Kaspersky Anti-Virus 6.0 for Windows Workstations MP2 (version 6.0.2.678, 6.0.2.690

Malware programs are growing in number rapidly every day. They are becoming more complicated and combine several types of Malware in one. Their methods of spreading are more and more difficult to detect.

To detect new Malware before it harms your PC, Kaspersky Lab has developed a new special component – Proactive Defense. It controls and analyses the behavior of programs installed on your PC. The Proactive Defense component helps Kaspersky Anti-Virus 6.0 decide whether the program is dangerous or not, thereby protecting your computer not only from already known viruses but from new ones as well.

Proactive defense components:

Application Activity Analyzer controls: 

• dangerous behaviour 
• launching internet browser with parameters 
• intrusion into process (invaders) 
• hidden processes (rootkit) 
• window hook 
• suspicious values in registry 
• suspicious system activity
• keylogger detection
• Microsoft Windows Task Manager Protection

Dangerous Behaviour: analyzes behaviour of all processes launched in the system, saves the changes of the registry and of the file system. When an application tries to execute some suspicious actions user is warned about possible danger of the process.

Rollback of changes on detecting system dangerous activity: this technology restores system after malicious actions and rolls it back to the not infected condition.

Launching Internet Browser with parameters: intercepts hidden launching of browser with parameters. This security flaw can be used by Malware.

Intrusion into process (invaders): intercepts all possible program code intrusions into another process.

Hidden processes (rootkit): detects most modern rootkit modifications which can hide from the user files, folders and registry keys, launched programs, system services, drivers, network connections and network activity.

Window Hook: intercepts an intrusion attempt of dynamic library into all active system processes.

Suspicious values in registry: intercepts an attempt to create “hidden” keys in the registry that are not detected by usual programs (of the regedit type)

Suspicious system activities: detects great number of changes in the system. These changes indicate presence of active malicious code.

Keyloggers. This activity is used in attempts by malicious programs to read passwords and other confidential information which you have entered using your keyboard. 

Windows Task Manager protection. Kaspersky Anti-Virus protects Task Manager from malicious modules injecting themselves into it when aimed at blocking Task Manager operation.

Application Integrity Control (application monitor): specifies a number of applications for which the component structure is controlled.

Registry Guard (registry monitor): controls changes in the registry keys, contains predefined list of 6 registry key groups. User can also add his/ her key groups and configure access rules to them for different applications.

Office Guard: scans dangerous Visual Basic for Application macros.

Note: the dialog windows for Kaspersky Anti-Virus 6.0 for Windows Workstations, Kaspersky Anti-Virus 6.0 and Kaspersky internet Security 6.0 are the same but with the corresponding product names and the number of Protection components.