McAfee QUICKCLEAN 3.0 Guía de usuario descargar pdf (Pagina 127)

• To check if an MD5 is present in the blacklist, use blacklist query <md5>

Parameter Description

<md5> The MD5 hash value of a malware that you want to query if it is present in the

blacklist.

Example: blacklist query 254A40A56A6E28636E1465AF7C42B71F

If the MD5 is present, the details such as the engine ID, malware severity score, and so on, are

displayed.

• To update the details for an entry in the blacklist, use blacklist update <md5> <score>

<file_name> <malware_name> <Eng-ID> <OS-ID>

Parameter Description

<md5> The MD5 hash value of a malware that you want to update. This value must

exist in the blacklist for you to update the record.

<score> The new malware severity score that you want to change to. A valid value is

from 3 to 5.

<file_name> The new file name for the MD5.

<malware_name> The new malware name for the MD5.

<Eng-ID> The new engine ID that you want to change to.

<OS-ID> The new value for the operating system that was used to dynamically analyze

the malware.

Example: blacklist update 254A40A56A6E28636E1465AF7C42B71F 4 ExampleFileName

ExampleMalwareName 3 4

clearstats

Resets all the McAfee Advanced Threat Defense statistics to zero.

Syntax: clearstats

This command has no parameters.

createDefaultVms

Use this command to create default analyzer VMs.

Syntax: createDefaultVms

This command has no parameters.

deleteblacklist

Use this command to remove all the entries from McAfee Advanced Threat Defense blacklist.

Syntax: deleteblacklist

This command has no parameters.

deletesamplereport

Deletes all the analysis reports for a file.

Syntax: deletesamplereport <md5>

CLI commands for McAfee Advanced Threat Defense

List of CLI commands

McAfee Advanced Threat Defense 3.0.4 Product Guide

127

1 2 ... 122 123 124 125 126 127 128 129 130 131 132 ... 139 140

Sin comentarios

McAfee QUICKCLEAN 3.0 Guía de usuario Pagina 127