ESET SMART SECURITY Betriebsanweisung PDF herunterladen (Seite 13)

4. Work with ESET Smart Security

4.1 Antivirus and antispyware protection

Antivirus protection guards against malicious system attacks by

controlling ﬁle, email and Internet communication. If a threat with

malicious code is detected, the Antivirus module can eliminate

it by ﬁrst blocking it, and then cleaning, deleting or moving it to

quarantine.

4.1.1 Real‑time ﬁle system protection

Real‑time ﬁle system protection controls all antivirus‑related events

in the system. All ﬁles are scanned for malicious code at the moment

they are opened, created or run on your computer. Real‑time ﬁle

system protection is launched at system startup.

4.1.1.1 Control setup

The Real‑time ﬁle system protection checks all types of media, and

control is triggered by various events. Using ThreatSense technology

detection methods (as described in section 4.1.6, “ThreatSense engine

parameter setup”), real‑time ﬁle system protection may vary for newly

created ﬁles and existing ﬁles. For newly created ﬁles, it is possible to

apply a deeper level of control.

To provide the minimum system footprint when using real‑time

protection, ﬁles which have already been scanned are not scanned

repeatedly (unless they have been modiﬁed). Files are scanned again

immediately after each virus signature database update. This behavior

is conﬁgured using Smart optimization. If this is disabled, all ﬁles are

scanned each time they are accessed. To modify this option, open the

Advanced Setup window and click Antivirus and antispyware > Real‑

time ﬁle system protection from the Advanced Setup tree. Then click

the Setup... button next to ThreatSense engine parameter setup,

click Other and select or deselect the Enable Smart optimization

option.

By default, Real‑time protection launches at system startup and

provides uninterrupted scanning. In special cases (e.g., if there is a

conﬂict with another Real‑time scanner), the real‑time protection

can be terminated by deselecting the Start Real‑time ﬁle system

protection automatically option.

4.1.1.1.1 Media to scan

By default, all types of media are scanned for potential threats.

Local drives – Controls all system hard drives

Removable media – Diskettes, USB storage devices, etc.

Network drives – Scans all mapped drives

We recommend that you keep the default settings and only modify

them in speciﬁc cases, such as when scanning certain media

signiﬁcantly slows data transfers.

4.1.1.1.2 Scan on (Event‑triggered scanning)

By default, all ﬁles are scanned upon opening, creation or execution.

We recommend that you keep the default settings, as these provide

the maximum level of real‑time protection for your computer.

The Diskette access option provides control of the diskette boot

sector when this drive is accessed. The Computer shutdown option

provides control of the hard disk boot sectors during computer

shutdown. Although boot viruses are rare today, we recommend

that you leave these options enabled, as there is still the possibility of

infection by a boot virus from alternate sources.

4.1.1.1.3 Advanced scan options

More detailed setup options can be found under Antivirus and

antispyware > Real‑time system protection > Advanced setup.

Additional ThreatSense parameters for newly created and

modiﬁed ﬁles – The probability of infection in newly‑created or

modiﬁed ﬁles is comparatively higher than in existing ﬁles. That

is why the program checks these ﬁles with additional scanning

parameters. Along with common signature‑based scanning methods,

advanced heuristics are used, which greatly improves detection rates.

In addition to newly‑created ﬁles, scanning is also performed on

self‑extracting ﬁles (.sfx) and runtime packers (internally compressed

executable ﬁles). By default, archives are scanned up to the 10th

nesting level and are checked regardless of their actual size. To modify

archive scan settings, deselect the Default archive scan settings

option.

Additonal ThreatSense parameters for executed ﬁles – By default,

advanced heuristics are not used when ﬁles are executed. However,

in some cases you may want to enable this option (by checking the

Advanced heuristics on ﬁle execution option). Note that advanced

heuristics may slow the execution of some programs due to increased

system requirements.

4.1.1.2 Cleaning levels

The real‑time protection has three cleaning levels (to access, click the

Setup... button in the Real‑time ﬁle system protection section and

then click the Cleaning branch).

• The ﬁrst level displays an alert window with available options

for each inﬁltration found. You must choose an action for each

inﬁltration individually. This level is designed for more advanced

users who know which steps to take in the event of an inﬁltration.

• The default level automatically chooses and performs a

predeﬁned action (depending on the type of inﬁltration).

Detection and deletion of an infected ﬁle is signaled by an

information message located in the bottom right corner of the

screen. However, an automatic action is not performed if the

inﬁltration is located within an archive which also contains clean

ﬁles, and it is not performed on objects for which there is no

predeﬁned action.

• The third level is the most “aggressive” – all infected objects are

cleaned. As this level could potentially result in the loss of valid

ﬁles, we recommend that it be used only in speciﬁc situations.

1 2 ... 8 9 10 11 12 13 14 15 16 17 18 ... 45 46

Kommentare zu diesen Handbüchern

Keine Kommentare

ESET SMART SECURITY Betriebsanweisung Seite 13

Kommentare zu diesen Handbüchern

Verwandte Produkte und Handbücher für Antivirus-Sicherheitssoftware ESET SMART SECURITY