Hi,
I hope someone can help me or point me to a place where to look to solve my problem.
I'm running Groupshield 5.2 and Virusscan 7.0 on a SBS2000 server.
There where some virusses on some mailboxes and notifications where send and mails that could not be cleaned where quarantined. All working fine but ...
When I look in the eventviewer I see under the Application Log every second about 20 - 30 alerts coming in from different virusses.
e.g.:
Alert Manager Event Log Alert:
The file false.bat is infected with W32/Klez.h@MM. Detected with Scan Engine 4.1.60 DAT version 4.1.4284.(from <name server> IP <ip-server> user SYSTEM running GroupShield 5.20.664.0 AVExch32)
And when I look in the Group Shield Event Log I see the same message:
Event Log
Component Title Description
c:\progra ...\AVExch32.exe On Access - Virus Found <W32/Yaha.g@MM> found. Cleaned No. Deleted No. Quarantined Yes. Blocked No.
No comes my question: where is this coming from ? I cleaned my quarantine and there's nothing in it.
It says On Access so it are no external mails who are coming in because then it should be Blocked.
How can I find where this is coming from are what this is causing.
Turning of the Virusscan On-Access don't help either (I even excluded the quarantine folder and the exchange folder was excluded by the installation self)
Hope someone has a hint or solution for my problem.
Thnkx
I hope someone can help me or point me to a place where to look to solve my problem.
I'm running Groupshield 5.2 and Virusscan 7.0 on a SBS2000 server.
There where some virusses on some mailboxes and notifications where send and mails that could not be cleaned where quarantined. All working fine but ...
When I look in the eventviewer I see under the Application Log every second about 20 - 30 alerts coming in from different virusses.
e.g.:
Alert Manager Event Log Alert:
The file false.bat is infected with W32/Klez.h@MM. Detected with Scan Engine 4.1.60 DAT version 4.1.4284.(from <name server> IP <ip-server> user SYSTEM running GroupShield 5.20.664.0 AVExch32)
And when I look in the Group Shield Event Log I see the same message:
Event Log
Component Title Description
c:\progra ...\AVExch32.exe On Access - Virus Found <W32/Yaha.g@MM> found. Cleaned No. Deleted No. Quarantined Yes. Blocked No.
No comes my question: where is this coming from ? I cleaned my quarantine and there's nothing in it.
It says On Access so it are no external mails who are coming in because then it should be Blocked.
How can I find where this is coming from are what this is causing.
Turning of the Virusscan On-Access don't help either (I even excluded the quarantine folder and the exchange folder was excluded by the installation self)
Hope someone has a hint or solution for my problem.
Thnkx