Selecting the scan method
Scan methods consist of scanning the URLs in IM clients’ messages to know if they are included in the list of suspicious web addresses and / or in the list of phishing web addresses.
To improve protection efficiency, you can use the heuristic analysis (i.e., analysis of activity that an object performs in the system). This analysis allows detecting new malicious objects which are not yet described in the databases. When using heuristic analysis, any script included in an IM client’s message is executed in a protected environment. If this script’s activity is typical of malicious objects, the object is likely to be classed as malicious or suspicious. By default, heuristic analysis is enabled.
To scan links in the messages using the database of suspicious web addresses:
- Open the application settings window.
- In the left part of the window, in the Protection Center section, select the IM Anti-Virus component.
- In the right part of the window, in the Scan methods section, check the Check if URLs are listed in the database of suspicious URLs box.
To scan links in the messages using the database of phishing web addresses:
- Open the application settings window.
- In the left part of the window, in the Protection Center section, select the IM Anti-Virus component.
- In the right part of the window, in the Scan methods section, check the Check if URLs are listed in the database of phishing URLs box.
To enable the heuristic analysis:
- Open the application settings window.
- In the left part of the window, in the Protection Center section, select the IM Anti-Virus component.
- In the right part of the window, in the Scan methods section, check the Heuristic analysis box and define the necessary scanning intensity level.