For servers that are protected by Security Center, the antivirus feature provides deep scanning services against persistent viruses such as ransomware and mining programs. Security Center supports the immediate and periodic virus scanning methods. This topic describes how to scan for viruses by using the two methods.

Prerequisites

You have purchased the Basic Anti-Virus, Advanced, or Enterprise edition of Security Center. For more information, see Purchase Security Center.

Background information

The antivirus feature scans for the following types of viruses:
  • Ransomware
  • Mining programs
  • DDoS trojans
  • Trojan programs
  • Backdoor programs
  • Malicious programs
  • High-risk programs
  • Worms
  • Suspicious programs
  • Self-mutating trojans
Immediate and periodic virus scanning can be performed in the following scenarios:
  • Immediate virus scanning: All servers in specific asset groups are scanned. You can select all servers from one or more asset groups to scan for viruses.
  • Periodic virus scanning: Some or all servers in specific asset groups are scanned.

Immediate virus scanning

To immediately scan for viruses on your server, perform the following steps:

  1. Log on to the Security Center console.
  2. In the left-side navigation pane, choose Defense > Anti-Virus.
  3. On the Anti-Virus page, click Scan Again.
    If this is your first time to scan for viruses, click Scan.
  4. In the Select the assets to scan dialog box, select one or more asset groups. Select assets to be scanned
    If you select an asset group in the dialog box, all servers in the asset group are selected by default. You cannot select a specific server from the asset group for scanning. You can select multiple asset groups at a time.
    Note You can select only asset groups to scan for viruses. For more information about how to create an asset group, see Create an asset group.
  5. Click Scan.
    It takes 2 to 5 minutes to complete a scanning task. After the scanning task is complete, we recommend that you check the results and handle the reported alerts at the earliest opportunity. For more information, see Handle virus alerts.

Periodic virus scanning

To periodically scan for viruses on your server, perform the following steps:

  1. Log on to the Security Center console.
  2. In the left-side navigation pane, choose Defense > Anti-Virus.
  3. In the upper-right corner of the Anti-Virus page, click Scan Settings.
  4. In the Defense Configuration panel, configure the scan cycle and the assets that you want to scan.
    Configure the scan cycle and the assets that you want to scan based on the following information:
    • Cycle: You can set the scan cycle to 3 Days, One week, Two weeks, or Stop.
    • Execution Time: You can set the time range to 00:00-24:00, 00:00-6:00, 06:00-12:00, 12:00-18:00, or 18:00-24:00.
    • Scan Assets: You can select an asset, an asset group, or multiple assets from asset groups. If you want to periodically scan assets, perform the following operations to select the assets:
      • In the Asset Group section, select an asset group. All assets in this asset group are selected. You can remove one or more automatically selected assets from the Assets section.
      • In the Assets section, enter an asset name and click the icon to search for the asset that you want to scan. Fuzzy match is supported.
    Note Based on the scan cycle, Security Center scans for viruses at a random point in time within the time range that you configure.
  5. Click OK.
    Notice If multiple scan cycles are configured, only the scan cycle that you last configure takes effect. Security Center automatically scans for viruses based on the scan cycle that you last configure on your assets.