Views:
Important
Important
For events with a configurable threshold, you must configure the threshold value separately for each customer on the Worry-Free Business Security Services console.

Action Required

Event
Details
THREAT EVENTS
Antivirus - Threats unresolved
i-status-red-wfrm.png: Unsuccessful actions indicate that a virus or malware has successfully circumvented antivirus defenses and has infected the endpoint.
Note
Note
Remote Manager assumes that computers with an unsuccessfully cleaned, quarantined, or deleted virus or malware are infected.
Antivirus - Real-time Scan disabled
i-status-red-wfrm.png: Security Agents with Real-time Scan disabled cannot protect endpoints from virus/malware in newly created or executed files
Antispyware - Threats unresolved
i-status-red-wfrm.png: Displays the number of endpoints infected with spyware/grayware that the managed product was unable to completely clean and may require the customer to perform additional action
SYSTEM EVENTS
Update - Outdated agents
i-status-red-wfrm.png: Security Agents with outdated patterns after two hours of antivirus pattern release exceeded threshold
Smart Protection Services - Agents disconnected
i-status-red-wfrm.png: Security Agents cannot connect to the Smart Protection Network
Offline - Security Agent offline
i-status-red-wfrm.png: Security Agents that did not report to the server for more than the specified number of days
Scan - Scan not completed
i-status-red-wfrm.png: Security Agents that did not complete a Scheduled Scan or a Manual Scan (Normal or Aggressive) for more than the specified number of days

Warning

Event
Details
THREAT EVENTS
Antivirus - Virus detections exceed
i-status-yellow-wfrm.png: The detected virus/malware count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Antispyware - Spyware/Grayware detections exceed
i-status-yellow-wfrm.png: The detected spyware/grayware count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Web Reputation - URL violations exceed
i-status-yellow-wfrm.png: The detected Web Reputation violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)
URL Filtering - URL violations exceed
i-status-yellow-wfrm.png: The detected URL Filtering violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Predictive Machine Learning - Unknown threat detections exceed
i-status-yellow-wfrm.png: The detected unknown threat count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Behavior Monitoring - Behavior Monitoring violations exceed
i-status-yellow-wfrm.png: The detected Behavior Monitoring violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Network virus - Network virus detections exceed
i-status-yellow-wfrm.png: The detected network virus count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Device Control - Device Control violations exceed
i-status-yellow-wfrm.png: The detected Device Control violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Data Loss Prevention - Data Loss Prevention incidents exceed
i-status-yellow-wfrm.png: The detected Data Loss Prevention incident count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Application Control - Application Control violations exceed
i-status-yellow-wfrm.png: The detected Application Control violation count exceeds the configured threshold within 1 hour (as configured on the managed product console)
Suspicious Objects - Suspicious Object detections exceed threshold
i-status-yellow-wfrm.png: Suspicious Object detections exceed the specified number within the specified time period.