Thanks in advance for any assistance you can provide me please…
I have a WebShield.txt file form the AVAST software file system that documents a number of important websites related to a CSAM investigation that I am looking for help to decipher the artifacts below:
Each line item has a date and time, followed by the URL of the CSAM site and then the following items:
[l] url:scam (0)
[l] url:blacklist (0)
I get the url:scam url:blacklist parts but what I need help with is the [l] and (0)
Also, is there a way to determine if they actually visited the sites or got blocked. We can see the user visiting the same sites in the log file over time and need to know if they are accessing the sites or getting blocked to viewing the sites?
Appreciate the help…