Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Content Layer
id1681146057
Content Column
id1681146068
Content Block
background-color$lightGrayColor
id131958011

Topics Discussed

Table of Contents
maxLevel3
minLevel3

Content Block
id1681146058
Note

To fully use this screen, you must add the following permission permissions to your account:

  • Read AVAM
  • Writer Trend Manual Scan
  • Read Trend Manual Scan


Anchor
View malware events
View malware events
View Malware Events


The Total Malware Events table displays detected malware events from the past 30 days. You can click the widget to filter the data in the table below the widgets.

The Malware Protection subagent detects the following malware types: 

  • TROJAN (TROJ)
  • WORM
  • EICAR (VIRUS)
  • VIRTUS
  • RANSOM (RANSOMWARE)
  • SPYWARE
  • ADWARE
  • COINMINER (COIN_MINER)
  1. In the Armor Management Portal (AMP), in the left-side navigation, click Security.
  2. Click Malware Protection.
  3. Review the widgets for malware events.

    Widget

    Description

    Clean

    This widget indicates that the infected file was cleaned.

    Pass

    This widget indicates that no action was taken on the infected file.

    Quarantine

    This widget indicates that the file was renamed, and then moved to a temporary location.

    Delete

    This widget indicates that an infected file was deleted.

    DenyAccess

    This widget indicates that an infected file has restrictive access. As a result, no action was taken.

    Other

    This widget indicates all other possible actions performed on the infected file, such as renaming the file.

  4. (Optional) Click a widget to filter the table.

    Column

    Description

    NameThis column displays the name of the virtual machine or instance.
    Malware NameThis column displays the name of the malware detected in your virtual machine or instance.
    File NameThis column displays the location of the malware detected in your virtual machine or instance.
    Action Taken

    This column displays the action that took place in the file where the malware was detected:

    • Cleaned
    • Passed
    • Quarantined
    • Deleted
    • Denied Access
    • Other
    DateThis column displays the date when the malware was detected.


Anchor
View Anti-Malware details
View Anti-Malware details
View Detailed Malware Protection Data


The Malware Protection details screen displays the malware that has been detected in your virtual machine or instance. This screen only shows data for the last 90 days. 

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Security

  2. Click Malware Protection.

  3. Locate and select the desired virtual machine or instance. 

Column

Description

Malware Name

The name of the malware detected in your virtual machine or instance.
File NameThe location of the malware detected in your virtual machine or instance.
Action Taken

The action taken against the malware:

  • Quarantine
  • Clean
  • Rename
  • Pass
  • Deny Access
DateThe date when the malware was detected.


Anchor
Export Anti-Malware data
Export Anti-Malware data
Export Malware Protection Data


Excerpt Include
ESLP:Export Malware Protection data (snippet)
ESLP:Export Malware Protection data (snippet)
nopaneltrue


Info

Anchor
Troubleshooting
Troubleshooting
Troubleshooting

Excerpt Include
ESLP:Troubleshoot Malware Protection screen (snippet)
ESLP:Troubleshoot Malware Protection screen (snippet)
nopaneltrue


Related Documentation

Content by Label
showLabelsfalse
max5
showSpacefalse
sorttitle
cqllabel in ("malware_protection","malware_scans","service_health_data","patching")




Was this helpful?
Rate Macro

Scrolltotop