A host was infected with malware. During the incident response, Joe, a user, reported that he did not receive
any emails with links, but he had been browsing the internet all day. Which of the following would MOST likely
show where the malware originated?
A. The DNS logs
B. The web server logs
C. The SIP traffic logs
D. The SNMP logs
any emails with links, but he had been browsing the internet all day. Which of the following would MOST likely
show where the malware originated?
A. The DNS logs
B. The web server logs
C. The SIP traffic logs
D. The SNMP logs