From f498ca39b7602921d31ca37308c66b4eb95fb65f Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Sat, 28 Sep 2019 09:34:03 +0500
Subject: [PATCH] Update
 windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md

Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/custom-detection-rules.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
index 60f414ff15..5b4ec78036 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
@@ -41,7 +41,7 @@ In Microsoft Defender Security Center, go to **Advanced hunting** and select an
 | where EventTime > ago(7d)
 | where ActionType == "AntivirusDetection"
 | summarize (EventTime, ReportId)=arg_max(EventTime, ReportId), count() by MachineId
-This will fetch latest EventTime and ReportId of the latest event among multiple events returned by the query and adds the count by MachineId.
+This will fetch the EventTime and ReportId of the latest event from multiple events returned by the query and adds the count by MachineId.
 
 ### 2. Create new rule and provide alert details.