Table sem5.dbo.ANOMALYDETECTION
Keeps the antivirus detection events

Generated by
SchemaSpy
Legend:
Primary key columns
Columns with indexes
Implied relationships
Excluded column relationships
< n > number of related tables
 
Column Type Size Nulls Auto Default Children Parents Comments
ANOMALY_DETECTION_IDX char 32
ANOMALY_DETECTION_OPERATION_ID int 4 ((0)) Pointer to table 'Anomalydetectionoperation'
ANOMALY_DETECTION_TYPE_ID int 4 ((0)) Pointer to table 'Anomalydetectiontype'
ACTION_OPERAND nvarchar 1024 ('') File or registry key on which this action took place
USN bigint 8 ((1)) A USN-based serial number; this ID is not unique.
TIME_STAMP bigint 8 ((0)) The time when the event is logged into system (GMT), which is server side time
DELETED tinyint 1 ((0)) Deleted row: 0 = not deleted, 1 = deleted
ACTION_OPERAND_HASH char 32  √  null Hash value for the column ACTION_OPERAND

Analyzed at Mon Oct 29 12:07 PDT 2012

Indexes:
Column(s) Type Sort Constraint Name
ANOMALY_DETECTION_IDX Primary key Asc PK_ANOMALYDETECTION
ANOMALY_DETECTION_OPERATION_ID + ANOMALY_DETECTION_TYPE_ID + ACTION_OPERAND_HASH Performance Asc/Asc/Asc I_ANOMALYDETECTION_ID_TYPE