Viewing IOC scanning task results

Support

Support for business applications

Kaspersky Sandbox

Managing Kaspersky Endpoint Agent for Windows

Managing Kaspersky Endpoint Agent tasks

Managing IOC scanning tasks

Viewing IOC scanning task results

August 12, 2022

ID 236247

To view the IOC Scan task results:

Open the Kaspersky Security Center Administration Console.
In the console tree, select the Tasks folder.
A list of task appears.
Open the settings of the required task in one of the following ways:
- Double-click the task name.
- Open the policy context menu and select Properties.
- Select a task and click Configure task in the right part of the window.
This opens the Properties: <Task name> window.
Select the Results section.
In the Show task results for the device list, select the devices for which you want to view the results of IOC Scan tasks.
To view detailed information for a specific task, double-click to expand it.
To view detailed information about the detected indicator of compromise, click the Show card button.

The IOC detections card contains information about objects that matched the conditions of the IOC file, as well as the text of matched branches or individual conditions of that IOC file.

Viewing the IOC detections card is not available for IOC files that had no indicators of compromise when scanned.

Kaspersky Professional Services

Implementation services. Health check and security system configuration. Contact us if you need expert help.

Kaspersky Premium Support (MSA): High‑priority incident processing

Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.