Web Threat Protection

Every time you go online, you expose information that is stored on your computer to viruses and other malware. They can infiltrate the computer while the user is downloading free software or browsing websites that are compromised by criminals. Network worms can find a way onto your computer as soon as you establish an Internet connection, even before you open a web page or download a file.

The Web Threat Protection component protects incoming and outgoing data that is sent to and from the computer over the HTTP and FTP protocols and checks URLs against the list of malicious or phishing web addresses.

The Web Threat Protection component intercepts every web page or file that is accessed by the user or an application via the HTTP or FTP protocol and analyzes them for viruses and other threats. The following happens next:

If the page or file is found not to contain malicious code, the user gains immediate access to them.

If a user accesses a web page or file that contains malicious code, the application performs the action that is specified in the Web Threat Protection component settings.

Web Threat Protection component settings

Parameter	Description
Action on threat detection	Inform. If this option is selected and an infected object is detected in the web traffic, the Web Threat Protection component allows this object to be downloaded to the computer; Kaspersky Endpoint Security logs an event containing information about the infected object and adds information about the infected object to the list of active threats. Block download. If this action is selected, on detecting an infected object in web traffic, the Web Threat Protection component blocks access to the object, displays a notification about the blocked access attempt, and makes a log entry with information about the infected object.
Do not scan web traffic from trusted web addresses	If the check box is selected, the Web Threat Protection component does not scan the content of web pages or websites whose addresses are included in the list of trusted web addresses.
Trusted web addresses	Contains the web addresses of web pages / websites whose content you trust. The Web Threat Protection component does not scan the content of web pages or websites whose addresses are included in the list of trusted web addresses. You can add both the address and the address mask of a web page / website to the list of trusted addresses. If the check box next to the address of the web page or website is selected, the Web Threat Protection component does not scan the content of the web page or website.

Parameter

Description

Action on threat detection

Inform. If this option is selected and an infected object is detected in the web traffic, the Web Threat Protection component allows this object to be downloaded to the computer; Kaspersky Endpoint Security logs an event containing information about the infected object and adds information about the infected object to the list of active threats.
Block download. If this action is selected, on detecting an infected object in web traffic, the Web Threat Protection component blocks access to the object, displays a notification about the blocked access attempt, and makes a log entry with information about the infected object.

Do not scan web traffic from trusted web addresses

If the check box is selected, the Web Threat Protection component does not scan the content of web pages or websites whose addresses are included in the list of trusted web addresses.

Trusted web addresses

Contains the web addresses of web pages / websites whose content you trust. The Web Threat Protection component does not scan the content of web pages or websites whose addresses are included in the list of trusted web addresses. You can add both the address and the address mask of a web page / website to the list of trusted addresses.

If the check box next to the address of the web page or website is selected, the Web Threat Protection component does not scan the content of the web page or website.

See also: Managing the application via the local interface

Enabling and disabling Web Threat Protection

Web Threat Protection settings

Page top