Information in the Alert information section

The Alert details section can display the following information about an alert:

• ,  or —Alert importance for the Kaspersky Anti Targeted Attack Platform user depending on the impact this alert may have on computer or corporate LAN security based on Kaspersky experience.
• Time—Time when the program generated the alert.
• Detected—One or multiple categories of detected objects. For example, when the application detects a file infected with the Trojan-Downloader.JS.Cryptoload.ad virus, the Detected field shows the Trojan-Downloader.JS.Cryptoload.ad category for this alert.
• Method—HTTP request method. For example, Get, Post, or Connect.
• URL—Detected URL. It may also contain a response code.

  Clicking the link with URL opens a list in which you can select one of the following actions:

  • Find on TIP by URL.
  • Find on TIP by domain name.
  • Find events.
  • Find alerts.
  • Copy value to clipboard.
• Referrer—URL from which the user was redirected to the website link requiring attention. In the HTTP protocol, it is one of the headers in the client's request containing the request source URL.
• Destination IP—IP address of the resource requested by the user or the application.

  Clicking the link with Destination IP opens a list in which you can select one of the following actions:

  • Find on TIP.
  • Find events.
  • Find alerts.
  • Copy value to clipboard.
• User name—Name of the user account whose actions led to the event.
• Request/Response—Length of the request and response.