The following files are required to be submitted:

• The file detected by Behavior Monitoring
• Behavior Monitoring Logs containing the detection

You may refer to User Guide: New Requests (see section, “Files that require immediate action”) for steps on how to submit a case to Technical Support.

Once the file has been verified to be normal, it will be whitelisted to prevent false detection.

1. Go to Agents > Agent Management.
2. In the Agent Tree, select the OfficeScan Server/Domain/Computer.
3. Go to Settings > Behavior Monitoring Settings > Exceptions tab.
4. Add the full path of the file and click Add to Approved List.
5. Click Save.

Wildcard exclusions are available for the following versions:

• OfficeScan 11.0 Service Pack 1 (SP1) Hot Fix Build 6315 and later builds
• OfficeScan XG Patch 1 and later builds
• OfficeScan XG Service Pack 1 (SP1) and later builds

For further reference about the use of wildcards in the exception lists, you may refer to Exception List Wildcard Support.

The Trusted Programs List excludes programs and all child processes called by the program from Real-time Scan and Behavior Monitoring scanning.

1. Go to Agents > Agent Management.
2. In the Agent Tree, select the OfficeScan Server/Domain/Computer.
3. Go to Settings > Trusted Program List.
4. Add the full path of the file and click Add to Trusted Program List.
5. Click Save.

This option is available for software developers only.

Software developers can apply for the Trend Micro GRID program where they can submit the application before public release. You may refer to The GRID: Goodware Resource and Information Database for more information.