Actions Tab

 Top  Previous  Next

For details on a certain option, click a corresponding item in the picture.

To get information on options available in other tab, click the name of this tab in the picture

On the Actions tab, you can configure reaction of the Scanner on detection of infected or suspicious files and archives or other malicious object.

Actions are assigned separately for different types:

Objects:

infected with known and (supposedly) curable viruses;

infected with incurable viruses;

supposedly infected (suspicious) objects.

Malware.

Infected packages (archives, e-mails, containers).

By default, Scanner just informs you when a known virus is detected or when there is a suspicion an object is infected with a virus (see also Actions Upon Detection). The data for all infected or suspicious objects are displayed in the report list, in which you can manually select a necessary action.

The following actions for detected threats are available:

Action

Description

Cure

Instructs Scanner to restore the original state of an object before infection. If the object is incurable, or the attempt of curing fails, the action set for incurable viruses is applied.

This action is available for known curable viruses only except Trojan programs and infected files within compound objects such as archives, mail boxes or file containers. Trojan programs are deleted on detection.

This is the only action available for boot sectors.

Delete

Instructs Scanner to delete the object.

No action is applied to boot sectors.

Rename

Instructs Scanner to rename the extension of an object file according to the mask specified in the Rename extension field (the default is #??, i.e. replace the first character in the extension with #).

No action is applied to boot sectors.

Move to

Instructs Scanner to move the object to the Quarantine folder specified in the Move path field (by default, the infected.!!! subfolder in the Dr.Web Antivirus installation folder).

No action is applied to boot sectors.

Ignore

Instructs Scanner to skip the object without performing any action or displaying information in the report window.

Available for malware only which includes adware, dialers, jokes, hacktools and riskware.

 

If a malicious object is detected within an archive, the action selected for archives is performed. The reaction is applied to the archive as a whole, and not to the malicious object only.

 

 

For successful curing of some infected files requires Windows operating system reboot.

Settings of reboot request are specified at the Server by antivirus network administrator and could prescribe an automatic reboot, user request or refusal to reboot the computer.