This monitor tracks the health of the antimalware client and service.
It is recommended that the antimalware service is running at all times.
The monitor reports a Critical state when the antimalware service in the client machine is not running or not responsive, or when the antimalware engine is not working properly.
There are cases in which malware activity disables the antimalware service. It is recommended that you investigate the root cause of the failure.
Attempt to restart the antimalware engine on the computer. After the antimalware service is running, it is recommended to rescan the computer for threats.
| Target | Microsoft.FEP.SecurityRootCause.AntimalwareEngine |
| Parent Monitor | System.Health.SecurityState |
| Algorithm | WorstOf |
| Source Monitor | Microsoft.FEP.ProtectedServer.AMStatus.Monitor |
| Relationship | Microsoft.FEP.AntimalwareEngineReferencesProtectedServer |
| Category | Custom |
| Enabled | True |
| Alert Generate | False |
| Alert Auto Resolve | False |
| Remotable | True |
| Accessibility | Public |
Home
ENU <DependencyMonitor ID="Microsoft.FEP.SecurityRootCause.AntimalwareEngine.AMStatus.Monitor" Accessibility="Public" Enabled="true" Target="FEPLibrary!Microsoft.FEP.SecurityRootCause.AntimalwareEngine" ParentMonitorID="Health!System.Health.SecurityState" Remotable="true" Priority="Normal" RelationshipType="FEPLibrary!Microsoft.FEP.AntimalwareEngineReferencesProtectedServer" MemberMonitor="Microsoft.FEP.ProtectedServer.AMStatus.Monitor">
<Category>Custom</Category>
<Algorithm>WorstOf</Algorithm>
<MemberUnAvailable>Error</MemberUnAvailable>
</DependencyMonitor>