1. To completely reinstall or upgrade the Security Agent, you will need to restart the computer. A restart will also be necessary when updating some components, including the firewall and the proxy drivers.
2. After installing the Security Agent on a computer with IIS 7.0, you must restart the IIS service. IIS 7.0 may not work as expected with the Security Agent, which uses the Windows Filtering Platform, until it is restarted. This issue only occurs on Windows Server 2008 without service pack 2 (SP2).
3. You cannot run the Autopcc.exe, the login script, and the Client Packager from a terminal session.
4. The Trend Micro Web Protection Add-On may conflict with the Security Agent and must be removed before the Security Agent is installed.
5. WFBS supports Remote Desktop, Remote Web Workplace, and Citrix server terminal applications.
   In a Terminal Services environment, administrators can decide whether to show or hide the Security Agent icon in the Windows task bar. This setting applies to all or none of the active user sessions. It is not possible to apply the setting to individual user sessions.
   If the icon shows on all active user sessions, memory usage may increase. To prevent this issue from occurring:
    

   Always back up the whole registry before making any modifications. Incorrect changes to the registry can cause serious system problems.

    
   1. On the Security Agent host, open the registry.
   2. Create/modify the following REG name/value pair:
      • Key: HKLM\SOFTWARE\TrendMicro\PCcillinNTCorp\CurrentVersion\Misc.\RCS
      • Type: DWORD
      • Value: 202
      There will be no PccNTMon instances created when its value is set to 202.

1. The Security Server sends notifications for all triggered events whenever the Trend Micro Security Server Master Service is restarted.
2. The following default Security Server and Scan Server ports must not be used or blocked by other applications, such as Microsoft ISA Server and other firewalls:
   • HTTP: 8059 and 8082
   • SSL: 4343 and 4345
3. If an Internet connection problem occurs during the Security Server installation, the installer will keep trying to validate the Activation Code without indicating any problem or the installer might freeze. A stable Internet connection is required during installation.
4. During Security Server install/upgrade, Trustedinstaller.exe may occupy CPU usage up to 50%.
5. The manual scan process bar is not fully synchronized to Files scanned count based scan mechanism.

1. The web console does not work on Internet Explorer 10 Windows UI because of the lack of support for ActiveX controls.
2. Trend Micro recommends accessing the Web console from computers that do not have adware installed. If Hotbar or other adware is installed, ActiveX errors may occur when accessing certain console screens.
3. Trend Micro recommends setting Internet Explorer to Medium or lower security levels when accessing the Web console. Higher security settings may block necessary ActiveX controls.
   By default, Internet Explorer applies Medium-low security levels for intranet sites and Medium security levels for sites in its Trusted Sites list. To help ensure you can access the console properly, add it to the Trusted Sites list.

When Device Control privilege is set to List device content only, machines would not be able to browse all folders.

1. Client users can bypass URL filtering restrictions by changing the local time on their computers.
2. Instant messaging software automatically logs users off when the Security Agent starts or stops.
3. Instant Messenger Content Filtering does not work when the messenger connects to the network through a proxy server.
4. After Continue Browse is clicked, it may still be blocked again on slow machines.
5. In an unstable network environment, the Trend Micro Web Reputation server may pass a website without filtering.

1. When uninstalling the firewall driver, the Client could temporarily lose the network connection. Some applications, such as Secure Shell (SSH), Terminal Services Client, or Remote Desktop, could be affected by the disconnection. If this occurs, restart the application after disabling the firewall (which also completes the uninstallation process).
2. The Security Agent firewall might conflict with other firewall applications. Trend Micro recommends uninstalling or disabling other firewall applications.
3. On VMware clients, the Security Agent firewall may block all incoming packets. To address this issue, add the following value to the client's registry:
    

   Always back up the whole registry before making any modifications. Incorrect changes to the registry can cause serious system problems.

    
   • Key: HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\PFW
   • Name: EnableBypassRule
   • Type: REG_DWORD
   • Value=1
   1 means enable, 0 means disable

1. The Messaging Security Agent only supports typical installations of Exchange Server 2007 and 2010 that include the Hub Transport, the Mailbox, and the Client Access server roles.
2. The Messaging Security Agent cannot be installed on a Windows EBS 2008 computer with the Exchange Server 2007 Edge Transport server role.
3. As an anti-spam solution on Exchange Server 2003, users can choose between EUQ or Junk Mail integration. If you use Junk Mail integration, install Exchange Server 2003 SP2 or above. This requires that the Intelligent Message Filter (IMF) be preinstalled.
4. During Messaging Security Agent installation, the installer may be unable to submit passwords that have special, non-alphanumeric characters to the Exchange Server computer. As a result, you may be unable to install the Messaging Security Agent if the domain administrator account you are using has a complex password. To work around this issue, temporarily change the password for the domain administrator account.
5. When installing Messaging Security Agent remotely, using the Web console or the Worry-Free Business Security Advanced installer on a computer running Windows Server 2008, SBS 2008, or EBS 2008, you need to specify the built-in domain administrator account because of User Access Control restrictions. Note that for computers with other operating systems, you need an account that is in the Exchange Organization Administrators group.

Email Reputation Services (ERS) is an online hosted service and its activation takes about eight hours.

Distributed Files System(DFS) and DFS Replication is not supported by WFBS