Web Anti-Virus
107
malicious code. Malicious objects are detected using both the threat
signatures included in Kaspersky Internet Security, and the heuristic
algorithm. The signatures contain descriptions of all malicious programs
known to date, and methods for neutralizing them. The heuristic
algorithm can detect new viruses that have not yet been entered in the
threat signatures.
2. After the analysis, you have the following available courses of action:
a. If the web page or object contains malicious code, the program
blocks access to it, and a message appears on the screen,
stating that the object or page is infected.
b. If the file or web page does not contain malicious code, the
program immediately grants the web browser access to it.
Scripts are scanned according to the following algorithm:
1. Web Anti-Virus intercepts each script run on a web page and scans
them for malicious code.
2. If a script contains malicious code, Web Anti-Virus blocks it and informs
the user with a special popup notice.
3. If no malicious code is discovered in the script, it is run.
9.1. Selecting the web security level
Kaspersky Internet Security protects you while you use the Internet at one of the
following levels (see fig. Figure 29):
High
– the level with the most comprehensive monitoring of scripts and
objects incoming via HTTP. The program performs a thorough scan of
all objects using the full set of threat signatures. This level of protection
is recommended for sensitive environments, when no other HTTP
security tools are being used.
Recommended
– this level scans the same objects as
High
, but limits the
caching time for file fragments, thus accelerating the scan and returning
objects to the user sooner.
Low
– the security level with settings that let you comfortably use resource-
intensive applications, since the scope of objects scanned is reduced by
using a limited set of . This security level is recommended if you have
additional web protection software installed on your computer.
