I think we have a worm running through our network, we have unexpected connection drops and when anyone tries to do a Google search they get the 403 error. I’m not sure where I should begin in trying to find out if it is a worm or not. We have Symantec Anti-virus Corporate Edition and all definitions are up to date and everything checks out. I was thinking bringing a laptop from outside the network and plugging it in. Any suggestions on software to run to capture what gets sent? Any ideas would be appreciated.
Thanks
