Kaspersky PURE User Guide - Kaspersky Lab

More documents

Recommendations

Info

U S E R G U I D EThere are two basic types of DoS attacks:sending the target computer specially created packets that the computer does not expect, which cause thesystem either to restart or to stop;sending the target computer many packets within a timeframe that the computer cannot process, whichcause system resources to be exhausted.The most flagrant examples for this group of attacks are the following types:The Ping of death attack consists of sending an ICMP packet with a size greater than the maximum of 64KB. This attack can crash some operating systems.Land attack consists of sending a request to an open port on the target computer to establish a connectionwith itself. This attack sends the computer into a cycle, which intensifies the load on the processor and canlead to the crashing of some operating systems.The ICMP Flood attack consists of sending a large quantity of ICMP packets to your computer. Thecomputer attempts to reply to each inbound packet, which slows the processor to a crawl.The SYN Flood attack consists of sending a large quantity of queries to a remote computer to establish afake connection. The system reserves certain resources for each of those connections, which completelydrains your system resources, and the computer stops reacting to other connection attempts.Intrusion attacks, which aim to take over your computer. This is the most dangerous type of attack, because if itis successful, the hacker takes total control of your system.Hackers use this attack to obtain confidential information from a remote computer (for example, credit cardnumbers, passwords), or to penetrate the system to use its computing resources for malicious purposes later(e.g., to use the invaded system in a zombie network, or as a platform for new attacks).This group is the largest in number of attacks included. They may be divided into three groups depending on theoperating system installed on the user's computer: Microsoft Windows attacks, Unix attacks, and the commongroup for network services available in both operating systems.The following types of attacks are the most wide-spread among those using the network resources of operatingsystems:Buffer overflow attacks. Buffer overflow may be caused by lack (or insufficiency) of control when workingwith data arrays. This is one of the oldest vulnerability types and the easiest for hackers to exploit.Format string attacks. Format string errors arise from insufficient control of input values for I/O functions,such as printf(), fprintf(), scanf(), and others, from the standard C library. If a program has this vulnerability,the hacker able to send queries created with a special technique, can take total control of the system.Intrusion Detection System automatically analyzes and prevents attempts to exploit these vulnerabilities inthe most common network services (FTP, POP3, IMAP) if they are running on the user’s computer.Attacks aimed at computers with Microsoft Windows are based on the use of vulnerabilities of the softwareinstalled on a computer (such as Microsoft SQL Server, Microsoft Internet Explorer, Messenger, andsystem components available via the network – DCom, SMB, Wins, LSASS, IIS5).In addition, the use of various malicious scripts, including scripts processed by Microsoft Internet Explorer andHelkern-type worms, can be classified as isolated incidents of intrusion attacks. The essence of this attack typeconsists of sending a special type of UDP packets to a remote computer that can execute malicious code.E N A B L I N G A N D D I S A B L I N G N E T W O R K A T T A C K B L O C K E RBy default, Network Attack Blocker is enabled, functioning in optimum mode. You can disable Network Attack Blocker, ifnecessary.To enable or disable the Network Attack Blocker:1. Open the main application window.144
A D V A N C E D A P P L I C A T I O N S E T T I N G S2. In the top part of the window, click the Settings link.3. In the left part of the window, in the Protection Center section, select the Network Attack Blocker component.4. In the right part of the window, uncheck the Enable Network Attack Blocker box if you need to disable thiscomponent. Check this box if you need to enable the component.E D I T I N G T H E B L O C K A G E S E T T I N G SBy default, Network Attack Blocker blocks the activity of a computer making an attack for one hour. You can cancelblockage of the selected computer or change the time of blockage.To modify the time for which the attacking computer will be blocked:1. Open the main application window.2. In the top part of the window, click the Settings link.3. In the left part of the window, in the Protection Center section, select the Network Attack Blocker component.4. In the right part of the window, check the Add the attacking computer to the list of blocked computers forbox and specify the time of blockage.To unblock the attacking computer:1. Open the main application window and click the Computer Protection button.The Computer Protection window opens.2. In the left part of the window, select Protection Center.3. In the right part of the window, in the Online activity section, click the Network Monitor link to open theNetwork Monitor window.4. Select the blocked computer on the Blocked computers tab and unlock it using the Unblock link.SCANNING ENCRYPTED CONNECTIONSConnecting using the SSL/TLS protocols protects data exchange channel on the Internet. The SSL/TLS protocols allowsidentifying the parties exchanging data using electronic certificates, encoding the data being transferred, and ensuringtheir integrity during the transfer.These features of the protocol are used by hackers to spread malicious programs, since most antivirus applications donot scan SSL/TLS traffic.Kaspersky PURE scans encrypted connections using a Kaspersky Lab's certificate.If an invalid certificate is detected when connecting to the server (for example, if the certificate is replaced by anintruder), a notification will pop up containing a suggestion to either accept or reject the certificate.If you are sure that connection with a website is always secure, in spite of an invalid certificate, you can add the websiteinto the list of trusted URLs. Kaspersky PURE will no longer scan the encrypted connection with this website.To enable encrypted connections scan, please do the following:1. Open the main application window.2. In the top part of the window, click the Settings link.3. In the left part of the window, in the Protection Center section, select the Network subsection.145
Page 1 and 2:
Kaspersky PUREUSER GUIDEP R O G R A
Page 3 and 4:
CONTENTSKASPERSKY LAB END USER LISE
Page 5 and 6:
C O N T E N T SHow to restore appli
Page 7 and 8:
C O N T E N T SAPPLICATIONS .......
Page 9 and 10:
KASPERSKY LAB END USER LISENSEAGREE
Page 11 and 12:
K A S P E R S K Y L AB E N D U S E
Page 13 and 14:
K A S P E R S K Y L AB E N D U S E
Page 15 and 16:
ABOUT THIS GUIDEThis document is th
Page 17 and 18:
A B O U T T H I S G U I D ESAMPLE T
Page 19 and 20:
A D D I T I O N A L S O U R C E S O
Page 21 and 22:
SETTING UP HOME NETWORK PROTECTIONK
Page 23 and 24:
K A S P E R S K Y P U R EPassword M
Page 25 and 26:
INSTALLING AND REMOVING THEAPPLICAT
Page 27 and 28:
I N S T A L L I N G A N D R E M O V
Page 30 and 31:
U S E R G U I D EIf any anti-virus
Page 32 and 33:
U S E R G U I D ESTEP 16. RESTRICTI
Page 34 and 35:
GETTING STARTEDThe application is r
Page 36 and 37:
U S E R G U I D EAnti-Spam database
Page 38 and 39:
U S E R G U I D ECommercial - a com
Page 40 and 41:
APPLICATION INTERFACEThis section w
Page 42 and 43:
U S E R G U I D EExit - closes Kasp
Page 44 and 45:
U S E R G U I D ESupport - to open
Page 46 and 47:
U S E R G U I D Ethe right part of
Page 48 and 49:
U S E R G U I D EDepending on the s
Page 50 and 51:
U S E R G U I D EClicking the Capti
Page 52 and 53:
U S E R G U I D ENotification windo
Page 54 and 55:
U S E R G U I D EIn this section, y
Page 56 and 57:
U S E R G U I D Einactive (grey) ap
Page 58 and 59:
U S E R G U I D ETo run the Kaspers
Page 60 and 61:
U S E R G U I D Efrom the main appl
Page 62 and 63:
U S E R G U I D EHOW TO PERFORM FUL
Page 64 and 65:
U S E R G U I D EHOW TO PROTECT YOU
Page 66 and 67:
U S E R G U I D EThe master passwor
Page 68 and 69:
U S E R G U I D EHOW TO RESTORE AN
Page 70 and 71:
U S E R G U I D Ea. In the left par
Page 72 and 73:
U S E R G U I D E4. In the list of
Page 74 and 75:
U S E R G U I D ETo enable Anti-Spa
Page 76 and 77:
U S E R G U I D E3. In the left par
Page 78 and 79:
COMPUTER PROTECTIONComputer protect
Page 80 and 81:
U S E R G U I D EIN THIS SECTION:Ch
Page 82 and 83:
U S E R G U I D ETo create a list o
Page 84 and 85:
Page 86 and 87:
U S E R G U I D EVULNERABILITY SCAN
Page 88 and 89:
Page 90 and 91:
U S E R G U I D E4. Click the Setti
Page 92 and 93:
U S E R G U I D EIf you work in aut
Page 94 and 95: U S E R G U I D E3. In the left par
Page 96 and 97: U S E R G U I D ECHANGING ACTIONS T
Page 98 and 99: U S E R G U I D Eheuristic analysis
Page 100 and 101: U S E R G U I D E5. Use the General
Page 102 and 103: U S E R G U I D ETo configure the s
Page 104 and 105: U S E R G U I D EIf the file or web
Page 106 and 107: U S E R G U I D E4. Click the Setti
Page 108 and 109: U S E R G U I D ETo create a list o
Page 110 and 111: U S E R G U I D ETo scan links in t
Page 112 and 113: U S E R G U I D EIN THIS SECTION:En
Page 114 and 115: U S E R G U I D ETo start the wizar
Page 116 and 117: U S E R G U I D EMark as Spam;Mark
Page 118 and 119: U S E R G U I D EIf you need to cre
Page 120 and 121: U S E R G U I D ETo do this:1. Make
Page 122 and 123: U S E R G U I D E2. In the top part
Page 124 and 125: U S E R G U I D Enetwork computers
Page 126 and 127: U S E R G U I D EAfter processing a
Page 128 and 129: U S E R G U I D E5. Click the Add l
Page 130 and 131: U S E R G U I D EENABLING AND DISAB
Page 132 and 133: U S E R G U I D EKaspersky Lab spec
Page 134 and 135: U S E R G U I D E6. In the menu tha
Page 136 and 137: U S E R G U I D E4. In the window t
Page 138 and 139: U S E R G U I D ETo turn off monito
Page 140 and 141: FIREWALLFirewall ensures security f
Page 142 and 143: U S E R G U I D EEDITING GROUP RULE
Page 146 and 147: U S E R G U I D E4. In the right pa
Page 148 and 149: U S E R G U I D E1. Open the main a
Page 150 and 151: U S E R G U I D EIN THIS SECTION:Cr
Page 152 and 153: U S E R G U I D EApplications runni
Page 154 and 155: U S E R G U I D E2. In the window t
Page 156 and 157: U S E R G U I D ETo move an object
Page 158 and 159: BACKUPDuring the backup process, ba
Page 160 and 161: U S E R G U I D E3. Select the stor
Page 162 and 163: U S E R G U I D E4. In the top part
Page 164 and 165: U S E R G U I D E1. Open the main a
Page 166 and 167: U S E R G U I D ESAVING AND DOWNLOA
Page 168 and 169: U S E R G U I D ETen minutes before
Page 170 and 171: U S E R G U I D EJabber.Many IM cli
Page 172 and 173: U S E R G U I D ESENDING CONFIDENTI
Page 174 and 175: DATA ENCRYPTIONData Encryption is d
Page 176 and 177: U S E R G U I D EADDING FILES INTO
Page 178 and 179: HOME NETWORK CONTROLThe Home Networ
Page 180 and 181: U S E R G U I D E3. In the Home Net
Page 182 and 183: U S E R G U I D E3. Click the View
Page 184 and 185: PASSWORD DATABASE MANAGEMENTThe Pas
Page 186 and 187: U S E R G U I D Etype of account (a
Page 188 and 189: U S E R G U I D ETo create a link t
Page 190 and 191: U S E R G U I D EIt is possible to
Page 192 and 193: U S E R G U I D ETo create a Secure
Page 194 and 195:
U S E R G U I D E3. In the Password
Page 196 and 197:
U S E R G U I D ETo remove unnecess
Page 198 and 199:
U S E R G U I D EIN THIS SECTION:Co
Page 200 and 201:
U S E R G U I D EIGNORED WEB ADDRES
Page 202 and 203:
U S E R G U I D ETo move or rename
Page 204 and 205:
U S E R G U I D EDES. Block cipher
Page 206 and 207:
U S E R G U I D E7. Select a device
Page 208 and 209:
U S E R G U I D E4. In the window t
Page 210 and 211:
U S E R G U I D ECREATING STRONG PA
Page 212 and 213:
Page 214 and 215:
U S E R G U I D ETo select the dete
Page 216 and 217:
U S E R G U I D EIN THIS SECTION:En
Page 218 and 219:
U S E R G U I D ETo disable news de
Page 220 and 221:
U S E R G U I D Ecards, or USB card
Page 222 and 223:
U S E R G U I D EStep 5. Closing th
Page 224 and 225:
U S E R G U I D EList of trusted we
Page 226 and 227:
Page 228 and 229:
Page 230 and 231:
U S E R G U I D EYou can configure
Page 232 and 233:
VALIDATING KASPERSKY PURE SETTINGSA
Page 234 and 235:
U S E R G U I D ETESTING THE SMTP T
Page 236 and 237:
CONTACTING THE TECHNICAL SUPPORTSER
Page 238 and 239:
U S E R G U I D E4. In the Informat
Page 240 and 241:
APPLICATIONSThis section includes r
Page 242 and 243:
U S E R G U I D EROLLBACKEXITIMPORT
Page 244 and 245:
U S E R G U I D ERTPFWHIPSpdmFMEMWM
Page 246 and 247:
U S E R G U I D E - this parameter
Page 248 and 249:
U S E R G U I D Eavp.com UPDATE /C:
Page 250 and 251:
U S E R G U I D EGENERAL RETURN COD
Page 252 and 253:
U S E R G U I D ESkip - block acces
Page 254 and 255:
U S E R G U I D EFull name of the f
Page 256 and 257:
U S E R G U I D ETo always remember
Page 258 and 259:
U S E R G U I D ESPECIAL TREATMENT
Page 260 and 261:
U S E R G U I D EBB A C K U PCreati
Page 262 and 263:
U S E R G U I D EFF A L S E A L A R
Page 264 and 265:
U S E R G U I D EL I S T O F B L O
Page 266 and 267:
U S E R G U I D ERR E A L - T I M E
Page 268 and 269:
KASPERSKY LABKaspersky Lab was foun
Page 270 and 271:
U S E R G U I D EIN THIS SECTIONAGG
Page 272 and 273:
U S E R G U I D EBOOST 1.30.0, 1.39
Page 274 and 275:
U S E R G U I D E(1) If any part of
Page 276 and 277:
U S E R G U I D ESun RPC is provide
Page 278 and 279:
U S E R G U I D EPCRE 3.0, 7.4, 7.7
Page 280 and 281:
U S E R G U I D EWe call this licen
Page 282 and 283:
U S E R G U I D Eterms permit modif
Page 284 and 285:
U S E R G U I D ETo apply these ter
Page 286 and 287:
U S E R G U I D EA "library" means
Page 288 and 289:
U S E R G U I D EFor an executable,
Page 290 and 291:
U S E R G U I D ETy Coon, President
Page 292 and 293:
U S E R G U I D EEXCEPT AS EXPRESSL
Page 294 and 295:
INDEXAAdditional ToolsBrowser Confi
Page 296:
U S E R G U I D Eshortcut creation
show all

Kaspersky PURE User Guide - Kaspersky Lab

Create successful ePaper yourself

Delete template?

Save as template?