Running Manual Scans | Trend Micro Service Central

Views:

This procedure describes how Security Server administrators can run Manual Scan on Security Agents and Messaging Security Agents (Advanced only) from the web console.

Note:

Manual Scan can also be run directly from clients by right-clicking the Security Agent icon in the Windows Task Bar and clicking Scan Now. It is not possible to run Manual Scan directly on Microsoft Exchange servers.

Navigate to Scans > Manual Scan.

(Optional) Customize scan settings before running Manual Scan.

Instructions and Notes	Recommended Scan Settings
To customize scan settings for the Security Agent, click a desktop or server group. See Scan Targets and Actions for Security Agents. Note: Scan settings for Security Agents are also used when users run Manual Scan directly from clients. However, if you grant users the privilege to configure their own scan settings, the user-configured settings will be used during the scan.	Target All scannable files: Includes all scannable files. Unscannable files are password protected files, encrypted files, or files that exceed the user-defined scanning restrictions. Scan compressed files up to layer 1: Scans compressed files that are 1 compression layer deep. Default is "off" for the default server group and "on" for the default desktop group.
Exclusions Do not scan the directories where Trend Micro products are installed
Advanced Settings Modify Spyware/Grayware Approved List (for Anti-spyware only)
To customize scan settings for the Messaging Security Agent, expand an agent and click the following: Antivirus: Click to have the agent scan for viruses and other malware. See Scan Targets and Actions for Messaging Security Agents. Content Filtering: Click to have the agent scan email for prohibited content. See Managing Content Filtering Rules. Attachment Blocking: Click to have the agent scan email for attachment rule violations. See Configuring Attachment Blocking.	The agent scans all scannable files. It includes the message bodies of email messages in the scan. When the agent detects a file with a virus or other malware, it cleans the file. When it cannot clean the file, it replaces with text/file instead. When the agent detects a file with a Trojan or worm, it replaces the Trojan or worm with a text or file. When the agent detects a file with a Packer, it replaces the Packer with a text or file. The agent does not clean infected compressed files. This reduces the time required during real-time scanning.

Instructions and Notes

Recommended Scan Settings

To customize scan settings for the Security Agent, click a desktop or server group.

See Scan Targets and Actions for Security Agents.

Note:

Scan settings for Security Agents are also used when users run Manual Scan directly from clients. However, if you grant users the privilege to configure their own scan settings, the user-configured settings will be used during the scan.

Target

All scannable files: Includes all scannable files. Unscannable files are password protected files, encrypted files, or files that exceed the user-defined scanning restrictions.
Scan compressed files up to layer 1: Scans compressed files that are 1 compression layer deep. Default is "off" for the default server group and "on" for the default desktop group.

Exclusions

Do not scan the directories where Trend Micro products are installed

Advanced Settings

Modify Spyware/Grayware Approved List (for Anti-spyware only)

To customize scan settings for the Messaging Security Agent, expand an agent and click the following:

Antivirus: Click to have the agent scan for viruses and other malware. See Scan Targets and Actions for Messaging Security Agents.
Content Filtering: Click to have the agent scan email for prohibited content. See Managing Content Filtering Rules.
Attachment Blocking: Click to have the agent scan email for attachment rule violations. See Configuring Attachment Blocking.

The agent scans all scannable files. It includes the message bodies of email messages in the scan.
When the agent detects a file with a virus or other malware, it cleans the file. When it cannot clean the file, it replaces with text/file instead.
When the agent detects a file with a Trojan or worm, it replaces the Trojan or worm with a text or file.
When the agent detects a file with a Packer, it replaces the Packer with a text or file.
The agent does not clean infected compressed files. This reduces the time required during real-time scanning.

Select the groups or Messaging Security Agents to scan.
Click Scan Now.
The Security Server sends a notification to agents to run Manual Scan. The Scan Notifying Results screen that appears shows you the number of agents that received and did not receive the notification.
To stop scans that are in progress, click Stop Scanning.
The Security Server sends another notification to agents to stop Manual Scan. The Stop Scan Notifying Results screen that appears shows you the number of agents that received and did not receive the notification. Security Agents may fail to receive the notification if they have become offline since running the scan or if there are network interruptions.