Scanning compound files attached to email messages
You can enable or disable scanning of message attachments, limit the maximum size of message attachments to be scanned, and limit the maximum message attachment scan duration.
To configure scanning of compound files attached to email messages:
- In the main application window, click the button
. - In the application settings window, select Essential Threat Protection → Mail Threat Protection.
- Click the Advanced Settings button.
- In the Scan of compound files block, configure the scan settings:
- Scan attached files of Microsoft Office formats. Scans Microsoft Office files (DOC, DOCX, XLS, PPT and other Microsoft extensions). Office format files include OLE objects as well.
- Scan attached archives. Scanning ZIP, GZIP, BZIP, RAR, TAR, ARJ, CAB, LHA, JAR, ICE, and other archive formats.
- Do not scan archives larger than N MB. If this check box is selected, the Mail Threat Protection component excludes archives attached to email messages from scanning if their size exceeds the specified value. If the check box is cleared, the Mail Threat Protection component scans email attachment archives of any size.
- Limit the time for checking archives to N sec. If the check box is selected, the time that is allocated for scanning archives attached to email messages is limited to the specified period.
If during the scan, Kaspersky Endpoint Security detects a password for an archive in the text of the message, this password will be used to scan the content of the archive for malicious applications. The password is not saved. The archive is unpacked before scanning. If an application error occurs during the unpacking process, you can manually delete the unpacked files that are saved to the following path: %systemroot%\temp. The files have the PR prefix.
- Save your changes.