Summary
Real-time Scan is a persistent and ongoing scan. Each time a file is received, opened, downloaded, copied, or modified, Real-time Scan scans the file for security risks.
Details
To enable Real-Time Scan:
- On Apex Central, log on to the Management Console.
- Go to Policies > Policy Management.
- Create or select the policy created.
- On targets, select Manage Targets and select target Apex One agents.
- Under Apex One Agent Settings, select Real-time Scan Settings.
- Enable virus/malware scan and enable spyware/grayware scan.
- Configure the Target tab.
- User Activity on Files > Scan files being: created/modified and retrieved
- Files to Scan > All Scannable files
- Under Scan Settings:
- Scan floppy disks during shutdown (if you have still have floppy disk)
- Scan network drive
- Scan the boot sector of the USB storage device after plugging in
- Scan all files in removable storage device after plugging in
- Quarantine malware variants detected in memory
- Scan compressed files > Maximum layers : 3
- Scan OLE objects > Maximum layers : 3
Detect exploit code in OLE files.
- Under Virus/Malware Scan Settings Only, enable Intellitrap.
- Enable CVE exploit scanning for files downloaded through web and email channels.
- Configure Scan Exclusion tab > Enable scan exclusion.
- Scan Exclusion list (Directories)
Exclude directories where Trend Micro products are installed.
- Scan Exclusion list (Files)
- Scan Exclusion list (Files Extensions)
- Scan Exclusion list (Directories)
- Configure the Action tab:
Virus/Malware > Use a specific action for each virus/malware type:
CVE exploit Quarantine Joke Quarantine Trojans Quarantine Virus Clean & Quarantine Test Virus Quarantine Packer Quarantine Probable Malware Quarantine Other Malware Clean & Quarantine Back up files before cleaning. - Damage Cleanup Services:
- Enable > Run cleanup when probable virus/malware is detected.
- Spyware/Grayware > Clean: OfficeScan terminates processes or delete registries, files, cookies and shortcuts.
- Click Deploy.
