Jump to content

npoenn

Members
  • Content count

    3
  • Joined

  • Last visited

  • Days Won

    1

npoenn last won the day on July 22 2014

npoenn had the most liked content!

Community Reputation

1 Neutral

About npoenn

  • Rank
    Newbie
  1. npoenn

    Reading History.db

    The files are write-protected by Immunet, but it is possible to access the history.db in read-only mode. There is no risk of corruption as long as you connect to the database file in this way, and it can be done while Immunet is running. I have no problems accessing it, as it is a standard SQLite database. I'm a software developer so I've already written a small utility that can open and read the events without issue. My main question here was if I could get a list (or enumeration) of the ID, Type, Flags, and Disposition fields, so that I can better read the information. Here is a sample of the data I can extract: http://pastebin.com/9X0CBsHV It appears that ID:24 is a completed scan, and ID:7 is a malware detection, but it would be great to actually get a proper definition of the fields. Here is some c# sample code for what I am doing: string path = @"C:\Program Files\Immunet\history.db"; DataTable table = new DataTable(); using (SQLiteConnection conn = new SQLiteConnection()) { conn.ConnectionString = "Data Source=" + path + ";Version=3;New=False;Compress=True;Read Only=True;"; conn.Open(); using (SQLiteCommand cmd = new SQLiteCommand("SELECT * FROM History", conn)) { using (SQLiteDataAdapter da = new SQLiteDataAdapter(cmd)) { da.Fill(table); da.Dispose(); } } conn.Close(); conn.Dispose(); }
  2. npoenn

    Reading History.db

    I was looking at putting something together so that I could generate my own reports based on the AV logs. Unlike Clam, Immunet uses a SQLite database instead of a text-based log file. It's pretty easy to open, but I was hoping someone could provide some information about a few of the fields. The main things I was looking at are the 'type' and 'disposition' fields. Type appears to be an ID for the event type. Would it be possible to provide me with a list of the type IDs?
  3. npoenn

    Email Notifications

    It would be nice to see an option for email notification. That way for networked computers, or say if i have it set up on my kid's or parent's computer, I would be able to get a notification for viruses detected, etc.
×