Good Morning Today I received this message, I thank you for guiding me to know what to do next. I have checked the antivirus vitacora but it has not registered anything.
Message meets Alert condition
Virus/Worm detected: W32/PossibleThreat Protocol: "HTTP" Email Address From: Email Address To:
VIRUS REFERENCE URL: http://www.fortinet.com/ve?vn=W32%2FPossibleThreat
date=2020-12-07 time=06:24:56 devname=FG100E-MB-4Q17027899 devid=FG100E4Q17027899 logid="0211008192" type="utm" subtype="virus" eventtype="infected" level="warning" vd="root" eventtime=1607343896 msg="File is infected." action="blocked" service="HTTP" sessionid=336680897 srcip=192.168.2.92 dstip=23.56.6.32 srcport=62352 dstport=80 srcintf="lan" srcintfrole="lan" dstintf="port1" dstintfrole="wan" policyid=9 proto=6 direction="incoming" filename="i640.cab" quarskip="File-was-not-quarantined." virus="W32/PossibleThreat" dtype="Virus" ref="http://www.fortinet.com/ve?vn=W32%2FPossibleThreat" virusid=58991 url="http://officecdn.microsoft.com.edgesuite.net/pr/492350f6-3a01-4f97-b9c0-c7c6ddf67d60/Office/Data/16...." profile="default" user="MBFACT_1000" group="Navegacion_Mandos_Medios" agent="Microsoft-Delivery-Optimization/10.0" analyticscksum="017d4bb36b4d2073a9119ccd7744c8da907286a2a9983924c3c01a323f409a47" analyticssubmit="false" crscore=50 crlevel="critical"
nothing to do herer since action was ="blocked".
so infected file "i640.cab" download was blocked by fortigate nothing to detect for your local av-scanner
Regards
sudo apt-get-rekt
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1743 | |
1114 | |
760 | |
447 | |
241 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.