Bitdefender Business Client - Real-time Protection Levels

Bitdefender Client Security is an easy to use business security and management solution, which delivers superior proactive protection from viruses, spyware, rootkits, spam, phishing and other malware. It offers the following components: Bitdefender Management Server (with/without add-on), Bitdefender Local Update Server, Bitdefender Business Client and Bitdefender Management Agent.

In this KB article we are going to describe the Protection levels available for the Real-time Protection module in Bitdefender Business Client and what type of protection is available for each of the Protection Levels.

The default protection level for the Real-time protection module is Moderate.
At the Permissive Level, the Real-time Protection module will scan:

• Application files
• Packed files
• Incoming e-mails

Actions that will be taken for an infected file: Disinfect file / Move to quarantine

Actions that will be taken for a suspect file: Deny access / Deny access

Bitdefender Business Client will show a warning when a virus is found

At the Moderate Level, the Real-Time Protection module will:

• Scan All files
• Scan for Riskware skipping Dialers
• Scan Boot Sectors
• Scan Packed files
• Incoming e-mails
• Outgoing e-mails

Actions that will be taken for an infected file: Disinfect file / Move to quarantine

Actions that will be taken for a suspect file: Deny access / Deny access

Bitdefender Business Client will show a warning when a virus is found

At the Aggressive Level, the Real-time Protection module will:

• Scan All files
• Scan for Riskware including Dialers
• Scan Boot Sectors
• Scan Packed files
• Incoming e-mails
• Outgoing e-mails
• Scan HTTP Traffic

Actions that will be taken for an infected file: Disinfect file / Move to quarantine

Actions that will be taken for a suspect file: Deny access / Deny access

Bitdefender Business Client will show a warning when a virus is found

This are the 3 predefined configurations for the Real-time Protection module. However, this module can be customized by you by clicking the Custom Level button on the Real-time Protection module interface.

If you use the Custom Level, we have a Best Practice recommendation:

At the Moderate Level, the Real-Time Protection module will:

• Scan Application files
• Scan for Riskware including Dialers
• Scan Boot Sectors
• Scan Packed files
• Incoming e-mails
• Outgoing e-mails
• Scan HTTP Traffic

Actions that will be taken for an infected file: Move to quarantine / Move to quarantine

Actions that will be taken for a suspect file: Deny access / Deny access

Let Bitdefender Business Client show a warning when a virus is found.

If your PC is in a network where not all the PCs are protected by an Anti-Virus software, uncheck the "Do Not Scan Network Share" option.

The Real-time protection module includes two behavioral-based detection components, aimed to enhance traditional signature-based and heuristic detection:

• Bitdefender Active Virus Control is an innovative proactive detection technology which uses advanced heuristic methods to detect new potential threats in real time. Active Virus Control continuously monitors the applications running on the computer, looking for malware-like actions. Each of these actions is scored and an overall score is computed for each process. You can configure Active Virus Control to only detect and report potentially harmful processes, or also block potentially harmful processes with or without asking the user.
• Bitdefender Host Intrusion Detection/Prevention monitors the system for suspicious activities (for example, unauthorized attempts to alter the Bitdefender files, DLL injections, keylogging attempts etc).

These components can be configured by clicking the Behavioral Scanner button on the Real-Time protection module interface.

To configure this module please consider the next steps:

• Enable Active Virus Control and Host Intrusion Detection/Prevention by selecting the corresponding check boxes.
• If you want to only detect and report potentially harmful processes, select Run in detection mode only. 
• Choose the protection level that best suits your security needs. Drag the slider along the scale to set the desired protection level. Use the description on the right side of the scale to choose the protection level that better fits your security needs.
• If you have not selected the Run in detection mode only check box, you can add rules for trusted applications. These applications will not be monitored, therefore they will never be reported or blocked. You can also choose the action to be taken on detected applications.

To add a rule for a trusted application, click Add and find the application on your computer.
You can manage rules using the other buttons:

• Remove - remove an application from the list.
• Edit - edit an application rule.

To change the action for an application, click the current action and select the other action from the menu

NOTE:

1. All the options presented in this KB article are available to the user only if you run Bitdefender Business Client in Power User Mode.
2. All the options presented in this KB article are available for the network administrator to manage using the Bitdefender Management Console, Antivirus Policy.

1. 8
2. 1
3. 0
4. 1
5. 2