GuardDuty findings that initiate Malware Protection scans - Amazon GuardDuty
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

GuardDuty findings that initiate Malware Protection scans

Malware Protection initiates a scan when GuardDuty detects suspicious behavior indicative of malware on Amazon EC2 instance or container workloads. In the following list of GuardDuty findings, some of the findings can initiate a scan only if they are outbound.