Video Screencast Help
Search Video Help Close Back
to help

Virus Detections on SEP Domains

Created: 15 Oct 2012 | 10 comments
gwtdt's picture
gwtdt
0 0 Votes
Login to vote

Hello, I have the Schema Reference Guide. However, from this document, I'm not certain I'm able to obtain or piece together some information I need. For example, how would able obtain type of virus detected and number of viruses detected, etc. against the different domains in SEP?

Discussion Filed Under:
, , , , ,

Comments 10 CommentsJump to latest comment

Brian81's picture
Brian81 Trusted Advisor
Virus Detections on SEP Domains - Comment:15 Oct 2012 : Link

What version, 11.x or 12.1?

Did you check the Virus schema (VIRUS table)?

SEP Knowledge Base

Endpoint SWAT

0
Login to vote
  • Actions
Fabiano.Pessoa's picture
Fabiano.Pessoa Partner Accredited
Virus Detections on SEP Domains - Comment:15 Oct 2012 : Link

Hello

You want to check out where this information?
Or was it a note of how the SEP detects?

Fabiano Pessoa

Systems Analyst - Forensic Expert

0
Login to vote
  • Actions
gwtdt's picture
gwtdt
Virus Detections on SEP Domains - Comment:15 Oct 2012 : Link

Brian, 12.x (as indicated) and the Virus schema doesn't have a column to identify the domain the security risk came from.

 

Fabiano, I want to check where this information is.

 

0
Login to vote
  • Actions
Fabiano.Pessoa's picture
Fabiano.Pessoa Partner Accredited
Virus Detections on SEP Domains - Comment:15 Oct 2012 : Link

Fabiano Pessoa

Systems Analyst - Forensic Expert

+1
Login to vote
  • Actions
Brian81's picture
Brian81 Trusted Advisor
Virus Detections on SEP Domains - Comment:15 Oct 2012 : Link

You'll need to do a join with another table. I'll see if I can find which one.

SEP Knowledge Base

Endpoint SWAT

+1
Login to vote
  • Actions
gwtdt's picture
gwtdt
Virus Detections on SEP Domains - Comment:16 Oct 2012 : Link

Fab, I need to work with raw data.

Brian, thanks.

+1
Login to vote
  • Actions
Mithun Sanghavi's picture
Mithun Sanghavi Symantec Employee Technical Support Accredited
Virus Detections on SEP Domains - Comment:16 Oct 2012 : Link

Hello,

Check these Articles:

Symantec™ Endpoint Protection Manager Database Schema Reference 12.1

http://www.symantec.com/docs/DOC4324

Exporting log data to a text file http://www.symantec.com/docs/HOWTO55416

Exporting data to a Syslog server http://www.symantec.com/docs/HOWTO55417

Symantec Endpoint Protection 12.1.x event log entries 

http://www.symantec.com/docs/TECH186925

Also, Check this Thread: https://www-secure.symantec.com/connect/forums/sql-querys-database

Hope that helps!!

Mithun Sanghavi
Symantec Technical Support Engineer, SEP
MIM | MCSA | MCTS | STS | ITIL v3

Twitter: @mithun_sanghavi

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<&a

0
Login to vote
  • Actions
Fabiano.Pessoa's picture
Fabiano.Pessoa Partner Accredited
Virus Detections on SEP Domains - Comment:16 Oct 2012 : Link

Hi

Look at this link that contains accurate information http://www.symantec.com/business/support/index?page=content&pmv=print&impressions=&viewlocale=pt_BR&id=TECH103087

I'll keep checking precisely what you want

hugs

Fabiano Pessoa

Systems Analyst - Forensic Expert

+1
Login to vote
  • Actions
gwtdt's picture
gwtdt
Virus Detections on SEP Domains - Comment:16 Oct 2012 : Link

Mithun, thank you, you've sent this to me before, but unfortunately, I'm unable to extract info from those resource pages to get the data I need. For example, I'm not even certain if SEP raw data is able to provide me with virus info that can corollate with domains.

0
Login to vote
  • Actions
Fabiano.Pessoa's picture
Fabiano.Pessoa Partner Accredited
Virus Detections on SEP Domains - Comment:16 Oct 2012 : Link

Hello,

You need information about the database? Example: A Data Base gross virus?

Fabiano Pessoa

Systems Analyst - Forensic Expert

0
Login to vote
  • Actions