Is there a way to find out who...

Discussion in 'Malware Help (A Specialist Will Reply)' started by hankyknot, Feb 26, 2008.

  1. hankyknot

    hankyknot Corporal

    Last time I got asked this question was a couple of years ago and at that time I remember the general concensus was no, but technology moves on so I figure its time to ask it again.

    On a network consisting of two or more machines, if a virus infection occurs is there a way to trace the source of the infection? Did it come from a particular web-site, some unauthorised media, an email, etc and on which machine did the infection start?

    Its about education, not finger pointing.
     
    hankyknot, Feb 26, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Same answer. No not really. You can look at history logs and cookies (if they were not cleaned up) to try to see where someone has been surfing. But this will not tell you if you got infected from a particular website. You can look at file on the PC, what is being installed, and downloaded, but this still does not tell you where the infection came from. It may give you some ideas, but not necessarily any proof. The only thing you can be sure of is the infection itself and that is only when it is found. Some infections do a great job of hiding.
     
    chaslang, Feb 27, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds