Actions on objects in database scanning mode

Kaspersky Anti-Virus processes objects in accordance with their assigned status following anti-virus scanning and filtering of attachments. Uninfected objects are allowed through without any modifications. Actions on infected, protected, and skipped objects can be configured by the administrator. Actions to be taken by the application are defined separately for each object status.

The following actions are taken on objects by default:

• If an object is declared infected, Kaspersky Anti-Virus tries to disinfect it and the disinfected object is stored in the document at the original address.

  OLE objects are not disinfected. Kaspersky Anti-Virus deletes infected OLE objects.

• If an object could not be scanned (for example, the time assigned for scanning has elapsed) or the object is a password-protected archive, Kaspersky Anti-Virus skips this object.

By default, a copy of the object is stored in the Quarantine database before the object is processed. Information about detected objects and actions taken can be sent to administrators and stored in the Event log and statistics database.