Changing the action taken on infected files by the File Threat Protection component

By default, the File Threat Protection component automatically tries to disinfect all infected files that are detected. If disinfection fails, the File Threat Protection component deletes these files.

To change the action taken on infected files by the File Threat Protection component:

  1. In the main application window, click the button icon_settings.
  2. In the application settings window, select Essential Threat ProtectionFile Threat Protection.
  3. In the Action on threat detection section, select the required option:
    • Disinfect; delete if disinfection fails. If this option is selected, Kaspersky Endpoint Security automatically attempts to disinfect all infected files that are detected. If disinfection fails, Kaspersky Endpoint Security deletes the files.
    • Disinfect; block if disinfection fails. If this option is selected, Kaspersky Endpoint Security automatically attempts to disinfect all infected files that are detected. If disinfection is not possible, Kaspersky Endpoint Security adds the information about the infected files that are detected to the list of active threats.
    • Block. If this option is selected, the File Threat Protection component automatically blocks all infected files without attempting to disinfect them.

    Before attempting to disinfect or delete an infected file, Kaspersky Endpoint Security creates a backup copy of the file in case you need to restore the file or if it can be disinfected in the future.

  4. Save your changes.

     

Page top