SecuReporter Antivirus
Hello, we´re working on a Windows Server 2019 as terminal server. In the secu reporter are some blocked Viruses. Is there any possibility to get more information on a terminal server (which User, was it from an e mail or from the internet e.g...)
Thanks
0
Accepted Solution
-
Hi @Michael_I,
For the source of a virus, you can find Search > Logs > Antivirus / Malware menu;
You can check Source port under this menu.
If through browser, the source port should be 80 or 443.
If through mail, the source port should be 110 or 995.
0
All Replies
-
edit: Using a Atp200
0 -
Hi @Michael_I,
As far as I understand Terminal Server means Remote Desktop Protocol. Do you mean you are accessing Windows Server 2019 via Remote Desktop Protocol?
0 -
Yes, we work with thin clients via rdp on a Windows Server. Behind the Server is the zyxel. Therefore I can´t exacly see what happens, when a Virus was blocked. I want to see which user it was and if it came via email oder Browser.
0 -
Without a proxy IMVHO you cannot catch the user logged triggering the issue.
0 -
Hi @Michael_I,
For the source of a virus, you can find Search > Logs > Antivirus / Malware menu;
You can check Source port under this menu.
If through browser, the source port should be 80 or 443.
If through mail, the source port should be 110 or 995.
0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 64 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight