I searched the forums for this and get 0 hits. Anyone? I know where the logfiles are kept.
Topic: Blocked treat. [b]Where is the logfile?[/b]
Anyone? [b]I know where the logfiles are kept.[/b]
just to clarify: Do you know? or Do you not know? or do you mean it blocked a threat and the result is not in the log file?
I know where the log files are kept. I’m asking what log file has information about this event.
I’m afraid you’d have to be more specific about the particular threat (its type, the shield, …)
As has been mentioned we need more information.
If you are getting a threat detection (Avast alert window), a screenshot could help us determine which shield it is and the location of its log file.
Thanks. Here’s the screenshot.
The bottom of your screenshot, it say “Detected by: Web shield”
Look here, C:\ProgramData\AVAST Software\Avast\report\WebShield.txt the file can be viewed in notepad and the entries are in reverse chronological order, e.g. the latest entries are at the bottom of the file.
Given the screenshot, what would be reported in the above file would be very much the same. Is there an alternate reason you would need to view the report file ?
Thanks that was helpful, sort of. I was hoping for more detailed information as to what caused the threat. As you said, there was no more info in that file. It just says Inoreader but I was hoping to see what RSS feed caused this.
Unfortunately it doesn’t go into much more detail than the alert itself.
According to this it is something in the PHP functioning on the site - frequently this can be the site having old PHP software which could be vulnerable to exploit. That would require action my the site owner of their host to update the PHP software.
davidr, thanks for the help. Ironically the RSS feed was from SANS Internet Storm. I contacted them but haven’t heard back.
You’re welcome.
I’m not familiar with the SANS Internet Storm Center, so why there might be a link to inoreader.com is something I don’t know.
Though a quick search for SANS Internet Storm Center found this https://www.incidents.org/ and I don’t know if the two are related. If so I just wonder if it isn’t something being investigated (3rd party link) that triggered it I just don’t know (as an avast user).