Scan mode refers to the condition that triggers file scanning by the File Threat Protection component. By default, Kaspersky Endpoint Security scans files in smart mode. In this file scan mode, the File Threat Protection component decides whether or not to scan files after analyzing operations that are performed with the file by the user, by an application on behalf of the user (under the account that was used to log in or a different user account), or by the operating system. For example, when working with a Microsoft Office Word document, Kaspersky Endpoint Security scans the file when it is first opened and last closed. Intermediate operations that overwrite the file do not cause it to be scanned.
To change the file scan mode:
In the main application window, click the button .
In the application settings window, select Essential Threat Protection → File Threat Protection.
Click the Advanced Settings button.
In the Scan mode section, select the required mode:
Smart mode. In this mode, File Threat Protection scans an object based on an analysis of actions taken on the object. For example, when working with a Microsoft Office document, Kaspersky Endpoint Security scans the file when it is first opened and last closed. Intermediate operations that overwrite the file do not cause it to be scanned.
On access and modification. In this mode, File Threat Protection scans objects whenever there is an attempt to open or modify them.
On access. In this mode, File Threat Protection scans objects only upon an attempt to open them.
On execution. In this mode, File Threat Protection only scans objects upon an attempt to run them.