Real-time Scan provides persistent and ongoing file scan for the endpoints. Each time a file is received, opened, downloaded, copied, or modified, Real-time Scan always scans the file for security assessment. After performing the Real-Time Scan, users can proceed to access the file if it does not pose a security threat. However, if a security risk or possible virus/malware has been detected during the scanning, associated events indicating the name of the infected file and the specific security risk will be generated for furthur investigation.
Moreover, a persistent scan cache is maintained and reloaded each time the Real-Time Scan is executed. The Real-Time Scan tracks any changes made to files or folders that have occurred until the function is disabled and the files are unloaded and removed from the scan cache.