Scan certain file types Parent topic

HTTP > Advanced Threat Protection > Policies and then open the Virus Scan Rule tab after Adding or edit an existing policy
  • All scannable files: For maximum security, Trend Micro recommends that you scan all scannable file types.MORE>>
    • All non-secure Web transactions will be scanned for viruses, Trojans, spyware, and other known threats.
    • Web page content is checked for malicious Java applets and ActiveX files.
  • IntelliScan: Choose this option to scan only those files types known to be susceptible to viruses.MORE>>
    • IntelliScan chooses which files to scan based on a list embedded in the virus pattern file that identifies the most risky file types. Although the list is kept up to date and based on threat characteristics observed around the world and for years, potential performance benefits may be offset by increased risk.
    • IWSVA ascertains the true file type by checking the file header rather than relying on the file name (which can be easily faked).
  • Specific file extensions: This option is potentially the least secure, but does offer the fastest scanning performance.
    • IWSVA will check only files of the type you specify.
    • Files are checked according to file name and extension only, rather than true type checking.
    • You can use this option to exempt certain files from scanning -- in other words, have IWSVA scan all files except for those you specify (more secure).
  • MIME content-type to skip: You can prevent IWSVA from scanning certain MIME content types. This may be necessary, for example, if scanning interferes with the delivery of real-time streaming content such as RealPlayer or the Microsoft download manager.
    • Select the MIME content-type entries to skip within the Audio, Video, and Image categories
    • When specifying MIME content-types to skip in the Other: field, enter a top-level media type followed by a slash to exclude the entire class from scanning.
    • Separate multiple values with a space.
    • Enter a top-level media type followed by a subtype to exclude that individual content from being scanned
    • To shorten the virus scanning time, you may copy the MIME Content-types and paste them into the MIME content-type to skip field.
    • MIME designations can be forged. IWSVA will check the true file type to protect against forged MIME types if you check the Enable MIME type validation check box.