deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-20 12:53:38 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

add event viewer gif and instructions for manually viewing events

Browse Source
This commit is contained in:
Iaan D'Souza-Wiltshire
2017-09-28 16:19:47 -07:00
parent 614ed27747
commit 459586af69
10 changed files with 91 additions and 67 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
windows/threat-protection/windows-defender-exploit-guard/evaluate-exploit-protection.md
View File

@ -58,7 +58,7 @@ First, enable the mitigation using PowerShell, and then confirm that it has been
2. Enter the following cmdlet:
```PowerShell
Set<EFBFBD>ProcessMitigation <EFBFBD>Name iexplore.exe <EFBFBD>Enable DisallowChildProcessCreation
Set-ProcessMitigation -Name iexplore.exe -Enable DisallowChildProcessCreation
```
1. Open the Windows Defender Security Center by clicking the shield icon in the task bar or searching the start menu for **Defender**.
@ -92,7 +92,7 @@ Lastly, we can disable the mitigation so that Internet Explorer works properly a
## Review Exploit Protection events in Windows Event Viewer
You can now review the events that Exploit Protection sent to the Windows Event log to confirm what happened:
You can now review the events that Exploit Protection sent to the Windows Event log to confirm what happened. You can use the custom view below or [locate them manually](event-views-exploit-guard.md#list-of-all-windows-defender-exploit-guard-events).
1. Download the [Exploit Guard Evaluation Package](https://aka.ms/mp7z2w) and extract the file *ep-events.xml* to an easily accessible location on the machine.