How do you detect a Lovelorn virus-infected PC in the internal network to stop its mass-mailing payload? Given...
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
that our firewall uses NAT to hide internal IP addresses, how do I go around this to determine the culprit?
As will always be the case, the first way to look for a virus is using a virus scanner. You should have up-to-date AV software installed on all your machines already, but it sounds like that it not the case. This may be a way to get more upper-management approval for a process of updating the AV software and ensuring that it is installed on all machines.
A few other things to try, courtesy of my friends in AVIEWS:
I hope this helps you track down the offending machine and stop it.
For more info on this topic, check out these SearchSecurity.com resources:
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.