Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Kaspersky
I don't understand the "Perform actions automatically" part
Message
<blockquote data-quote="Trident" data-source="post: 1082940" data-attributes="member: 99014"><p>What Harlan is saying is these restrictions apply to the apps and processes that have been put in the relevant group. It does not apply to any actions you or other users perform in folders, as these actions are done via the trusted explorer.exe. To restrict other users from accessing, changing and deleting files, you will have to create user accounts for them and manage the folder permissions in explorer accordingly.</p><p></p><p>If some ransomware script or executable wants to access or change resources (folders) you’ve added as protected, this will be blocked.</p><p></p><p>Also, you can see restrictions as Harlan explained or by accessing this:</p><p>[URL unfurl="true"]https://support.kaspersky.com/KIS/2020/en-US/70910.htm[/URL]</p><p></p><p>There is no sandboxing, ignore the bot.</p><p>Kaspersky uses dynamic emulator (like many other AVs if not all) to execute instructions of interest and monitor how the app behaves <strong>before you execute it</strong>.</p><p>This allows for more efficient detection of packers and obfuscated malware.</p><p>The higher the heuristic aggressiveness level, the more instructions are emulated, according to Kaspersky documentation.</p><p>Dynamic emulator is <strong>not</strong> related to Intrusion Detection.</p></blockquote><p></p>
[QUOTE="Trident, post: 1082940, member: 99014"] What Harlan is saying is these restrictions apply to the apps and processes that have been put in the relevant group. It does not apply to any actions you or other users perform in folders, as these actions are done via the trusted explorer.exe. To restrict other users from accessing, changing and deleting files, you will have to create user accounts for them and manage the folder permissions in explorer accordingly. If some ransomware script or executable wants to access or change resources (folders) you’ve added as protected, this will be blocked. Also, you can see restrictions as Harlan explained or by accessing this: [URL unfurl="true"]https://support.kaspersky.com/KIS/2020/en-US/70910.htm[/URL] There is no sandboxing, ignore the bot. Kaspersky uses dynamic emulator (like many other AVs if not all) to execute instructions of interest and monitor how the app behaves [B]before you execute it[/B]. This allows for more efficient detection of packers and obfuscated malware. The higher the heuristic aggressiveness level, the more instructions are emulated, according to Kaspersky documentation. Dynamic emulator is [B]not[/B] related to Intrusion Detection. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
