Cleaning levels

Real-time protection has three cleaning levels (to access cleaning level settings, click ThreatSense parameters in the Real-time file system protection section and then click Cleaning).

No cleaning - Infected files will not be cleaned automatically. The program will display a warning window and allow the user to choose an action. This level is designed for more advanced users who know which steps to take in the event of an infiltration.

Normal cleaning - The program will attempt to automatically clean or delete an infected file based on a predefined action (depending on the type of infiltration). Detection and deletion of an infected file is signaled by a notification in the bottom-right corner of the screen. If it is not possible to select the correct action automatically, the program provides other follow-up actions. The same happens when a predefined action cannot be completed.

Strict cleaning - The program will clean or delete all infected files. The only exceptions are system files. If it is not possible to clean a file, the user will be asked what type of action should be taken.

note_icon_warning WARNING

If an archive contains a file or files that are infected, there are two options for dealing with the archive. In the default mode, Normal cleaning, the whole archive will be deleted if all the files it contains are infected. In Strict cleaning mode, the archive will be deleted if it contains at least one infected file, regardless of the status of the other files in the archive.

note_icon_important IMPORTANT

If a Hyper-V host is running on Windows Server 2008 R2, Normal cleaning and Strict cleaning are not supported. Scanning of Virtual Machine disks is done in read-only mode, no cleaning will be performed. Regardless of the cleaning level selected, the scan is always performed in read-only mode.