Provides specific information about the virus/malware instances found in HTTP or FTP traffic, such as the managed product that detected the viruses/malware, the direction of traffic, and the web browser or FTP client that downloaded the virus/malware
|
Data |
Description |
|---|---|
|
Received |
The date and time Apex Central received the data from the managed product |
|
Generated |
The date and time the managed product generated the data |
|
Product Entity/Endpoint |
Depending on the related source:
|
|
Product |
The name of the managed product or service Example: Apex One, ScanMail for Microsoft Exchange |
Virus/Malware |
The name of the security threat Example: NIMDA, BLASTER, I_LOVE_YOU.EXE |
Endpoint |
The IP address or name of the endpoint that the threat accessed |
Source URL |
The URL of the web/FTP site from which the security threat originated |
User |
The logged on user name at the time of the event |
Traffic/Connection |
The direction of the transmission |
Browser/FTP Client |
The web browser or FTP client that the threat accessed |
Result |
The result of the action taken by the managed product |
Action |
The action taken by the managed product |
|
Detections |
The total number of detections Example: Apex One detects 10 virus instances of the same virus on one computer. Detections = 10 |
|
Cloud Service Vendor |
The name of the cloud service vendor |