Help Center/ Managed Threat Detection/ User Guide/ Viewing Alarm Types/ DNS Alarms

Updated on 2022-12-01 GMT+08:00

View PDF

DNS Alarms

Adware

Access to adware is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a malicious adware similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

CnC

Access to a CnC server is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a CnC server similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Exploit

Access to a domain name that exploits system vulnerabilities is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a domain name similar to historical intelligence, which may exploit system vulnerabilities.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

MaliciousSite

Access to a malicious website is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a malicious website that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Malware

Access to malware is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed malware that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Miner

Access to a miner is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a miner that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

MiningPool

Access to a mining pool is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a mining pool that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Payment

Access to a payment domain name is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a payment domain name that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Phishing

Access to a phishing website is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a phishing website that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Spammer

Access to a spammer is detected.

Severity: medium

Data source: DNS logs

Your ECS accessed a spammer that is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Suspicious

Suspicious access is detected.

Severity: medium

Data source: DNS logs

The ECS access is similar to historical intelligence.

Suggestions

If this is an expected activity, add the IP address of the ECS to the whitelist.

Parent topic: Viewing Alarm Types

Previous topic: CTS Alarms

Next topic: OBS Alarms

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot