Viewing the text log

By default, alerts generated by ZoneAlarm security software are logged in the file, ZAlog.txt. If you are using Windows95, Windows98 or Windows Me, the file is located in the following folder: (x):\Windows\Internet Logs. If you are using WindowsNT or Windows2000, the file is located in the following folder: (x):\Winnt\Internet Logs.

To view the current log as a text file:

Select Alerts & Logs.
Click Advanced.

The Advanced Alerts & Log Settings dialog box opens.

Select the Log Control panel.

In the Log Archive Location area, click View Log.

Text log fields

Log entries contain some combination of the fields described in the table below.

Field	Description	Example
Type	The type of event recorded.	FWIN
Date	The date of the alert, in format yyyy/mm/dd	2001/12/31(December 31, 2001)
Time	The local time of the alert. This field also displays the hours difference between local and Greenwich Mean Time (GMT).	17:48:00 -8:00GMT (5:48 PM, eight hours earlier than Greenwich Mean Time. GMT would be 01:48.)
Virus Name	The name of the virus that caused the event. This field only appears for anti-virus events.	iloveyou
File name	The name of the file that caused the event. This field only appears for Anti-virus events.	iloveyou.exe
Action	How the event was handled. The value for this field will depend on the type of event that occurred.	Anti-virus: Renamed MailSafe: Quarantined ID Lock: Blocked
Category	The ID Lock category of information that was detected in the event. This field only appears for ID Lock events.	Access PIN
Program	The program sending or receiving the e-mail that contains the ID Lock information. This field only appears for ID Lock events.	Outlook.exe
Source	The IP address of the computer that sent the blocked packet, and the port used; OR the program on your computer that requested access permission.	192.168.1.1:7138 Outlook.exe
Destination	The IP address and port of the computer the blocked packet was addressed to.	192.168.1.101:0
Transport	The protocol (packet type) involved.	UDP