Virtual Analyzer Suspicious Objects

The Virtual Analyzer Suspicious Objects screen (Detections → Virtual Analyzer Suspicious Objects) displays a list of suspicious files, IP addresses, URLs, and domains identified by the Virtual Analyzer or synchronized from external sources.

The following table outlines actions available in the Virtual Analyzer Suspicious Objects screen.

Action

Description

Filter object data

Use the search field or object type list to filter objects.

Tip

The search field is not case-sensitive and allows partial matches.

View number of detections during a time period

Specify a time period to see the number of detections for all objects during the selected period.

Important

The table contains all Virtual Analyzer suspicious objects regardless of the selected period.
If a Virtual Analyzer suspicious object was not detected during the selected time period, the total detections displayed is "0".

Manage Virtual Analyzer suspicious objects

Manage one or multiple Virtual Analyzer suspicious objects. Options include:

Move object to deny list: Select one or more objects, then click Move to Deny List to move the selected objects to the deny list.
Move object to allow list: Select one or more objects, then click Move to Allow List to move the selected objects to the allow list.
Delete object: Select one or more objects, then click Delete to delete the selected objects.

View details about detections

Click a number under the Detections column to drill-down to the All Detections screen with filters applied.

Sort list

Click any of the column titles to sort the Virtual Analyzer suspicious objects list.

Note

Only one column can be sorted at a time.

$('#title').html($('meta[name=description]').attr('content'));