Creating an On-Demand Scan task

To start creating a new custom On-Demand Scan task:

1. Open the Settings window in the New Task Wizard.
2. Select the required Task creation method.
3. Click the Next button.
4. Create a scan scope in the Scan scope window:

   By default, the scan scope includes critical areas of the protected device. Scan scopes are marked in the table with the icon . Excluded scan scopes are marked with the icon in the table.

   You can change the scan scope: add specific preset scan scopes, disks, folders, network objects and files and assign specific security settings for each scope added.

   • To exclude all critical areas from the scan, open the context menu on each of the lines and select the Remove scope option.
   • To include a predefined scan scope, disk, folder, network object, or file in the scan scope:
     1. Right-click the Scan scope table and select Add scope or click the Add button.
     2. In the Add objects to the scan scope window, select a predefined scope in the Predefined scope list, specify the protected device drive, folder, network object, or file on the protected device or on another protected device in the network, and click the OK button.
   • To exclude subfolders or files from the scan, select the added folder (disk) in the Scan scope window of the wizard:
     1. Open the context menu and select the Configure option.
     2. Click the Settings button in the Security level window.
     3. On the General tab in the On-demand scan settings window clear the Subfolders and Subfiles check boxes.
   • To change scan scope security settings:
     1. Open the context menu on the scope whose settings you wish to configure, and select Configure.
     2. In the On-demand scan settings window, select one of the predefined security levels, or click the Settings button to configure security settings manually.

     Security settings are configured the same way as for the Real-Time File Protection task.

   • To skip embedded objects in the added scan scope:
     1. Open the context menu on the Scan scope table, select Add exclusion.
     2. Specify the objects to exclude: select a predefined scope in the Predefined scope list, and specify the protected device disk, folder, network object, or file on the protected device or on another protected device in the network.
     3. Click the OK button.
5. In the Options window, configure the heuristic analyzer and integration with other components:
   • Configure use of the heuristic analyzer.
   • Select the Apply Trusted Zone check box, if you want to exclude objects added to the Trusted Zone list from the scan scope of the task.
     

     This check box enables / disables use of the Trusted Zone for a task.

     If the check box is selected, Kaspersky Embedded Systems Security for Windows adds file operations of trusted processes to the scan exclusions configured in the task settings.

     If the check box is cleared, Kaspersky Embedded Systems Security for Windows disregards the file operations of trusted processes when forming the protection scope for the task.

     The check box is selected by default.

   • Select the Use KSN for scanning check box, if you want to use Kaspersky Security Network cloud services for the task.
     

     This check box enables / disables the use of Kaspersky Security Network (KSN) cloud services in the task.

     If the check box is selected, the application uses data received from KSN services to ensure the application responds more quickly to new threats and reduce the likelihood of false positives.

     If the check box is cleared, the On-Demand Scan task does not use KSN services.

     The check box is selected by default.

   • To assign Low priority to the working process in which the task will be executed, select the Perform task in background mode check box in the Options window.
     

     The check box modifies the priority of the task.

     If the check box is selected, the task priority in the operating system is reduced. The operating system provides resources for performing the task based on the CPU load and protected device file system load from other Kaspersky Embedded Systems Security for Windows tasks and other applications. As a result, task performance will decrease during periods of increased loads and will increase at lower loads.

     If the check box is cleared, the task will start and run with the same priority as the other Kaspersky Embedded Systems Security for Windows tasks and other applications. In this case, the task performance increases.

     By default, the check box is cleared.

     By default, the working processes in which Kaspersky Embedded Systems Security for Windows tasks are run have Medium (Normal) priority.

   • To use the created task as a Critical Areas Scan task, select the Consider task as critical areas scan check box in the Options window.
     

     The check box changes the task priority: it enables or disables logging of the Critical Areas Scan event and refreshing of the device protection status. Kaspersky Security Center evaluates the security rating of the protected device(s) using the performance results of tasks with the Critical Areas Scan status. The check box is not available in the properties of local system and custom tasks of Kaspersky Embedded Systems Security for Windows. You can edit this setting only on the side of Kaspersky Security Center.

     If this check box is selected, Administration Server logs completion of Critical Areas Scan tasks and refreshes the device protection status based on the task execution results. The scan task has high priority.

     If the check box is cleared, the task is run with low priority.

     The check box is cleared by default for custom On-Demand Scan tasks.

6. Click the Next button.
7. In the Schedule window, specify the task start schedule settings.
8. Click the Next button.
9. In the Selecting an account to run the task window, specify the account you want to use.
10. Click the Next button.
11. Specify a task name.
12. Click the Next button.

    The task name should be no longer than 100 characters and cannot contain the following symbols: " * < > & \ : |

    The Finish creating the task window opens.

13. You can optionally run the task after the Wizard finishes by selecting the Run task after Wizard finishes check box.
14. Click the Finish button to finish creating the task.

The new On-Demand Scan task will be created for the selected protected device or a group of protected devices.