The tree or list of protected device file resources for the selected On-Demand Scan task is displayed in the Scan scope settings window.
The file resource tree or list displays the nodes to which you have read-access based on the configured Microsoft Windows security settings.
Kaspersky Embedded Systems Security for Windows contains the following predefined scan scopes:
My Computer. Kaspersky Embedded Systems Security for Windows scans the entire protected device.
Local hard drives. Kaspersky Embedded Systems Security for Windows scans objects on a protected device hard drives. All hard drives, individual disks, folders or files can be included in or excluded from the scan scope.
Removable drives. Kaspersky Embedded Systems Security for Windows scans files on external devices, such as CDs or removable drives. All removable drives, individual disks, folders or files can be included in or excluded from the scan scope.
Network. Network folders or files can be added to the scan scope by specifying their path in UNC (Universal Naming Convention) format. The account used to start the task must have permissions to access the added network folders and files. By default, On-Demand Scan tasks run under the system account.
Connected network drives will also not be displayed in the protected device's file resource tree. To include objects on network drives in the scan scope, specify the path to the folder that corresponds to the network drive in UNC format.
System memory. Kaspersky Embedded Systems Security for Windows scans the executable files and modules of the processes running in the operating system when the scan is initiated.
Startup objects. Kaspersky Embedded Systems Security for Windows scans objects referred to by registry keys and configuration files, for example WIN.INI or SYSTEM.INI, as well as the application's modules that are started automatically at protected device startup.
Shared folders. You can include shared folders on the protected device in the scan scope.
Virtual drives. Virtual folders, files, and drives connected to the protected device can be included in the scan scope, for example, common cluster drives.
Virtual drives created using a SUBST command are not displayed in the protected device's file resource tree in the Application Console. In order to scan objects on a virtual drive, include the protected device folder associated with the virtual drive in the scan scope.
Standard scan scopes are displayed in the tree of network file resources by default. They can be added to the list of network file resources when it is created in the scan scope settings.
By default, On-Demand Scan tasks are run under the following scopes: