Re: [Declude.Virus] Where is the virus information in vir####.log
That is all I se as well. I was just about to respond to your last email and say that I was in the middle of writing an asp app to check the logs and report on viruses. I guess we are waiting on the gret Mr. R. Scott Perry for this one -- Original Message -- From: FIRST Internet Declude Virus Account [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] Date: Tue, 11 Dec 2001 09:16:08 -0500 Am I missing something? In the past I thought that the vir.log actually listed the names of the viruses found - but I am not seeing this. All I am seeing are generic messages such as '12/09/2001 21:57:49 Q249e036 File(s) are INFECTED [3]' Is this a result of using the PRESCAN, or is it something else? Am I just imagining things when I think I saw actual itemization of viruses in the vir.log file in the past? Mike Tindor 1st.net --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type unsubscribe Declude.Virus. You can E-mail [EMAIL PROTECTED] for assistance. You can visit our web site at http://www.declude.com . Sent via the WebMail system at lohrtech.com --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type unsubscribe Declude.Virus. You can E-mail [EMAIL PROTECTED] for assistance. You can visit our web site at http://www.declude.com .
MISSING_REVERSE_DNS:RE: [Declude.Virus] Where is the virus information in vir####.log
First you need to change declude configuration to give you more info. Look for X:\Imail\declude\virus.cfg and make sure logging is set to mid. # The in the LOGFILE option automatically gets replaced with the month/date LOGFILE D:\IMail\spool\vir.log LOGLEVEL MID CONSOLEOFF Also make sure that you have the correct SCANFILE directive. I use McAffee so this is what I have. (note: SCANFILE through /REPORT report.txt must be on the same line.) # SCANFILE is the location of the command-line virus scanner. Note that it # must include the full path. VIRUSCODE is the code that scanner returns if # it finds a virus. SCANFILE C:\Progra~1\Common~1\networ~1\viruss~1\4.0.xx\scan.exe /ALL /NOMEM /NOBEEP /UNZIP /SILENT /NODDA /PANALYZE /REPORT report.txt VIRUSCODE 13 REPORT Found And finally I wrote an NT command script that parses your mail and virus logs to create a summary that is mailed to the address of your choice every morning for the previous day. The only other software you need for it to work is DOMLIST.EXE from the IPswitch Imail website under free tools. Best regards, Jeff -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of FIRST Internet Declude Virus Account Sent: Tuesday, December 11, 2001 9:16 AM To: [EMAIL PROTECTED] Subject: [Declude.Virus] Where is the virus information in vir.log Am I missing something? In the past I thought that the vir.log actually listed the names of the viruses found - but I am not seeing this. All I am seeing are generic messages such as '12/09/2001 21:57:49 Q249e036 File(s) are INFECTED [3]' Is this a result of using the PRESCAN, or is it something else? Am I just imagining things when I think I saw actual itemization of viruses in the vir.log file in the past? Mike Tindor 1st.net --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type unsubscribe Declude.Virus. You can E-mail [EMAIL PROTECTED] for assistance. You can visit our web site at http://www.declude.com . Usage1-1.zip Description: Zip compressed data
