|Anti-virus and HIPS policy / Behavior monitoring|
For more information, see Managing roles and sub-estates.
Malicious traffic detection detects communications between endpoint computers and command and control servers involved in botnet or other malware attacks.
By default, malicious traffic detection is enabled for new installations of Enterprise Console 5.3 or later. If you upgraded from an earlier version of Enterprise Console, you need to enable malicious traffic detection to benefit from the feature.
To change the settings for detecting malicious traffic: