SecuReporter Antivirus
Hello, we´re working on a Windows Server 2019 as terminal server. In the secu reporter are some blocked Viruses. Is there any possibility to get more information on a terminal server (which User, was it from an e mail or from the internet e.g...)
Thanks
0
Accepted Solution
-
Hi @Michael_I,
For the source of a virus, you can find Search > Logs > Antivirus / Malware menu;
You can check Source port under this menu.
If through browser, the source port should be 80 or 443.
If through mail, the source port should be 110 or 995.
0
All Replies
-
edit: Using a Atp200
0 -
Hi @Michael_I,
As far as I understand Terminal Server means Remote Desktop Protocol. Do you mean you are accessing Windows Server 2019 via Remote Desktop Protocol?
0 -
Yes, we work with thin clients via rdp on a Windows Server. Behind the Server is the zyxel. Therefore I can´t exacly see what happens, when a Virus was blocked. I want to see which user it was and if it came via email oder Browser.
0 -
Without a proxy IMVHO you cannot catch the user logged triggering the issue.
0 -
Hi @Michael_I,
For the source of a virus, you can find Search > Logs > Antivirus / Malware menu;
You can check Source port under this menu.
If through browser, the source port should be 80 or 443.
If through mail, the source port should be 110 or 995.
0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight