elastio:recovery-point:iscan:unhealthy
Version: V0
Group: Recovery point
Iscan has labeled a recovery point as quarantined.
Example:
{
"event_id": "00000000-0000-0000-0000-0000000000000",
"event_kind": "elastio:recovery-point:iscan:unhealthy",
"event_time": "2023-04-28T14:33:55Z",
"event_version": "v0",
"number_of_malware_scanned_files": 222705,
"iscan_report_id": "00000000-0000-0000-0000-0000000000000",
"cloud_connector_asset_id": "elastio:asset:aws-ebs:s:064207094274:us-east-1:vol-00000000000000000",
"deprecation_warning": null,
"account_id": "064207094274",
"number_of_ransomware_scanned_files": 222705,
"number_of_malware_threats": 2,
"source_cloud_connector_asset_id": "elastio:asset:aws-ec2:s:064207094274:us-east-1:i-0000000000000000",
"human_readable_recovery_point_id": "rp-000000000000000000000000000",
"cloud_connector_id": "00000000-0000-0000-0000-0000000000000",
"number_of_ransomware_threats": 0,
"tags": {
"Name": "ubuntuRC20.04",
"elastio:vault": "default",
"elastio:plan": "test1"
},
"region": "us-east-1"
}
Fields:
account_id
Type: string (is never empty)
Field description: AWS account ID.
cloud_connector_id
Type: uuid
Field description: ID of the Cloud Connector the event took place in.
region
Type: string (is never empty)
Field description: AWS region of the asset.
human_readable_recovery_point_id
Type: string (is never empty)
Field description: Elastio recovery point ID as represented in the tenant.
cloud_connector_asset_id
Type: string, cannot be empty
Human readable Asset ID, as represented in the tenant.
source_cloud_connector_asset_id
Type: string (is never empty), can be null
Field description: ID of the Cloud Connector that the backed up asset came from, if different from the Cloud Connector where the backup is stored, i.e. in case of cross-account backups.
iscan_report_id
Type: uuid
Field description: Iscan report ID.
number_of_malware_scanned_files
Type: unsigned_integer, can be null
Field description: Total number of files scanned for malware.
number_of_ransomware_scanned_files
Type: unsigned_integer, can be null
Field description: Total number of files scanned for ransomware.
number_of_malware_threats
Type: unsigned_integer, can be null
Field description: Total number of malware infected files found on the volume.
number_of_ransomware_threats
Type: unsigned_integer, can be null
Field description: Total number of ransomware infected files found on the volume.
tags
Type: object
Field description: AWS asset tags.