Worry-Free Business Security Events

Table 1. Threat Events

Event Category

Details

Event Status

Antispam

Spam detections in total messages received exceed

: The ratio of detected spam messages in total messages received exceeds the configured threshold within 1 hour (as configured on the managed product console)

Antispyware

Detections requiring device restart

: Displays the number of endpoints infected with spyware/grayware that the managed product was unable to completely clean and require the customer to restart the endpoint to complete the process

Spyware/Grayware detections exceed

: The detected spyware/grayware count exceeds the configured threshold within 1 hour (as configured on the managed product console)

Antivirus

Real-time Scan disabled on endpoints

: Security Agents with Real-time Scan disabled cannot protect endpoints from virus/malware in newly created or executed files

Real-time Scan disabled on Exchange server(s)

: Exchange servers with Real-time Scan disabled allow all attachments in email messages to pass, leaving the customer network susceptible to mass-mailing worms.

Threats unresolved

: Unsuccessful actions indicate that a virus or malware has successfully circumvented antivirus defenses and has infected the endpoint.

Note:

Remote Manager assumes that computers with an unsuccessfully cleaned, quarantined, or deleted virus or malware are infected.

Virus detections on endpoints exceed

: The detected virus/malware count on endpoints exceeds the configured threshold within 1 hour (as configured on the managed product console)

Virus detections on Exchange servers exceed

: The detected virus/malware count on Exchange servers exceeds the configured threshold within 1 hour (as configured on the managed product console)

Behavior Monitoring

Behavior Monitoring violations exceed

: The detected Behavior Monitoring violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)

Device Control

Device Control violations exceed

: The detected Device Control violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)

Network virus

Network virus detections exceed

: The detected network virus count exceeds the configured threshold within 1 hour (as configured on the managed product console)

Outbreak Defense

Outbreak Defense enabled

: Outbreak Defense enabled on desktop/server platforms in response to abnormal threat activity

Outbreak Defense disabled

: Outbreak Defense disabled on desktop/server platforms and normal network conditions restored

Predictive Machine Learning

Unknown threat detections exceed

: The detected unknown threat count exceeds the configured threshold within 1 hour (as configured on the managed product console)

URL Filtering

URL violations exceed

: The detected URL Filtering violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)

Web Reputation

URL violations exceed

: The detected Web Reputation violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)

Table 2. System Events

Event Category

Details

Event Status

Resource shortage

Remaining disk space below

: The amount of remaining disk space on the server has dropped below the configured alert threshold.

Smart Protection Services

Service unavailable

: The Worry-Free Business Security console cannot connect to the Smart Scan Server

Update

Outdated agents

: Over <number> of the Security Agents did not receive the latest antivirus patterns in the last hour

Outdated Exchange servers

: Outdated components detected on Exchange server(s)