Scanning compound files attached to email messages

You can enable or disable scanning of message attachments, limit the maximum size of message attachments to be scanned, and limit the maximum message attachment scan duration.

To configure scanning of compound files attached to email messages:

  1. In the lower part of the main application window, click the icon_settings button.
  2. In the application settings window, select ProtectionEssential Threat ProtectionMail Threat Protection.
  3. Click the Advanced settings button.
  4. In the Scan of compound files section, configure the scan settings:
    • Scan attached files of Microsoft Office formats. Scans Microsoft Office files (DOC, DOCX, XLS, PPT and other Microsoft extensions). Office format files include OLE objects as well.
    • Scan attached archives. Scans archives in the following formats: RAR, ARJ, ZIP, CAB, LHA, JAR, and ICE.
    • If during the scan, Kaspersky Endpoint Security detects a password for an archive in the text of the message, this password will be used to scan the content of the archive for malicious applications. In this case, the password is not saved. An archive is unpacked during scan. If an application error occurs during the unpacking process, you can manually delete the unpacked files that are saved to the following path: %systemroot%\temp. The files have the PR prefix.

    • Do not scan archives larger than N MB. If this check box is selected, the Mail Threat Protection component excludes archives attached to email messages from scanning if their size exceeds the specified value. If the check box is cleared, the Mail Threat Protection component scans email attachment archives of any size.
    • Limit archive scan time to N seconds. If the check box is selected, the time that is allocated for scanning archives attached to email messages is limited to the specified period.
  5. Save your changes.

     

Page top