Detections

Lists all detections by ESET Cloud Office Security. Switch between Exchange Online, OneDrive, Team groups and SharePoint sites using the tabs. You can see substantial information on each detection. For example, detected files that were uploaded to a Team group will be shown in the Team groups tab.

Click the icon_expand_b_tiny icon to open a sidebar with a summary of a specific log record (detection). For more detailed information, click the icon_contextmenu_b_tiny icon and select Show details.

Navigate within the tree to see detections only for a particular tenant or group. To see all detections in every tenant and group, click All. To make searching for a specific detection easier, you can filter using multiple criteria. Click Add filter and select the filter type from the drop-down menu or enter a string (repeat when combining criteria):

expand Add filter

When you click the icon_contextmenu_b_tiny icon, an option Remove whitelisted will be available if you have whitelisted a file previously by releasing it from Quarantine for the same user. Use this option to remove a file from the whitelist. All such future files will be quarantined.


NOTE

The retention period for detections is 90 days. Records older than 90 days will be removed permanently.

Report false positive (FP) / false negative (FN)

You can manually report FP and FN detections for Spam, Phishing, or Malware by sending a sample to ESET labs for analysis. Email addresses to send the samples to:

Spam - send an email to nospam_ecos@eset.com for emails incorrectly marked as spam or to spam_ecos@eset.com for undetected spam with the original message as an attachment in .eml or .msg format.

Phishing - to report false positive or negative classification of phishing, create a new email message to be sent to samples@eset.com with 'phishing email' in the subject line and include the phishing email as an attachment in .eml or .msg format.

Malware - for false positive or negative classification of malware, create a new email message to be sent to samples@eset.com with 'False positive' or 'Suspected infection' in the subject line and include the file(s) compressed into a .zip or .rar format as an attachment.