File Anti-Virus prevents infection of the computer’s file system. The components starts at startup of the operating system, continuously remains in the computer’s RAM, and scans all files being opened, saved, or launched on your computer and all connected drives.
When the user or a program attempts to access a protected file, File Anti-Virus checks if the iChecker and iSwift databases contain information about this file, and makes a decision on whether the file should be scanned or not.
Databases created by Kaspersky Lab’s experts and containing a detailed description of all current threats to computer security as well as methods used for their detection and disinfection. These databases are constantly updated by Kaspersky Lab as new threats appear. In order to achieve a higher quality of threat detection we recommend that you copy databases from Kaspersky Lab’s update servers on a regular basis.
If a threat is detected, Kaspersky Internet Security assigns one of the following statuses to the found object:
The application displays a notification about detected threat and performs the assigned action. You can change actions to be taken on detected threats.
When working in automatic mode, Kaspersky Internet Security automatically applies the action recommended by Kaspersky Lab specialists to each dangerous object detected. For malicious objects this action is Disinfect. Delete if disinfection fails, for suspicious objects – Move to Quarantine.
Before attempting to disinfect or delete an infected object, Kaspersky Internet Security creates a backup copy for subsequent restoration or disinfection. Suspicious (potentially infected) objects are quarantined. You can enable the auto scan for quarantined objects after each update.