Running a scan should include addressing the scan itself and the cleanup. The scan should include
- scanning inside archive files
- scanning for Macintosh viruses
- scanning system memory
- running scan at lower priority
- scanning for root kits
- scanning for adware and potentially unwanted applications (PUAs)
- scanning for suspicious files on individual computers at the host-based intrusion prevention system (HIPS) level
If cleanup is not automatically handled after the scan, a manual cleanup should include
- disabling adware/PUA files
- denying access to suspicious files.