No, the email alerts don't do that. I've got two or three threads here on that very topic.
Yes, IF you have console access and have TIME, you can dig and find that info, but the point was, it's needed in the email body.
Not a report, not an attachment. I may not be at my desk - or may not have time.
The notifications conditions is to trigger those email alerts that don't have the info we want.
So all it does is say "something was found somewhere on this computer".
You have to get into the console and dig through reports for the details.
Not good.
Maybe if the console was faster.......... it would help, but the point is, I may not have console access or the time. With the details of what file, where the file was, etc. -I can myself determine HOW it got in and at times, how to block or defeat it!
(Yes, I'm that good.................LOL)
Sorry - wish there was better news, but you've hit on the issue I've been attempting to get changed for some time.
That Intel alerting that came with SAV 7.x, 8.x, 9.x and 10.x was wonderful.