KAV Detection logs

Question:

Where are the KAV detections saved on the Kaseya Server, database, and the endpoint?

 

Answer:

KAV detections are not stored on the server.
Detections are stored in the database in this table - SEC.DETECTION.

Detections are available from KES GUI.
KAV definitions that are updated by the 'Update' scheduled procedure are not available from the GUI for a reason. 
The path is 'C:\ProgramData\Kaspersky Lab\KES10SP*\Bases' where KES10SP* is different depending on the version of KES.

This information should not be needed in a general case.
KES provides a tool for looking into detections in the past - reports.


Refer to the screenshot.





The generated reports can be exported in txt files.

 

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us