Scanning removable drives when they are connected to the virtual machine

Some malicious applications exploit operating system vulnerabilities to replicate themselves via local networks and removable drives. The application allows you to scan removable drives that are connected to the virtual machine for viruses and other malware.

You can configure removable drives scan on connection to the virtual machine in the Light Agent for Windows policy properties using the Administration Console, in the Light Agent for Windows local interface, and using the Web Console when creating or editing the Light Agent for Windows policy settings (Application settings → Other settings → Advanced settings).

To configure scanning of removable drives on connection to the virtual machine in the Administration Console:

1. Open Kaspersky Security Center Administration Console.
2. In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
3. In the workspace, select the Policies tab.
4. Select a Light Agent for Windows policy in the list of policies and open the Properties: <Policy name> by double-clicking.
5. In the policy properties window, select the Advanced settings section in the list on the left.
6. In the right part of the window, in the Scan removable drives on connection section, select the necessary action from the Action on removable drive connection drop-down list:
   • Do not scan.
   • Full Scan.
   • Quick Scan.
7. If you want the application to scan removable drives of a size less or equal to a specified value, select the Maximum removable drive size check box and specify a value in megabytes in the field next to it.

   The check box is available if the Full Scan or Quick Scan action is set in the Action on removable drive connection drop-down list.

8. Click the Apply button.

To configure scanning of removable drives on connection to the virtual machine in the local interface:

1. On the protected virtual machine, open the application settings window.
2. In the left part of the window, select the Scheduled tasks section.

   In the right part of the window, the general settings of scheduled tasks are displayed.

3. In the Scan removable drives on connection section, select the necessary action from the Action on removable drive connection drop-down list:
   • Do not scan.
   • Full Scan.
   • Quick Scan.

   If the section is not available, this means that the policy prohibits configuration of the removable drive scan settings for all protected virtual machines in the administration group.

4. If you want the application to scan removable drives of a size less or equal to a specified value, select the Maximum removable drive size check box and specify a value in megabytes in the field next to it.

   The check box is available if the Full Scan or Quick Scan action is set in the Action on removable drive connection drop-down list.

5. To save changes, click the Save button.