Scanner

 Top  Previous  Next

Note

The component settings can be adjusted if the administrator of the central protection server, to which Dr.Web is connected, enabled this option.

 

To access the Scanner settings, you are prompted to enter the password if you enabled the Protect Dr.Web settings with a password option in the Settings window.

The default settings are optimal for most cases. Do not change them unnecessarily.

Scan options

In this group, you can configure general parameters of Dr.Web Scanner operation.

Interrupt scanning when switching to battery mode. Enable this option to interrupt scanning when switching to battery mode. Option is disabled by default.

Use sound alerts. Enable this option for Dr.Web Scanner to use sound alerts for every event. Option is disabled by default.

Use of computer resources. This option limits the use of computer resources by Dr.Web Scanner. The default value is optimal for most cases.

Actions

On this page, you can configure reaction of Scanner on detection of infected or suspicious files and archives or other malicious objects.

For different types of compromised objects, actions are assigned separately from the respective drop-down lists:

Infected—objects infected with a known and (supposedly) curable virus.

Suspicious—objects supposedly infected with a virus or containing a malicious object.

Objects that pose potential threat (riskware).

Reaction of Scanner to detection of various malicious software is also set separately. Set of actions available for the selection depends on the threat type.

By default, Scanner attempts to cure the infected and supposedly curable files, moves other most dangerous objects to Quarantine.Details

You can select one of the following actions for detected threats:

Action

Description

Cure, move to quarantine if not cured

Instructs to restore the original state of the object before infection. If the object is incurable, or the attempt of curing fails, this object is moved to quarantine.

The action is available only for objects infected with a known virus that can be cured except for Trojan programs and files within complex objects  such as archives, mailboxes, or file containers.

Cure, delete if not cured

Instructs to restore the original state of the object before infection. If the object is incurable, or the attempt of curing fails, this object is deleted.

The action is available only for objects infected with a known virus that can be cured except for Trojan programs and files within complex objects  such as archives, mailboxes, or file containers.

Delete

Instructs to delete the object.

This action is not available for boot sectors.

Move to Quarantine

Instructs to move the object to a specific folder of Quarantine.

This action is not available for boot sectors.

Ignore

Instructs to skip the object without performing any action or displaying a notification.

The action is available only for potentially dangerous files: adware, dialers, jokes, hacktools, and riskware.

Report

Instructs to display the notification and skip the object without performing any actions.

The action is available only for suspicious objects and malware.

Note

Threats within complex objects  (archives, email attachments, file containers) cannot be processed individually. For such threats, Dr.Web Scanner applies an action selected for this type of a complex object.

Additional tasks

You can disable check of installation packages, archives, and email files. This option is enabled by default.

You can also select one of the following actions for Scanner to perform once scanning is complete:

1.Do not apply action. Scanner will display the list of detected threats.

2.Neutralize detected threats. Scanner will neutralize threats automatically.

3.Neutralize detected threats and shut down computer. Scanner will shut down the computer once threats are automatically neutralized.