[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

Squid server - downandup virus

Posted on 2013-02-07
3
Medium Priority
?
444 Views
Last Modified: 2013-03-08
I have a squid proxy working with dansguardian.

My ISP sends me this notification:

>  Rete:        MYNETWORK (x.x.x.x/xx)
>  IP locale:    x.x.x.x
>
>  Data e ora:    2013-01-28 08:02:26 UTC+0
>  porta locale:    1670
>  IP remoto:    149.20.56.32:80
>  Malware:    downadup
>  HTTP request:    GET /search?q=26 HTTP/1.0
>  HTTP agent:    Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)

What can I do to solve the problem?

Thanks
0
Comment
Question by:ltpitt
  • 2
3 Comments
 
LVL 81

Expert Comment

by:arnold
ID: 38866298
What is the problem? Is dansguardian erroneously reports a virus infected/laden response?

Or are they suggesting your webserver is infected?
0
 
LVL 1

Accepted Solution

by:
ltpitt earned 0 total points
ID: 38947375
I solved the problem blocking from iptables the suggested ip
0
 
LVL 1

Author Closing Comment

by:ltpitt
ID: 38965325
Worked for me
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question