Merged PR 10649: update advanced hunting example image

update advanced hunting example image
2025-06-26 15:53:40 +00:00 · 2018-08-15 18:05:49 +00:00
parent 71d0cd2f02 0e96cb1295
commit 387d356425
2 changed files with 3 additions and 2 deletions
--- a/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection.md
+++ b/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection.md
@ -10,7 +10,7 @@ ms.pagetype: security
 ms.author: macapara
 author: mjcaparas
 ms.localizationpriority: medium
-ms.date: 06/13/2018
+ms.date: 08/15/2018
 ---

 # Query data using Advanced hunting in Windows Defender ATP
@ -51,7 +51,8 @@ First, we define a time filter to review only records from the previous seven da

 We then add a filter on the _FileName_  to contain only instances of _powershell.exe_.

-Afterwards, we add a filter on the _ProcessCommandLine_
+Afterwards, we add a filter on the _ProcessCommandLine_. 
+
 Finally, we  project only the columns we're interested in exploring and limit the results to 100 and click **Run query**.

 You have the option of expanding the screen view so you can focus on your hunting query and related results.
--- a/windows/security/threat-protection/windows-defender-atp/images/advanced-hunting-query-example.PNG
+++ b/windows/security/threat-protection/windows-defender-atp/images/advanced-hunting-query-example.PNG