Configuring actions on objects in replication protection mode
March 25, 2022
ID 17269
Kaspersky Anti-Virus processes objects in accordance with their assigned status following anti-virus scanning and filtering of attachments. Uninfected objects are left in the document without any changes. Actions on infected, protected, and skipped objects can be configured by the administrator. Actions to be taken by the application are defined separately for each object status.
The following actions are taken on objects by default:
- If an object is declared infected, Kaspersky Anti-Virus tries to disinfect it and the disinfected object is stored in the document at the source address.
- If an object could not be scanned (for example, the time assigned for scanning has elapsed) or the object is a password-protected archive, Kaspersky Anti-Virus skips this object.
By default, copies are stored in the Quarantine database before objects are cured or deleted. Information about detected objects and actions taken can be sent to administrators and stored in the Event log and statistics database.