KSC Open API
Kaspersky Security Center API description
List of report field types

Report fields type is a 64-bit bitmask (paramLong) value that has one or two bits set to 1 - one mandatory bit for syntax representation (integer, string, IPv4, etc) and the other (optional) for semantic (event type name, product internal name, protection status, event severity, etc.).

The syntax is defined by the following bits:

Bit number (starting with 0)Meaning
0paramString
132-bit integer
2paramBool
3paramDate
4paramDateTime
5IPv4
6Bitmask (32-bit integer)
7IPv4 diapason
6064-bit integer (or 64-bit bitmask)
61paramBinary


The semantic is defined by the following bits:

Bit number (starting with 0)MeaningSyntax
8Product name.String (bit 0)
9Product version.String (bit 0)
10Administration group name.String (bit 0)
11Domain.String (bit 0)
12Host name.String (bit 0)
13License key.String (bit 0)
14Threat (virus) type, see Threat types enum.Integer (bit 1)
15Threat (virus) cure result action.String (bit 0)
16Network protocol.String (bit 0)
17Host protection status. Only two values from Host general statuses are possible: 1 for "Critical" and 2 for "Warning".Bitmask (bit 6)
18Host protection status reason. See Extended status mask, bit set.Bitmask (bit 6)
19Incident severity, see Incident severity levels.Integer (bit 1)
20Event severity, see List of event attributes.Integer (bit 1)
21Event type, see List of event attributes.String (bit 0)
22Virtual server name.String (bit 0)
23Vulnerability severity. See Vulnerability severity rating according to the Kaspersky classificationInteger (bit 1)
26Host status defined by product (HSDP).String (bit 0)
27Software update information source. See Software update information source enum.integer (bit 1)
28URL.String (bit 0)
29Web control result. See Web Control result enum.Integer (bit 1)
30Encryption state. See Settings for host status calculation.Integer (bit 1)
31Software update installation state. See Software update installation state enum.Integer (bit 1)
32Encryption type. See Encryption type enum.Bitmask (bit 6)
33USB file typeString (bit 0)
34Detection engine. See Threat detection engine type enum.Integer (bit 1)
35Threat detection method. See Threat detection method enum.paramInt
36File integrity monitor object type. See File integrity monitor object type enum.Bitmask (bit 6)
37File integrity monitor action. See File integrity monitor action enum.Bitmask (bit 6)
38Third-party software vendor ID.64-bit integer (bit 60)
39Third-party software product ID.64-bit integer (bit 60)
40Third-party software product major version ID.64-bit integer (bit 60)
41Third-party software patch ID.64-bit integer (bit 60)
42Software installation result. See Software installation result enum.Integer (bit 1)
43Software installation error classes. See Software installation error classes enum.Integer (bit 1)
44Unique binary ID of product component.Binary (bit 61)
45Product component status. See Product component status.Integer (bit 1)
46Product component version, integer value. Every 16 bits of which are interpreted as one part of the four-component version (for example 0x000a000201330000 means 10.2.307.0).64-bit integer (bit 60)
47Anti-virus database update status. See Anti-virus DB update status enum.Integer (bit 1)
50Address IPv6Binary (bit 61)