Views:

Provides specific information about endpoints with virus/malware detections, such as the managed product that detected the viruses/malware, the type of scan that detected the virus/malware, and the file path on the endpoint to the detected viruses/malware

Table 1. Endpoint Virus/Malware Information Data View

Data

Description

Received

The date and time Apex Central received the data from the managed product

Generated

The date and time the managed product generated the data

Product Entity/Endpoint

Depending on the related source:

  • The display name of the managed product server in Apex Central

  • The name or IP address of the Security Agent endpoint

Product/Endpoint IP

Depending on the related source:

  • The IP address of the managed product server

  • The IP address of the Security Agent endpoint

Product

The name of the managed product or service

Example: Apex One, ScanMail for Microsoft Exchange

Managing Server Entity

The display name of the managed product server in Apex Central to which the endpoint reports

Virus/Malware

The name of the security threat

Example: NIMDA, BLASTER, I_LOVE_YOU.EXE

Endpoint

The name of the endpoint

User

The logged on user name at the time of the event

Scan Type

The type of scan that reported the event (for example, Real-time Scan, Scheduled Scan, Manual Scan)

File

The name of the file object that the threat accessed

File Path

The path of the file object that the threat accessed

File in Compressed File

The name of the affected file object in the compressed archive

Result

The result of the action taken by the managed product

Example: successful, further action required

Action

The action taken by the managed product

Example: File cleaned, File quarantined, File deleted

Detections

The total number of detections

Example: Apex One detects 10 virus instances of the same virus on one computer.

Detections = 10

Cloud Service Vendor

The name of the cloud service vendor