Virus Scan. Scan settings section

Virus Scan is a one-time full or custom scan of files on the computer performed by the application. The application can perform several virus scan tasks at the same time.

By default, the application creates one standard virus scan task – full scan. The application scans all objects located on local drives of the computer, as well as all mounted and shared objects that are accessed via the Samba and NFS protocols with the recommended security settings.

During a full disk scan, the computer processor will be busy. It is recommended to run the full scan task when the business is idle.

You can also create virus scan user tasks.

Virus Scan task settings

Setting	Description
Task priority	In this group of settings you can select the task priority: Low— the scan task is executed with a low priority: no more than 10% of processor resource consumption. Executing the task takes more time, but the application allocates resources for other tasks. Normal (default value) — the scan task is executed with a normal priority: no more than 50% of all processor resources. High — the scan task is executed with a high priority, without limiting the consumption of processor resources. Specify this value to perform the current scan task faster.
Scan archives	This check box enables or disables scan of archives. If the check box is selected, the application scans archives. To scan an archive, the application has to unpack it first, which may slow down scanning. You can reduce the archive scan time by configuring the Skip object if scan takes longer than (sec) and Skip objects larger than (MB) settings in the General scan settings section. If the check box is cleared, the application does not scan archives. The check box is selected by default.
Scan SFX archives	This check box enables or disables self-extracting archive scans. Self-extracting archives are archives that contain an executable extraction module. If the check box is selected, the application scans self-extracting archives. If the check box is cleared, the application does not scan self-extracting archives. This check box is available if the Scan archives check box is unchecked. The check box is selected by default.
Scan mail databases	This check box enables or disables scan of mail databases of Microsoft Outlook, Outlook Express, The Bat!, and other mail applications. If the check box is selected, the application scans mail database files. If the check box is cleared, the application does not scan mail database files. This check box is cleared by default.
Scan mail format files	This check box enables or disables scan of files of plain-text email messages. If this check box is selected, the application scans plain-text messages. If this check box is cleared, the application does not scan plain-text messages. This check box is cleared by default.
Skip object if scan takes longer than (sec)	A field for specifying the maximum time to scan an object, in seconds. After the specified time, the application stops scanning the object. Available values: `0–9999`. If the value is set to `0`, the scan time is unlimited. The default value is `0`.
Skip objects larger than (MB)	The field for specifying the maximum size of an archive to scan, in megabytes. Available values: `0–999999`. If the value is set to `0`, the application scans objects of any size. The default value is `0`.
Log clean objects	This check box enables or disables the logging of ObjectProcessed type events. If this check box is selected, the application logs events of the ObjectProcessed type for all scanned objects. If this check box is cleared, the application does not log events of the ObjectProcessed type for any scanned object. This check box is cleared by default.
Log unprocessed objects	This check box enables or disables the logging ObjectNotProcessed type events if a file cannot be processed during a scan. If this check box is selected, the application logs events of the ObjectNotProcessed type. If this check box is cleared, the application does not log events of the ObjectNotProcessed type. This check box is cleared by default.
Log packed objects	This check box enables or disables the logging of PackedObjectDetected type events for all packed objects that are detected. If this check box is selected, the application logs events of the PackedObjectDetected type. If this check box is cleared, the application does not log events of the PackedObjectDetected type. This check box is cleared by default.
Use iChecker technology	This check box enables or disables scan of only new and modified since the last scan files. If the check box is selected, the application scans only new files or the files modified since the last scan. If the check box is cleared, the application scans files regardless of creation or modification date. The check box is selected by default.
Use heuristic analysis	This check box enables or disables heuristic analysis during file scans. The check box is selected by default.
Heuristic analysis level	If the Use heuristic analysis check box is selected, you can select the heuristic analysis level in the drop-down list: Light is the least detailed scan with minimal system load. Medium is a medium scan with balanced system load. Deep is the most detailed scan with maximum system load. Recommended (default value) is the optimal level recommended by Kaspersky experts. It ensures an optimal combination of quality of protection and impact on the performance of protected servers.
First action	In this drop-down list, you can select the first action to be performed by the application on an infected object that has been detected: Disinfect the object. A copy of the infected object will be saved in the Storage. Remove the object. A copy of the infected object will be saved in the Storage. Perform recommended action on the object, based on data about the danger level of the threat detected in the file and about the possibility of disinfecting it (default value). Skip the object.
Second action	In this drop-down list, you can select the second action to be performed by the application on an infected object, in case the first action is unsuccessful: Disinfect the object. A copy of the infected object will be saved in the Storage. Remove the object. A copy of the infected object will be saved in the Storage. Perform recommended action on the object, based on data about the danger level of the threat detected in the file and about the possibility of disinfecting it. Skip the object (default value).
Scan scopes	The table that contains the scopes scanned by the task. By default, the table contains one scan scope that includes all directories of the local file system. You can add, configure, delete, move up, or move down scan scopes in the table. Clicking the Move down button moves the selected item down in the table. Kaspersky Endpoint Security scans objects in the specified scopes in the order they are listed in the table of scan scopes. If you want to configure security settings for a subdirectory that are different from the security settings of the parent directory, you must place the subdirectory higher than its parent directory in the table. This button is available if a scope is selected in the table. Clicking the Move up button moves the selected item up in the table. Kaspersky Endpoint Security scans objects in the specified scopes in the order they are listed in the table of scan scopes. If you want to configure security settings for a subdirectory that are different from the security settings of the parent directory, you must place the subdirectory higher than its parent directory in the table. This button is available if a scope is selected in the table. Clicking the Delete button excludes the selected scope from scans. This button is available if at least one scan scope is selected in the table. Clicking the scan scope name opens the <Scan scope name> window. In this window, you can modify the settings of the selected scan scope. Clicking the Add button opens the <New scan scope> window. In this window, you can define a new scan scope.

Page top