Views:

Procedure

  1. Go to one of the following:
    • LogsAgentsSecurity Risks
    • AgentsAgent Management
  2. In the agent tree, click the root domain icon (icon-root.jpg) to include all agents or select specific domains or agents.
  3. Go to the Predictive Machine Learning Log Criteria screen:
    • From the Security Risk Logs screen, click View LogsPredictive Machine Learning Logs.
    • From the Agent Management screen, click LogsPredictive Machine Learning Logs.
  4. Specify the log criteria and then click Display Logs.
  5. View logs. Logs contain the following information:
    Item
    Description
    Date/Time
    The time the detection occurred
    Endpoint
    The endpoint on which the detection occurred
    IP Address
    The IP address and port number of the source endpoint
    Security Threat
    The name of the security threat determined by the Predictive Machine Learning engine
    Result
    The result of the action taken
    Infected File/Object
    The name of the file object or the program that executed the process
    Type
    The type of object that triggered the detection (File or Process)
    File Path
    The path of the file object or the path of the program that executed the process
    Infection Channel
    The channel the threat originated from
    Details
    A link that displays the detailed analysis for the specific detection
    For more information, see Predictive Machine Learning Log Details.
  6. To save logs to a comma-separated value (CSV) file, click Export All to CSV. Open the file or save it to a specific location.
Related information