I am trying to create a custom check in Clean Access to check for the existence of a rootkit. The filename seems to be random, but it always starts with gaopdx. Is it possible to use a wildcard in the filename so that CCA could detect these files?
Check Category File Check Check Type File Existence Check Name DNS_Changer_Rootkit File Path - \System_32\ gaopdx *.dll Operator Does Not Exist Thanks, Shaun Pillé Network Manager Campus Technologies, LLC [email protected]
