[APC][ALL] Describe 'Collect raw data from an agent' function
1. Summary
Enable 'Collect raw data from an agent' allows you to view detailed data about agent Malware Detection information.
2. Settings
[Management] > [Domain] > [Domain Settings] > [Option] > [Log Shipping Policy] > [Collect raw data from an agent] (Default : OFF]
3. Detailed Description
<Collected Items in the Malware Detection Log>
1) Time : Server time (time when the event occurred) when the event is recorded on the server.
2) Agent ID: Unique ID given to the agent
3) IP address: IP address of the agent computer
4) Computer name: Computer name of agent computer
5) Login User: Windows account logged in to the agent computer
6) Group Path : Path to the group to which the agent belongs
7) Virus name: Name of infected virus
8) Status: The processing status of infected viruses
9) File path
-> Mark when enabling agent raw data collection.
11) Hash value
-> Mark when enabling agent raw data collection use (4.6.9 or later).
11) Owner
-> Mark when enabling agent raw data collection.
12) Approaches
-> Mark when enabling agent raw data collection.
13) Infected person
-> Mark when enabling agent raw data collection.
14) Inspection method: Method for diagnosing viruses
15) Number of times: the number of times the virus was detected.
<'Collect raw data from an agent' OFF>
<'Collect raw data from an agent' ON>
4. Notes
The use of 'Collect raw data from an agent' varies from DB table to which malware infection information is stored.
Therefore, changing the use of 'Collect raw data from an agent' from unused to enabled changes the DB table referenced by the Policy Admin, so previously stored infection information is not verified.