Application Integrity Control
Kaspersky Endpoint Security checks the application modules for corruption or modifications. For example, if an application library has an incorrect digital signature, the library is considered corrupt. The Integrity check task is intended for checking application files. Run the Integrity check task if Kaspersky Endpoint Security detected a malicious object but did not neutralize it.
You can create the Integrity check task both in the Kaspersky Security Center Web Console and in the Administration Console. It is not possible to create a task in the Kaspersky Security Center Cloud Console.
Application integrity breaches may occur in the following cases:
- A malicious object modified files of Kaspersky Endpoint Security. In this case, perform the procedure for restoring Kaspersky Endpoint Security using the tools of the operating system. After restoration, run a full scan of the computer and repeat the integrity check.
- The digital signature expired. In this case, update Kaspersky Endpoint Security.
How to run an application integrity check through the Administration Console (MMC)
- In the Administration Console, go to the folder Administration Server → Tasks.
The list of tasks opens.
- Click the New task button.
The Task Wizard starts. Follow the instructions of the Wizard.
Step 1. Selecting task type
Select Kaspersky Endpoint Security for Windows (12.2) → Integrity check.
Step 2. Selecting the devices to which the task will be assigned
Select the computers on which the task will be performed. The following options are available:
- Assign the task to an administration group. In this case, the task is assigned to computers included in a previously created administration group.
- Select computers detected by the Administration Server in the network: unassigned devices. The specific devices can include devices in administration groups as well as unassigned devices.
- Specify device addresses manually, or import addresses from a list. You can specify NetBIOS names, IP addresses, and IP subnets of devices to which you want to assign the task.
Step 3. Configuring a task start schedule
Configure a schedule for starting a task, for example, manually or when a virus outbreak is detected.
Step 4. Defining the task name
Enter a name for the task, for example, Integrity check after the computer was infected.
Step 5. Completing task creation
Exit the Wizard. If necessary, select the Run the task after the Wizard finishes check box. You can monitor the progress of the task in the task properties. As a result, Kaspersky Endpoint Security will check the integrity of the application. You can also configure an application integrity check schedule in the task properties (see the table below).
How to run an application integrity check through the Web Console
- In the main window of the Web Console, select Devices → Tasks.
The list of tasks opens.
- Click the Add button.
The Task Wizard starts.
- Configure the task settings:
- In the Application drop-down list, select Kaspersky Endpoint Security for Windows (12.2).
- In the Task type drop-down list, select Integrity check.
- In the Task name field, enter a brief description, for example, Check the integrity of the application after a computer infection.
- In the Select devices to which the task will be assigned block, select the task scope.
- Select devices according to the selected task scope option. Go to the next step.
- Exit the Wizard.
A new task will be displayed in the list of tasks.
- Select the check box next to the task.
As a result, Kaspersky Endpoint Security will check the integrity of the application. You can also configure an application integrity check schedule in the task properties (see the table below).
How to run an integrity check in the application interface
- In the main application window, go to the Tasks section.
- This opens the task list; select the Integrity check task and click Run.
As a result, Kaspersky Endpoint Security will check the integrity of the application. You can also configure an application integrity check schedule in the task properties (see the table below). If the Integrity check is not displayed, it means the administrator has prohibited using local tasks in the policy.
Integrity check task settings
Parameter
|
Description
|
Scan schedule
|
Manually. Run mode in which you can start scan manually at a time when it is convenient for you.
By schedule. In this scan task run mode, the application starts the scan task in accordance with the schedule that you create. If this scan task run mode is selected, you can also start the scan task manually.
|
Run skipped tasks
|
If the check box is selected, Kaspersky Endpoint Security starts the skipped scan task as soon as it becomes possible. The scan task may be skipped, for example, if the computer was off at the scheduled scan task start time. If the check box is cleared, Kaspersky Endpoint Security does not run skipped scan tasks. Instead, it carries out the next scan task in accordance with the current schedule.
|
Run only when the computer is idle
|
Postponed start of the scan task when computer resources are busy. Kaspersky Endpoint Security starts the scan task if the computer is locked or if the screen saver is on. If you have interrupted the execution of the task, for example by unlocking the computer, Kaspersky Endpoint Security automatically runs the task, continuing from the point where it was interrupted.
|
Page top