By default, when new information about an application is detected in the Kaspersky Security Network database, Kaspersky Endpoint Security applies the control rules downloaded from the KSN database for this application. You can then manually edit the control rules for the application.
If an application was not in the Kaspersky Security Network database when started for the first time, but information about it was added to the database later, by default Kaspersky Endpoint Security automatically updates the control rules for this application.
You can disable downloads of application control rules from the Kaspersky Security Network database and automatic updates of control rules for previously unknown applications.
To disable downloads and updates of application control rules from the Kaspersky Security Network database:
In the right part of the window, the settings of the Host Intrusion Prevention component are displayed.