Message Image

Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

SEP risk information

Migration UserNov 19, 2014 04:20 AM

Hi All, Inside the Detailed Event Information (risk log extraction -> detail), what is the difference ...

Mick2009Nov 19, 2014 04:35 AM

Hi VoCa, "Download site" is where the file came from- a URL, for instance, if Internet Explorere ...

ℬrίαηNov 19, 2014 06:14 AM

This should be self-explanatory SIte is where it came from, downloaded or created by is the process ...

1. SEP risk information

0 Recommend
Migration User
Posted Nov 19, 2014 04:20 AM

Reply Reply Privately
Hi All,

Inside the Detailed Event Information (risk log extraction -> detail), what is the difference between the informations "Download site" and "Downloaded or created by"? What describe these fields?

Thanks
2. RE: SEP risk information

0 Recommend
Mick2009
Posted Nov 19, 2014 04:35 AM

Reply Reply Privately
Hi VoCa,

"Download site" is where the file came from- a URL, for instance, if Internet Explorere downlaoded the threat in a drive-by download.

"Downloaded or created by" is the application/process which intiiated the download.

Hope this helps!

With thanks and best regards,

Mick
3. RE: SEP risk information

0 Recommend
ℬrίαη
Posted Nov 19, 2014 06:14 AM

Reply Reply Privately
This should be self-explanatory

SIte is where it came from, downloaded or created by is the process that downloaded it.

Copyright 2019. All rights reserved.

Powered by Higher Logic