How to configure Automatic Exploit Prevention in Kaspersky Total Security

 

Kaspersky Total Security 15

 
 
 

How to configure Automatic Exploit Prevention in Kaspersky Total Security

Back to "Protection"
2014 Oct 29 ID: 11399
 
 
 
 

Configuring Automatic Exploit Prevention

The Automatic Exploit Prevention technology is aimed to protect your computer from malicious programs that use vulnerabilities in popular applications, such as Adobe Reader, Internet Explorer, Mozilla Firefox, and others. The vulnerabilities allow hackers to gain control over computer and its owner's personal data.

The exploit prevention technology in Kaspersky Total Security features the following functions:

  • Control over executable files started from vulnerable applications and web browsers (for example, when a program designed for viewing documents tries to run an executable file).
  • Control over suspicious activity of vulnerable applications (for example, when a vulnerable application is granted more powerful rights).
  • Monitoring of previous program starts (for example, whether the program was started by the user or by an exploit).
  • Tracking of sources of malicious code (for example, a web browser that started download of an infected file).
  • Preventing malware from using application vulnerabilities.

Kaspersky Total Security tracks executable files run by vulnerable applications. If Kaspersky Total Security detects an attempt to run an executable file from a vulnerable application that has not been initiated by the user, the application blocks this attempt (the user can select a different action to be performed upon threat detection). Information about blocked executable files is logged in the Exploit Prevention report.

To ensure maximum protection, the lists of applications with detected vulnerabilities are updated together with Kaspersky Total Security antivirus databases.

How to configure the exploit prevention

By default, exploit prevention is enabled in Kaspersky Total Security. To enable or disable Automatic Exploit Prevention, do the following:

  1. Open the Settings window of Kaspersky Total Security.
  2. In the Settings window, go to the Protection section and select System Watcher.

In the <STRONG>Settings</STRONG> window, go to the <STRONG>Protection</STRONG> section and select <STRONG>System Watcher</STRONG>.

  1. In the System Watcher settings view, select or clear the check box Monitor attempts to perform unauthorized operations.
  2. Select an action on threat detection:
    • Select action automatically. This option is available only if the automatic protection mode is selected.
    • Prompt for action. This option is available if interactive protection mode is selected.
    • Allow action. Running of executable files by the vulnerable application is always allowed.
    • Block action. Running of executable files by the vulnerable application is always blocked.

Select or clear the check box Monitor attempts to perform unauthorized operations and select the action on threat detection

  1. Close the Settings window.
 
 
 
 
Was this information helpful?
Yes No
Thank you
 

 
 

How can we improve this article?

Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.

OK