Yes this can be possible.
Enable NTP.
In the antivirus and antispyware policy select filesystem autoprtect.In the advance tab click risk tracer .here select enable risk tracer .and select resolve the source computer ip adddress.
this will trace the ip address of the source . then you can see the logs in "Monitor" select "risk" as log type.
chose advance and select the settings as per your needs and analyze the logs to find the source.