LanDetective Internet Monitor - Log Management

After it has been processed, captured data is recorded in log. Log is a database where the application registers information on all intercepted data. Log is located in the working folder specified during the first start of LanDetective Internet Monitor (by default that is \Captured Data in the root folder of the disk where you have installed the application). Besides log, the folder contains captured data itself; in particular, on WEB, FTP and E-MAIL. Since intercepted data is stored in regular files, you can view it directly from disk, not bothering to start LanDetective Internet Monitor. For example, you can use your favorite image viewer to view captured images.

Captured data is structured on the disk as follows:

  • Path format for WEB files: {WorkDir} \ Data \ {Date} \ WEB \ {NIC} \ {ClientIP} \ {Host} \ {Type} \ {Subtype} \ {FileName}
    • {WorkDir} – working folder name (Captured Data by default)
    • {Date} – file creation date as YYYY-MM-DD
    • {NIC} – identifier of network interface data was captured from
    • {ClientIP} – IP address of client computer
    • {Host} – WEB site name
    • {Type} – the first part of media type descriptor (media type is given in the type/subtype format)
    • {Subtype} – the second part of media type descriptor (media type is given in the type/subtype format)
    • {FileName} – captured data file name
  • Path format for FTP files: {WorkDir} \ Data \ {Date} \ FTP \ {NIC} \ {ClientIP} \ {ServerIP} \ {ServerPath} \ {FileName}
    • {WorkDir} – working folder name (Captured Data by default)
    • {Date} – file creation date as YYYY-MM-DD
    • {NIC} – identifier of network interface data was captured from
    • {ClientIP} – IP address of client computer
    • {ServerIP} – IP address of FTP server
    • {ServerPath} – path to file on FTP server (may include sub-directories)
    • {FileName} – file name
  • Path format for E-MAILs: {WorkDir} \ Data \ {Date} \ MAIL \ {NIC} \ {ClientIP} \ {ServerIP} \ {FileName}
    • {WorkDir} – working folder name (Captured Data by default)
    • {Date} – file creation date as YYYY-MM-DD
    • {NIC} – identifier of network interface data was captured from
    • {ClientIP} – IP address of client computer
    • {ServerIP} – IP address of mail server
    • {FileName} – intercepted E-MAIL file name.

As LanDetective Internet Monitor keeps running, it can fill up your disk with a lot of files. We recommend purging log entirely from time to time or deleting useless (old) data from it. If you want to delete log entirely, just delete the Captured Data folder (exit the application first!). On its next launch, LanDetective Internet Monitor will create all files and folders necessary for its operation.

Also, LanDetective Internet Monitor provides very flexible log management. Use the Tools, Log Management... menu command or the Ctrl+L key combination. This will open the log management dialog box where you can purge log the way you need it done. When purging log through this dialog box, all corresponding files will be deleted from the disk too.