Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Virus Detected on Messaging Gateway

Created: 11 Oct 2012 | 4 comments

We are using the Symantec Messaging Gateway version 10.0. I noticed on the status tab that it is showing one occurrence of a virus detected. When I click on the details it shows the date and time, but doesn't show anything about whether the email was deleted or what the email subject was or who it was sent to. If there is an email that has a virus I want to look at it and decide whether to delete it or not. Maybe once a virus is detected then the message is automatically deleted, but i'm not sure. I attached a document showing the virus detection. 

Comments 4 CommentsJump to latest comment

BenDC's picture

The status tab does not tell you the action taken as the actions/polices can be configured or applied by sender/recpient/etc. You can check the message audit logs to see what happened to the message if you use the optional filter verdic and value The message contains a virus. for the mandatory value you can simply enter a period/dot . , you may need to expand the time period and if the message came in beyond what the SMG is set to retain audit log data (default 14days) then no informaton will be avialable.

Fabiano.Pessoa's picture

Hello

This virus opens doors funds see link

http://www.symantec.com/security_response/writeup.jsp?docid=2010-103008-0555-99Perhaps email is already deleted, but the doors are still open or it processes are still active even though it does not affect you anymore.
I recommend making a cleaning system logs to delete invalid entries.

hugs

 

Fabiano Pessoa

Systems Analyst - Forensic Expert