Viewing Predictive Machine Learning Logs
- Go to or .
- In the agent tree, click the root domain icon () to include all agents or select specific domains or agents.
- Click or .
- Specify the log criteria and then click Display Logs.
View logs. Logs contain the following information:
The time the detection occurred
The endpoint on which the detection occurred
The IP address and port number of the source endpoint
The name of the security threat determined by the Predictive Machine Learning engine
The result of the action taken
The name of the file object or the program that executed the process
The type of object that triggered the detection ("File" or "Process")
The path of the file object or the path of the program that executed the process
The channel the threat originated from
A link that displays the detailed analysis for the specific detection
For more information, see Predictive Machine Learning Log Details.
- To save logs to a comma-separated value (CSV) file, click Export All to CSV. Open the file or save it to a specific location.