3 Replies Latest reply on Dec 10, 2007 2:56 AM by tonyb99

    Missing 'Affected Files' and 'Threat Names'

      Affected computer IP Addresses : 172.23.105.136
      Affected computer IP HostNames : T979-344
      Affected Files : Not Available
      Actual threat names: Not Available
      Actual products: VirusScan

      ===============================================

      anyone able to comment on how the above come about?

      thanks.
        • 1. RE: Missing 'Affected Files' and 'Threat Names'
          tonyb99
          3.6 or 4.0?

          Is that your notification email? if so what does the actual notification on EPO say?
          • 2. RE: Missing 'Affected Files' and 'Threat Names'
            i'm using ePO 3.6.0 Patch 5.
            the event id is 1027 which means 'infected file deleted'

            the actual alert goes :

            ------------------------------------------------
            ePolicy Orchestrator Notification
            Rule: Virus Detected & Removed
            Rule Defined At: Directory
            Description: Notifications sends an e-mail message when "Virus detected & Removed" events are received.

            Number of events: 1
            Affected computer IP Addresses : 172.23.105.136
            Affected computer IP HostNames : T979-344
            Affected Files : Not Available
            Actual threat names: Not Available
            Actual products: VirusScan

            Additional Information : 3
            For additional information, see the Notification Log in the ePolicy Orchestrator console.
            -----------------------------------------------------

            the problem is : which file is deleted? how come there are no info whatsoever?
            • 3. RE: Missing 'Affected Files' and 'Threat Names'
              tonyb99
              that is wierd isnt it have you tried the event fix, and what does the OAS log say for that pc