Hello,
I have a question regarding the meaning of the category of some Endpoint Security events log:
what do the following categories mean?
av.detect -->Could it mean that the antivirus has detected malware?
av.reputation-->?
av.pup-->?
Thanks a lot
Solved! Go to Solution.
Hello @Former Member
Thanks for your post.
I would like to request you to please refer the below KB article:
https://kc.mcafee.com/corporate/index?page=content&id=KB52417
av.detect -->Could it mean that the antivirus has detected malware? Yes Correct, It could be a Malware.
av.reputation-->Reputation of a file which AV components define, So the file reputation can be different base don different component like Malicious, Unknown, Most like malicious and etc. So based on that AV decides what needs to be done with the file and if it should be allowed.
Hello @Former Member
Thanks for your post.
I would like to request you to please refer the below KB article:
https://kc.mcafee.com/corporate/index?page=content&id=KB52417
av.detect -->Could it mean that the antivirus has detected malware? Yes Correct, It could be a Malware.
av.reputation-->Reputation of a file which AV components define, So the file reputation can be different base don different component like Malicious, Unknown, Most like malicious and etc. So based on that AV decides what needs to be done with the file and if it should be allowed.
Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA