Actions for infected objects window

Support

Support for business applications

Kaspersky Endpoint Security 11 for Linux

Managing the application using the Administration Console

Policy settings

File Threat Protection

Actions for infected objects window

December 12, 2023

ID 210480

In this window, you can configure actions to be performed by Kaspersky Endpoint Security on detected infected objects:

File Threat Protection settings

Setting	Description
First action	In this drop-down list, you can select the first action to be performed by Kaspersky Endpoint Security on an infected object that has been detected: Disinfect the object. A copy of the infected object will be saved in the Storage. Remove the object. A copy of the infected object will be saved in the Storage. Perform recommended action on the object, based on data about the danger level of the threat detected in the file and about the possibility of disinfecting it (default value). Block access to the object.
Second action	In this drop-down list, you can select the second action to be performed by Kaspersky Endpoint Security on an infected object, in case the first action is unsuccessful: Disinfect the object. A copy of the infected object will be saved in the Storage. Remove the object. A copy of the infected object will be saved in the Storage. Perform recommended action on the object, based on data about the danger level of the threat detected in the file and about the possibility of disinfecting it. Block access to the object (default value).

Setting

Description

First action

In this drop-down list, you can select the first action to be performed by Kaspersky Endpoint Security on an infected object that has been detected:

Disinfect the object. A copy of the infected object will be saved in the Storage.
Remove the object. A copy of the infected object will be saved in the Storage.
Perform recommended action on the object, based on data about the danger level of the threat detected in the file and about the possibility of disinfecting it (default value).
Block access to the object.

Second action

In this drop-down list, you can select the second action to be performed by Kaspersky Endpoint Security on an infected object, in case the first action is unsuccessful:

Disinfect the object. A copy of the infected object will be saved in the Storage.
Remove the object. A copy of the infected object will be saved in the Storage.
Perform recommended action on the object, based on data about the danger level of the threat detected in the file and about the possibility of disinfecting it.
Block access to the object (default value).

Kaspersky Endpoint Security for Linux: High protection without performance compromising

Detects and blocks advanced threats. Buy as part of Endpoint Security for Business Advanced.

Kaspersky Premium Support (MSA): High‑priority incident processing

Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.