siliconman01
Global Moderator
Trojans! Chew 'em Up, Spit 'em Out...
Gender: 
Posts: 5516
|
 |
How to set up a Scheduled Scan
« on: Jan 22nd, 2006, 3:06pm » |
|
This describes how to implement a Scheduled Scan of your computer via TrojanHunter Scanner.
By default, a Scheduled Scan:
- Scans memory, auto-started and running programs, ports, and the system registry
- Scans all active system disks.
- Scans all files inclusive of ZIP, RAR, and binded executable files.
- Scans all files for malicious NFTS Alternate Data Streams
- Scans all files for malicious double extensions
- Will not scan files inserted in the Ignore List as established through the main TrojanHunter scanner program GUI
- Utilizes the Advanced Trojan Analyzer
- Will alert the user if a Trojan is detected
- Can automatically Quarantine any detected malicious files and registry keys if this option is selected via the main TrojanHunter scanner program GUI (the autoclean command line)
- Will alert the user if a "Possible Trojan" is detected
- Automatically stores a Scan Report on completion of the Scheduled Scan
To Set Up a Scheduled Scan-
1. Open TrojanHunter Scanner.
2. Click on the Schedule icon (the clock icon) in the left icon bar.
3. Under "Schedule Scanning"
- Select the Scan interval you desire.
- Select the Start time
- If you want the scanner to automatically quarantine any trojans or malicious files that it detects during the scan, click on the box next to "Automatically clean trojans found during scheduled scans". A check mark should appear in the box.
4. Click on the box next to "Enable Scheduled Scans". A check mark should appear in the box.
A scheduled scan is now implemented. It will run silently at the scheduled time. If no infections are detected, it will exit silently.
To Turn OFF a Scheduled Scan-
1. Open TrojanHunter Scanner.
2. Click on the Schedule icon (the clock icon) in the left icon bar.
3. Click on the box next to "Enable Scheduled Scans". The check mark should disappear.
NOTES:
1. You can examine the execution of TrojanHunter's scheduled scanner by opening the system utility Task Scheduler. A successful execution displays a "Last Run" result of 0x0
2. The scheduled scan will scan all hard drives, memory, ports, and the system registry. It utilizes the Command Line /fullscan
3. If you selected the option to "Automatically clean trojans found during scheduled scans", any infected file will be Quarantined and placed in the Quarantine folder. It utilizes the Command line /autoclean
4. If you did not select the option to "Automatically clean trojans found during scheduled scans" and if an infected file is detected, the scanner will issue an Alert box at the end of the scan with instructions on what to do next.
5. The scheduled scanning module is named thcl.exe. It enters memory at the start of the scheduled scan. It will exit memory when the scan is completed.
6. A scan report is automatically stored in the Scan Report folder at the end of each scheduled scan.
7. The only way to STOP a scheduled scan in progress is to open the system Task Manager, locate and highlight thcl.exe and click on End Process.
Applies to TrojanHunter Version 5.0 or newer.
|
Mischel Internet Security Forum
Notify of replies
Send Topic
Print
Author
IP Logged
Search
Members
Login
Register