This is not possbile with MOVE Agentless, however you could pull the information from the ePO SQL database to your Syslog server.
In which database and table, I can find the information about the detected malwares .
I don't recall the exact name of the table, but if you install sql management studio you'll find it pretty easy by browsing the database.
On the other issue, you can send the information throgh syslog. You'll first have to register the executable under MENU>Registered Executables and then create an automation task that runs that executables with the right parameters in order to send the data.
Go to Menu> Automation> Automatic Responses> New response. For antivirus detection events select "Epo notification events" and "threat events". In the next step you can filter for which events by id/type/name should the message be sent, then on aggregation you'll probably want to do this for every single event, then on action select Run external command, select the syslog tool and then format the attributs to inject in the command. That should get you going.
Hope this helps!
Thanks georgec for your reply. I tried to register the syslog executable(SL4NT) which I found using google. But seems like it's not working with McAfee Move AV. Can you point me to the registered executable which can be used with McAfee Move AV for syslog redirection? Where can I get this exeutable?
That's what I also used.
Unfortunately, I can't see this because of the proxy, but this should explain how to use it http://www.youtube.com/watch?v=XykFT1_8N4k
I believe I used the exact same piece of software to do this.
Another thing, MOVE logs are stored in threat events and should offer the same features as VirusScan logs.