Managed Threat Protection
Back
Managed Threat Protection
EventTracker

Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
- Solution Overview Managed Threat Protection
- Platform Details Threat Protection Platform
Key Capabilities
- Security Operations Center
- SIEM
- Endpoint Security
- Threat Detection & Response
- Intrusion Detection
- Network Traffic Analysis
- Vulnerability Assessment
- Threat Hunting
- Regulatory Compliance
Business Applications
- Ransomware Protection
- Microsoft 365 Security
- Banking & Financial Services
- Healthcare & Pharmaceutical
- Retail & Hospitality
Secure Edge Networking
Back
Secure Edge Networking
BranchSDO

All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
- Solution Overview Managed Secure Edge Networking
- Platform Details Edge Networking Platform
Key Capabilities
- Network Operations Center
- Secure SD-WAN
- Next-Gen Firewall
- Network Threat Response
- Network Segmentation
- Cellular Failover
- Wi-Fi Management
- PCI DSS Compliance
Business Applications
- Point-of-Sale Security
- Restaurant & Hospitality
- Retail & C-Store
- Branch Offices
Partners
Back
Partners
Partner Program Overview

Accelerate business growth through our award-winning partner program.
- Partner Program Overview
- Managed Service Provider Program
Insights
Back
Insights
Insights
Company
Back
Company
About Us

myNetsurion
BranchSDO Support
EventTracker Support

Knowledge Packs

Documentation
- Latest Version Docs
- Product Guides
Knowledge Packs
Software Updates
Supported Devices
Knowledgebase
Online Training
Online Help
- EventTracker 9.x
- EventTracker 8.x
FAQs
- Product FAQs
- EventTracker Events

HomeKnowledge Packs Microsoft Antimalware

Microsoft Antimalware

OverviewResources

Applies To: Microsoft Antimalware for Microsoft Azure.

Overview

Microsoft Antimalware is an antivirus software (AV) product that fights malware (malicious software), including computer viruses, spyware, Trojan horses and rootkits. Microsoft Antimalware Service provides real-time protection, constantly monitoring activities on the computer and scanning new files as they are downloaded or created and disabling detected threats.

EventTracker monitors detected malware activity, action taken against malware activity, Quarantined malware restored, Removed history of malware and service status and generates flex reports, flex dashboards and alerts for rogue access point detected and system state changed.

EventTracker Knowledge Pack for Microsoft Antimalware allows you to monitor the following components:-

Security - Detected malware activity and action taken against malware activity.
Operation - Configuration changes and status of services.

/

Once Microsoft Antimalware is configured to deliver events to EventTracker Manager; alerts, dashboards and reports can be configured into EventTracker.

Some of the Knowledge Packs available in EventTracker are listed below. For more information please refer Integration Guide.

Operations

Reports

MS Antimalware-Configuration changes: This report provides details about all the configuration changes that are done.
MS Antimalware-Service stopped: This report provides details about all the services that are stopped.

Security

Alerts

MS Antimalware-Detected malware activity: This alert is generated when any malware activity is detected.
MS Antimalware-Action taken against malware activity: This alert is generated when an action is taken against the detected malware.
MS Antimalware-Quarantined malware restored: This alert is generated when a quarantined malware is restored.
MS Antimalware-Removed history of malware: This alert is generated when the malware history is removed or deleted.

Reports

MS Antimalware-Detected malware activity: This report provides details about all the malwares that are detected by Microsoft Antimalware.
MS Antimalware-Action taken against malware activity: This report provides details about all the action taken against malware activities.
MS Antimalware-Quarantined malware restored: This report provides details on all the quarantined malwares that were restored.
MS Antimalware-Removed history of malware: This report provides details about the malware history that was removed.

Scope

The configuration details in this guide are consistent with EventTracker version 8.x and later, Microsoft Antimalware for Microsoft Azure.

Documentation:

For more information please refer to the Integration guide

NEW

August 2021

Bitdefender GravityZone
(on-Premises)
Trend Micro Apex One
Microsoft SQL

July 2021

Netwrix Auditor
Extreme Network Access Control
Ubiquiti Access Point

June 2021

Sophos WSA
Cisco Meraki Cloud Management
Tanium

This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our Privacy Statement to learn more.

I Accept

Contact Us

(713) 929-0200
BranchSDO Support
EventTracker Support
partners@netsurion.com
sales@netsurion.com

Partners

Partner Program Overview
Managed Service Provider Program
Partner Portal Login
Find a Partner

Quick Links

Why Netsurion?
Blog
Careers
Managed Threat Protection
Secure Edge Networking

Follow Us:

Stay in the Loop

Terms of Use
|
Privacy Policy
|
Soc 2 Type 2 Compliant
|
Descriptions of Services
|
Contact Us
|
Sitemap
|

Copyright © 2021 Netsurion. All rights reserved.