# Results The Results page provides a comprehensive view of sensitive data detected across scanned endpoints, SharePoint sites, and email mailboxes. From this page, you can examine detailed findings, initiate investigations for closer inspection, perform remediation actions, and download reports. Results are organised into three tabs based on where the sensitive data was found: * Devices (workstations, laptops, file servers) * SharePoint * Email (Exchange Online mailboxes). Navigate to **DISCOVER** > **Results**. By default, you'll see results from all completed scans. Use the filter options at the top of the page to narrow results by specific scan jobs, date ranges, data types, classifications, or target names.

Devices

For devices, you can view the scanned file details, including filename, file path, size, creation and modification dates, owner information, and operating system details. Detected data types and the number of hits are shown in a clickable format, allowing you to review sensitive content quickly. The classification of each file is displayed, and any remediation actions, such as move, copy, delete, or notifications, are tracked.

1. Navigate to **DISCOVER** > **Results**. 2. Click on **Devices**.

Field Group	Field	Description / Details
Device / Endpoint	Device Name	Name of the device where the scanned file resides.
Scan Details	Date Scanned	Date when the scan was executed.
File Details	Filename	Name of the file containing sensitive data.
	File Path	Full path of the file on the device.
	File Size (BYTES)	Size of the file in bytes.
	File Created	Timestamp when the file was created.
	File Last Modified	Timestamp of the file’s last modification.
Detection Results	Data Type	Clickable list of sensitive data types detected in the file.
	Number of Hits	Clickable count showing how many instances of each data type were found in the file. If the number of hits is below the configured upper limit, all results are displayed. If it exceeds the limit, only results up to the upper limit are shown.
Classification & Security	Classification	Clickable field showing which classification the file belongs to.
Action / Remediation	Action Taken	Status of any remediation actions applied to the file (move, copy, delete, notify file/device owner).
Ownership & System Info	Owner	Name of the file owner.
	IP Address	IP address of the device where the file resides.
	OS Version	Operating system version of the device.

SharePoint

For SharePoint, the Results page shows details of scanned documents, including the document name, library, path, site URL, owner, and size. Detected sensitive data types and the number of hits are clickable, providing additional details. Additionally, the status of any remediation actions performed is recorded.

1. Navigate to **DISCOVER** > **Results**. 2. Click on **SharePoint**.

Field Group	Field	Description / Details
Target / Site	Target Name	Name of the SharePoint site or specific device/user where the scan was executed.
Scan Details	Scan Date	Date when the SharePoint scan was executed.
File / Document Details	File Name	Name of the document where sensitive data was found.
	Path	Path of the document within SharePoint.
	Site URL	URL of the SharePoint site.
	Library	SharePoint library where the document resides.
	Owner	Name of the document owner.
	Size (in bytes)	Size of the document in bytes.
Detection Results	Data Types	Clickable list of sensitive data types detected in the document.
	Number of Hits	Clickable count showing how many instances of each data type were found. If below the configured upper limit, all results are shown; if above, only results up to the upper limit are displayed.
Classification & Security	Classification	Clickable field showing the classification of the document.
Action / Remediation	Action Taken	Status of any remediation actions applied to the document (move, copy, delete, notify file/device owner).

Email

For email results, the page provides metadata for each scanned email, including sender, recipients (To, CC, BCC), subject, sent date, and mailbox folder. Detected sensitive data types, number of hits, and the specific location of the data (body, attachment, or subject) are clickable for detailed review. The classification of the email or its contents is shown, and the status of any remediation actions is tracked.

1. Navigate to **DISCOVER** > **Results**. 2. Click on **Email**.

Field Group	Field	Description / Details
Target / Mailbox	Target Name	Name of the device or user mailbox where the email resides.
Scan Details	Scan Date	Date when the email scan was executed.
Email Metadata	From	Sender of the email.
	To	Primary recipients of the email. Clickable to view details.
	CC	CC recipients. Clickable to view details.
	BCC	BCC recipients. Clickable to view details.
	Subject	Subject of the email.
	Sent Date	Date the email was sent.
	Folder	Mailbox folder containing the email.
Detection Results	Data Type	Clickable list of sensitive data types detected in the email.
	Number of Hits	Clickable count showing instances of each data type found. Applies upper limit if configured.
	Data Found In	Indicates where the sensitive data was detected (body, attachment, subject, etc.).
Classification & Security	Classification	Clickable field showing the classification of the email or its contents.
Action / Remediation	Action Taken	Status of any remediation actions applied to the email (move, copy, delete, notify file/device owner).

### Investigate {% hint style="info" %} You must create an investigation beforehand in **DISCOVER** > **Investigation**. {% endhint %} Investigate allows users to download scanned files for closer inspection of sensitive information. Use this when you need to verify whether a scan configuration is producing accurate results, or when a sensitive file has appeared in an unexpected location and requires manual review. ![](/files/2ea0738c78e9bb5ffa3ae03e7fff4e4e4f85409f) 1. Navigate to **DISCOVER** > **Results**. 2. Select the entries you want to include in the investigation, and click **Investigate**. 3. Click select an existing investigation from the drop-down and add a **Comment** (optional). 4. Click **Investigate**. Selected files are downloaded as a password-protected ZIP file. ### Remediate Remediate executes remediation actions (move, delete, or encrypt) on files identified during a scan or investigation. Unlike the **Remediation** section, which provides a status view of remediated files, this function performs the actual operational steps to secure, remove, or notify relevant parties about sensitive files. ![](/files/3b0fcb6edef3edf7c5c8d40f1095ca83327cff55) 1. Go to **DISCOVER** > **Results** > **Remediate** or **DISCOVER** > **Investigation** > **Remediate** 2. Select one or more files and click **Remediate**. 3. Choose a remediation action from the drop-down.

Action	Function
Move	Relocates the file to a secure location.
Copy	Creates a copy of the file to a secure or alternate location.
Delete	Permanently removes the file.
Send email to Data Owner	Notifies the assigned data owner with an email.
Send email to End User	Notifies the file owner or user who has the device in their possession.

5. Add an optional comment to provide context or notes for the task. 6. Click **Remediate** to execute the selected action. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.guardware.com/discover/investigate-and-remediate/results.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.