What's real-time protection?
Updated: April 1, 2012
Applies To: Forefront Endpoint Protection, System Center 2012 Configuration Manager, System Center 2012 Configuration Manager SP1, System Center 2012 Endpoint Protection, System Center 2012 Endpoint Protection SP1, System Center 2012 R2 Configuration Manager, System Center 2012 R2 Endpoint Protection, Windows Intune
Real-time protection enables Endpoint Protection to monitor your computer all the time and alert you when potential threats, such as viruses and spyware, are trying to install themselves or run on your computer. Because this feature is an important element of the way that Endpoint Protection helps protect your computer, you should make sure real-time protection is always turned on. If real-time protection gets turned off, Endpoint Protection notifies you, and changes your computer’s status to “At risk”.
Whenever real-time protection detects a threat or potential threat, Endpoint Protection displays a notification. You can now choose from the following options:
Click Clean computer to remove the detected item. Endpoint Protection will automatically remove the item from your computer.
Click the Show details link to display the Potential threat details window, and then choose which action to apply to the detected item. For more information, see What should I do if Endpoint Protection detects malicious software on my computer?.