The Sophos Community will be offline for scheduled maintenance this Saturday, May 27th, at 13:00 UTC for approximately 1 hour. Apologies for any inconvenience caused.
"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
From the central Enterprise Console you can run a full system scan of individual endpoint computers or an entire group of computers.
A full system scan is an immediate scan of the whole hard drive of a computer. It is useful when dealing with a small virus (or other) outbreak on your network. For a major outbreak, see Enterprise Console: removing viruses over a network.
This article explains what our definition of a full scan is and how to run a scan centrally. For instructions on running a full scan locally see article 61665 instead.
Applies to the following Sophos product(s) and version(s) Enterprise Console
The following settings are applied to the Full system scan through the Sophos Anti-Virus and HIPS policy assigned to the machine in SEC:
All other scan settings are the same as the 'Scan my computer' option on the endpoint. Please be aware that the full system scan will not scan for the following:
The clean up option for the full system scan will be set to Log only. The option 'Automatically clean up items that contain a virus/Spyware' will not be enabled.
When you select to perform an action (any action) in the console this is sent from the Enterrpise Console to the endpoint computer by the Remote Management System (RMS) in the form of a .msg file.
If the computer is switched off, or your management server cannot connect to the endpoint computer immediately to communicate the request to scan a .msg file will be stored on the server in the Envelopes for later transmission. For more details about the Envelopes folder see article 63588.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.