Configure anti-malware
You can enable anti-malware in the engine properties. The File Filtering Policy used in the engine policy determines which traffic is inspected for malware.
The supported protocols in anti-malware inspection are FTP, HTTP, HTTPS, IMAP, POP3, and SMTP.
Anti-malware is supported on all Single and Clustered NGFW Engines and Virtual NGFW Engines (configured on the Master NGFW Engine).