Document exploit protection rules: The value in the "MALWARE" field, for example HEUR_OLEP.EXE.Spyware or grayware: The value in the "MALWARE" field, for example SPY_CCFR_CPP_TEST.A.The type of malware or scan determines the information that you need: To add the exception, you need specific information from the Anti-Malware event that the scan generated. You can manually create Anti-Malware exceptions for spyware or grayware, document exploit protection rules, predictive machine learning, and behavior monitoring exceptions. Manually create an Anti-Malware exception Click Events & Reports > Events > Anti-Malware Events and locate the malware detection event.If you know that the file is benign, you can create an exception for the file from the event report. When a file is identified as malware, Workload Security generates an Anti-Malware event. Create an exception from an Anti-Malware event The exceptions are listed in the Allowed Spyware/Grayware, Document Exploit Protection Rule Exceptions, Predictive Machine Learning Detection Exceptions, and Behavior Monitoring Protection Exceptions sections. To see the lists of exceptions, open the policy or computer editor.Workload Security maintains a list of exceptions for each type of malware scan in policy and computer properties. Behavior monitoring protection (for information, see Enhanced Anti-Malware and ransomware scanning with behavior monitoring).Scans for spyware and grayware (for information, see Scan for spyware and grayware).Predictive Machine Learning scans (for information, see Detect emerging threats using Predictive Machine Learning.).
![trend micro security agent quarantine folder location trend micro security agent quarantine folder location](https://static.thinkmobiles.com/assets/reviews/images/cy4j1pzu8f55xjr698mvy6a5tbgx81.jpeg)
See Specify the files to scan.Įxceptions can be created for the following types of malware and malware scans: You can also exclude files from real-time, manual, and scheduled scans. When an exception is created, the file does not trigger an event when Workload Security scans the file.įor an overview of the Anti-Malware module, see Protect against malware.
![trend micro security agent quarantine folder location trend micro security agent quarantine folder location](https://i.pcmag.com/imagery/reviews/00pHF1PdZNaHiwf8S6mZRr3-22.fit_scale.size_760x427.v1600273260.png)
If a file is known to be benign and is identified as malware, you can create an exception for that file. Files that are not malicious can be falsely identified as malware if they share certain characteristics with malware.