Panda Antivirus
Panda Antivirus offers real-time protection against cyber attacks and offline threats. It consists of PandaAntivirusCompiledNormalizer that normalizes Panda Antivirus events based on suspicious files and threats.
Package Details
Installation
To install Panda Antivirus:
- Download the .pak file from the Download link above.
- Go to Settings >> System Settings from the navigation bar and click Applications.
- Click Import.
- Browse to the downloaded .pak file.
- Click Upload.
Log Samples
Panda Antivirus (Panda Security)
Expected Log Format
LEEF
Log Sample
<134>1 2022-06-17T06:14:30.645003+02:00 V000SRVBK EventsFeederImporter.Host.exe 0 13 - LEEF:1.0|Panda Security|paps|02.55.00.0000|registrym|sev=1 devTime=2022-06-17 04:07:25.382236 devTimeFormat=yyyy-MM-dd HH:mm:ss.SSS usrName=SERVICIO LOCAL domain=NT AUTHORITY src=173.61.16.159 identSrc=173.61.16.159 identHostName=DESPACHO2 HostName=DESPACHO2 MUID=4E9B6BB6D8D6412885ED72EC837F578D LocalDateTime=2022-06-17T04:34:29.382+02:00 PandaTimeStatus=2 Op=ModifyExeKey Hash=8497852ED44AFF902D502015792D315D DriveType=Fixed Path=SYSTEM|\svchost.exe ValidSig=true Company=Microsoft Corporation Broken=true ImageType=EXE 64 ExeType=Unknown Prevalence=High PrevLastDay=Low Cat=Goodware MWName= TargetPath=Microsoft .Net Native Framework Package 1.6| RegKey=\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System?{1F8CB13B-1EE0-4606-8557-A8F0051FA125}=0|v2.25|Action=Block|Active=TRUE|Dir=Out|Name=Microsoft .Net Native Framework Package 1.6|Desc=Microsoft .Net Native Framework Package 1.6|LUOwn=S-1-5-21-273554407-4001111907-103047848-1000|Ap
Support
If you have any questions or require assistance, create a support ticket.
Best regards,
Comments
Article is closed for comments.