1. Log on to the ePO console.
2. Click Menu, Policy, Policy Catalog.
3. Select the appropriate version of VirusScan Enterprise from the Product drop-down list.
4. Select On-Access Default Processes Policies from the Category drop-down list.
5. Click a policy to edit.
6. Select Configure different scanning policies for high-risk, low-risk, and default processes.
7. Click Save.
8. Select On-Access High-Risk Processes Policies or On-Access Low-Risk Processes Policies from the Category drop-down list.
9. Click a policy to edit.
10. Click the High Risk Processes or Low-Risk Processes tab. Add or delete processes as wanted by clicking the Add or Remove button.
11. Click the Scan Items tab, and then deselect any or all options in the Scan files section.
    
    NOTE: It is usually sufficient to disable When reading from disk. But, database servers also perform many write operations. In some environments, it might be necessary to disable the When writing to disk option as well.
     
12. Click the Exclusions tab and ensure that you add any exclusions previously created under Default processes to the High Risk Processes (or Low-Risk Processes). 
    
    NOTE: If you have high and low-risk enabled, any exclusions previously stored in Default processes are not applied to the High Risk Processes or Low-Risk Processes policy.
     
13. Click Save.

If an application reads numerous uniquely named files from the same folder many times per second, scanning on every read action can have a negative impact on system performance. (An application can read numerous files from the same folder when the ePO server processes XML file Events received from the environment.) If you add the process that performs the work, EventParser.exe, to the Low-Risk profile and configure that profile to exclude the Events folder, you could improve system performance with minimal to no risk. (Or, you can configure that profile to exclude the file type of the events.) The reason is because the exclusion would apply only to the EventParser.exe process and any other processes that have been added to the Low-Risk profile. 

You can also specify that the exclusion applies only to either Read or Write actions. But, the performance gain might not be as significant.