Support

Support for business applications

Kaspersky Scan Engine

Using Kaspersky Scan Engine in HTTP mode

Using the sample HTTP client

Scan results for the HTTP client
Kaspersky Scan Engine
Нет результатов
Knowledge Base Online Help
FAQ System requirements Forum Contact support Recovery tools Product videos

Scan results for the HTTP client

March 5, 2024

ID 179886

For each scanned file, the sample HTTP client prints a scan result that specifies whether a scanned object is considered uninfected or malicious.

The following scan results are possible:

  • CLEAN

    Scanned object is considered uninfected.

  • DETECT

    Scanned object is considered malicious. This scan result is followed by the name of the detected object or the type of the detected URL.

    Kaspersky Scan Engine detects URLs of the following types:

    • Malicious URLs. When such a URL is detected, Kaspersky Scan Engine returns DETECT MALICIOUS_URL. The priority of this type is 1 (highest priority).
    • Phishing URLs. When such a URL is detected, Kaspersky Scan Engine returns DETECT PHISHING_URL. The priority of this type is 2.
    • Adware URLs. When such a URL is detected, Kaspersky Scan Engine returns DETECT ADWARE_URL. The priority of this type is 3.

      A URL of this type can only be detected when Cloud Protection is enabled.

    • URLs leading to legitimate software that can be used by intruders to damage computers or users' personal data). When such a URL is detected, Kaspersky Scan Engine returns DETECT RISKWARE_URL. The priority of this type is 4 (lowest priority).

      A URL of this type can only be detected when Cloud Protection is enabled.

    A URL can belong to several types simultaneously. In this case, Kaspersky Scan Engine returns the DETECT scan result of the highest priority.

  • DISINFECTED

    Scanned object has been successfully disinfected.

  • DELETED

    Scanned object was deleted.

If the scanned object contains macros, the scan result of this file is appended with "AND CONTAINS OFFICE MACRO".

Below is an example of the output produced by the sample HTTP client:

./kavhttp_client test.sh service.sh eicar.txt

Server address: /tmp/.kavhttpd

Network timeout: 2000

Scan mode: scanmemory

Scan file: test.sh

CLEAN

Scan file: service.sh

CLEAN

Scan file: eicar.txt

DETECT EICAR-Test-File

If the scanning operation failed, the scan result will contain one of the following error codes:

  • NON_SCANNED

    Specified object was not scanned. The reason for it is provided as well.

  • SERVER_ERROR

    An error occurred in Kaspersky Scan Engine.

  • CONNECTION_CLOSED

    Connection was closed by Kaspersky Scan Engine.

  • CLIENT_TIMEOUT

    Operation timed out. This happens when the client timeout is exceeded.

  • CONNECTION_FAILED

    Failed to establish a connection to Kaspersky Scan Engine.

  • HTTP_ERROR

    The server has responded with an HTTP status code that is not equal to 200. The HTTP status code and its description are provided as well.

Kaspersky Professional Services
Implementation services. Health check and security system configuration. Contact us if you need expert help.
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.