The Advanced Disinfection technology is aimed at purging the operating system of malware that has already started its processes in RAM and that prevents the security application from removing it by using other methods (for example, the Host Intrusion Prevention or Exploit Prevention component).
By default, Advanced Disinfection is disabled because this technology uses a significant amount of computing resources. Therefore, you can enable Advanced Disinfection only when you want to use it.
When an active infection is detected during a malware scan. Kaspersky Endpoint Security for Windows generates active infection events in local application reports and on the Kaspersky Next side. You can then enable the Advanced Disinfection feature and run the malware scan task again. This way, you can choose the appropriate time to do Advanced Disinfection and subsequently reboot your users' devices automatically.
To enable or disable Advanced Disinfection on Windows devices:
The Security profiles section contains a list of security profiles configured in Kaspersky Next.
In the list, select the security profile for the devices on which you want to configure Advanced Disinfection.
The security profile properties window displays settings available for all devices.
The Threat detection and exclusions window opens.
By default, the technology is disabled.
After the security profile is applied, Advanced Disinfection is enabled or disabled on Windows devices.