Ad slot: top
GoSplunk SPL + dashboard repository
Log in Register

SPL

Microsoft Antimalware Virus Remediation Details

WinEventLog:System

Description

Submitted by SplunkNinja

This query will return detailed results on malware/virus remediation.
1 0 
sourcetype="WinEventLog:System" SourceName="Microsoft Antimalware" EventCode=1117 |eval Date=strftime(_time, "%Y/%m/%d")| stats count by host, Category, Name, Severity, Date, Action_Status

Comments

0 total

Be the first to comment on this SPL.

Leave a comment

You must log in to post a comment.

Ad slot: bottom