |
Indicates the number of critical events that were generated when the test was last executed. |
Number |
A critical event is one that an application or a component cannot automatically recover from.
A very low value (zero) indicates that the system is in a healthy state and all applications are running smoothly without any potential problems.
An increasing trend or high value indicates the existence of fatal/irrepairable problems in one or more applications.
The detailed diagnosis of this measure describes all the critical events that were generated during the last measurement period. |
| Verbose_count |
Indicates the number of verbose events that were generated when the test was last executed. |
Number |
Verbose logging provides more details in the log entry, which will enable you to troubleshoot issues better.
The detailed diagnosis of this measure describes all the verbose events that were generated during the last measurement period. |
|