I have a question, we had a rouge program install on one of our machines, and I know which one it is, my question to you is can I view in our firewall logs to pinpoint exactly what website it came from? We use Panda Antivirus as our desktop solution, and that says at 8:13AM today is when it happened but that just might be when it executed not installed? I could check the logs on the machine around that time and see what sites were visited. But wouldn’t the firewall logs tell me what software exactly was downloaded and from what site? I looked at our Web Security logs for that day but could not find any red flags. We are using Astaro 110/120, and could I see the file type it was? So I can see why our software/hardware did not catch it before being installed.
Thanks
Josh O’neal
This thread was automatically locked due to age.
