Checking and Handling Suspicious Processes
If HSS detects suspicious processes on servers, the processes will be displayed in the suspicious process list but will not trigger alarms. HSS cannot determine whether these processes are trustworthy based on the application process characteristics. To avoid affecting services, you need to check whether the processes can be trusted, add trustworthy ones to the process whitelist, and isolate and kill the malicious ones.
Procedure
- Log in to the management console.
- In the upper left corner of the page, select a region, click
, and choose Security & Compliance > HSS.
- In the navigation tree, choose .
- Click the Suspicious Processes tab.
Figure 1 Viewing suspicious processes
- Determine whether a suspicious process is malicious based on its information, such as the hash value and file path.
- In the row of a process, click Handle in the Operation column.
You can also select multiple suspicious processes and click Batch Handle above the list.
- In the dialog box that is displayed, select an action.
Select Add to process whitelist or Isolate and kill.
- Click OK.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
