A flexible system of record filtering

The filtering system enables users to view over ten times fewer records. This comes very handy for system analysis, as you don’t need to scroll down a multi-page list and study detailed information for each file.

It is common knowledge that the majority of malicious applications do not contain manufacturer and version information in their files – these files are marked by the yellow color (see color marking of record statuses).

It also known that many malicious programs block access to their bodies to protect themselves from deletion or scanning. These files are marked in pink (see color marking of file statuses). It’s important to know that CESAM features a unique technology of direct disk reading and successfully works around this method of file blocking!

All this means that users willing to see the records related only to malicious software can enable the following filter: show active records or records with the “Can’t get any details”, “Access blocked” and “Hidden records” statuses.

Filtering can also be performed according to threat levels determined after the application of the online scanner. This way, the results of the filter above can be complemented by records with the “File exists” status (that is, regular ones: not suspicious, not clean – unknown ones). You can also hide “Trusted” and “Checked” files.

It may turn out that this filtering system won’t show you a single record at all (if you have a clean system or a small number of records.