Event ID 5008 — Microsoft Antimalware Engine Update
Applies To: Windows Server 2008 R2
.jpg)
The Microsoft Antimalware Engine version is updated frequently to detect and remove the latest spyware or other potentially unwanted software. The Microsoft Antimalware Engine must be started and functioning correctly for a scan to successfully complete.
Event Details
| Product: | Windows Operating System |
| ID: | 5008 |
| Source: | Microsoft-Windows-Windows Defender |
| Version: | 6.1 |
| Symbolic Name: | MALWAREPROTECTION_ENGINE_FAILURE |
| Message: | %1 engine has been terminated due to an unexpected error. %tFailure Type:%b%5 %tException code:%b%6 %tResource:%b%3 |
Resolve
Restart Windows Defender
The scanning engine must be available when Windows Defender starts. Close Windows Defender and then open it again. If the scanning engine is still not available, restart the computer.
Verify
Windows Defender uses the scanning engine to run Windows Defender scans. To verify that the scanning engine updated successfully and is working correctly, you should run a Windows Defender quick scan.
To perform this procedure, you must be a member of the Users group, or you must have been delegated the appropriate authority.
To verify that the scanning engine updated successfully and is working correctly:
- Click Start, point to All Programs, and then click Windows Defender.
- Click the down arrow next to Scan, and then click Quick Scan.
- If the quick scan completes successfully, the scanning engine was updated successfully and is working correctly.