Scanning for Threats

by ThreatResponder User

This article assumes that you are logged in your CheckLight account.

Instructions

By default, ThreatResponder will scan for threats on your systems right after installation. By using the Rescan function, you can perform another scan on your system to get a new threat status after the system has been cleaned.

  1. Select the Endpoints section.

2.  Select the endpoint you want to rescan from the Endpoints list (the endpoint must be online). Click on the Actions button and select Rescan.

A confirmation message will be displayed.

After a few minutes you will receive a threat scan report over email and a notification via SMS. If new threats are found they will be reflected in the CheckLight portal, in the Threats section.

  • If no threats were found during the scan, an email with the following template will be sent to your email account:

When threats were found durring the scan, you will receive:

  • an email informing you about those threats:
  • a text message: