Forum Discussion
boneyard
Jan 17, 2021MVP
i have always understood it as that the F5 endpoint inspector contains the OPSWAT code to check for such things. so it doesnt look at file or such for this. it is the OPSWAT inspection code that does this on the client.
you can update the OPSWAT information on the BIG-IP, do that here: System > Software Management > Antivirus Check Updates.
see also: https://support.f5.com/csp/article/K48955220