Print Support

Using heuristic analysis

Objects are scanned using databases containing descriptions of all known malware, and the corresponding disinfection methods. Kaspersky Internet Security compares each scanned object with the database's records to determine firmly if the object is malicious, and if so, into which class of malware it falls. This approach is called signature analysis and is always used by default.

Since new malware objects appear daily, there are always some malware which are not described in the databases, and which can only be detected using a heuristic analysis. This method presumes the analysis of the actions an object performs within the system. If such activity is typical of malicious objects, the object is likely to be labeled as malicious or potentially infected. As a result, new threats will be identified before they become known to virus analysts.

Additionally you can set the detail level for scans. It sets the balance between the thoroughness of searches for new threats, the load on the operating system's resources and the time required for scanning. The higher the detail level, the more resources the scan will require, and the longer it will take.

In order to use the heuristic analysis and to set the detail level for scans:

  1. In the left part of Kaspersky Web Management Console select the On-demand scan task type.
  2. In the right part of the web-console window, click the link with the name of the task whose settings you want to modify.
  3. Select the Scan areastab.
  4. Within the line containing the selected protection area, click the link in the Security Level column.

    This will open the Task settings window on the Security settings tab.

  5. In the Heuristic analysis dropdown list, select one of the following values:
    • Recommended;
    • Light scan;
    • Medium;
    • Deep scan.
  6. Select the Heuristic analysis, check box to enable heuristic analysis.
  7. Click OK to close the Task settings window.
  8. On the Protection areas tab, click the Save button to save the changes.

Page topPage top
Latest revision: 4/19/2013 3:59:42 PM.
© 2014 Kaspersky Lab ZAO. All Rights Reserved.
Leave feedback about the Help