I need a solution
Hi everyone,
I'm using Application and device control feature to detect any unknown malware coming in the registry.
Unfortunately, details about process and registry path aren't very detailed: just the path ! (no key name, no value...)
And the caller process name isn't enough to know if it's a malware or not. We need to have the full command line ! (ie: VBS script are just showing wscript.exe...).
Do you think it mights be possible to have more accurate log in application and device control ?