• Article

ScanMail for Microsoft Exchange and CA eTrust running together

[This topic is intended to address a specific issue called out by the Exchange Server Analyzer Tool. You should apply it only to systems that have had the Exchange Server Analyzer Tool run against them and are experiencing that specific issue. The Exchange Server Analyzer Tool, available as a free download, remotely collects configuration data from each server in the topology and automatically analyzes the data. The resulting report details important configuration issues, potential problems, and nondefault product settings. By following these recommendations, you can achieve better performance, scalability, reliability, and uptime. For more information about the tool or to download the latest versions, see "Microsoft Exchange Analyzers" at https://go.microsoft.com/fwlink/?linkid=34707.]  

Topic Last Modified: 2009-09-16

The Microsoft® Exchange Server Analyzer reads the following registry entry to determine the version of Trend Micro ScanMail for Microsoft Exchange that is installed on the Exchange server:

HKEY_LOCAL_MACHINE\Software\TrendMicro\ScanMail for Exchange\CurrentVersion\Version

If the value data for the Version value starts with 7, it indicates that ScanMail for Microsoft Exchange Version: 7 is installed.

The Exchange Server Analyzer also reads the following registry entry to determine whether eTrust from Computer Associates is also installed on the Exchange server:

HKLM\Software\ComputerAssociates\eTrustAntivirus\CurrentVersion\

If the CurrentVersion registry value exists, it indicates that eTrust Antivirus version 7 from Computer Associates is installed on the Exchange server.

Finally, the Exchange Server Analyzer queries the Win32_Service Microsoft Windows® Management Instrumentation class to determine the value of the Started key for the InoRT service, also known as the eTrust Antivirus Realtime Server service, in eTrust Antivirus.

The Exchange Server Analyzer displays a best practice message if the following conditions are true:

  • Both ScanMail for Microsoft Exchange and eTrust Antivirus are installed on the Exchange server.

  • The eTrust Antivirus Realtime Server service is started.

Trend Micro recommends that any file-system-based antivirus software, such as eTrust Antivirus, exclude the ScanMail for Microsoft Exchange folders from scanning. ScanMail for Microsoft Exchange uses temporary folders in its path for its own scanning activity. If a file-system-based antivirus scanner scans these temporary folders, the scan could interfere with the ordinary operations of ScanMail for Microsoft Exchange.

It is a best practice to exclude ScanMail for Microsoft Exchange folders from real-time scanning by file-system-based antivirus software, such as eTrust Antivirus from Computer Associates.