Creating a process termination task

If you believe that a process running on the computer could threaten the security of the computer or the corporate LAN, you can terminate the process.

To create a process termination task:

1. Select the Tasks section in the program web interface window.

   This opens the task table.

2. Click the Add button and select Kill process.

   This opens the task creation window.

3. Configure the following settings:
   1. File path —Path to the file of the process that you want to terminate.

      You can also specify the path to an alternate data stream of this file. In this case, only processes of the specified data stream will be terminated. The processes of the other streams of this file will be executed.

      Data streams of the NTFS file system (alternate data streams) are intended for additional attributes or information on a file.

      Each file in the NTFS file system consists of a set of streams. One of them contains the file contents that we will be able to see by opening the file. The other (alternate) ones are intended for metadata and to ensure, for example, compatibility between the NTFS system and other systems, such as the old Macintosh file system known as Hierarchical File System (HFS). Streams can be created, deleted, individually saved, renamed, and can even be run as a process.

      Alternate streams can be used by hackers for concealed transmission or receipt of data from a computer.

   2. MD5/SHA256—MD5- or SHA256 hash of the file of the process that you want to terminate. This field is optional.
   3. Description—Task description. This field is optional.
   4. If you want to display a task run notification to the user of the computer on which the task is running, select the Notify user about the task execution check box on the right of the Notification parameter name.
   5. Task for—Task scope:
      • If you want to run the task on all hosts of all servers, select the All hosts option.
      • If you want to run the task on selected servers, select the Specified servers option and on the right of the Servers parameter name select the check boxes next to the names of the servers on which you want to run the task.

        This option is available only when distributed solution and multitenancy mode is enabled.

        Operation mode in which the program can be used to protect the infrastructure of several organizations simultaneously.

      • If you want to run the task on selected hosts, select the Specified hosts option and list these hosts in the Hosts field.
4. Click the Add button.

The process termination task will be created.

See also Managing tasks Viewing the task table Viewing information about a task Creating a program execution task Creating a file download task Creating a file deletion task Creating a file quarantine task Creating a quarantined file recovery task Creating a copy of a task Deleting tasks Filtering tasks by creation time Filtering tasks by type Filtering tasks by name Filtering tasks by file name and path Filtering tasks by description Filtering tasks by server name Filtering tasks based on the name of the user that created the task Filtering tasks by processing status Clearing a task filter

Page top