I had opened a ticket with support but by the time they called me back, suddenly our computers started reporting scans after nothing for over a month. We went from ~400 clients completing scans in the last 7 days to nearly 2300.
I did change one option, our quick scans are no longer set to scan when idle. This may be something that impacts Windows 10 more than older OS. We have moved over to primarily Windows 10 in the last year. Maybe Windows 10 doesn't report idle times correctly to software or something. Currently 1709 migrating to 1809. One computer I checked had no scanned since September despite being plugged in a not used but once in a great while.
In our environment, i haves this log:
2020-03-08 20:00:00.656 masvc(2908.2936) scheduler.Info: Scheduler: Invoking task [On-Demand Scan - Full Scan]...
2020-03-08 20:00:00.659 masvc(2908.2936) scheduler.Info: The task On-Demand Scan - Full Scan becomes active
2020-03-08 20:00:43.639 masvc(2908.2936) scheduler.Info: The task On-Demand Scan - Full Scan is successful
But, i don't have the any ID envents about the Scan.
In the EPO server settings, I have this events checked.
Included this-> 34852; 34853; 38454; 38455; 34900
Look in the log file OnDemand_Activity, is empty.
Some more information, I used the versions:
Endpoint Plataform 10.6.1.1724
Endpoint Threat Prevention: 10.6.1.1777
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.
Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership: