About unprocessed files

Kaspersky Endpoint Security logs information about files that it has not processed for some reason. This information is recorded in the form of events in the list of unprocessed files.

An infected file is considered processed if Kaspersky Endpoint Security performs one of the following actions on this file according to the specified application settings while scanning the computer for viruses and other threats:

• Disinfect.
• Remove.
• Delete if disinfection fails.

An infected file is considered unprocessed if Kaspersky Endpoint Security for any reason has failed to perform an action on this file according to the specified application settings while scanning the computer for viruses and other threats.

This situation is possible in the following cases:

• The scanned file is unavailable (for example, it is located on a network drive or on a removable drive without write privileges).
• The action that is selected in the Action on threat detection section for scan tasks is Inform, and the user selects the Skip action when a notification about the infected file is displayed.

You can manually start a Custom Scan task for files in the list of unprocessed files after updating databases and application modules. File status may change after the scan. You may perform the necessary actions on the files, depending on their status.

For example, you can perform the following actions:

• Delete files with Infected status.
• Restore infected files that contain important information and restore files that are marked as Disinfected or Not infected.
• Quarantine files with Probably infected status.