Provides specific information about the virus/malware detections on your network, such as the managed product that detected the viruses/malware, the name of the virus/malware, and the infected endpoint
|
Data |
Description |
|---|---|
|
Received |
The date and time Apex Central received the data from the managed product |
|
Generated |
The date and time the managed product generated the data |
|
Product Entity/Endpoint |
Depending on the related source:
|
|
Product |
The name of the managed product or service Example: Apex One, ScanMail for Microsoft Exchange |
|
Product/Endpoint IP |
Depending on the related source:
|
|
Product/Endpoint MAC |
Depending on the related source:
|
|
Managing Server Entity |
The display name of the managed product server in Apex Central to which the endpoint reports |
|
Domain |
The domain of the managed product server to which the endpoint reports |
|
Virus/Malware |
The name of the security threat |
|
Endpoint Infection Channel |
The channel that the threat originated from |
Endpoint |
The name or IP address of the endpoint |
|
Source Host |
The IP address or name of the endpoint from which the security threat originated |
|
User |
The logged on user name at the time of the event |
|
Result |
The result of the action taken by the managed product |
|
Action |
The action taken by the managed product |
|
Detections |
The total number of detections Example: Apex One detects 10 virus instances of the same virus on one computer. Detections = 10 |
|
Entry Type |
The entry point of the security threat |
|
Detailed Information |
A link that displays additional information about the specific detection |
|
Apex One Domain Hierarchy |
The agent tree domain or subdomain to which the Security Agent belongs |
|
Department |
The Active Directory department to which the endpoint belongs |
|
Operating System |
The operating system on the endpoint |
|
Pattern/Rule |
The pattern or rule that triggered the detection |
|
Pattern/Rule Version |
The version of the pattern or rule that triggered the detection |
|
Cloud Service Vendor |
The name of the cloud service vendor |
|
File |
The name of the file object or the program that executed the process |
|
File Path |
The path of the file object or the path of the program that executed the process |