Our current architecture for Universal AV is automatic continuous scanning in the cloud of all the existing executables on user's computer since the hashes of these exe files are already uploaded to the Universal AV server after initial whitelisting is completed. Once any file is detected to be infected with malware, users will be notified when they are connected to Universal AV. It saves users the hassles of having to upload and scan the files on-demand. Subsequently, any new exe will be uploaded automatically and scan. But to provide users with more options and flexibility, in our future beta release, we will provide the on-demand scanning via Universal AV with a right mouse click. The next future plan is when SecureAPlus application whitelisting prompted users whether to trust or not to trust a file and users cannot decide, they will have to option of scanning it via Universal AV before trusting / untrusting it at the message prompt. What do you think of this?