Business products
Workstations & Servers protection

Workstation protection

Kaspersky Anti-Virus 6.0 for Windows Workstations MP4

Kaspersky Anti-Virus 6.0 for Windows Workstations MP3 (version 6.0.3.837)

Purchase / Trial versions

Installation / Uninstallation

Technical articles

Key file questions

Setting Scan

Setting File Anti-Virus

Setting Mail Anti-Virus

Setting Web Anti-Virus

Setting Proactive defense

Working with Rescue Disk

Troubleshooting

All articles

Kaspersky Anti-Virus 6.0 for Windows Workstations MP2 (version 6.0.2.678, 6.0.2.690

Kaspersky Anti-Virus 6.0 SOS MP4

Kaspersky Anti-Virus 6.0 SOS

Kaspersky Anti-Virus 5.0 SOS

Kaspersky Anti-Virus 5.7 for Linux Workstations

Kaspersky Mobile Security 7.0 Enterprise Edition

Kaspersky Anti-Virus Mobile 6.0 Enterprise Edition

Kaspersky Anti-Virus 5.0 for Windows Workstations MP5 (builds 5.0.676 - 5.0.712)

Support lifecycle of applications for workstation protection

File server protection

Mail system protection

Perimeter protection

Administration Kit

Kaspersky Hosted Security Services

Fighting malicious programs
How to disinfect...

Training and Certification
Take an educational course and become a certified anti-virus security specialist

Self Service
More help online

Support contacts and conditions
Information about support services and rules

You are visiting our Support Website and we thank you in advance for your participation in this poll and your feedbacks.

Please vote honestly, we will analyze the results and will do our best to improve our service as soon as possible.

Read the same in:

Home / Business products / Workstation protection / Kaspersky Anti-Virus 6.0 for Windows Workstations MP3 (version 6.0.3.837) / Setting Proactive defense

Kaspersky Anti-Virus 6.0 for Windows Workstations MP3 (version 6.0.3.837)

Setting Proactive defense [8]

More Sections

How is current proactive defense different from previous versions?
ID Article: 315	Other languages:	41	2009 Jun 02 21:22	Printable version

	Useful links
	What does Proactive defense do? How is Proactive Defense different from Heuristic Analyzer?

Concerning to:

Kaspersky Anti-Virus 6.0 (all builds)

Kaspersky Internet Security 6.0 (all builds)

Kaspersky Anti-Virus 6.0 for Windows Workstations (all builds)

The proactive defense module was not embedded In the Kaspersky Lab previous versions.

This module protects from Malware whose signatures are not added in the antivirus database yet but who have already activated themselves in the system. Proactive defense controls the following activities:

Dangerous Behaviour: analyzes behaviour of all processes launched in the system, saves the changes in the registry and in the file system. The module warns the user of the set of specific actions in aggregate.

Launching Internet Browser with parameters: intercepts hidden launching of browser with parameters.

Intrusion into another process: intercepts all possible program code intrusions into another process.

Hidden process (rootkit): detects most modern rootkit modifications which can hide from the user files, folders and registry keys, launched programs, system services, drivers, network connections and network activity.

Window Hook: intercepts an intrusion attempt of dynamic library (*.dll) into all active system processes.

Suspicious values in registry: intercepts an attempt to create “hidden” keys in the registry, that are not detected by usual programs (of the regestry editor type)

Suspicious system activities: detects great number of changes in the system. These changes indicate presence of active malicious code.

Rollback changes on detecting system dangerous activity: this technology restores system after malicious actions and rolls it back to the prior infected condition.

The following modules of application activity analyzer were added for Kaspersky Anti-Virus 6.0/ MP1/MP2, Kaspersky Internet Security 6.0 /MP1/MP2 and Kaspersky Anti-Virus 6.0 for Windows Workstations MP2:

Keylogger detection: this activity is used in attempts by malicious programs to read passwords and other confidential information which you have entered using your keyboard.

Microsoft Windows Task Manager protection: Kaspersky Anti-Virus protects Task Manager from malicious modules injecting themselves into it when aimed at blocking Task Manager operation.