How to configure the Malware Scan

Malware Scan is a one-time full or custom file scan on the device performed on demand. The Kaspersky application can run multiple Malware Scan tasks at the same time.

A Malware Scan (Scan_My_Computer) predefined task is created in the application. You can use this task to perform a full scan of the device. During a full scan, the application scans all objects located on the device's local drives, as well as all mounted and shared objects that are accessed via Samba or NFS protocols with the recommended security settings.

During a full disk scan, the processor is busy. It is recommended to run the full scan task when the business is idle.

You can configure the settings of automatically created tasks on the command line, and also create Malware Scan user tasks.

Upon detecting malware, the Kaspersky application can remove the infected file and terminate the malware process started from this file.

If during execution of the malware scan task the application was restarted by a control service or manually by the user, the task will be stopped. The application logs the OnDemandTaskInterrupted event.

By modifying the settings of malware scan tasks, you can:

• Select operating system objects to scan: files, directories, archives, boot sectors, process memory and kernel memory, startup objects.
• Limit the size of an object to be scanned and the duration of the object scan.
• Select the actions to be performed by the application on the infected objects.
• Configure exclusions of objects from scans:
  • by name or mask
  • by the name of the threats detected in the objects
• Enable or disable global exclusions and File Threat Protection exclusions when scanning.
• Enable or disable the logging of information about scanned non-infected objects, about scanning objects in archives, and about unprocessed objects.
• Configure the use of the heuristic analyzer and iChecker technology during a scan.
• Limit the set of devices whose boot sectors need to be scanned.
• Configure scan scopes and scan exclusion scopes.
• Configure a schedule for running Malware Scan tasks.

On the command line, you can scan for malware in the following ways:

• Using the Malware Scan predefined task (Scan_My_Computer).

  You can manually start, stop, pause, or resume this task and configure the task run schedule.

  The task starts with default settings listed in Appendix 3. You can modify the settings of the task before starting it.

• Using Malware Scan user tasks (tasks of the ODS type).

  You can manually start, stop, pause, or resume user tasks and configure the task schedule.

  You can create a task with default settings or with settings specified in a configuration file. The default settings of a user task are the same as for a predefined task.

• Using the kfl-control --scan-file command, you can perform a custom scan of the specified files and directories.

  The custom scan task starts with default settings listed in Appendix 3. You can modify the settings of the task before starting it.

On the command line, you can view information about detected threats and check the current status of the task.

In the application interface, you can scan for malware in the following ways:

• Using the Malware Scan task. You can start and stop the task.
• Using custom scan tasks for files and directories. A custom scan task can be started by clicking a file or directory that you want to scan.

The application interface also allows you to:

• Monitor the progress of the Malware Scan task.
• View pop-up notifications about the status of the Malware Scan task; in these notifications, you can click the Open Reports link to navigate to application component reports and scan task results.
• View a report with the result of the Malware Scan task.

  The result of the Malware Scan task is displayed in the report in the Scan tasks section.