To switch to Kaspersky Internet Security:

1. Open the main application window.
2. In the lower part of the main window, click the More Tools button.

   The Tools window opens.

3. In the left part of the Tools window, click the Upgrade protection button.
4. The Upgrade window opens.
5. Click the Enter activation code link to go to the Activation window.
6. In the Activation window, enter the activation code in the entry field and click the Activate button.

   The Migration Wizard will start and you will be switched to Kaspersky Internet Security.

   If you enter an activation code for Kaspersky Anti-Virus, you will be switched to Kaspersky Anti-Virus. If an activation code for Kaspersky Total Security is entered, you will be switched to Kaspersky Total Security.

   After the license for the activated application expires, you can return to using Kaspersky Free.

To start the Wizard on a computer running under Microsoft Windows 7 or earlier versions,

in the Start menu, select All Programs → Kaspersky Free → Remove Kaspersky Free.

To start the Wizard on a computer running under Microsoft Windows 8 or a later operating system:

1. On the start screen, right click the Kaspersky Free tile to call up the toolbar.
2. Click the Remove button on the toolbar.
3. In the window that opens, select Kaspersky Free in the list.
4. Click the Remove button in the upper part of the list.

To start a Selective Scan from the context menu of an object:

1. Open Microsoft Windows Explorer and go to the folder that contains the object to be scanned.
2. Right-click to open the context menu of the object (see the following figure) and select Scan for viruses.

   

   Object context menu

To start a Selective Scan from the main application window:

1. Open the main application window.
2. Click the Scan button.

   The Scan window opens.

3. In the Scan window, select the Selective Scan section.
4. Specify objects to be scanned in one of the following ways:
   • Drag objects to the Selective Scan window.
   • Click the Add button and, in the file or folder selection window that opens, specify an object.
5. Click the Run scan button.

To open On-Screen Keyboard from the context menu of the application icon in the taskbar notification area:

Select On-Screen Keyboard.

To open On-Screen Keyboard from the application window:

1. Open the main application window.
2. In the lower part of the main window, click the More Tools button.

   The Tools window opens.

3. Go to the Security section.
4. Click the On-Screen Keyboard link on the right to open On-Screen Keyboard.

To open On-Screen Keyboard from the toolbar of Google Chrome, Microsoft Internet Explorer or Mozilla Firefox:

1. Click the  Kaspersky Protection button on the browser toolbar.
2. Select the On-Screen Keyboard item in the menu that opens.

To open the On-Screen Keyboard by using the hardware keyboard:

Press the shortcut CTRL+ALT+SHIFT+P.

To download and install Kaspersky Password Manager to protect your passwords,

click the Learn more button in the Notification Center window in the Recommendations section next to the prompt to install Kaspersky Password Manager.

Kaspersky Free downloads the Kaspersky Password Manager installation package and installs the application on your computer.

The Kaspersky Password Manager installation package you have downloaded remains in your computer regardless of whether or not it has been used to install Kaspersky Password Manager.

To resume computer protection:

In the taskbar notification area, in the context menu of the application icon, select Resume protection.

To export the application settings:

1. Open the main application window.
2. Click the button in the lower part of the window.

   The Settings window opens.

3. In the Settings window, select the General section.
4. In the Manage Settings drop-down list, select Export settings.
5. The Save window opens.
6. Specify a name for the configuration file and click the Save button.

The application settings are now saved in the configuration file.

You can also export the application settings at the command prompt, by using the following command: avp.com EXPORT <file_name>.

To import settings into a copy of the application installed on another computer:

1. On the other computer, open the main application window of Kaspersky Free.
2. Click the button in the lower part of the window.

   The Settings window opens.

3. In the Settings window, select the General section.
4. In the Manage Settings drop-down list, select Import settings.

   The Open window opens.

5. Specify a configuration file and click the Open button.

The settings are imported to the application that is installed on the other computer.

In the drop-down list, you can filter events by the following types of activity:

• All events. The list displays information about all actions performed by the application.
• Registry. The list displays information about actions performed by the application in the registry (for example, creation or deletion of keys and values or modification of rights).
• Files. The list displays information about actions performed by the application in the file system (for example, creation or deletion of files).
• Applications. The list displays information about actions performed by the application in the operating system (for example, initiation or termination of processes).

Contains a report on application activity that System Watcher has detected in the operating system. System Watcher keeps track of the file, registry, and operating system events associated with an application.

The list provides a description and details for each of the actions performed by the application (for example, path to a file or information about modification of the value of a registry key).

This window contains a report on application activity that System Watcher has detected in the operating system. System Watcher keeps track of the file, registry, and system events associated with an application.

The list displays actions performed by System Watcher to eliminate any consequences of malicious actions detected by this protection component.

The column displays the name of an object for which malicious actions have been rolled back.

The column displays the action that has been applied to the object specified in the Object column.

The column displays the time at which the action specified in the Action column was performed.

Fields for entering an application activation code. An activation code consists of four groups of characters (for example, ABA9C-CDEFG-ABCBC-ABC2D). Type the first group of characters the first entry field, the second group to the second field, and so on.

Clicking the Where can I find an activation code? link opens the Technical Support website in a browser window, which displays more information about the activation code.

If you specify an activation code for Kaspersky Internet Security in the entry field, the procedure for switching to Kaspersky Internet Security starts after activation is completed. If you specify an activation code for Kaspersky Total Security in the entry field, the procedure for switching to Kaspersky Total Security starts after activation is completed.

Clicking this link activates the trial version of the application. You will be able to use the trial version of the application with all features during a short evaluation period. When the license expires, the trial version of the application cannot be reactivated.

This option is available if the trial version of the application has not been used yet.

Click this link to open a browser window containing the eStore, where you can purchase a license.

To cancel application activation, click this link.

Clicking this button starts installation and activation of the application to which the activation code entered corresponds.

A field for entering the email address for logging into My Kaspersky portal.

A field for entering the password for logging into My Kaspersky portal.

Clicking this button logs you in to My Kaspersky portal.

Switch to the window for restoring a forgotten password of My Kaspersky portal account.

Clicking this button takes you to My Kaspersky portal registration form.

A field for entering the email address for registration on My Kaspersky portal.

A field for entering the password for registration on My Kaspersky portal.

A field for entering the password confirmation for registration on My Kaspersky portal.

Field for entering your first name. This field may not be displayed in all regions.

Field for entering your last name. This field may not be displayed in all regions.

In this field, you can select a store where you purchased Kaspersky Free.

If the check box is selected, you will be receiving Kaspersky Lab news at the specified email address.

If the check box is selected, you will receive Kaspersky Lab news and special offers at the specified email address. This check box is available if you use the application in the European Union.

In some regions, this check box is named I confirm that I allow AO Kaspersky Lab to use my email address to contact me by email about personalized special offers, reviews, surveys, order completion reminders, relevant news and events.

Clicking this button causes My Kaspersky portal account to be registered. An email with My Kaspersky portal account activation link arrives at the email address you specified.

Clicking this button connects the application to My Kaspersky portal.

A field for entering the email address for registration on My Kaspersky portal.

A field for entering the password for registration on My Kaspersky portal.

A field for entering the password confirmation for registration on My Kaspersky portal.

If the check box is selected, you will be receiving Kaspersky Lab news at the specified email address.

Clicking this button causes My Kaspersky portal account to be registered. An email with My Kaspersky portal account activation link arrives at the email address you specified.

When this option is selected, the Activation Wizard closes. The application will run under the detected current license. If a license for Kaspersky Internet Security or Kaspersky Total Security is found, the Migration Wizard opens.

If you select this option, the Activation Wizard continues running and activates Kaspersky Free. You will need to enter a new activation code that is valid for Kaspersky Free.

If you click this link, the Activation Wizard reattempts to activate the application. If problems with the Internet connection are temporary, the re-attempt may be successful.

To exit the Migration Wizard and return to the previous step, click this link.

The link provides access to an article in the Knowledge Base with information about the reasons for the error and possible solutions.

Links to Knowledge Base articles may not be available for some errors.

To cancel application activation, click this link.

The protection status indicator is located in the upper part of the main window. The color of the indicator reflects the protection status of the computer:

• Green. Protection of the computer is at the proper level. All protection components are functioning according to the settings recommended by Kaspersky Lab specialists. Kaspersky Free databases are up-to-date. No malicious objects have been detected during scanning or all detected objects have been neutralized.
• Yellow. Protection of the computer is reduced. Problems have been encountered during use of Kaspersky Free: for example, the application settings have been modified and do not match the recommended values, or the databases and application software modules have not been updated for several days.
• Red. There are problems that may lead to infection of the computer and loss of data. For example, some protection components have been paused or a failure has occurred in the operation of one or more protection components. The databases and application software modules may have not been updated for a long time, the application is not yet activated, or malicious objects that need to be neutralized have been detected.

• Clicking the protection status indicator opens the Notification Center window. This window displays a list of security problems that have been detected on the computer, recommendations on how to resolve problems and configure the application, and notifications about news from Kaspersky Lab.

Clicking this button opens the Upgrade window in which you can start using Kaspersky Internet Security.

The button is displayed if the current license expires in the next 30 days.

Clicking this button opens the Scan window. From this window you can run a Full Scan, Quick Scan, Selective Scan, or External Device Scan of your computer, as well as view the list of all running or completed scans in the Task Manager section.

Clicking this button opens the Update window, where you can view information about the latest update of databases and program modules of Kaspersky Free, virus activity, or start the process of updating databases and program modules.

This functionality is unavailable in Kaspersky Free.

This functionality is unavailable in Kaspersky Free.

This functionality is unavailable in Kaspersky Free.

This functionality is unavailable in Kaspersky Free.

Clicking this button opens the Tools window, in which you can use various wizards and tools to provide additional protection for your data.

Clicking this button displays the News section, where you can read news from Kaspersky Lab.

This button is available when there is at least one unread news item.

The button is displayed when unread news items are available.

Clicking this button opens the Settings window.

Clicking this button opens the Kaspersky Lab Technical Support window.

Clicking this link takes you to the Kaspersky Lab website where you can view information about other applications and offers.

Clicking this link opens My Kaspersky portal in the default browser of the operating system.

Clicking this link opens the Licensing window.

Clicking this link opens the License Information window, which provides information about the current license.

Clicking this button opens a window displaying the text of the License Agreement.

Clicking this button opens the Upgrade window. In this window, you can view information about Kaspersky Internet Security and you can start using this application.

Clicking this button starts the Activation Wizard.

This button is displayed if the application is not activated.

Clicking this button launches an update of the application databases.

This button is available if problems with the current license can be solved by updating the databases (for example, the release date of the databases does not match the license expiration date).

Clicking this button opens a browser window, which displays a page on the Technical Support website with information about the problem encountered.

This button is available if problems with the current license are encountered.

A password that restricts access to Kaspersky Free administration options.

If this check box is selected, Kaspersky Free remembers the entered password and no longer prompts for it during the current session.

Clicking this button opens the Licensing window with detailed information about the license.

Clicking this button opens a window with detailed information about the problem.

When this button is clicked, Kaspersky Free begins processing the detected object.

This button is available if an object has been detected.

Clicking the  button opens a menu from which you can select an additional action:

• Add to exclusions creates an exclusion according to which the object should not be recognized as malicious.
• Ignore moves the notification to the Ignored notifications section.
• Go to file opens the folder that originally contained the file.
• View report opens the Detailed reports window, which provides detailed information about detected objects and the application's actions performed on those objects.
• Learn more opens a web page with a description of the detected object.

When this button is clicked, Kaspersky Free begins processing all detected objects.

This button is available if more than 10 objects have been detected.

Clicking the  button opens a menu from which you can select an additional action:

• Ignore all moves all notifications of this group to the Ignored notifications section.
• Show all opens a window with a list of all detected objects.

When this button is clicked, Kaspersky Free runs an update of the databases and application software modules.

Clicking the button opens a menu from which you can select additional actions:

• Configure update opens the Update settings section of the application settings window. In this section, you can configure the mode for downloading and installing update packages, as well as select the update source.
• View report opens the report on updates of databases and application software modules.

When this button is clicked, Kaspersky Free stops updating databases and application software modules. This action is available if an update of databases and application software modules is running.

When this button is clicked, Kaspersky Free runs the previously paused component.

When this button is clicked, blocking of network traffic is disabled.

When this button is clicked, Kaspersky Free resumes protection of your computer.

This button is displayed if computer protection has been paused.

When this button is clicked, the application quits and starts again. This may be required, for example, to complete an update of databases and application modules.

When this button is clicked, the computer restarts. This may be required, for example, to complete the disinfection of a detected object.

When this button is clicked, automatic updating of databases and application software modules becomes available.

Clicking the button opens a menu from which you can select the Configure update action. Selecting this action opens the Update settings section of the application settings window. In this section, you can configure the mode for downloading and installing update packages, as well as select the update source.

Clicking this button opens the Additional protection tools settings window. In this window, you can enable use of Kaspersky Security Network.

When this button is clicked, Kaspersky Free runs an upgrade to a new version of the application.

When this button is clicked, the computer restarts. This may be required if you need to upgrade the version of the application.

When you click this button, Kaspersky Free installs the Kaspersky Protection extension in the Internet Explorer browser.

This button is displayed if the Kaspersky Protection extension is not installed in the Internet Explorer browser under the Windows 10 operating system.

Clicking this button opens a window with a list of news from Kaspersky Lab.

When this button is clicked, Kaspersky Free runs the previously paused component.

Clicking this button moves the notification from the Ignored notifications section to the Protection section.

When this button is clicked, Kaspersky Free begins processing the detected object.

This button is available if an object has been detected.

Clicking the  button opens a menu from which you can select an additional action:

• Add to exclusions creates an exclusion according to which the object should not be recognized as malicious.
• Ignore moves the notification to the Ignored notifications section.
• Go to file opens the folder that originally contained the file.
• View report opens the Detailed reports window, which provides detailed information about detected objects and the application's actions performed on those objects.
• Learn more opens a web page with a description of the detected object.

News is displayed as a list in the window. For each news item, its title, announcement, and time of publication is indicated.

Clicking this button opens the window with the news text.

Clicking the links opens your pages on Twitter or on social networks for posting news. You can edit the text to be posted.

If you have not logged in, the login page for the relevant social network website appears.

Links to social networks are shown if you are allowed to visit such sites.

Buttons that you can click to switch between news items.

Clicking this button opens a window that displays information about Kaspersky Security Network.

Clicking this button opens a window where you can view the Kaspersky Security Network Statement and agree or refuse to participate in Kaspersky Security Network.

This button is available if you have refused to participate in Kaspersky Security Network.

This list contains events that were recorded by Kaspersky Free during the day.

This list may include the following types of events:

• Detected objects
• Update of databases and application modules
• Completed scans

For events of every type, there is a link that opens a window with a detailed description of these events.

Time period for which a report is created.

You can create reports for the following periods:

• Week
• Month
• Entire period

This list contains events that were recorded by Kaspersky Free during the selected period.

This list may include the following types of events:

• Detected objects
• Update of databases and application modules
• Completed scans

For events of every type, there is a link that opens a window with a detailed description of these events.

Clicking this link opens the Detailed Reports window, in which you can view details on Kaspersky Free events.

The list of components and tasks is located in the left part of the window. In this list, you can select an application component or a task for which you want to view an activity report in the list of events.

Time period for which a report is created.

You can create reports for the following periods:

• Day
• Week
• Month
• Entire period

Clicking this button opens a window in which you can select the file to which the report information will be saved.

The left part of the window contains a list of events. The list contains information about events that have occurred while the application components were running and / or during a task.

In the right part of the Detailed reports window, detailed information is shown about the event selected in the list. If no events are selected, no information is displayed in the right part of the window.

In the Windows 10 RS3 operating system or later versions, when running a full scan or selective scan Kaspersky Free does not scan files that are stored in cloud storage repositories such as OneDrive. These files are scanned by File Anti-Virus when they are opened or modified.

Clicking this link starts an update of databases and program modules.

The link is displayed if databases and program modules have not been updated for a long time.

Clicking this button opens the Select file or folder to scan window. In this window, you can select the objects that you want Kaspersky Free to scan.

Clicking this button starts a scan.

Clicking this button stops the scan.

This button is available if a scan is running.

The list of objects contains disks, files, and folders to be scanned by Kaspersky Free when the Selective Scan task is running.

If the list of objects is empty, a rectangular area is displayed to which you can drag and drop objects for scanning. You can select objects in the Select file or folder to scan window. The window opens when you click the Add button.

By clicking the button shown next to each object in the list, you can remove the selected object from the scan list.

When this link is clicked, Kaspersky Free removes all items from the list of objects to scan. The link is not available if the list is blank.

Clicking this link opens the Detailed reports window, which provides detailed information about the completed scan. The link is displayed if the scan was completed or stopped.

Clicking this link starts an update of databases and program modules.

The link is displayed if databases and program modules have not been updated for a long time.

Clicking this button starts a scan.

Clicking this button stops the scan.

This button is available if a scan is running.

When this link is clicked, Kaspersky Free resumes a previously paused scan.

Clicking this link opens the Detailed reports window, which provides detailed information about the completed scan. The link is displayed if the scan was completed or stopped.

Clicking this link opens a menu with the following items:

• Full Scan — opens a window in which you can schedule a Full Scan.
• Quick Scan — opens a window in which you can schedule a Quick Scan.

Clicking this link opens a list from which you can select the action to be performed when a scan is completed:

• keep the computer turned on
• shut down the computer
• switch the computer to waiting mode
• switch the computer to sleep mode
• restart the computer

The link is displayed if Kaspersky Free runs a scan.

Clicking this link starts an update of databases and program modules.

The link is displayed if databases and program modules have not been updated for a long time.

Clicking this button starts a scan.

Clicking this button stops the scan.

This button is available if a scan is running.

When this link is clicked, Kaspersky Free resumes a previously paused scan.

Clicking this link opens the Detailed reports window, which provides detailed information about the completed scan. The link is displayed if the scan was completed or stopped.

Clicking this link opens a menu with the following items:

• Full Scan — opens a window in which you can schedule a Full Scan.
• Quick Scan — opens a window in which you can schedule a Quick Scan.

The drop-down list contains all mobile devices and removable drives that are connected to the computer.

The list is shown if at least one external device is connected to the computer.

Clicking this button starts a scan.

Clicking this button stops the scan.

This button is available if a scan is running.

Clicking this link opens the Detailed reports window, which provides detailed information about the completed scan. The link is displayed if the scan was completed or stopped.

Mode of resuming the operation of protection components in which protection is automatically enabled after a time interval that you specify.

You can specify a time interval in the drop-down list below.

Mode of resuming the operation of protection components in which protection is enabled after the application is quit and started again or the operating system is restarted (if automatic startup of the application is enabled).

Mode of resuming the operation of protection components in which protection is enabled only when you decide to resume it.

When this button is clicked, Kaspersky Free pauses the task. After that, information about the paused task is displayed in the lower part of the window, in the list of completed tasks.

Clicking this link opens the Detailed reports window, which provides detailed information about the completed scan. The link is displayed if the scan was completed or stopped.

Clicking this link opens the Notification Center window, in which you can select the action to take on threats that have been detected but not neutralized.

Clicking this link opens the Quarantine window, which contains a list of backup copies of files that have been deleted or modified during the disinfection process.

Clicking this button runs an update of the databases and application software modules.

Clicking this link opens the Detailed reports window, in which you can view information about completed updates of databases and application software modules.

Clicking this link opens the Update settings window. In this window, you can configure the run mode for updates.

Clicking this button cancels any updates, leaving databases and application modules unchanged.

The button is displayed during an update of application databases and modules.

Clicking this link opens the Detailed reports window, in which you can view information about completed updates of databases and application software modules.

The link is displayed during an update of application databases and modules.

Clicking this link opens securelist.com in a browser window, with an overview of current virus activity.

Contains a list of files moved to Quarantine. Quarantine is designed for storing backup copies of files that have been deleted or modified during the disinfection process.

This column displays the name of a quarantined file.

Right-clicking opens a context menu, from which you can perform the actions available for quarantined files: restore, remove, or open in original folder.

This column displays the path to the file.

This column shows the type of the detected object, for example, Network attack.

This column shows the date and time when the file was moved to Quarantine.

When this button is clicked, Kaspersky Free returns the file selected in the list to the folder in which it had been stored before it was moved to Quarantine.

When this button is clicked, Kaspersky Free deletes the file that is selected in the list.

Clicking this button causes Kaspersky Free to delete all backup copies of files that have been moved to Quarantine.

Clicking this button opens the Upgrade window, which provides you a description of computer protection features available through Kaspersky Internet Security. In this window, you can start using the trial version of Kaspersky Internet Security or proceed to the eStore to purchase an activation code for Kaspersky Internet Security. In this window, you can also activate Kaspersky Internet Security by entering an activation code that you have purchased previously.

Clicking this link opens the Cloud Protection window, which contains usage statistics for Kaspersky Security Network.

Clicking this link shows On-Screen Keyboard. On-Screen Keyboard protects data entered on the keyboard from interception. You can use On-Screen Keyboard to enter personal data, for example, when logging into websites or making money transfers through the Internet.

To make On-Screen Keyboard available, restart your computer after installing Kaspersky Free.

Clicking this link opens the Quarantine window, in which you can view information about files moved to Quarantine. Quarantine stores backup copies of files that have been deleted or modified during the disinfection process. Those copies are stored in a special format that is not dangerous for the computer.

The Report section provides information about the number of detected and neutralized threats, blocked applications, and network attacks. Clicking this section opens the Reports window.

Click this link to open a browser window containing the eStore, where you can purchase a license for Kaspersky Internet Security.

To switch from Kaspersky Free to the trial version of Kaspersky Internet Security, click this button.

To run the Kaspersky Internet Security Activation Wizard, click this link.

To open a browser window containing the eStore, where you can purchase an activation code for Kaspersky Total Security, click this link.

To run the Kaspersky Total Security Activation Wizard, click this link.

To switch from Kaspersky Free to the trial version of Kaspersky Total Security, click this button.

The list contains applications that are incompatible with the application being installed. Remove incompatible applications for proper operation of the application being installed.

When this button is clicked, the listed incompatible applications are removed from your computer and the Wizard continues running.

When this button is clicked, the listed incompatible applications are left on your computer and the Wizard continues running.

Simultaneous use of incompatible applications and the application being installed may result in improper operation of the application you are installing and significantly impair protection of your computer.

The list contains applications that are incompatible with the application being installed. Remove incompatible applications for proper operation of the application being installed.

Clicking this button opens a window that contains a list of applications installed on the computer. In this window, you can select applications that are incompatible with the application being installed in order to remove them from your computer.

When this button is clicked, the listed incompatible applications are left on your computer and the Wizard continues running.

Simultaneous use of incompatible applications and the application being installed may result in improper operation of the application you are installing and significantly impair protection of your computer.

This check box enables / disables a restart of the computer. The computer must be restarted for the Migration Wizard to continue.

If this check box is selected, clicking the Done button restarts the computer, after which the Migration Wizard continues.

If this check box is cleared, the computer is not restarted. The Migration Wizard automatically resumes after you restart or shut down and turn on the computer.

This button enables / disables all protection components of Kaspersky Free. Disabling protection components does not affect the performance of current scan tasks and update tasks of Kaspersky Free.

Kaspersky Free uses two modes to interact with the user:

• Interactive protection mode. Kaspersky Free notifies the user of all dangerous and suspicious events in the operating system. In this mode, the user independently decides whether to allow or block actions.
• Automatic protection mode. If any dangerous events occur, Kaspersky Free automatically performs the action recommended by Kaspersky Lab experts.

Selecting the check box enables automatic protection mode; clearing the check box enables interactive protection mode.

This check box enables / disables the Kaspersky Free feature that deletes malicious tools, adware, auto-dialers and suspicious packagers in automatic protection mode.

The function is available if the Perform recommended actions automatically check box is selected.

This check box enables / disables automatic launch of Kaspersky Free after the operating system loads.

Clicking this link opens the Password protection window. In this window, you can configure password protection for access to Kaspersky Free administration options.

This link is available if no password is set.

Clicking this link opens the Password protection window. After you type in the current password, you can configure password protection settings.

The link is available if a password has been set.

From this drop-down list, you can select a method of editing application settings or saving their values:

• Import settings. Extract application settings from a file in CFG format and apply them.
• Export settings. Save the current application settings to a file in CFG format.
• Restore settings. Run the Application Settings Restore Wizard.

In this drop-down list, you can select one of the preset security levels. The security level that you select is applied to all protection components for which this value can be configured.

You can choose one of the following security levels:

• Maximum security level. This level is recommended for dangerous computing environments.
• Optimal security level. This level is recommended for the majority of users.
• Minimum security level. This level provides maximum operating system performance.

The current password used for the administration of Kaspersky Free.

If this check box is selected, Kaspersky Free remembers the entered password and no longer prompts for it during the current session.

When this link is clicked, entry fields become available for specifying a new password and confirming it.

Password for administering Kaspersky Free.

Re-enter the password that you have entered in the New password field.

The check box enables / disables display of the password prompt when a user attempts to save changes to application settings.

The check box enables / disables display of the password prompt when the user attempts to quit the application.

This check box enables / disables display of the password prompt when a user attempts to remove the application.

This list includes protection components designed to protect against various types of digital threats.

Each type of threat is handled by a dedicated protection component. You cannot configure protection components in Kaspersky Free.

Clicking this button opens the Upgrade window where you can switch to Kaspersky Internet Security and get access to additional protection components.

With this button, you can enable / disable IM Anti-Virus.

If the button is green, IM Anti-Virus runs when the operating system is started. It is loaded in the RAM of the computer and scans incoming and outgoing messages that are sent and received via IM clients (ICQ, Jabber, and Mail.Ru Agent). IM Anti-Virus does not scan messages transmitted over Yahoo! Messenger, or messages transmitted through Mail.Ru Agent in offline mode.

You can find information about IM Anti-Virus limitations in the Limitations and warnings section.

With this button you can enable / disable Web Anti-Virus.

If the button is green, Web Anti-Virus protects data that is received via the HTTP and FTP protocols, and prevents dangerous

If the button is red, Web Anti-Virus is disabled.

Clicking this link opens a page with component details in a browser window.

When this security level is selected, Web Anti-Virus applies maximum scrutiny to scripts and objects that arrive via the HTTP and FTP protocols. Web Anti-Virus performs thorough scanning of all objects, using the complete set of application databases, and scans all embedded archives whose size does not exceed 1 MB. Web Anti-Virus performs a deep

This security level ensures optimal protection and speed when scanning web traffic and scripts. Web Anti-Virus scans embedded archives whose size does not exceed 1 MB, and performs medium-level heuristic analysis.

This security level ensures the maximum speed when scanning web traffic and scripts. Web Anti-Virus does not scan archives and performs light heuristic analysis.

Clicking the link causes Kaspersky Free to apply the Recommended security level. The link is displayed if you have modified the URL Advisor settings in the Advanced settings of Web Anti-Virus window in the Additional section.

In the drop-down list, you can select the action that Web Anti-Virus performs when an infected or probably infected object is detected:

• Select action automatically. Web Anti-Virus selects an action automatically based on the current settings. If a web resource is listed as an exclusion, or it contains no infected or probably infected objects, Web Anti-Virus allows access to it. If a scan performed by Web Anti-Virus detects an infected or probably infected object in the web resource, access to the web resource is blocked.

  This value is selected by default if automatic protection mode is enabled. If interactive protection mode is enabled, the setting is not available.

• Block. Web Anti-Virus blocks access to the web resource where the infected or probably infected object has been detected and shows a window notifying that the object has been blocked.
• Allow. Web Anti-Virus allows access to the web resource.

Clicking this link opens the Advanced settings of Web Anti-Virus window. This window lets you configure the settings of plug-in installation and activation in browsers, the settings of URL Advisor, and the settings of URL checks against the databases of phishing and malicious URLs.

Clicking this button opens a menu with a choice of the following actions:

• Import and add to existing. Selecting this option lets you import a list of trusted web addresses from a CSV file. The current addresses are not deleted.
• Import and replace existing. Selecting this option lets you import a list of trusted web addresses from a CSV file. The current addresses are deleted.
• Export. Selecting this option lets you export a list of trusted web addresses to a CSV file.

This list includes addresses of websites whose content you trust. Web Anti-Virus does not check whether links on the web pages from this list are included in the lists of malicious and phishing web addresses. You can add both a web address and address mask to the list.

If the Active value is set in the address line in the Status column, Web Anti-Virus does not scan links on web pages with the specified address.

If the Inactive value is set in the address line in the Status column, Web Anti-Virus scans links on web pages with the specified address.

This opens the window, in which you can change the selected web address / web address mask.

Removes the selected web address / address mask from the list

This opens the window, in which you can add a web address / web address mask.

If this check box is selected, when supported browsers are started the Kaspersky Protection extension is automatically activated in browsers.

If this check box is cleared, automatic activation of the Kaspersky Protection extension is not performed when starting browsers.

This check box enables / disables checking URLs on web pages against the lists of malicious or phishing web addresses.

In this mode, Web Anti-Virus checks all URLs on a web page and informs you of the danger level of a web resource before you access it. Web Anti-Virus does not scan the content of websites that have been added to the list of trusted web addresses.

Clicking the Manage exclusions link opens a window in which you can create a list of trusted URLs that Web Anti-Virus will not scan.

Clicking this link opens the Manage exclusions window. In this window, you can create a list of trusted URLs whose content you trust. Web Anti-Virus does not scan URLs on these websites to determine whether they are included in the lists of malicious and phishing addresses.

This link is available if the On all websites except those specified option is selected.

When this link scanning mode is enabled, Web Anti-Virus scans the content only of web addresses that have been added to the list of addresses to be scanned. Based on scanning results, Web Anti-Virus informs you of the danger level of web resources at the specified URLs before you access them.

Click the Configure checked websites link to open the Checked websites window. In this window, you can create a list of web addresses that you want for Web Anti-Virus to scan.

Clicking this link opens the Checked websites window. In this window, you can create a list of web addresses that you want for Web Anti-Virus to scan.

This link is available if the On specified websites only option is selected.

Clicking this button opens the URL Advisor window. In this window, you can select a mode for checking the URLs and categories of websites that you want to scan.

Clicking this link opens the Trusted URLs window. In this window, you can create a list of URLs whose content you trust.

This check box enables / disables checking whether links are included in the list of malicious URLs. The list is created by Kaspersky Lab's specialists and is part of the application distribution kit.

This check box enables / disables checking whether links are included in the list of phishing URLs.

Kaspersky Free databases include all websites currently known to be used for phishing attacks. Kaspersky Lab supplements this list with addresses obtained from the Anti-Phishing Working Group, which is an international organization. The list is updated when you update Kaspersky Free databases.

This check box enables / disables heuristic analysis during object scanning.

If this check box is selected, Kaspersky Free checks the target web address against a database of malicious web addresses that contain adware. When you attempt to visit web addresses of this category, the application shows a notification stating that the web address could be used to show ads.

If the check box is selected, Kaspersky Free checks the target URL against the database of URLs containing legitimate applications that can be used by criminals to damage your computer or personal data. When you attempt to visit web addresses of this category, the application shows a notification stating that the web address may be used by criminals to damage your computer or your data.

Resource web address / web address mask (for example, the web address www.virus.com).

When creating the mask, you can use the * character, which can replace any sequence of characters. For example, the *abc* mask represents any web address that contains the sequence abc. For example, the web address www.virus.com/download_virus/page_0-9abcdef.html matches this mask. If it is necessary to use the * character as an escape character, you can use the combination **. When this combination is processed, the * character will be interpreted as an asterisk (*) instead of representing any number of characters.

In the Status section, you can specify whether Web Anti-Virus should scan this address.

The following options are available:

• Active. Web Anti-Virus does not scan this web address.
• Inactive. Web Anti-Virus scans this web address.

If you select this option, Web Anti-Virus scans all links on web pages of all types.

If you select this option, Web Anti-Virus scans only links on web pages with search results received from search engines.

This check box enables / disables display of information, in the form of comments on website links, about the content categories of websites.

You can use the check boxes to select categories of websites about which you want for Web Anti-Virus to provide information in the form of a comment on links.

If this check box is selected, Web Anti-Virus displays information about the link category in a comment.

If this check box is cleared, Web Anti-Virus does not display information about the website category in a comment on the link.

Clicking this button opens a menu with a choice of the following actions:

• Import and add to existing. Selecting this option lets you import a list of trusted web addresses from a CSV file. The current addresses are not deleted.
• Import and replace existing. Selecting this option lets you import a list of trusted web addresses from a CSV file. The current addresses are deleted.
• Export. Selecting this option lets you export a list of trusted web addresses to a CSV file.

This list contains addresses of websites whose content you do not trust. Web Anti-Virus scans the content of web pages with these web addresses for dangerous objects.

You can add a web address or an address mask to the list.

If the Active value is set in the address line in the Status column, Web Anti-Virus scans the web page content for dangerous objects.

If the Inactive value is set in the address line in the Status column, Web Anti-Virus does not scan the content of the web page.

This opens the window, in which you can change the selected web address / web address mask.

Removes the selected web address / address mask from the list

This opens the window, in which you can add a web address / web address mask.

Clicking this button opens a menu with a choice of the following actions:

• Import and add to existing. Selecting this option lets you import a list of trusted web addresses from a CSV file. The current addresses are not deleted.
• Import and replace existing. Selecting this option lets you import a list of trusted web addresses from a CSV file. The current addresses are deleted.
• Export. Selecting this option lets you export a list of trusted web addresses to a CSV file.

This list includes web addresses of websites whose content you trust. Web Anti-Virus does not scan the content of URLs from this list. You can add either a trusted web address or an address mask to the list.

If the Active value is set in the address line in the Status column, Web Anti-Virus does not scan the content of web pages with this web address.

If the Inactive value is set in the address line in the Status column, Web Anti-Virus scans the content of web pages with this web address.

This opens the window, in which you can change the selected web address / web address mask.

Removes the selected web address / address mask from the list

This opens the window, in which you can add a web address / web address mask.

With this button, you can enable / disable Mail Anti-Virus.

If the button is green, Mail Anti-Virus runs when the operating system is started. It is loaded in the RAM of the computer and scans email messages transmitted via the POP3, SMTP, IMAP, MAPI, and NNTP protocols, as well as email messages sent over secure connections (SSL) via the POP3, SMTP, and IMAP protocols.

If the button is red, Mail Anti-Virus is disabled.

By default, the button is green.

When this security level is selected, Mail Anti-Virus applies maximum scrutiny to email messages. Mail Anti-Virus scans incoming and outgoing messages and attached archives, and performs heuristic analysis with the Deep scan level of detail.

The High security level is applied when working in a dangerous computing environment. An example of such an environment is a connection to a free email service from a home network that is not guarded by centralized email protection.

This security level ensures the optimum balance between operating system performance and security. When the Recommended security level is set, Mail Anti-Virus scans incoming and outgoing messages and attached archives, and performs heuristic analysis with the Medium scan level of detail.

This is the default security level.

When this security level is selected, Mail Anti-Virus scans incoming messages only and performs heuristic analysis with the Light scan level of detail. Attached archives are not scanned. If the Low security level is set, Mail Anti-Virus scans email messages at maximum speed and uses up fewer operating system resources.

The Low security level is used when working in a reliably protected environment. An example of such an environment might be a corporate network with centralized email security.

Clicking the link causes Kaspersky Free to apply the Recommended security level. The link is displayed if you have modified the email scan settings in the Advanced settings of Mail Anti-Virus window, except for the settings in the Connectivity section.

In the drop-down list, you can select the action that Mail Anti-Virus performs when an infected or probably infected object is detected.

• Prompt on detection. Mail Anti-Virus informs you of detection of an infected or probably infected object, prompting you for further actions to take on this object.

  This value is available in the list and is selected by default if interactive protection mode is enabled.

• Select action automatically. When infected or probably infected objects are detected, Mail Anti-Virus automatically performs the action that is recommended by Kaspersky Lab specialists. For infected objects, this action is Disinfect. This value is selected by default.

  Before attempting to disinfect or delete an infected object, Mail Anti-Virus creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

  This value is available in the list and is selected by default if automatic protection mode is enabled.

• Disinfect. Mail Anti-Virus attempts to disinfect all infected objects that are detected. If the disinfection attempt fails, Mail Anti-Virus allows the message through, adding a warning to its subject line about an infected object in the message. Relevant information is saved in a report.
• Disinfect, if not possible – delete. Mail Anti-Virus attempts to disinfect all infected objects that are detected. If disinfection fails, Mail Anti-Virus deletes these objects.
• Block. Mail Anti-Virus
  blocks

  Denying access to an object from third-party applications. A blocked object cannot be read, executed, modified, or deleted.

  Denying access to an object from third-party applications. A blocked object cannot be read, executed, modified, or deleted.

  access to an infected or probably infected object. Relevant information is saved in a report.
• Delete. Mail Anti-Virus deletes an infected or probably infected object. Relevant information is saved in a report.

Clicking this link opens the Advanced settings of Mail Anti-Virus window. In this window you can modify the protection scope of Mail Anti-Virus, set the intensity of message analysis by Heuristic Analyzer, configure the scan settings for different types of files and the settings of Mail Anti-Virus integration into the operating system.

Mail Anti-Virus scans both incoming and outgoing email.

Mail Anti-Virus scans incoming email only.

This check box enables / disables heuristic analysis during object scanning.

The slider allows you to adjust the level of heuristic analysis. The heuristic analysis level sets the balance between the thoroughness of searches for threats, the load on the operating system's resources, and the time required for scanning.

The following heuristic analysis levels are available:

• Light scan. Heuristic analyzer performs fewer operations found inside executable files. The probability of threat detection in this mode is somewhat lower. Scanning is faster and less resource-intensive.
• Medium scan. Heuristic analyzer performs the number of actions found within executable files recommended by the experts of Kaspersky Lab.
• Deep scan. Heuristic analyzer performs more operations found inside executable files. The probability of threat detection in this mode is higher. Scanning consumes more system resources and takes longer.

The slider is available if the Use Heuristic Analysis check box is selected.

This check box enables / disables the option to scan attached archives in Mail Anti-Virus.

This check box enables / disables the option restricting the maximum size of archives which Mail Anti-Virus will scan. This feature can accelerate mail scanning.

The maximum size is specified in megabytes. By default, the value is set to 8 MB.

If this check box is selected, Mail Anti-Virus excludes archives from scanning if their size exceeds the value that you have specified.

If the check box is cleared, Mail Anti-Virus scans archives of any size.

If this check box is selected, Mail Anti-Virus scans the stream of email messages coming in via POP3 / SMTP / NNTP / IMAP protocols before they are downloaded to the computer.

If the check box is cleared, Mail Anti-Virus scans email messages only after they arrive on the receiving computer.

The check box enables / disables integration of Mail Anti-Virus plug-in with Microsoft Office Outlook. This feature can be used to access the settings of Mail Anti-Virus quickly within Microsoft Office Outlook and configure scanning messages for the presence of dangerous objects.

With this button, you can enable or disable File Anti-Virus.

If the button is green, File Anti-Virus runs when the operating system starts. It is loaded in the RAM of the computer and scans files when they are opened, saved, and run. By default, File Anti-Virus is configured with the settings recommended by Kaspersky Lab specialists.

If the button is red, File Anti-Virus is disabled.

At this security level, File Anti-Virus applies the strictest control to all files that are opened, saved, and run. File Anti-Virus scans all file types on all hard drives, network drives, and removable storage media of the computer. It also scans archives, installer packages, and embedded OLE objects.

This security level ensures the optimum balance between operating system performance and security. This level is suitable for most situations. The File Anti-Virus component scans only specified file formats on all hard drives, network drives, and removable storage media of the computer, and performs light heuristic analysis. OLE objects are scanned. Installation packages and archives are not scanned.

At this security level, File Anti-Virus scans only files with the specified extensions on all hard, removable, and network drives of the computer, and performs light heuristic analysis. Compound files are not scanned.

The Low security level allows for maximum scanning speed.

Clicking the link causes Kaspersky Free to apply the Recommended security level. The link is displayed if you have modified settings in the Advanced settings of File Anti-Virus window.

In the drop-down list, you can select the action that File Anti-Virus performs when an infected or probably infected object is detected.

• Prompt on detection. File Anti-Virus informs you of detection of an infected or probably infected object and prompts you for the action to take on it.

  In interactive protection mode, this option is selected by default. In automatic protection mode, the option is unavailable.

• Select action automatically. Upon detection of an infected or probably infected object, File Anti-Virus automatically performs the action recommended by Kaspersky Lab experts on the object. For infected objects, this action is Disinfect. This value is selected by default.

  Before attempting to disinfect or delete an infected object, File Anti-Virus creates its backup copy for subsequent restoration or disinfection.

  In automatic protection mode, this option is selected by default. In interactive protection mode, the option is unavailable.

• Disinfect. File Anti-Virus attempts to disinfect all infected objects that are detected. If disinfection fails, File Anti-Virus blocks access to these objects.
• Disinfect, if not possible – delete. File Anti-Virus attempts to disinfect all infected objects that are detected. If disinfection fails, File Anti-Virus deletes the objects.
• Block. File Anti-Virus blocks access to the object. Relevant information is saved in a report.
• Delete. File Anti-Virus deletes an infected or probably infected object. Relevant information is saved in a report.

Clicking this link opens the Advanced settings of File Anti-Virus window. In this window you can modify the protection scope of File Anti-Virus, set the intensity of file analysis by Heuristic Analyzer, configure the scan settings for different types of files, and select scan modes and technologies.

File Anti-Virus will scan all files without exclusions (all formats and extensions).

File Anti-Virus considers files without extensions to be executables; they are always scanned, regardless of which type of files you have selected for scanning.

If you select this option, File Anti-Virus scans only files which a virus could infiltrate. Before searching for viruses in a file, its internal header is analyzed to determine the file format (TXT, DOC, EXE, etc.). During the scan, file extensions are also taken into consideration.

File Anti-Virus treats files without extensions as executables. File Anti-Virus always scans them, regardless of the file types you have selected for scanning.

In this case File Anti-Virus scans only potentially infectable files. The file format is determined based on the extension of a file.

File Anti-Virus considers files without extensions to be executables; they are always scanned, regardless of which type of files you have selected for scanning.

Clicking this link opens the File Anti-Virus protection scope window.

Signature analysis uses the Kaspersky Free database, which contains descriptions of known threats and methods for eradicating them. Protection using signature analysis provides a minimal acceptable security level.

As recommended by Kaspersky Lab experts, the application always has this analysis method enabled.

This check box enables / disables heuristic analysis during virus scanning.

Changes the level of heuristic analysis. The heuristic analysis level sets the balance between the thoroughness of searches for threats, the load on the operating system's resources, and the time required for scanning.

The following heuristic analysis levels are available:

• Light scan. Heuristic analyzer performs fewer operations found inside executable files. The probability of threat detection in this mode is somewhat lower. Scanning is faster and less resource-intensive.
• Medium scan. Heuristic analyzer performs the number of instructions found within executable files recommended by the experts of Kaspersky Lab.
• Deep scan. Heuristic analyzer performs more operations found in executable files. The probability of threat detection in this mode is higher. Scanning consumes more system resources and takes longer.

This check box enables / disables the scanning only of new files and those files that have changed since the last time they were scanned. File Anti-Virus scans both plain and compound files.

This check box enables / disables scanning of RAR, ARJ, ZIP, CAB, LHA, JAR and ICE archives.

The check box enables / disables scanning of installation packages.

This check box enables / disables scanning of

Clicking this button opens the Compound files window. In this window, you can configure scanning of compound files.

In this mode, File Anti-Virus scans an object based on the analysis of actions taken on the object (default mode).

For example, when working with a Microsoft Office document, Kaspersky Free scans the file the first time it is opened and the last time it is closed. Intermediate operations that overwrite the file do not cause it to be scanned.

In this mode, File Anti-Virus scans objects upon an attempt to open / modify them.

In this mode, File Anti-Virus scans objects only upon an attempt to open them.

In this mode, File Anti-Virus only scans objects upon an attempt to run them.

This technology is a development of the iChecker technology for computers using the NTFS file system.

There are limitations to iSwift Technology: it is bound to a specific file's location in the file system and works only with objects in the NTFS file system.

This check box enables / disables the use of iSwift technology.

This technology allows increasing scan speed by excluding certain files from scanning. Files are excluded from the scan using a special algorithm that takes into account the release date of Kaspersky Free databases, the date when the file was scanned last, and any changes made to the scan settings.

There are limitations to iChecker Technology: it does not work with large files and applies only to files with a structure that the application recognizes (for example, EXE, DLL, LNK, TTF, INF, SYS, COM, CHM, ZIP, and RAR).

This check box enables / disables the use of iChecker technology.

The check box enables or disables scanning of scripts and other objects using the Antimalware Scan Interface (AMSI) technology.

Clicking this link opens the Exclusions window. In this window, you can generate a list of scripts and other objects that Kaspersky Free will not scan using the Antimalware Scan Interface technology.

Contains objects scanned by File Anti-Virus.

By default, File Anti-Virus scans files executed on any hard drives, network drives, or removable media. Objects included in the list by default cannot be edited or deleted.

If this check box is selected, File Anti-Virus scans the object.

If this check box is cleared, File Anti-Virus temporarily excludes the object from scanning.

Clicking this button opens the Select file or folder to scan window. In this window you can select a folder or file to be included in the protection scope of File Anti-Virus.

Clicking this button deletes the selected object from the list.

The button is displayed on the right of each one of the objects that have been added manually. Scan objects included in the list by default cannot be removed.

This check box enables / disables the option that causes File Anti-Virus to reduce delay time when opening large-sized compound files.

If this check box is selected, File Anti-Virus does not unpack files larger than the specified limit. Files of a size which exceeds or equals the specified value are available for use while they undergo scanning. Files of a size which is less than the specified value are available for use only after File Anti-Virus unpacks them and scans their content.

If the check box is cleared, File Anti-Virus unpacks all compound files.

Regardless of whether the compound file itself undergoes scanning, File Anti-Virus scans files extracted from it.

Files whose size exceeds the limit are available for use while being scanned. The value is specified in megabytes.

If this check box is selected, File Anti-Virus excludes compound files from scanning if their size exceeds the specified value.

If this check box is cleared, compound files of all sizes are scanned.

Regardless of whether the compound file itself undergoes scanning, File Anti-Virus scans files extracted from it.

Kaspersky Free only scans files whose size does not exceed the specified value. The size of files is set in megabytes.

You are advised to use this security level if there is a high chance of computer infection.

As opposed to the default scan settings, the scan settings of this security level cause Kaspersky Free to scan all types of files. When scanning compound files, Kaspersky Free also scans mail-format files.

This security level is suitable in most cases and is recommended by Kaspersky Lab specialists.

This security level is the best option for handling applications with significant RAM requirements, because a smaller range of files is scanned when this level is selected

As opposed to the default scan settings, the scan settings of this security level cause Kaspersky Free to scan only new and changed files. If more than 180 seconds are required to scan files, Kaspersky Free excludes those files from scanning.

Clicking the link causes Kaspersky Free to apply the Recommended security level to all types of scans.

The link is displayed if you have selected different levels of security for Full Scan, Quick Scan and Selective Scan.

In the drop-down list, you can select the action that Kaspersky Free performs on detecting an infected or probably infected object.

The following actions are available:

• Select action automatically. When infected or probably infected objects are detected, Kaspersky Free automatically performs the action that is recommended by Kaspersky Lab specialists. For infected objects the action is Disinfect, if not possible – delete. The actions that the application performs on probably infected objects depend on the values of the main protection settings.

Before attempting to disinfect or delete an infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

This option is available and enabled by default if automatic protection mode is selected. You can enable automatic protection mode in the application settings window, in the General section, by selecting the Perform recommended actions automatically check box.

• Prompt when scan is complete. If Kaspersky Free detects an infected or probably infected object during a scan, it notifies you of this event when the scan is complete and prompts you for an action to take on the detected objects.

This option is available and enabled by default if interactive protection mode is selected. You can enable interactive protection mode in the application settings window, in the General section, by clearing the Perform recommended actions automatically check box.

• Prompt on detection. If Kaspersky Free detects an infected or probably infected object during a scan, it immediately notifies you of this event and prompts you for an action to take on the detected object.

This option is available if interactive protection mode is selected.

• Disinfect. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free blocks access to those objects.
• Disinfect, if not possible – delete. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free deletes the objects.
• Notify. When an infected or probably infected object is detected, a pop-up notification is displayed, showing details about the detected object.
• Delete. If infected or probably infected objects are detected, Kaspersky Free deletes them. Before deleting an infected or probably infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

Clicking the link causes Kaspersky Free to apply the default action on threat detection to all types of scans.

The link is displayed if you have selected different actions on threat detection for Full Scan, Quick Scan and Selective Scan.

In the drop-down list, you can select the action that Kaspersky Free performs when an external device is connected to the computer.

The following actions are available:

• Prompt for action. After you connect an external device, Kaspersky Free prompts you for further action: Quick Scan, Full Scan, or Do not scan.
• Do not scan. When you connect an external device, Kaspersky Free does not scan it and does not prompt you for any actions to take on the connected device.
• Quick Scan. When you connect an external device, Kaspersky Free scans files in the root folder of the device. This option is selected by default.
• Full Scan. When you connect an external device, Kaspersky Free runs a full scan of all files on the external device in accordance with the settings of the Full Scan task.
• Full Scan of devices with volume less than 64 GB. When you connect an external device with more than 64 GB of storage space, Kaspersky Free does not scan it and does not prompt you for any actions to take on the connected device. If the external device has less than 64 GB of storage capacity, Kaspersky Free runs a full scan of all files on the external device in accordance with the settings of the Full Scan task.

In this drop-down list, you can select the scan type and configure the schedule of scans of the selected type.

In this drop-down list, you can select one of the following actions:

• Full Scan settings – open the Full Scan settings window. In this window, you can set the Full Scan security level, select the action on threat detection during Full Scan, modify the Full Scan scope, and configure additional Full Scan settings.
• Quick Scan settings – open the Quick Scan settings window. In this window, you can set the Quick Scan security level, select the action on threat detection during Quick Scan, modify the Quick Scan scope, and configure additional Quick Scan settings.
• Selective Scan settings – open the Selective Scan settings window. In this window, you can set the Selective Scan security level, select the action on threat detection during Selective Scan, and configure additional Selective Scan settings.
• Vulnerability Scan scope – open the Scan window. In this window, you can specify the objects to be scanned by Kaspersky Free during the vulnerability scan task.
• Run scan with user rights – open the User Account Settings window. In this window, you can enter the name and password of the user under whose account the scan task will be performed.

You are advised to use this security level if there is a high chance of computer infection.

As opposed to the default scan settings, the Full Scan settings of this security level cause Kaspersky Free to scan all types of files. When scanning compound files, Kaspersky Free also scans mail-format files.

This security level is suitable in most cases when a Full Scan task is performed and is recommended by Kaspersky Lab specialists.

This security level is the best option for handling applications with significant RAM requirements, because a smaller range of files is scanned when this level is selected.

As opposed to the default scan settings, the Full Scan settings of this security level cause Kaspersky Free to scan only new and changed files. If more than 180 seconds are required to scan a file, Kaspersky Free excludes this file from scanning.

Clicking the link causes Kaspersky Free to apply the Recommended security level to the Full Scan.

The link is displayed if you have modified settings in the Additional settings of Full Scan window.

In the drop-down list, you can select the action that Kaspersky Free performs on detecting an infected or probably infected object.

The following actions are available:

• Select action automatically. When infected or probably infected objects are detected, Kaspersky Free automatically performs the action that is recommended by Kaspersky Lab specialists. For infected objects the action is Disinfect, if not possible – delete. The actions that the application performs on probably infected objects depend on the values of the main protection settings.

Before attempting to disinfect or delete an infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

This option is available and enabled by default if automatic protection mode is selected. You can enable automatic protection mode in the application settings window, in the General section, by selecting the Perform recommended actions automatically check box.

• Prompt when scan is complete. If Kaspersky Free detects an infected or probably infected object during a scan, it notifies you of this event when the scan is complete and prompts you for an action to take on the detected objects.

This option is available and enabled by default if interactive protection mode is selected. You can enable interactive protection mode in the application settings window, in the General section, by clearing the Perform recommended actions automatically check box.

• Prompt on detection. If Kaspersky Free detects an infected or probably infected object during a scan, it immediately notifies you of this event and prompts you for an action to take on the detected object.

This option is available if interactive protection mode is selected.

• Disinfect. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free blocks access to those objects.
• Disinfect, if not possible – delete. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free deletes the objects.
• Notify. When an infected or probably infected object is detected, a pop-up notification is displayed, showing details about the detected object.
• Delete. If infected or probably infected objects are detected, Kaspersky Free deletes them. Before deleting an infected or probably infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

Clicking this link opens the Scan window. In this window, you can specify the objects to be scanned during a Full Scan task.

Clicking this link opens the Additional settings of Full Scan window. In this window, you can specify Full Scan settings for various file types and Full Scan optimization settings, and select Full Scan methods and technologies.

Kaspersky Free scans files of all formats and extensions.

If you select this option, Kaspersky Free scans only files that can be infected by a virus. Prior to scanning an object for viruses, its internal header is analyzed in order to determine the file format. During the scan, file extensions are also taken into consideration.

In this case, Kaspersky Free scans only files that can be infected by a virus. The file format is determined based on the extension of a file.

Files without extensions are always scanned, regardless of the file type selected in the File types section.

This check box enables / disables the scanning only of new files and those files that have changed since the last time they were scanned. This scan mode applies both to simple and compound files.

This check box enables / disables the time limit for scanning an object. When the specified time interval elapses, file scanning is discontinued, and Kaspersky Free skips the file.

Selecting this check box causes the scan to stop after 30 seconds by default.

This check box enables / disables scanning of RAR, ARJ, ZIP, CAB, LHA, JAR and ICE archives.

The check box enables / disables scanning of installation packages.

This check box enables / disables scanning of OLE-objects embedded in files (such as Microsoft Office Excel spreadsheets or macros embedded in Microsoft Office Word files, email attachments) by Kaspersky Free.

This check box enables / disables the option for Kaspersky Free to scan files in email formats and mail databases.

If this check box is selected, Kaspersky Free parses the email format file and analyzes each component (body, attachments) for viruses.

If this check box is cleared, Kaspersky Free scans the email format file as a single object.

If this check box is selected, Kaspersky Free excludes from scanning compound files larger than the specified limit (except larger files extracted from archives).

If this check box is cleared, Kaspersky Free scans compound files of all sizes.

When performing signature analysis, Kaspersky Free uses databases that contain descriptions of known threats and ways of neutralizing them. Protection using signature analysis provides a minimal acceptable security level.

As recommended by Kaspersky Lab experts, the application always has this analysis method enabled.

This check box enables / disables heuristic analysis during virus scanning.

The slider allows you to adjust the level of heuristic analysis. The heuristic analysis level sets the balance between the thoroughness of searches for threats, the load on the operating system's resources, and the time required for scanning.

The following heuristic analysis levels are available:

• Light scan. Heuristic analyzer performs fewer operations found inside executable files. The probability of threat detection in this mode is somewhat lower. Scanning is faster and less resource-intensive.
• Medium scan. Heuristic analyzer performs the number of actions found within executable files recommended by the experts of Kaspersky Lab.
• Deep scan. Heuristic analyzer performs more operations found inside executable files. The probability of threat detection in this mode is higher. Scanning consumes more system resources and takes longer.

The slider is available if the Heuristic Analysis check box is selected.

This technology is a development of the iChecker technology for computers using the NTFS file system.

There are limitations to iSwift Technology: it is bound to a specific file's location in the file system and works only with objects in the NTFS file system.

This check box enables / disables the use of iSwift technology.

This technology allows increasing scan speed by excluding certain files from scanning. Files are excluded from the scan using a special algorithm that takes into account the release date of Kaspersky Free databases, the date when the file was scanned last, and any changes made to the scan settings.

There are limitations to iChecker Technology: it does not work with large files and applies only to files with a structure that the application recognizes (for example, EXE, DLL, LNK, TTF, INF, SYS, COM, CHM, ZIP, and RAR).

This check box enables / disables the use of iChecker technology.

You are advised to use this security level if there is a high chance of computer infection.

As opposed to the default scan settings, the Quick Scan settings of this security level cause Kaspersky Free to scan all types of files. When scanning compound files, Kaspersky Free also scans mail-format files.

This security level is suitable in most cases when a Quick Scan task is performed and is recommended by Kaspersky Lab specialists.

This security level is the best option for handling applications with significant RAM requirements, because a smaller range of files is scanned when this level is selected.

As opposed to the default scan settings, the Quick Scan settings of this security level cause Kaspersky Free to scan only new and changed files. If more than 180 seconds are required to scan a file, Kaspersky Free excludes this file from scanning.

Clicking the link causes Kaspersky Free to apply the Recommended security level to the Quick Scan.

The link is displayed if you have modified settings in the Additional settings of Quick Scan window.

In the drop-down list, you can select the action that Kaspersky Free performs on detecting an infected or probably infected object.

The following actions are available:

• Select action automatically. When infected or probably infected objects are detected, Kaspersky Free automatically performs the action that is recommended by Kaspersky Lab specialists. For infected objects the action is Disinfect, if not possible – delete. The actions that the application performs on probably infected objects depend on the values of the main protection settings.

Before attempting to disinfect or delete an infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

This option is available and enabled by default if automatic protection mode is selected. You can enable automatic protection mode in the application settings window, in the General section, by selecting the Perform recommended actions automatically check box.

• Prompt when scan is complete. If Kaspersky Free detects an infected or probably infected object during a scan, it notifies you of this event when the scan is complete and prompts you for an action to take on the detected objects.

This option is available and enabled by default if interactive protection mode is selected. You can enable interactive protection mode in the application settings window, in the General section, by clearing the Perform recommended actions automatically check box.

• Prompt on detection. If Kaspersky Free detects an infected or probably infected object during a scan, it immediately notifies you of this event and prompts you for an action to take on the detected object.

This option is available if interactive protection mode is selected.

• Disinfect. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free blocks access to those objects.
• Disinfect, if not possible – delete. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free deletes the objects.
• Notify. When an infected or probably infected object is detected, a pop-up notification is displayed, showing details about the detected object.
• Delete. If infected or probably infected objects are detected, Kaspersky Free deletes them. Before deleting an infected or probably infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

Clicking this link opens the Scan window. In this window, you can specify the objects to be scanned during a Quick Scan task.

Clicking this link opens the Additional settings of Quick Scan window. In this window, you can specify Quick Scan settings for various file types and Quick Scan optimization settings, and select Quick Scan methods and technologies.

Kaspersky Free scans files of all formats and extensions.

If you select this option, Kaspersky Free scans only files that can be infected by a virus. Prior to scanning an object for viruses, its internal header is analyzed in order to determine the file format. During the scan, file extensions are also taken into consideration.

In this case, Kaspersky Free scans only files that can be infected by a virus. The file format is determined based on the extension of a file.

Files without extensions are always scanned, regardless of the file type selected in the File types section.

This check box enables / disables the scanning only of new files and those files that have changed since the last time they were scanned. This scan mode applies both to simple and compound files.

This check box enables / disables the time limit for scanning an object. When the specified time interval elapses, file scanning is discontinued, and Kaspersky Free skips the file.

Selecting this check box causes the scan to stop after 30 seconds by default.

This check box enables / disables scanning of RAR, ARJ, ZIP, CAB, LHA, JAR and ICE archives.

The check box enables / disables scanning of installation packages.

This check box enables / disables scanning of OLE-objects embedded in files (such as Microsoft Office Excel spreadsheets or macros embedded in Microsoft Office Word files, email attachments) by Kaspersky Free.

This check box enables / disables the option for Kaspersky Free to scan files in email formats and mail databases.

If this check box is selected, Kaspersky Free parses the email format file and analyzes each component (body, attachments) for viruses.

If this check box is cleared, Kaspersky Free scans the email format file as a single object.

If this check box is selected, Kaspersky Free excludes from scanning compound files larger than the specified limit (except larger files extracted from archives).

If this check box is cleared, Kaspersky Free scans compound files of all sizes.

When performing signature analysis, Kaspersky Free uses databases that contain descriptions of known threats and ways of neutralizing them. Protection using signature analysis provides a minimal acceptable security level.

As recommended by Kaspersky Lab experts, the application always has this analysis method enabled.

This check box enables / disables heuristic analysis during virus scanning.

The slider allows you to adjust the level of heuristic analysis. The heuristic analysis level sets the balance between the thoroughness of searches for threats, the load on the operating system's resources, and the time required for scanning.

The following heuristic analysis levels are available:

• Light scan. Heuristic analyzer performs fewer operations found inside executable files. The probability of threat detection in this mode is somewhat lower. Scanning is faster and less resource-intensive.
• Medium scan. Heuristic analyzer performs the number of actions found within executable files recommended by the experts of Kaspersky Lab.
• Deep scan. Heuristic analyzer performs more operations found inside executable files. The probability of threat detection in this mode is higher. Scanning consumes more system resources and takes longer.

The slider is available if the Heuristic Analysis check box is selected.

This technology is a development of the iChecker technology for computers using the NTFS file system.

There are limitations to iSwift Technology: it is bound to a specific file's location in the file system and works only with objects in the NTFS file system.

This check box enables / disables the use of iSwift technology.

This technology allows increasing scan speed by excluding certain files from scanning. Files are excluded from the scan using a special algorithm that takes into account the release date of Kaspersky Free databases, the date when the file was scanned last, and any changes made to the scan settings.

There are limitations to iChecker Technology: it does not work with large files and applies only to files with a structure that the application recognizes (for example, EXE, DLL, LNK, TTF, INF, SYS, COM, CHM, ZIP, and RAR).

This check box enables / disables the use of iChecker technology.

You are advised to use this security level if there is a high chance of computer infection.

As opposed to the default scan settings, the Selective Scan settings of this security level cause Kaspersky Free to scan all types of files. When performing a Selective Scan of compound files, Kaspersky Free also scans mail-format files.

This security level is suitable in most cases when a Selective Scan task is performed and is recommended by Kaspersky Lab specialists.

This security level is the best option for handling applications with significant RAM requirements, because a smaller range of files is scanned when this level is selected.

As opposed to the default scan settings, the Selective Scan settings of this security level cause Kaspersky Free to scan only new and changed files. If more than 180 seconds are required to scan a file, Kaspersky Free excludes this file from the selective scan.

Clicking the link causes Kaspersky Free to apply the Recommended security level to the Selective Scan.

The link is displayed if you have modified settings in the Additional settings of Selective Scan window.

In the drop-down list, you can select the action that Kaspersky Free performs on detecting an infected or probably infected object.

The following actions are available:

• Select action automatically. When infected or probably infected objects are detected, Kaspersky Free automatically performs the action that is recommended by Kaspersky Lab specialists. For infected objects the action is Disinfect, if not possible – delete. The actions that the application performs on probably infected objects depend on the values of the main protection settings.

Before attempting to disinfect or delete an infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

This option is available and enabled by default if automatic protection mode is selected. You can enable automatic protection mode in the application settings window, in the General section, by selecting the Perform recommended actions automatically check box.

• Prompt when scan is complete. If Kaspersky Free detects an infected or probably infected object during a scan, it notifies you of this event when the scan is complete and prompts you for an action to take on the detected objects.

This option is available and enabled by default if interactive protection mode is selected. You can enable interactive protection mode in the application settings window, in the General section, by clearing the Perform recommended actions automatically check box.

• Prompt on detection. If Kaspersky Free detects an infected or probably infected object during a scan, it immediately notifies you of this event and prompts you for an action to take on the detected object.

This option is available if interactive protection mode is selected.

• Disinfect. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free blocks access to those objects.
• Disinfect, if not possible – delete. Kaspersky Free attempts to disinfect all infected objects that are detected. If disinfection fails, Kaspersky Free deletes the objects.
• Notify. When an infected or probably infected object is detected, a pop-up notification is displayed, showing details about the detected object.
• Delete. If infected or probably infected objects are detected, Kaspersky Free deletes them. Before deleting an infected or probably infected object, Kaspersky Free creates a backup copy in case there is a later need to restore the object or possibility of disinfecting it.

Clicking this link opens the Additional settings of Selective Scan window. In this window, you can specify Selective Scan settings for various file types and Selective Scan optimization settings, and select Selective Scan methods and technologies.

Kaspersky Free scans files of all formats and extensions.

If you select this option, Kaspersky Free scans only files that can be infected by a virus. Prior to scanning an object for viruses, its internal header is analyzed in order to determine the file format. During the scan, file extensions are also taken into consideration.

In this case, Kaspersky Free scans only files that can be infected by a virus. The file format is determined based on the extension of a file.

Files without extensions are always scanned, regardless of the file type selected in the File types section.

This check box enables / disables the scanning only of new files and those files that have changed since the last time they were scanned. This scan mode applies both to simple and compound files.

This check box enables / disables the time limit for scanning an object. When the specified time interval elapses, file scanning is discontinued, and Kaspersky Free skips the file.

Selecting this check box causes the scan to stop after 30 seconds by default.

This check box enables / disables scanning of RAR, ARJ, ZIP, CAB, LHA, JAR and ICE archives.

The check box enables / disables scanning of installation packages.

This check box enables / disables scanning of OLE-objects embedded in files (such as Microsoft Office Excel spreadsheets or macros embedded in Microsoft Office Word files, email attachments) by Kaspersky Free.

This check box enables / disables the option for Kaspersky Free to scan files in email formats and mail databases.

If this check box is selected, Kaspersky Free parses the email format file and analyzes each component (body, attachments) for viruses.

If this check box is cleared, Kaspersky Free scans the email format file as a single object.

If this check box is selected, Kaspersky Free excludes from scanning compound files larger than the specified limit (except larger files extracted from archives).

If this check box is cleared, Kaspersky Free scans compound files of all sizes.

When performing signature analysis, Kaspersky Free uses databases that contain descriptions of known threats and ways of neutralizing them. Protection using signature analysis provides a minimal acceptable security level.

As recommended by Kaspersky Lab experts, the application always has this analysis method enabled.

This check box enables / disables heuristic analysis during virus scanning.

The slider allows you to adjust the level of heuristic analysis. The heuristic analysis level sets the balance between the thoroughness of searches for threats, the load on the operating system's resources, and the time required for scanning.

The following heuristic analysis levels are available:

• Light scan. Heuristic analyzer performs fewer operations found inside executable files. The probability of threat detection in this mode is somewhat lower. Scanning is faster and less resource-intensive.
• Medium scan. Heuristic analyzer performs the number of actions found within executable files recommended by the experts of Kaspersky Lab.
• Deep scan. Heuristic analyzer performs more operations found inside executable files. The probability of threat detection in this mode is higher. Scanning consumes more system resources and takes longer.

The slider is available if the Heuristic Analysis check box is selected.

This technology is a development of the iChecker technology for computers using the NTFS file system.

There are limitations to iSwift Technology: it is bound to a specific file's location in the file system and works only with objects in the NTFS file system.

This check box enables / disables the use of iSwift technology.

This technology allows increasing scan speed by excluding certain files from scanning. Files are excluded from the scan using a special algorithm that takes into account the release date of Kaspersky Free databases, the date when the file was scanned last, and any changes made to the scan settings.

There are limitations to iChecker Technology: it does not work with large files and applies only to files with a structure that the application recognizes (for example, EXE, DLL, LNK, TTF, INF, SYS, COM, CHM, ZIP, and RAR).

This check box enables / disables the use of iChecker technology.

Select an account whose rights will be used by Kaspersky Free to run scan tasks. The feature is available for running both manual scans and scheduled scans in Kaspersky Free.

The following options are available:

• Current user. Scan tasks will be run with the rights of the current account.
• Other user. The specified user account will be used to run scan tasks. If you select this option, type the account name and the password in the User account and Password fields, respectively.

You can select the scan run mode from the drop-down list. Scans can be run manually or according to a schedule at specified intervals.

The following run options are available:

Manually. Scheduled task launch is disabled in this mode. You run the scan manually when it is convenient for you.

• Every day. The task runs every day at the specified time.

The Time field is available for this value. You can specify the run time in the text box.

• Every weekday. The task runs on working days at the specified time.

The Time field is available for this value. You can specify the run time in the text box.

• Every weekend. The task runs on weekends at the specified time.

The Time field is available for this value. You can specify the run time in the text box.

• Weekly. The task runs on specific days of the week.

The following settings are available for this value:

• Day of the week. In the drop-down list, you can select a day of the week when the scan task will run.
• Time. You can specify the task run time in the text box.

• Monthly. The task runs on specific days of the month.

The following settings are available for this value:

• Day of the month. In the drop-down list, you can select the first or the last day of the month as the scan task run date.
• Time. You can specify the task run time in the text box.

If the check box is selected, the application runs skipped tasks. For example, if the computer was turned off, the application runs the skipped tasks after the computer is turned on.

If this check box is cleared, Kaspersky Free does not run skipped tasks. Instead, it runs the next task in accordance with the specified schedule.

This check box is displayed when the daily or weekly value is selected in the list.

This check box enables / disables the function of Kaspersky Free for postponing task launch until you are done using the computer. This means that scan tasks will not use system resources while you work.

If this check box is selected, Kaspersky Free runs a scheduled scan after the screensaver is activated or the computer is locked.

The check box is not displayed if the manually option in the Run scan list is selected.

Contains a list of disks, folders, and other objects that Kaspersky Free scans when running the selected task: Full Scan, Quick Scan, or Vulnerability Scan.

If the check box in the object line is selected, Kaspersky Free scans the object when running the task.

If the check box in the object line is cleared, Kaspersky Free excludes this object from the scan.

Clicking this button opens a window for selecting a file or a folder that you want to add to the list of objects to scan. Each object selected for scanning is added to the end of the list.

Clicking this button deletes the selected object from the list.

The button is displayed on the right of each one of the objects that have been added manually. Scan objects included in the list by default cannot be removed.

The field contains the path to a file or folder to be added to the list of objects included in the scan or protection scope. You can select a file or a folder from the tree above the entry field, or specify one manually.

The list contains the addresses of resources from which Kaspersky Free downloads database and application module updates. In the Source column, an FTP or HTTP site or a path to a network or local folder can be specified.

During the update process, Kaspersky Free checks this list, selects the first server address, and tries to download the updates package from it. If Kaspersky Free fails to download the update package from the selected address, it proceeds to the next address in the list and attempts to download the update package.

If the Active value is set in the update source line in the Status column, Kaspersky Free uses this update source.

If the Inactive value is set in the update source line in the Status column, Kaspersky Free does not use this update source.

By default, the list contains only Kaspersky Lab update servers. This update source cannot be edited or removed.

This column contains the address of the databases and application modules update source.

This column shows the status of the update source.

If the Active value is set in the Status column, Kaspersky Free uses this update source.

If the Inactive value is set in the Status column, Kaspersky Free does not use this update source.

Clicking this button removes the selected update source from the list.

Moves the selected update source one line higher.

Moves the selected update source one line lower.

Clicking this button opens a window in which you can specify the path to a new update source.

The path to the folder from which the Kaspersky Free obtains database and application module updates. In this field, you can specify the address of the folder (local or network folder) or FTP server.

In the drop-down list, you can select how often the update task runs and configure the task schedule:

• Automatically (recommended). Kaspersky Free checks the update source for new updates with the set frequency. The frequency of checks can be increased during virus outbreaks and decreased when there are none. After detecting an update package, Kaspersky Free downloads it and installs it on the computer. We recommend that you select this option, as it is important to protect your computer.
• Daily. The task runs every day. The time of the task start is specified in the Time field below.
• Weekly. The task starts on the day of the week selected in the Day of the week list below. The time of the task start is specified in the Time field below.
• After application startup. The task starts in 15 minutes after each startup of Kaspersky Free.
• Manually. You run the update task yourself at the time of your choosing.

In the drop-down list, you can specify on which of the days of the week to run updates of the databases and application software modules.

This interface element is displayed if, in the Run update list, you have selected weekly.

In the text box, you can specify at which time to run updates of the databases and application software modules.

This interface element is displayed if, in the Run update list, you have selected weekly or daily.

If the check box is selected, the application runs skipped tasks. For example, if the computer was turned off, the application runs the skipped tasks after the computer is turned on.

If this check box is cleared, Kaspersky Free does not run skipped tasks. Instead, it runs the next task in accordance with the specified schedule.

This check box is displayed when the daily or weekly value is selected in the list.

Update tasks for Kaspersky Free are run with the rights of the user account that you select. This feature is available for running an update task for Kaspersky Free both manually and according to a schedule.

The following options are available:

• Current user. The rights of the current account (the operating system account under which you are logged in) will apply to update tasks.
• Other user. Update tasks will run under the specified user account. If you select this option, specify an account name and the password in the User account and Password fields, respectively.

This check box enables / disables detection by Kaspersky Free of software that criminals may use to damage your computer or the data stored on it.

Clicking this link opens a window where you can add scan exclusions.

You can exclude the following objects from scans:

• Files of a specified format
• Group of files identified by mask
• Folder or application
• Application process
• Objects identified by names or name masks according to the Virus Encyclopedia classification.

Clicking this link opens a window with the list of trusted applications. If an application is included in the list of trusted ones, Kaspersky Free does not monitor objects (such as files) used by that application.

If this check box is selected, when Kaspersky Free detects malicious activity in the operating system, it prompts you to perform special advanced disinfection to eliminate the threat. Upon completion of the procedure, the computer is restarted. Advanced Disinfection technology uses considerable computer resources, which may affect the performance of the operating system.

If this check box is cleared, the disinfection technology is not applied to active infections.

Contains information about ports on which connections are monitored by Kaspersky Free.

If the Active value is set in the port line in the Status column, Kaspersky Free monitors the traffic passing through this port.

If the Inactive value is set in the port line in theStatus column, Kaspersky Free excludes this port from scans, but does not remove it from the list of ports.

A list of ports that are normally used for transferring email and web traffic is included in the Kaspersky Free distribution kit. By default, Kaspersky Free monitors traffic passing through all ports from this list.

This column displays the port name.

This column displays the port number.

This column shows whether Kaspersky Free monitors the traffic that passes through this port.

If the Active value is set in the Status column, Kaspersky Free monitors the traffic passing through the port.

If the Status column shows the Not active value, Kaspersky Free excludes this port from scanning, but does not remove it from the list of ports.

This button opens the Network port window. In this window, you can change the number of a network port selected from the list, as well as its description.

Clicking this button causes Kaspersky Free to remove the selected network port from the list.

This button opens the Network port window. In this window, you can add a network port to the list of ports.

If this check box is selected, Kaspersky Free monitors all network ports of applications that are vulnerable to network attacks. Kaspersky Lab specialists have created a list of vulnerable applications.

If this check box is cleared, Kaspersky Free does not monitor ports used by applications that are vulnerable to network attacks.

The list includes scan exclusions.

You can exclude the following objects from scans:

• Files of a specified format
• Group of files identified by mask
• Folder or application
• Application process
• Objects identified by names or name masks according to the Virus Encyclopedia classification.

If the Active value is set in the exclusion line in the Status column, Kaspersky Free excludes the object from the scan.

If the Inactive value is set in the exclusion line in the Status column, Kaspersky Free scans the object.

This column displays the path to the excluded file of folder.

This column displays the object name mask. After detecting an object that matches the mask, Kaspersky Free applies the exclusion.

A mask can be created using any characters allowed in file names, as well as special characters:

• * – any number of arbitrary characters.
• ? – any single character.

File name and extension are always separated with a period.

Mask examples:

• *.EXE – all files with the EXE extension.
• *.EX? – all files with the EX? Extension, where ? stands for any single character.
• test – all files named test.

The column shows the names of protection components that apply the exclusion (for example, File Anti-Virus or Web Anti-Virus).

If the exclusion is applied by all protection components, the All value is shown in this column.

This column shows the status of an exclusion.

If the Active value is set, Kaspersky Free excludes the object from scanning.

If the Inactive value is set, Kaspersky Free scans the object.

Clicking this button opens a window in which you can edit the settings of an exclusion that is selected in the list.

Clicking this button causes Kaspersky Free to delete the selected exclusion from the list.

Clicking this button opens a window in which you can add an exclusion to the list of exclusions.

This is the file (or folder) to be excluded from scanning.

The name of the object to be excluded from scanning. The name of object is provided according to the Virus Encyclopedia classification.

Additional information about the exclusion.

In the Status section, you can specify the status of exclusion.

If the Active value is set, Kaspersky Free excludes files and folders from scanning.

If the Inactive value is set, Kaspersky Free scans files and folders.

Contains trusted applications; the objects (for example, files) used by these applications are not restricted.

If the application line shows the Active value in the Status column, Kaspersky Free excludes objects that are used by this application from scanning. Kaspersky Free still scans the executable file and trusted application process for viruses and other threats.

If the Inactive value is set in the Status column in the row of an application, Kaspersky Free scans the executable file of the trusted application, the application process, and the objects used by the application. The application remains in the list of trusted applications.

This column contains the names of trusted applications.

This column displays the path to the executable file of the application.

This column shows whether Kaspersky Free scans objects used by the application (for example, files).

If the Active value is set in the Status column, Kaspersky Free excludes objects that are used by the application from scanning. However, Kaspersky Free still scans the executable file and the process of the trusted application.

If the Inactive value is set in the Status column, Kaspersky Free scans the executable file of the trusted application, the application process, and the objects used by the application. The application remains in the list of trusted applications.

Clicking this button opens the Exclusions for application window. In this window, you can configure exclusions for the selected application.

Clicking this button removes the selected application from the list.

Clicking this button opens the application selection window.

This check box enables / disables exclusion from scanning for all files that are opened by this application.

If this check box is selected, Kaspersky Free excludes from scanning all files that are opened by the selected application.

If this check box is cleared, Kaspersky Free scans files that are opened by the selected application.

This check box enables / disables exclusion of all of an application's activity from Proactive Defense scanning.

If this check box is selected, all activity of the application is excluded from Proactive Defense scanning.

If this check box is cleared, Kaspersky Free scans all activities of the application.

If the check box is selected, application activity is monitored according to your defined rules or according to the rules of the trust group to which the application belongs.

If this check box is cleared, the application inherits rules from the parent application by which it was started.

This check box enables / disables exclusion from scanning of any child application activity.

If the check box is selected, the application is allowed to manage Kaspersky Free using its graphical user interface. You may need to allow the application to manage the interface of Kaspersky Free when using a remote desktop connection application or an application supporting the operation of a data input device. Examples of such devices include touch pads and graphic tablets.

This check box enables / disables exclusion from scanning of network traffic of an application.

Clicking this link lets you choose an option for excluding network traffic from scanning:

• Do not scan all traffic. Kaspersky Free excludes all network traffic of the application from scanning.
• Do not scan encrypted traffic. Kaspersky Free excludes from scanning only the portion of application traffic that is transmitted over SSL.

This check box enables / disables exclusion from scanning of the network traffic of an application for the specified IP addresses.

Under the check box, in the text box, you can specify the IP addresses to be excluded from scanning.

If the check box is selected, Kaspersky Free excludes from scanning the network traffic for the specified IP addresses only.

If the check box is cleared, Kaspersky Free excludes all IP addresses from scanning.

This check box enables / disables the option to add network traffic only for specified ports to the scan exclusions.

Under the check box, in the text box, you can specify ports that you want to exclude from scanning.

If this check box is selected, Kaspersky Free excludes from scanning the network traffic for the specified ports only.

If the check box is cleared, Kaspersky Free excludes all ports from scanning.

• Active. If this option is selected, exclusions for the selected application are applied.
• Inactive. If this option is selected, exclusions for the selected application are not applied.

This check box enables / disables a mechanism of Kaspersky Free that protects the application against modification or deletion of its files from the hard drive, memory processes, and system registry entries.

If this check box is selected, the ability to perform external control of the system service is also disabled. When external control of the system service is disabled, Kaspersky Free blocks all attempts to perform remote management of application services. If an attempt to manage the application remotely is detected, a notification appears above the Kaspersky Free icon in the Microsoft Windows taskbar notification area (if notifications are not disabled).

If this check box is selected, the application limits its own network traffic when the Internet connection is limited. Kaspersky Free identifies a high-speed mobile Internet connection as a limited connection and identifies a Wi-Fi connection as an unlimited connection.

This check box is displayed when using Microsoft Windows 8 or a later operating system.

If the check box is selected, Kaspersky Free injects a web page interaction script into web traffic. This script ensures the operation of such components as URL Advisor and Secure Data Input.

In this port monitoring mode, Mail Anti-Virus and Web Anti-Virus monitor all open ports of your computer.

In this port monitoring mode, Mail Anti-Virus and Web Anti-Virus monitor the selected ports of your computer.

A list of ports that are normally used for transmitting email and web traffic is included in the application distribution kit.

Clicking this link opens the Network ports window. In this window, you can create a list of ports to be monitored or a list of applications for which Kaspersky Free monitors all ports.

Clicking this link opens a window containing a list of websites. Encrypted connections scans are not performed for these websites.

If this option is selected, Kaspersky Free does not scan SSL traffic.

Kaspersky Free uses the installed Kaspersky certificate to verify the security of SSL connections if this is required by the protection components Web Anti-Virus and URL Advisor.

If these components are disabled, Kaspersky Free does not verify the security of SSL connections.

After Kaspersky Free verifies an SSL connection, the certificates of websites may not display the name of the organization under which the website is registered.

If you do not want the application to verify the SSL connection with a website, you can exclude the website from verification.

If this option is selected, Kaspersky Free always uses the installed Kaspersky certificate to ensure that connections are secure.

Use of the Secure Sockets Layer (SSL) protocol for connections allows safely exchanging data on the Internet. The SSL protocol makes it possible to identify the parties exchanging data using electronic certificates, encrypt data during transfer, and ensure the integrity of data during transfer.

If Kaspersky Free detects an invalid certificate when connecting to a server (for example, when the certificate has been replaced by someone with malicious intentions), Kaspersky Free displays a notification prompting you to accept or reject the certificate, or else to view information about the certificate. If Kaspersky Free is operating in automatic protection mode, Kaspersky Free automatically terminates any connection that uses an invalid certificate, without displaying any notification.

In the drop-down list, you can select the action that the application will perform if a secure connections scan error occurs on a website.

• Ignore. The application terminates the connection with the website on which the scan error occurred.
• Ask. The application shows you a notification with a prompt to add a website address to the list of websites on which scan errors occurred. The website address will be checked against the database of malicious objects.
• Add website to exclusions. The application adds the website address to the list of websites on which scan errors occurred. The website address will be checked against the database of malicious objects.

You can click this link to go to the Websites with scan errors window. In this window, you can view the websites that could not be scanned due to errors when connecting to them. The addresses of the websites were checked against the database of malicious objects.

Clicking this link opens the Exclusions window. In this window, you can generate a list of websites that will not be scanned by the protection components Web Anti-Virus and URL Advisor.

Clicking this link opens a window in which you can modify additional settings for secure connections.

Clicking the link opens the Proxy Server settings window. In this window, you can configure the connection of the application to a proxy server.

If the check box is selected, Kaspersky Free scans encrypted traffic in Mozilla applications. Access to some websites via the HTTPS protocol may be blocked.

Select this option if you want to store the local trusted certificate of Kaspersky Free in the Windows certificate store.

Select this option if you want to store the local trusted certificate of Kaspersky Free in the Mozilla certificate store.

Field in which the name of the network port is specified.

Field in which the number of the network port is specified.

In the Status section, you can specify whether or not Kaspersky Free should monitor traffic passing through this port.

If the Active value is set, Kaspersky Free monitors traffic passing through the port.

If the Inactive value is set, Kaspersky Free adds a port to the list of ports but excludes the port from scanning.

You can use this check box to block / allow connections with a remote server via the SSL 2.0 protocol.

If the check box is selected, Kaspersky Free blocks encrypted connections established via the SSL 2.0 protocol and displays a notification that the connection has been blocked.

If this check box is cleared, Kaspersky Free allows you to establish secure connections via the SSL 2.0 protocol and does not monitor them.

It is not recommended to use the SSL 2.0 protocol, because it has limitations that affect secure data transmission.

This check box enables / disables decryption of encrypted SSL connections with an EV (Extended Validation) certificate.

EV certificates confirm the authenticity of websites and improve the security of the connection. Browsers use a lock icon in their address bar to indicate that a website has an EV certificate. Browsers may also fully or partially color the address bar in green.

If the check box is selected, Kaspersky Free does not decrypt encrypted SSL connections with EV certificates.

If the check box is cleared, Kaspersky Free decrypts encrypted SSL connections with an EV certificate. After decryption, the browser does not indicate that the website has an EV certificate.

If you are opening a website with an EV certificate for the first time, the encrypted connection will be decrypted regardless of whether or not the check box is selected.

This button enables / disables use of a proxy server for Internet connections. An Internet connection is required for the operation of some protection components in Kaspersky Free, as well as for updating databases and application modules.

Kaspersky Free detects the proxy server settings automatically using WPAD (Web Proxy Auto-Discovery Protocol).

If this protocol cannot determine the address, Kaspersky Free uses the proxy server settings specified in Microsoft Internet Explorer. Kaspersky Free does not take into account the settings of proxy servers specified for other browsers that are installed on the user's computer.

Kaspersky Free uses a proxy server that differs from the one specified in the browser connection settings.

Contains the IP address or symbolic name (URL) of a proxy server.

The field is editable if the Use specified proxy server settings setting is selected (for example, IP 192.168.0.1).

The port of the proxy server.

The field is available if the Use specified proxy server settings setting is selected.

Authentication is verification of the user's sign-in information.

This check box enables / disables the use of authentication on the proxy server.

If this check box is selected, Kaspersky Free will first attempt to perform NTLM authentication, and then BASIC authentication.

If this check box is cleared, or if the proxy server settings are not defined, Kaspersky Free will attempt to perform NTLM authentication using the account under which the task (for example, an update task) has been run.

If the proxy server requires authentication and no user name and password were entered, or if the specified data was not accepted by the proxy server, a window opens, prompting you for the user name and password. If authentication is successful, Kaspersky Free uses the specified user name and password in the future. Otherwise, Kaspersky Free will prompt you for the authentication settings again.

The user name used for authentication on the proxy server.

The password for the specified user name.

If this check box is selected, Kaspersky Free does not use a proxy server when updating databases and application software modules from a local or network folder.

If this check box is cleared, Kaspersky Free uses the proxy server when updating databases and application software modules from a local or network folder.

This check box enables / disables notification about events.

If this check box is cleared, Kaspersky Free does not notify you of events that occur during its operation, but logs information about them in a report.

Notifications can be implemented using the following methods:

• Pop-up messages above the Kaspersky Free icon in the taskbar notification area
• Audio notifications

Clicking this link lets you restore the default values for notification display settings. If you have previously blocked display of notifications, display of these notifications will resume.

The link is not available if there are no hidden notifications.

This check box enables / disables audio notifications.

By default, all notifications are accompanied by an audio signal.

To change the default audio signal to the "pig squeal", type IDKFA in the About window.

This check box enables / disables the option for limiting the period for reports storage. Reports can be stored for one day, one week, one or six months, or one year.

If the check box is selected, reports are stored during the period selected in the drop-down list located next to the check box. When this time period ends, Kaspersky Free deletes the report.

If this check box is cleared, the storage duration for reports is unlimited.

This check box enables / disables the option to limit the maximum size of report files. The maximum file size is specified in megabytes.

If this check box is selected, the maximum report size is 1024 MB by default. When the maximum file size is exceeded, the oldest records are removed from the file as new ones are added.

If this check box is cleared, the report file size is not limited.

This check box enables / disables the option to add information about all Kaspersky Free events to the report.

Kaspersky Free records detailed information about unsuccessful application updates in reports, regardless of whether or not the check box is selected. The application stops recording detailed information after the first successful update and resumes recording information when an update fails.

Clicking this button causes Kaspersky Free to remove data from the reports folder.

By default, Kaspersky Free clears scan task reports and update task reports.

The check box enables / disables the option for limiting the storage period for objects in Quarantine. Reports can be stored for one day, one week, one or six months, or one year.

If the check box is selected, objects are stored during the period selected in the drop-down list located next to the check box.

If this check box is cleared, the storage term for objects is unlimited.

This check box enables / disables the option for limiting the maximum size of Quarantine. The size of Quarantine is specified in megabytes.

If the check box is selected, the default maximum storage size is 100 MB. When the maximum size is exceeded, the oldest objects are removed from storage, while new ones are added.

If this check box is cleared, storage size is unlimited.

Clicking this button opens a window where you can view the Kaspersky Security Network Statement and agree or refuse to participate in Kaspersky Security Network.

This button is available if you have refused to participate in Kaspersky Security Network.

By clicking this button, you terminate your participation in Kaspersky Security Network. You can resume your participation in Kaspersky Security Network at any time.

Clicking this link opens My Kaspersky portal page in a browser window.

Clicking this button causes Kaspersky Free to log out of My Kaspersky.

This check box enables / disables animation of the Kaspersky Free icon.

If this check box is selected, the icon in the taskbar notification area changes depending on the operation that Kaspersky Free is currently performing.

For example, if Kaspersky Free is downloading updates, the icon displays a revolving miniature globe.

If this check box is cleared, the animation is disabled. In this case, the Kaspersky Free icon displays only the protection status of your computer: if protection is enabled, the icon is colored; if it is paused or disabled, the icon is gray.

To change the appearance of the application icon (return to the K-letter icon), type IDDQD in the About window. To apply changes, you need to restart Kaspersky Free and all open browsers.

If this option is selected, smooth transition between windows is performed if computer resources allow it.

If this option is selected, a smooth transition is always employed.

If this option is selected, a smooth transition between windows is not employed.

Clicking this button opens a menu with a choice of the following actions:

• Import and add to existing. Selecting this action lets you download a list of addresses of websites that you want to exclude from scanning. The list of addresses must be saved to a CSV file. The current addresses are not deleted.
• Import and replace existing. Selecting this action lets you download a list of addresses of websites that you want to exclude from scanning. The list of addresses must be saved to a CSV file. The current addresses are deleted.
• Export. Selecting this action lets you save the list of addresses of websites that you have excluded from scanning. The application saves a list of addresses in a CSV file.

Contains the addresses of websites that you added as an exclusion for Web Anti-Virus and URL Advisor.

If the Active value is set in the domain name line in the Status column, the components do not scan a website with this domain name.

If the Inactive value is set in the domain name line in the Status column, the components scan a website with this domain name.

This opens the window, in which you can change the selected domain name and its status.

Removes the selected domain name from the list.

This opens the window, in which you can add a domain name.

In this field, you must specify the domain name of the website to exclude from scanning. You can change the domain name indicated in the field.

The indicated domain name is displayed in the list of exclusions. Application components scan the domain name depending on the status that you have selected.

In the Status section, you can specify whether application components should scan this domain name. The following options are available:

• Active. Components do not scan this domain name.
• Inactive. Components scan this domain name.

A scan for viruses and other threats as well as database and application module updates sometimes use up a lot of computer resources and take a long time.

This check box enables / disables power-saving mode on laptop computers, during which virus scan and update tasks are postponed. If necessary, you can update databases and application modules of Kaspersky Free or run a scan for viruses and other threats manually.

If the check box is selected, Kaspersky Free does not run scan or update tasks and does not display notifications when you play games or run applications in full-screen mode.

This check box controls the use of operating system resources by Kaspersky Free.

If this check box is selected, only critical protection components of Kaspersky Free are run at the startup of the operating system. Protection is completely enabled after the operating system loads.

If this check box is cleared, all protection components are run simultaneously when the operating system starts up.

If the check box is selected, whenever the operating system is shut down, Kaspersky Free operates with a focus on scanning files that appear on the drive while the operating system is being restarted. If any of these files are malicious, the application neutralizes them after the operating system is restarted.

Preventing infection during restart does not work if the Block action on threat detection is selected in the File Anti-Virus settings.

When Kaspersky Free runs scan tasks, this may result in increased workload on the CPU and disk subsystems, which affects the performance of other applications. If such a situation occurs, Kaspersky Free can pause scan tasks and free up system resources for the user's applications.

This check box enables / disables the option for pausing scan tasks. This helps to relieve the load on the CPU and disk subsystems.

This check box enables / disables the option to run scan tasks (scanning of system memory, the system partition, or startup objects) and update tasks while the computer is locked or the screensaver is on.

If the computer is running on battery power, Kaspersky Free does not perform tasks when the computer is idle.

If this check box is cleared, Kaspersky Free does not run scan and update tasks while the computer is idle.

This check box enables / disables regular scanning of the operating system for

If this check box is cleared, Kaspersky Free does not perform regular rootkit scans.

Clicking this link opens the Pause File Anti-Virus window. In this window, you can specify a time period during which you want to pause File Anti-Virus. You can also create a list of applications that, when run, will pause File Anti-Virus.

This check box enables / disables pausing File Anti-Virus for a specified period.

Pausing the component allows reducing the system load and providing quicker access to objects.

This list contains applications which, when started, cause File Anti-Virus to pause.

For example, you can add applications that require considerable system resources to the list. After such an application closes, File Anti-Virus is automatically re-enabled.

Clicking this link opens a window for selecting the executable file of an application. After you select an executable file, the application is added to the list of applications whose startup causes File Anti-Virus to pause.

Clicking this link causes Kaspersky Free to remove the selected application.

Clicking the <key> link opens the License Information window that provides information about the current license.

Clicking this link opens the page of interactive support in a browser window. This page provides answers to questions that users most frequently ask of Kaspersky Lab Technical Support specialists.

Clicking this link opens a Technical Support web page in a browser window, which displays articles on how to configure and use Kaspersky Free.

Clicking this link opens the Kaspersky Lab Community in a browser window, where you can view posted threads, leave your comments, create new threads, and search for information.

Current logging status (enabled / disabled). Shows whether or not an operating system state report and application operation report is maintained.

In the drop-down list, you can select the events about which Kaspersky Free logs information in the operating system state and application operation report.

Available values:

• Errors. Kaspersky Free saves information about errors that occur during application operation and includes it in the report.
• Important. Kaspersky Free saves information about events that are important for the computer's security, such as detection of a probably infected object or suspicious activity in the operating system, and includes it in the report.
• Recommended. Kaspersky Free saves information about important events, as well as events that are of minor importance for computer security, and includes it in the report.
• All. Kaspersky Free generates a detailed report on all events, which can be used for application diagnostics.

This setting is available if traces are enabled.

Clicking this button enables the generation of a report on the operating system state and application operation.

The button is available if traces are disabled.

When this button is clicked, Kaspersky Free stops generating a report on the operating system state and application operation.

This button is available if traces are enabled.

Clicking the link opens in the default browser a Knowledge Base article on how to create an operating system state report.

Clicking the link opens the Send report window. This window lets you send a report on the operating system state and application operation to a Kaspersky Lab FTP server.

Clicking this link deletes all trace files and reports. If clicking this link did not delete all trace files, reboot the computer and click the Delete all service data and reports link again.

The link is active if event logging is disabled.

A list of files that Kaspersky Free includes in the report sent to the Technical Support server. The list includes

If the check box in the file line is selected, the file will be uploaded to the Technical Support server. Before being uploaded, the data files are prepared and archived.

If the check box in the file line is cleared, the file will not be uploaded to the Technical Support server.

This column displays the name of a file that is ready to be sent to the Technical Support server.

Amount of data that will be sent to the Technical Support server if the specified file is included in the report. Kaspersky Free includes a file in the report if the check box in the line of the file is selected.

This check box allows adding information about the state of the operating system to the report that is to be sent to the Technical Support server.

By selecting a check box, you can add trace files and dumps to the report that is sent to the Technical Support server. The history of execution of commands by the application and information on the state of the application is saved in these files.

Clicking the <number of files>, <data volume> link next to the check box opens the Data received for analysis window. The window shows the list of files and the total amount of data that is to be transferred to the Technical Support server.

Clicking the link opens a dialog box for saving the file.

The number assigned to your request when contacting Technical Support from My Kaspersky portal.

Clicking this button uploads the selected files to an FTP server of Technical Support.

Script text received from Technical Support.

Kaspersky Lab specialists advise that you do not change the text of the script.

Clicking this button starts the execution of the script.

Error message. Displayed if errors are found in the AVZ script. The AVZ Script Execution Wizard stops.

Clicking this button makes the AVZ Script Execution Wizard close.

Clicking this button makes the AVZ Script Execution Wizard close.

Clicking this button lets you add the script and retry script execution.

Clicking this button opens the main window of Kaspersky Free.

This link opens a window that displays information about the Kaspersky Lab certificate.

Clicking this button starts the Certificate Installation Wizard.

When this button is clicked, Kaspersky Free closes the Certificate Installation Wizard.

If the check box is selected, Kaspersky Free blocks the display of ads during installation of any software on the computer. Installation of additional software being advertised is also blocked.

Clicking this button takes you to the main application window.

With this button, you can enable / disable System Watcher.

If the button is green, System Watcher collects and saves data on all events that occur in the operating system (such as modification of a file, modification of registry keys, startup of drivers, or attempts to shut down the computer). This data is used to track malicious and other activity of software (including ransomware) and to restore the operating system's condition as it had been before software appeared (to roll back the actions of the software). In some cases, activity of applications cannot be rolled back, for example when an application was detected by the Application Control component.

System Watcher collects data from various sources, including other components of Kaspersky Free. System Watcher analyzes application activity and provides other Kaspersky Free components with the collected information about events.

With this check box, you can enable / disable Exploit Prevention.

If this check box is selected, Kaspersky Free tracks executable files run by vulnerable applications. If Kaspersky Free detects an attempt to run an executable file from a vulnerable application that has not been initiated by the user, the application performs the action that is selected in the On threat detection drop-down list.

In this drop-down list, you can select the action that System Watcher performs when an executable file is run from a monitored vulnerable application.

This list allows choosing from the following actions:

• Select action automatically. System Watcher automatically performs the action selected in the application settings and adds information on the selected action to the report.

In automatic protection mode, this option is selected by default. In interactive protection mode, the option is unavailable.

• Prompt for action. System Watcher prompts the user for action.

In interactive protection mode, this option is selected by default. In automatic protection mode, the option is unavailable.

• Allow action. System Watcher allows the executable file to be run.
• Block action. System Watcher blocks the executable file.

In this drop-down list, you can select the action that System Watcher performs when malicious or other activity is detected based on the results of analysis of application activity.

This list allows choosing from the following actions:

• Prompt for action. System Watcher prompts the user for action.

In interactive protection mode, this option is selected by default. In automatic protection mode, the option is unavailable.

• Select action automatically. System Watcher automatically selects the action that Kaspersky Lab specialists recommend taking on the application.

In automatic protection mode, this option is selected by default. In interactive protection mode, the option is unavailable.

• Delete the application. System Watcher deletes the application.
• Terminate the application. System Watcher terminates all processes of the application.
• Ignore. System Watcher takes no actions on the application.

In this drop-down list, you can select the action that System Watcher performs when it is possible to roll back malicious or other activity of the application.

This list allows choosing from the following actions:

• Prompt for action. If System Watcher, File Anti-Virus, or the results of a scan task confirm that it is necessary to perform a rollback, System Watcher prompts the user for action.

In interactive protection mode, this option is selected by default. In automatic protection mode, the option is unavailable.

• Select action automatically. If System Watcher analyzes the activity of an application and considers it to be malicious, it rolls back the application's activity and notifies the user of this event.

System Watcher adds information about the event and processing results to a report.

In automatic protection mode, this option is selected by default. In interactive protection mode, the option is unavailable.

• Roll back. System Watcher rolls back malicious or other activity of the application.
• Do not roll back. System Watcher saves information about malicious or other activity but does not roll back application's actions.

This check box enables / disables protection against screen lockers.

If this check box is selected, when activity of a screen locker is detected, you can halt it by pressing the combination of keys that is specified in the drop-down list under the check box.

In the drop-down list, you can select a key or a combination of keys, which, when pressed, triggers screen locker protection for detecting and deleting a screen locker.

This check box enables / disables Network Attack Blocker.

If the button is green, Network Attack Blocker runs when the operating system is started and scans incoming traffic for activity that is typical of network attacks. When an attempt to attack your computer is detected, Kaspersky Free blocks all network activity from the attacking computer aimed at your computer.

If the button is red, Network Attack Blocker is disabled.

With this check box, you can block / unblock the attacking computer for the period indicated in the text box next to the check box. The length of time is specified in minutes.