A trace file lets you track the step-by-step execution of application commands and detect the stage at which an application error occurs.
Trace files are stored on the device as long as the application is in use, and are deleted permanently when the application is removed. Trace files are not sent to Kaspersky automatically.
Trace files are saved in a human-readable format. It is recommended to protect information from unauthorized access before sending it to Kaspersky.
By default, trace files are stored in the directory /var/log/kaspersky/kesl/. Root privileges are required to access the default trace files directory.
Contents of trace files
All trace files contain the following general data:
Trace files may store the following information in addition to general data:
Trace files of administration plug-ins
If you are using the Kaspersky Security Center Administration Console to manage the Kaspersky Endpoint Security application, information about events that occur during operation of the MMC administration plug-in may be logged to a trace file of the Kaspersky Endpoint Security MMC plug-in on the device where the Kaspersky Security Center Administration Server is installed. The file name contains the version number of Kaspersky Endpoint Security, file creation date and time, and process ID (PID). This file contains information about the events that occur during MMC plug-in operation, in particular, about the operation of policies and tasks.
In addition to general data, the trace file may contain the following information:
By default, trace files of the Kaspersky Endpoint Security MMC plug-in are not created. You can use registry keys to create the MMC plug-in trace file. Contact Technical Support representatives for detailed information on how to create trace files.
All created trace files of the MMC plug-in are located in the folder specified by the user during registry key configuration.
If you use the Kaspersky Security Center Web Console to manage the Kaspersky Endpoint Security application, information about events that occur during operation of the web administration plug-in may be written to the trace files of the web plug-in:
Trace files for the web plug-in are created automatically if logging of Web Console activities is enabled in Web Console Installation Wizard (for more details, refer to the Kaspersky Security Center Help).
Trace files of the web plug-in are stored in the Web Console installation folder in the "logs" subfolder.
Page top