Detailed Correlation Information

Provides specific information about detailed threat analyses and remediation recommendations.

Table 1. Detailed Correlation Information Data View

Data

Description

Generated

Displays the time that the managed product generates data.

IP Address

Displays the IP address of the endpoint the suspicious threat affects.

Group

Displays the IP address group.

Protocol

Displays the broad protocol group from which a managed product detects the suspicious threat.

Threat Type

Displays the specific type of security threat managed products detect.

Example: virus, spyware/grayware, fraud

Severity

Displays the host severity.

Detections

Displays the total number of policy/rule violations managed products detect.

Example: A managed product detects 10 violation instances of the same type on one computer.

Detections = 10

Details

Displays remarks or comments related to the detection.

MAC Address

Displays the MAC address of the endpoint the suspicious threat affects.

Host Name

Displays the host name of the endpoint the suspicious threat affects.

Correlation Rule ID

Displays the rule ID.