Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 3 subscribers
  • Views 2039 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Antivirus: 1 items blocked

c.d.burt
Hello,
I have an alert on my dashboard under Today's Threats that states: Antivirus: 1 items blocked.  The problem is I can't find anymore information about the event in logs or under endpoint protection.  This is the second event without any information.  Can someone help me find out the source of this alert or point me in the right direction?

Thanks,
Chris


This thread was automatically locked due to age.
  • 0
    Hi, Chris,

    If the virus caused an email to be blocked, the name of the malware will appear on the Executive Report.  If it was a web access that was blocked, you can't find it on the Executive Report, so you need to search on virus=" in the Web Filtering logfile.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Just wondering why Astaro has such bad logging design. It real is bad. Maybe Astaro should look at Untangle or any other UTM for better logging. Even Zyxel's UTM has better logging.

    Why would you need to search through Web Filters  logging  "mess" to find a Virus catch by the AV? The AV  should have a specific area for it's logs that give source IP, destination IP, and virus name and URL were it was found.  How logical would that be?

    Astaro/Sophos has so much to offer, but can be so primitive and illogically unorganized in some areas, it's  logging could be defined as "Primitive Pete"

    A very simplistic grid based GUI that uses the info that is already there as per Untangle and others would do wonder for every NON gray bearded Unix geek. More or less I bet 98% of the users would LOVE to see grid based more informative logging GUI.
    .
  • 0
    In fact, if you wanted to do so, in 'Reporting & Logging', you could create a report that runs automatically...



    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    This worked for me.
    Screen Shot 2013-10-10 at 8.22.28 PM.png
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?