AntiVirus

Antivirus scan techniques (Choose 3).

Which databases can be manually selected for use in antivirus scanning?

What antivirus database does quick scan mode use?

To detect a virus, the antivirus engine must match file with signature <pattern>

Each vendor uses different detection engines and signatures, such as: (Select 6)

- Detects and eliminates malware in real time Stops threats from spreading - Preserves the client reputation of your public IP

-Uses grayware signatures -Detects and blocks unsolicited programs -Antivirus actions apply

-Looks for virus-like code (Example; Modifies registry to restart itself after reboot) -Counts virus-like attributes -If greater than a threshold, file is suspicious -False positives possible

The heuristics scan is an optional feature that must be enabled via GUI.

If all antivirus features are enabled, FortiGate applies the following scanning order:

You can update your FortiGate's antivirus database using the push method, schedule method, or both methods

You can verify the update status and signature versions from the Fortiguard page on the GUI or you can run :

Fortiguard antivirus databases: includes common recent attacks and is available on all models

Fortiguard antivirus databases: includes normal plus additional recent non-active viruses

Fortiguard antivirus databases: includes extended plus additional dormant viruses *Is only available on select FortiGate models.

Quick Scan-Only available in ________ mode with quick scan option enabled - FortiOS automatically uses a compact signature database if quick scan is applied