When checking the logs on our Sonicwall, I noticed that we had entries for a blocked Trojan. I have copied the latest log entries (there are also intrusion prevention, but these are OK). I could not copy over the header, therefore, it should be:
Does this mean we have a trojan on our machine? It looks like all of the things are coming from the outside as the source, not from inside. The 192.168.168.150 is inside our network, and is our SBS 2003 server.
If we do have this Trojan, how can we get rid of it?
The header for the log files, not attached is
# Time Priority Category Message Source Destination