Scanning compound files attached to email messages
You can enable or disable scanning of message attachments, limit the maximum size of message attachments to be scanned, and limit the maximum message attachment scan duration.
To configure scanning of compound files attached to email messages:
- In the main application window, click the button
. - In the application settings window, select Essential Threat Protection → Mail Threat Protection.
- Click the Advanced settings button.
- In the Scan of compound files section, configure the scan settings:
- Scan attached files of Office formats. Scans Microsoft Office files (DOC, DOCX, XLS, PPT and other Microsoft extensions). Office format files include OLE objects as well.
- Scan attached archives. Scans archives in the following formats: RAR, ARJ, ZIP, CAB, LHA, JAR, and ICE.
- Do not scan archives larger than N MB. If this check box is selected, the Mail Threat Protection component excludes archives attached to email messages from scanning if their size exceeds the specified value. If the check box is cleared, the Mail Threat Protection component scans email attachment archives of any size.
- Limit the time for checking archives to N sec. If the check box is selected, the time that is allocated for scanning archives attached to email messages is limited to the specified period.
If during the scan, Kaspersky Endpoint Security detects a password for an archive in the text of the message, this password will be used to scan the content of the archive for malicious applications. In this case, the password is not saved. An archive is unpacked during scan. If an application error occurs during the unpacking process, you can manually delete the unpacked files that are saved to the following path: %systemroot%\temp. The files have the PR prefix.
- Save your changes.