diff --git a/windows/security/threat-protection/auditing/event-4957.md b/windows/security/threat-protection/auditing/event-4957.md index 0f2cc44b6b..d7ab9532ec 100644 --- a/windows/security/threat-protection/auditing/event-4957.md +++ b/windows/security/threat-protection/auditing/event-4957.md @@ -14,7 +14,7 @@ ms.author: dansimp ms.technology: windows-sec --- -# 4957(F): Windows Firewall didn't apply the following rule. +# 4957(F): Windows Firewall did not apply the following rule. Event 4957 illustration @@ -83,7 +83,7 @@ This event generates when Windows Firewall starts or apply new rule, and the rul ## Security Monitoring Recommendations -For 4957(F): Windows Firewall didn't apply the following rule. +For 4957(F): Windows Firewall did not apply the following rule. - This event can be a sign of software issues, Windows Firewall registry errors or corruption, or Group Policy setting misconfigurations. We recommend monitoring this event and investigating the reason for the condition. Typically this event indicates configuration issues, not security issues. diff --git a/windows/security/threat-protection/auditing/event-4958.md b/windows/security/threat-protection/auditing/event-4958.md index 5e6f8b57f9..e471571683 100644 --- a/windows/security/threat-protection/auditing/event-4958.md +++ b/windows/security/threat-protection/auditing/event-4958.md @@ -14,7 +14,7 @@ ms.author: dansimp ms.technology: windows-sec --- -# 4958(F): Windows Firewall didn't apply the following rule because the rule referred to items not configured on this computer. +# 4958(F): Windows Firewall did not apply the following rule because the rule referred to items not configured on this computer. Windows Firewall with Advanced Security processed a rule that contains parameters that can't be resolved on the local computer. The rule is therefore not enforceable on the computer and so is excluded from the runtime state of the firewall. This exclusion isn't necessarily an error. Examine the rule for applicability on the computers to which it was applied. diff --git a/windows/security/threat-protection/auditing/event-5038.md b/windows/security/threat-protection/auditing/event-5038.md index 44d9fafb84..147a3a02be 100644 --- a/windows/security/threat-protection/auditing/event-5038.md +++ b/windows/security/threat-protection/auditing/event-5038.md @@ -14,7 +14,7 @@ ms.author: dansimp ms.technology: windows-sec --- -# 5038(F): Code integrity determined that the image hash of a file isn't valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error. +# 5038(F): Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.