Actions

On this page you can specify parameters that SpIDer Guard for SMB is use to check files in shared directories on the protected station.

•Create file with the blocking reason—set the checkbox to instruct SpIDer Guard for SMB to create near a blocked file a special text file. The created text file describes the reason why the object was blocked.

•Block access to the file upon the scanning error—set the checkbox in order to SpIDer Guard for SMB block access to a file in a shared directory if an attempt to cure it resulted in an error.

•Delay before the application of action—specify a delay time between the moment when a threat is detected and the moment when SpIDer Guard for SMB applies the action specified for this threat type. During this time period, the file is blocked.

SpIDer Guard for SMB can react to the following events:

•Infected—scanned file contains a known virus

•Suspicious—scanned file marked as suspicious

•Incurable—scanned file contains a threat that cannot be neutralized by Cure action.

•Adware—scanned file contains an adware

•Dialers—scanned file contains a dialer

•Jokes—scanned file contains a joke program

•Riskware—scanned file contains a riskware

•Hacktools—scanned file contains a hacktool.

For these events, the following actions are allowed:

•Cure—instructs to restore the original state of the object before infection. The action is available only for objects infected with a known virus that can be cured except for Trojan programs and files within complex objects.

•Move to quarantine—this action moves a detected threat to the Quarantine that is isolated from the rest of the system.

•Delete—It is the most effective way to remove all types of threats. This action implies full deletion of a dangerous object.

•Block—block for users access to the infected file.