Network Virus/Malware Information

Provides specific information about the virus/malware instances found in network traffic. Example: the managed product that detects the viruses/malware, the protocol the virus/malware uses to enter your network, specific information about the source and destination of the virus/malware

Table 1. Network Virus/Malware Information Data View

Data

Description

Received

Displays the time that Control Manager receives data from the managed product.

Generated

Displays the time that the managed product generates data.

Product Entity/Endpoint

This data column displays one of the following:

  • The entity display name for a managed product. Control Manager identifies managed products using the managed product's entity display name.

  • The IP address or host name of a computer with a client (for example OfficeScan client) installed.

Product

Displays the name of the managed product.

Example: OfficeScan, ScanMail for Microsoft Exchange

Virus/Malware

Displays the name of viruses/malware managed products detect.

Example: NIMDA, BLASTER, I_LOVE_YOU.EXE

Endpoint

Displays the IP address/ host name of the computer affected by viruses/malware.

Source Host

Displays the IP address or host name of the computer where viruses/malware originates.

User

Displays the user name logged on to the endpoint computer when a managed product detects viruses/malware.

Traffic/Connection

Displays the direction of virus/malware entry.

Protocol

Displays the protocol that the virus/malware uses to enter the network.

Example: HTTP, SMTP, FTP

Endpoint Computer

Displays the computer name of the computer affected by viruses/malware.

Endpoint Port

Displays the port number of the computer affected by viruses/malware.

Endpoint MAC

Displays the MAC address of the computer affected by viruses/malware.

Source Computer

Displays the computer name of the computer where viruses/malware originates.

Source Port

Displays the port number of the computer where viruses/malware originates.

Source MAC

Displays the MAC address of the computer where viruses/malware originates.

File

Displays the name of the file managed products detect affected by viruses/malware.

Result

Displays the results of the action managed products take against viruses/malware. Example: successful, further action required

Action

Displays the type of action managed products take against viruses/malware. Example: File cleaned, File quarantined, File deleted

Detections

Displays the total number of viruses/malware managed products detect.

Example: OfficeScan detects 10 virus instances of the same virus on one computer.

Detections = 10