Appendix 6. Application events

Information about the operation of each Kaspersky Endpoint Security component, data encryption events, the completion of each malware scan task, update task and integrity check task, and the overall operation of the application is recorded in the Kaspersky Security Center event log and Windows event log.

Kaspersky Endpoint Security generates events of the following types: general events and specific events. Specific events are created only by Kaspersky Endpoint Security for Windows. Specific events have a simple ID, such as 000000cb. Specific events contain the following required parameters:

• GNRL_EA_DESCRIPTION is the content of the event.
• GNRL_EA_ID is the service ID of the event.
• GNRL_EA_SEVERITY is the status of the event. 1 – Informational message , 2 – Warning , 3 – Functional failure , 4 – Critical .
• EVENT_TYPE_DISPLAY_NAME is the title of the event.
• TASK_DISPLAY_NAME is the name of the application component that initiated the event.

General events can be created by Kaspersky Endpoint Security for Windows as well as other Kaspersky applications (for example, Kaspersky Security for Windows Server). General events have a more complex ID, such as GNRL_EV_VIRUS_FOUND. In addition to required settings, general events contain advanced settings.