Using Heuristic Analyzer with Mail Anti-Virus

To improve the effectiveness of protection, you can use heuristic analysis in the operation of Mail Anti-Virus. During heuristic analysis, Kaspersky Security analyzes the activity of applications in the operating system. Heuristic analysis can detect new malicious objects in messages even if there are currently no records of such objects in the application database.

To configure the use of Heuristic Analyzer in the operation of Mail Anti-Virus, via Kaspersky Security Center:

  1. Open Kaspersky Security Center Administration Console.
  2. In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
  3. In the workspace, select the Policies tab.
  4. Select a Light Agent for Windows policy in the list of policies and open the Properties: <Policy name> by double-clicking.
  5. In the Light Agent for Windows policy properties window, select the Mail Anti-Virus section in the list on the left.

    In the right part of the window, the Mail Anti-Virus component's settings are displayed.

  6. In the Security level section, click the Settings button.

    The Mail Anti-Virus window opens.

  7. In the Mail Anti-Virus window, on the Additional tab in the Scan methods section, perform the following:
    • If you want Mail Anti-Virus to use heuristic analysis, select the Heuristic Analysis check box and use the slider to set the heuristic analysis level: Light, Medium, or Deep.
    • If you do not want Mail Anti-Virus to use heuristic analysis, clear the Heuristic Analysis check box.
  8. Click OK in the Mail Anti-Virus window.
  9. Click the Apply button.

To configure the use of Heuristic Analyzer in the operation of Mail Anti-Virus, in local interface, do the following:

  1. On the protected virtual machine, open the application settings window.
  2. In the left part of the window, in the Anti-Virus protection section, select Mail Anti-Virus.

    In the right part of the window, the Mail Anti-Virus component's settings are displayed.

    If the settings in the local interface are not available, this means that the values of settings defined by the policy are used for all protected virtual machines of the administration group.

  3. Complete steps 6-8 of the previous instructions.
  4. To save changes, click the Save button.
Page top