Searching for Kaspersky Scan Engine events in KUMA

Searching for events from Kaspersky Scan Engine version 2.1

To search KUMA for events sent by Kaspersky Scan Engine version 2.1:

  1. In KUMA, go to the Events page.
  2. Specify the parameters of the search query as follows:
    • If Kaspersky Scan Engine works in ICAP mode:

      DeviceVendor = Kaspersky

      AND

      DeviceProduct = Scan Engine ICAP Service

    Search query: DeviceVendor = Kaspersky AND DeviceProduct = Scan Engine ICAP Service.

    KUMA search query for Kaspersky Scan Engine in ICAP mode

    • If Kaspersky Scan Engine works in HTTP mode:

      DeviceVendor = Kaspersky

      AND

      DeviceProduct = Scan Engine HTTP Service

    Search query: DeviceVendor = Kaspersky AND DeviceProduct = Scan Engine HTTP Service.

    KUMA search query for Kaspersky Scan Engine in HTTP mode

Searching for events from Kaspersky Scan Engine version 2.0

To search KUMA for events sent by Kaspersky Scan Engine version 2.0:

  1. In KUMA, go to the Events page.
  2. Specify the parameters of the search query as follows:
    • If Kaspersky Scan Engine works in ICAP mode:

      DeviceVendor = Kaspersky Lab

      AND

      DeviceProduct = Kaspersky ICAP Server

    • If Kaspersky Scan Engine works in HTTP mode:

      DeviceVendor = Kaspersky Lab

      AND

      DeviceProduct = Kaspersky HTTP Service

Page top