Provides specific information about endpoints with virus/malware detections, such as the managed product that detected the viruses/malware, the type of scan that detected the virus/malware, and the file path on the endpoint to the detected viruses/malware
Data |
Description |
---|---|
Received |
The date and time Apex Central received the data from the managed product |
Generated |
The date and time the managed product generated the data |
Product Entity/Endpoint |
Depending on the related source:
|
Product/Endpoint IP |
Depending on the related source:
|
Product |
The name of the managed product or service Example: Apex One, ScanMail for Microsoft Exchange |
Managing Server Entity |
The display name of the managed product server in Apex Central to which the endpoint reports |
Virus/Malware |
The name of the security threat Example: NIMDA, BLASTER, I_LOVE_YOU.EXE |
Endpoint |
The name of the endpoint |
User |
The logged on user name at the time of the event |
Scan Type |
The type of scan that reported the event (for example, Real-time Scan, Scheduled Scan, Manual Scan) |
File |
The name of the file object that the threat accessed |
File Path |
The path of the file object that the threat accessed |
File in Compressed File |
The name of the affected file object in the compressed archive |
Result |
The result of the action taken by the managed product Example: successful, further action required |
Action |
The action taken by the managed product Example: File cleaned, File quarantined, File deleted |
Detections |
The total number of detections Example: Apex One detects 10 virus instances of the same virus on one computer. Detections = 10 |
Cloud Service Vendor |
The name of the cloud service vendor |