5 Replies Latest reply on Mar 9, 2011 1:23 PM by joeleisenlipz

    How to do a query for all detections made in TEMP folder?

      Hello all,

       

      Actually I do not figure out how to create an specific query.

       

      I am testing a common maximum  protection rule (Prevent launching of files from the Downloaded Program Files folder) for all my end points, but the rule is as "reporting" not block; so to know how many detections and which one are those detections I need to create a query. But i do not know which one is the correct query.

       

      The query have to show me in the report all the files detected in temp folde by VirusScan on each end point.

       

      Does anybody here had an idea of how to do it? or if someone else did this kind of query before that can help me I will appreciate it.

       

      Have a nice day.

       

      DQC