From 005a3ae267b3e73824e41fed010e71df4b8f27cb Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Wed, 12 Aug 2020 09:59:29 +0300 Subject: [PATCH 1/4] Update troubleshoot-collect-support-log.md A few minor text edits --- .../troubleshoot-collect-support-log.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md index 3966d17196..d538c8896c 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md +++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md @@ -23,7 +23,7 @@ ms.topic: troubleshooting **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -When contacting support, you will often be asked to provide the output package of the Microsoft Defender ATP Client Analyzer tool. +When contacting support, you may be asked to provide the output package of the Microsoft Defender ATP Client Analyzer tool. This topic provides instructions on how to run the tool via Live Response. @@ -39,7 +39,7 @@ This topic provides instructions on how to run the tool via Live Response. ![Image of choose file button](images/choose-file.png) -5. Select the downloaded file named MDATPLiveAnalyzer.ps1 and then select on **Confirm** +5. Select the downloaded file named MDATPLiveAnalyzer.ps1 and then click on **Confirm** ![Image of choose file button](images/analyzer-file.png) @@ -63,4 +63,4 @@ This topic provides instructions on how to run the tool via Live Response. >Run MDATPLiveAnalyzer.ps1 >GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDATPClientAnalyzerResult.zip" -auto >``` -> - For more information on gathering data locally on a machine in case the machine isn't communicating with Microsoft Defender ATP cloud services, or does not appear in MDATP portal as expected, see [Verify client connectivity to Microsoft Defender ATP service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls). \ No newline at end of file +> - For more information on gathering data locally on a machine in case the machine isn't communicating with Microsoft Defender ATP cloud services, or does not appear in MDATP portal as expected, see [Verify client connectivity to Microsoft Defender ATP service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls). From c785872988fd1ae06e1e79f42ab5249203a628e9 Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Wed, 12 Aug 2020 10:05:33 +0300 Subject: [PATCH 2/4] Update troubleshoot-collect-support-log.md Also added missing command to the instructions --- .../microsoft-defender-atp/troubleshoot-collect-support-log.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md index d538c8896c..39b935ed42 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md +++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md @@ -45,9 +45,10 @@ This topic provides instructions on how to run the tool via Live Response. ![Image of choose file button](images/analyzer-file.png) -6. While still in the LiveResponse session, use the commands below to run the analyzer and collect the result file: +6. While still in the LiveResponse session, use the commands below to upload, run the analyzer and collect the result file: ``` + PutFile MDATPClientAnalyzerPreview.zip -overwrite Run MDATPLiveAnalyzer.ps1 GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDATPClientAnalyzerResult.zip" -auto ``` From d73986ffd43c7276b15bec1ea581725cc1e88013 Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Wed, 12 Aug 2020 10:07:48 +0300 Subject: [PATCH 3/4] Update troubleshoot-collect-support-log.md --- .../microsoft-defender-atp/troubleshoot-collect-support-log.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md index 39b935ed42..aead6da6fc 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md +++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md @@ -45,10 +45,9 @@ This topic provides instructions on how to run the tool via Live Response. ![Image of choose file button](images/analyzer-file.png) -6. While still in the LiveResponse session, use the commands below to upload, run the analyzer and collect the result file: +6. While still in the LiveResponse session, use the commands below run the analyzer and collect the result file: ``` - PutFile MDATPClientAnalyzerPreview.zip -overwrite Run MDATPLiveAnalyzer.ps1 GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDATPClientAnalyzerResult.zip" -auto ``` From 0fcbe6141bd3d83803c1e5252f7ede488925d3e1 Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Wed, 12 Aug 2020 10:08:13 +0300 Subject: [PATCH 4/4] Update troubleshoot-collect-support-log.md --- .../microsoft-defender-atp/troubleshoot-collect-support-log.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md index aead6da6fc..d538c8896c 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md +++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md @@ -45,7 +45,7 @@ This topic provides instructions on how to run the tool via Live Response. ![Image of choose file button](images/analyzer-file.png) -6. While still in the LiveResponse session, use the commands below run the analyzer and collect the result file: +6. While still in the LiveResponse session, use the commands below to run the analyzer and collect the result file: ``` Run MDATPLiveAnalyzer.ps1