Справочник Пользователя для Kaspersky Lab Hosted Email & Web Security, 50-99u, 2Y KL7604XWQDS
Модели
KL7604XWQDS
K
A S P E R S K Y
H
O S T E D
S
E C U R I T Y
S
E R V I C E S
28
S
PYWARE
F
ORENSIC
A
UDIT
The Spyware Audit sub-service enables an administrator to receive a detailed audit trail of all Spyware scanning activity
resulting in a blocked Web request.
resulting in a blocked Web request.
V
IEWING A
V
IRUS
E
VENT
E
XPORT
(S
PYWARE
A
UDIT
)
1. Click the ‘Spyware’ service tab at the top of the screen.
2. Click the ‘Forensic Audit’ button in the ‘Reports’ sub-service tab.
3. From the Spyware Audit page, select the desired date range required: either Today, Yesterday, Last full week,
Last full month or a customized date range. The date range can be up-to three months over the previous year.
4. Select who the audit is about – this can mean a specific user or the entire company. (See ‘
5. Click ‘Generate Audit’.
6. From the pop-up, select ‘Open’ to immediately view the file in Excel, or select ‘Save’ to save the data in a CSV
Excel file.
The requested activity is exported to a CSV file and contains the following data:
Date/Time – date and time of the event.
Threat Type – lists the pattern name of the offending malware (worm, Trojan, etc.).
User – identifies the IP address of the customer site.
Internal IP – identifies the internal IP address of the user.
Group – identifies the directory group from which the Web request originated (if available – requires installation
of a Connector).
of a Connector).
URL – lists the requested URL.