Notifications

You can configure notifications to be sent when objects with the following status are detected during mail, replication or database scanning:

• infected;
• protected;
• not scanned.

Notifications can also contain information about actions taken on the object and the results of object processing.

During mail scanning, the body of a scanned message can be supplemented with a notification prepared using the template specified in the Message text field. The sender and recipients of this message and also administrators of the server and administrators of the profile to which this server belongs can be emailed notifications prepared using the template specified in the mail protection settings.

When scanning replications and databases, email notifications can be sent to the server administrators and the administrators of the profile to which this server belongs. The templates of notification emails are specified in the replication protection settings and database scan settings.

You can designate server administrators on the Information tab in the Server properties section. You can designate profile administrators on the General settings tab of the profile.

The settings for notifications about infected, protected, or not scanned objects are configured for each status individually in the mail protection, replication protection and database scanning settings.

The settings for notifications are defined by the profile that includes the protected server. It is not possible to configure the statistics settings for an individual server.

To configure the settings for notifications:

1. Select the profile whose settings you want to edit.
2. On the action panel, click the Modify button to switch to settings editing mode.
3. On the control panel, open the Mail protection, Replication protection or Database scanning tab and select the Actions tab.
4. On the Actions tab, select the settings section that corresponds to the status of the object the notifications about which you want to configure. You can select the following settings sections:
   • Infected object – configure the settings of notifications about detection of infected objects.
   • Protected object – configure the settings of notifications about detection of protected objects.
   • Not scanned object – configure the settings of notifications about detection of objects that have not been scanned due to corruption or malfunctions.
5. Configure the settings for notifications about detected objects and actions taken. To do so, select or clear the following check boxes:
   • Add notification to the message body. Kaspersky Anti-Virus supplements the body of a scanned message with a notification prepared using the template specified in the Message text field.
   • Notify sender. Kaspersky Anti-Virus sends an email notification as specified in the Message text field to the email address of the sender of the message.
   • Notify recipients. Kaspersky Anti-Virus sends an email notification as specified in the Message text field to the email address of message recipients.
   • Notify administrators. Kaspersky Anti-Virus sends notifications as specified in the Message text field to the email addresses of the server administrators or the administrators of the profile which includes the server.

     You can designate server administrators on the Information tab in the Server properties section. You can designate profile administrators on the General settings tab of the profile.

6. Enter the notification text in the Message text field. You can use the following macros in the message text:
   • %v – the name of a threat detected in an object;
   • %n – the name of an object discovered to contain a threat;
   • %t – the type of object in which a threat was detected: body of message, attachment, OLE object;
   • %q – information about saving a copy of the object in the Quarantine database: yes – the object has been quarantined, no – the object has not been quarantined;
   • %a – information about the action taken on the object: deleted – the object has been deleted; skipped – the object has been skipped; disinfected – the object has been disinfected;
   • %S – server name;
   • %P – path to the database in which the dangerous object has been detected;
   • %T – database name;
   • %R – database replica ID;
   • %U – UNID of a document;
   • %N – NOTEID of a document;
   • %M – date when the document was last modified;
   • %A – document author;
   • %E – author of the latest document changes.
7. In the action panel, click the Apply button to save the changes. To restore the default settings, click the Restore defaults button.