ESET Online help

Select the topic

ESET Log Collector User interface

After you have downloaded ESET Log Collector from the ESET website, launch the ESET Log Collector. Once you accept the End-User License Agreement (EULA) ESET Log Collector will open. If you choose not to accept the terms in the End-User License Agreement (EULA), click Cancel and ESET Log Collector will not open.

elc_gui

You can choose a Collection profile or make your own artifact selection. Collection profile is a defined set of artifacts:

oDefault - Default profile with most of the artifacts selected. It is used for generic support cases. (See the List of artifacts section for detailed list of selected artifacts).

oThreat detection - Overlaps with the Default profile in many artifacts, but in contrast to the Default profile, the Threat detection profile focuses on collecting artifacts that helps with resolution of malware detection-related support cases. (See the List of artifacts section for detailed list of selected artifacts).

oAll - Selects all available artifacts.

oNone - Deselects all artifacts and allows you to select the appropriate check boxes for the logs that you want to collect.

oCustom - This collection profile is switched to automatically when you make a change to a previously chosen profile and your current combination of selected artifacts does not fit any of the above mentioned profiles.

note_icon_note NOTE

The list of displayed artifacts that can be collected changes depending on the detected type of ESET security product installed on your system, your system configuration, as well as other software such as Microsoft Server applications. Only relevant artifacts are available.

Select the Logs age limit [days] and ESET logs collection mode (default option is Filtered binary).

ESET logs collection mode:

oFiltered binary - Records are filtered by the number of days specified by Logs age limit [days], which means that only records for the last number of days will be collected.

oOriginal binary from disk - Copies ESET binary log files ignoring Logs age limit [days] value for ESET logs in order to collect all records regardless of their age. However, age limit still applies to non-ESET logs, such as Windows Event Logs, Microsoft SharePoint logs or IBM Domino logs.

You can specify the location where you want to save archive files and then click Save. The archive file name is already predefined. Click Collect. Application's operation can be interrupted anytime during the processing by pressing the same button – button's caption changes to Cancel during processing. Success or failure is indicated by a pop-up message. In case of failure, the log panel contains additional error information.

During the collection, you can view the operation log window at the bottom to see what operation is currently in progress. When collection is finished, all the collected and archived data will be displayed. This means that collection was successful and the archive file (for example, emsx_logs.zip, ees_logs.zip or eea_logs.zip) has been saved in the specified location. (See the List of artifacts section for detailed information).