The malicious software (malware) category contains events that are related to application exploits and buffer overflow attempts.
The following table describes the low-level event categories and associated severity levels for the malware category.
Table 1: Low-level Categories and Severity Levels for the Malware Events Category
Low-level event category
Severity level (0 - 10)
Indicates an unknown virus.
Indicates that a back door to the system was detected.
Hostile Mail Attachment
Indicates a hostile mail attachment.
Indicates a virus.
Hostile Software Download
Indicates a hostile software download to your network.
Indicates that a virus was detected.
Indicates miscellaneous malicious software
Indicates that a trojan was detected.
Indicates that spyware was detected on your system.
Indicates that an attempted scan of your content was detected.
Content Scan Failed
Indicates that a scan of your content failed.
Content Scan Successful
Indicates that a scan of your content was successful.
Content Scan in Progress
Indicates that a scan of your content is in progress.
Indicates that a key logger was detected.
Indicates that Ad-Ware was detected.
Indicates that a quarantine action successfully completed.
Indicates that a quarantine action failed.
Indicates that a malware infection was detected.
Indicates that the removal was successful.
Indicates that the removal failed.