Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 1 subscriber
  • Views 2593 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Antivirus report

wingman
Hi All

I've just checked mu daily report (sent last night) and it said 16 viruses were caught via HTTP proxy. Today I got 1 virus caught ( pic attached)

Is there anywhere I can that I can find more information regarding this? (ie. which client downloaded the virus etc etc )

The second issue is that there is an entry via blank name. That's the second time I am facing this (I had opened a bug case when it first happened but it was closed as Astaro team couldn't replicate the issue)

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    update

    found the report 

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:26:36 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="1445 ms" request="0xa58a9800" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:26:41 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="501 ms" request="0xa58a9800" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:27:25 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="451 ms" request="0xb141a128" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:38:27 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="678 ms" request="0xb06fa9f0" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:38:37 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="485 ms" request="0xb06fa9f0" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:39:10 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="723 ms" request="0xa5848428" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:39:15 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="480 ms" request="0xa5848428" url="www.footerchat.com/.../Crypted.Gen"
Reply
  • 0
    update

    found the report 

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:26:36 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="1445 ms" request="0xa58a9800" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:26:41 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="501 ms" request="0xa58a9800" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:27:25 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="451 ms" request="0xb141a128" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:38:27 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="678 ms" request="0xb06fa9f0" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:38:37 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="485 ms" request="0xb06fa9f0" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:39:10 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="723 ms" request="0xa5848428" url="www.footerchat.com/.../Crypted.Gen"

    /var/log/http/2009/11/http-2009-11-03.log.gz:2009:11:03-19:39:15 stuffman httpproxy[18819]: id="0056" severity="info" sys="SecureWeb" sub="http" name="web request blocked, virus detected" action="block" method="GET" srcip="192.168.2.14" user="" statuscode="403" cached="0" profile="REF_feefDrZrCB (Zone 1)" filteraction="REF_DefaultHTTPCFFBlockAction (Zone 1)" size="2378" time="480 ms" request="0xa5848428" url="www.footerchat.com/.../Crypted.Gen"
Children
No Data
Cookie Information Banner