SecuReporter Antivirus
Hello, we´re working on a Windows Server 2019 as terminal server. In the secu reporter are some blocked Viruses. Is there any possibility to get more information on a terminal server (which User, was it from an e mail or from the internet e.g...)
Thanks
0
Accepted Solution
-
Hi @Michael_I,
For the source of a virus, you can find Search > Logs > Antivirus / Malware menu;
You can check Source port under this menu.
If through browser, the source port should be 80 or 443.
If through mail, the source port should be 110 or 995.
0
All Replies
-
edit: Using a Atp200
0 -
Hi @Michael_I,
As far as I understand Terminal Server means Remote Desktop Protocol. Do you mean you are accessing Windows Server 2019 via Remote Desktop Protocol?
0 -
Yes, we work with thin clients via rdp on a Windows Server. Behind the Server is the zyxel. Therefore I can´t exacly see what happens, when a Virus was blocked. I want to see which user it was and if it came via email oder Browser.
0 -
Without a proxy IMVHO you cannot catch the user logged triggering the issue.
0 -
Hi @Michael_I,
For the source of a virus, you can find Search > Logs > Antivirus / Malware menu;
You can check Source port under this menu.
If through browser, the source port should be 80 or 443.
If through mail, the source port should be 110 or 995.
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight