SpIDer Guard: Real-time Protection

 Top  Previous  Next

Enabling protection

When you launch Dr.Web for he first time, the constant protection is enabled automatically after you accept the License Agreement. To disable or re-enable it, select the SpIDer Guard on the Settings screen.

When SpIDer Guard is enabled, it keeps protecting device file system even if you close the application.

info

In the central protection mode, some features and settings of SpIDer Guard may be modified and blocked for compliance with the company security policy or according to the list of purchased services.

If a security threat is detected, the alerting sign threat_detected_icon (on Android 5.0 and higher – threat_detected_icon_5) appears in the status bar and a pop-up window notifies about detected threats. Using the notification bar, you can open the full list of threats in order to select actions to neutralize them.

info

SpIDer Guard stops working when the internal device memory is cleared using the default Task Manager. To restore real-time anti-virus protection, reopen Dr.Web.

SpIDer Guard settings

To access SpIDer Guard settings, open the Settings screen.

To enable scan of files in archives, select the Files in archives check box on the SpIDer Guard section.

info

By default, scanning of the archives is disabled. Enabling the scanning may influence the system performance and increase power consumption. Disabling the scanning does not decrease the protection level because SpIDer Guard checks all Android installation *.apk files even if the Files in archives option is off.

To enable scanning of the SD card (or other removable media) on each mounting, select the SD card check check box in the SpIDer Guard section.

To enable/disable adware and riskware (including hacktools and jokes) detection, tap Additional options on the SpIDer Guard section, then select/clear the Adware and Riskware check boxes.

Statistics

The application registers the events related to SpIDer Guard operation (enabling/disabling SpIDer Guard, device memory and installed applications scan results, threat detections).

The application actions are displayed on the Actions section of the Statistics tab sorted by date (see Statistics section).

SpIDer Guard test

You can check if SpIDer Guard operates correctly using EICAR test file. The file is usually used to:

Check if the anti-virus software is installed correctly.

Show the anti-virus reaction if a threat is detected.

Check the corporate procedures if a threat is detected.

The file is not a virus. It does not contain any fragments of viral code. Thus it is absolutely safe for your device. Dr.Web detects the file as “EICAR Test File (NOT a Virus!)”.

You can download it from the Internet or create it by yourself:

1.In any text editor, create a new file, which includes the only string:

X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

2.Save the file with extension *.com.

As soon as you save EICAR file on your device, you will hear a distinguished sound and see a warning message from the SpIDer Guard: “Threat detected EICAR Test File (NOT a Virus!)”. A red colored indicator will also appear on the status bar in the top part of the application main screen, and the notif_monitor_threats sign will appear on the Dr.Web notification bar.