Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 2 subscribers
  • Views 5103 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to find virus information?

ehofstede
Hi,

In the executive report I just reveived from one UTM I see it had blocked 2240 http/s virusses, which is extreme for this UTM. So I would like to get more information on this, which computer caused this, which websites contain so many virusses etc.

Can somebody tell me how I can find this information?

Thank you!
Regards,
Erwin.


This thread was automatically locked due to age.
Parents
  • 0
    Are you comfortable at the command line?

    From today's logs (loginuser is sufficient here)
    $ grep 'name="web request blocked, virus detected"' /var/log/http.log


    Archives require more privileges, this example is for April 26, 2014 http logs.
    # zcat /var/log/http/2014/04/http-2014-04-26.log.gz | grep 'name="web request blocked, virus detected"'
Reply
  • 0
    Are you comfortable at the command line?

    From today's logs (loginuser is sufficient here)
    $ grep 'name="web request blocked, virus detected"' /var/log/http.log


    Archives require more privileges, this example is for April 26, 2014 http logs.
    # zcat /var/log/http/2014/04/http-2014-04-26.log.gz | grep 'name="web request blocked, virus detected"'
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?