//This function will attempt to assign alerts to the AntivirusReturnValues object
//before returning it to the FidoReturnValues object.
public static FidoReturnValues SophoslFidoValues(List <string> lHostInfo)
{
var lFidoReturnValues = new FidoReturnValues();
var lSophosReturnValues = new AntivirusReturnValues();
for (var x = 0; x < lHostInfo.Count; x++)
{
switch (x)
{
case 0:
lSophosReturnValues.ReceivedTime = lHostInfo[0];
break;
case 1:
lSophosReturnValues.EventTime = lHostInfo[1];
lFidoReturnValues.TimeOccurred = lHostInfo[1];
break;
case 2:
lSophosReturnValues.ActionTaken = lHostInfo[2];
break;
case 3:
lSophosReturnValues.Username = lHostInfo[3];
lFidoReturnValues.Username = getUsername(lHostInfo[3].Split('\\'));
break;
case 4:
lSophosReturnValues.Status = lHostInfo[4];
break;
case 5:
lSophosReturnValues.ThreatType = lHostInfo[5];
break;
case 6:
lSophosReturnValues.ThreatName = lHostInfo[6];
lFidoReturnValues.MalwareType = lHostInfo[6];
break;
case 7:
lSophosReturnValues.FilePath = lHostInfo[7];
break;
case 8:
lSophosReturnValues.HostName = lHostInfo[8];
lFidoReturnValues.Hostname = lHostInfo[8];
break;
case 9:
lFidoReturnValues.SrcIP = lHostInfo[9];
break;
}
}
lFidoReturnValues.Antivirus = lSophosReturnValues;
return(lFidoReturnValues);
}
private static AntivirusReturnValues GetAntivirusReturnValues(List <string> lHostInfo)
{
var lSophosReturnValues = new AntivirusReturnValues();
lSophosReturnValues.ReceivedTime = lHostInfo.ElementAt <string>(0);
lSophosReturnValues.EventTime = lHostInfo.ElementAt <string>(1);
lSophosReturnValues.ActionTaken = lHostInfo.ElementAt <string>(2);
lSophosReturnValues.Username = lHostInfo.ElementAt <string>(3);
lSophosReturnValues.Status = lHostInfo.ElementAt <string>(4);
lSophosReturnValues.ThreatType = lHostInfo.ElementAt <string>(5);
lSophosReturnValues.ThreatName = lHostInfo.ElementAt <string>(6);
lSophosReturnValues.FilePath = lHostInfo.ElementAt <string>(7);
lSophosReturnValues.HostName = lHostInfo.ElementAt <string>(8);
return(lSophosReturnValues);
}
