[Azure] in the last mins was activated

Incident Report for OGtest

Update

[Comment from JSM]Mubeen Mohammed closed alert: "[Azure] in the last mins was activated"
Posted Nov 14, 2025 - 12:08 GMT

Investigating

ClamAV failed to update the daily database.

========================

{data={essentials={alertId=/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/providers/Microsoft.AlertsManagement/alerts/db055feb-1167-d29a-06df-12e88f4f001e, alertRule=ClamAV Daily Update Failure - Test, targetResourceType=microsoft.operationalinsights/workspaces, alertRuleID=/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001/providers/microsoft.insights/scheduledqueryrules/ClamAV Daily Update Failure - Test, severity=Sev1, signalType=Log, monitorCondition=Fired, targetResourceGroup=rg-clamav-australiacentral-001, monitoringService=Log Alerts V2, alertTargetIDs=[/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourcegroups/rg-clamav-australiacentral-001/providers/microsoft.operationalinsights/workspaces/log-clamav-australiacentral-001], configurationItems=[/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001/providers/Microsoft.OperationalInsights/workspaces/log-clamav-australiacentral-001], originAlertId=e69286d2-2089-ad9b-4b35-209783807dd5, firedDateTime=2025-11-07T21:09:33.8374937Z, description=ClamAV failed to update the daily database., essentialsVersion=1.0, alertContextVersion=1.0, investigationLink=https://portal.azure.com/#view/Microsoft_Azure_Monitoring_Alerts/Issue.ReactView/alertId/%2fsubscriptions%2fcdd8dcb4-1f9b-4d0a-af79-170583e49d3a%2fresourceGroups%2frg-clamav-australiacentral-001%2fproviders%2fMicrosoft.AlertsManagement%2falerts%2fdb055feb-1167-d29a-06df-12e88f4f001e}, alertContext={properties={resource_name=vm-clamav-australiacentral-001, resource_type=Virtual machine, resource_group_name=rg-clamav-australiacentral-001, subscription_name=SaaS-Operations, portal_link=https://portal.azure.com/#@azureadminintelledox.onmicrosoft.com/resource/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001}}}, schemaId=azureMonitorCommonAlertSchema}

=================

2. {essentials={alertId=/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/providers/Microsoft.AlertsManagement/alerts/db055feb-1167-d29a-06df-12e88f4f001e, alertRule=ClamAV Daily Update Failure - Test, targetResourceType=microsoft.operationalinsights/workspaces, alertRuleID=/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001/providers/microsoft.insights/scheduledqueryrules/ClamAV Daily Update Failure - Test, severity=Sev1, signalType=Log, monitorCondition=Fired, targetResourceGroup=rg-clamav-australiacentral-001, monitoringService=Log Alerts V2, alertTargetIDs=[/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourcegroups/rg-clamav-australiacentral-001/providers/microsoft.operationalinsights/workspaces/log-clamav-australiacentral-001], configurationItems=[/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001/providers/Microsoft.OperationalInsights/workspaces/log-clamav-australiacentral-001], originAlertId=e69286d2-2089-ad9b-4b35-209783807dd5, firedDateTime=2025-11-07T21:09:33.8374937Z, description=ClamAV failed to update the daily database., essentialsVersion=1.0, alertContextVersion=1.0, investigationLink=https://portal.azure.com/#view/Microsoft_Azure_Monitoring_Alerts/Issue.ReactView/alertId/%2fsubscriptions%2fcdd8dcb4-1f9b-4d0a-af79-170583e49d3a%2fresourceGroups%2frg-clamav-australiacentral-001%2fproviders%2fMicrosoft.AlertsManagement%2falerts%2fdb055feb-1167-d29a-06df-12e88f4f001e}, alertContext={properties={resource_name=vm-clamav-australiacentral-001, resource_type=Virtual machine, resource_group_name=rg-clamav-australiacentral-001, subscription_name=SaaS-Operations, portal_link=https://portal.azure.com/#@azureadminintelledox.onmicrosoft.com/resource/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001}}}

3. 2. {properties={resource_name=vm-clamav-australiacentral-001, resource_type=Virtual machine, resource_group_name=rg-clamav-australiacentral-001, subscription_name=SaaS-Operations, portal_link=https://portal.azure.com/#@azureadminintelledox.onmicrosoft.com/resource/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001}}

4

5. {properties={resource_name=vm-clamav-australiacentral-001, resource_type=Virtual machine, resource_group_name=rg-clamav-australiacentral-001, subscription_name=SaaS-Operations, portal_link=https://portal.azure.com/#@azureadminintelledox.onmicrosoft.com/resource/subscriptions/cdd8dcb4-1f9b-4d0a-af79-170583e49d3a/resourceGroups/rg-clamav-australiacentral-001}}

6.
Posted Nov 14, 2025 - 12:03 GMT
Current Status Powered by Atlassian Statuspage