AVG 9 INTERNET SECURITY - REVISED 11-2009, 9 INTERNET SECURITY User Manual

Page 1

Document rev ision 90.16 (19.11.2009)

This product uses RSA Data Security, Inc. MD5 Message-Digest Algorithm, Copyright (C) 1991-2, RSA Data Security, Inc. C reated 1991. This product uses code from C -SaC zech library, Copyright (c) 1996-2001 Jaromir Dolecek (dolecek@ics.muni.cz). This product uses compression library zlib, Copyright (c) 1995-2002 Jean-loup Gailly and Mark Adler. This product uses compression library libbzip2, C opyright (c) 1996-2002 Julian R. Seward.

AVG 9 Internet Security

User Manual

Page 2

Contents

........................................................................................................................ 8

1. Introduction

........................................................................................................................ 9

2. AVG Installation Requirements

.......................................................................................................... 9

2.1 Operation Systems Supported

.......................................................................................................... 9

2.2 Minimum & Recommended HW Requirements

........................................................................................................................ 11

3. AVG Installation Options

........................................................................................................................ 12

4. AVG Download Manager

.......................................................................................................... 12

4.1 Language Selection

.......................................................................................................... 13

4.2 Connectivity Check

.......................................................................................................... 14

4.3 Proxy Settings

.......................................................................................................... 15

4.4 Download Files to Install

........................................................................................................................ 16

5. AVG Installation Process

.......................................................................................................... 16

5.1 Installation Launch

.......................................................................................................... 17

5.2 License Agreement

.......................................................................................................... 17

5.3 Checking System Status

.......................................................................................................... 18

5.4 Select Installation Type

.......................................................................................................... 18

5.5 Activate your AVG License

.......................................................................................................... 20

5.6 Custom Installation - Destination Folder

.......................................................................................................... 21

5.7 Custom Installation - Component Selection

.......................................................................................................... 22

5.8 AVG DataCenter

.......................................................................................................... 23

5.9 AVG Security Toolbar

.......................................................................................................... 24

5.10 Close down open applications

.......................................................................................................... 25

5.11 Installing AVG

.......................................................................................................... 26

5.12 Schedule regular scans and updates

.......................................................................................................... 26

5.13 Computer usage selection

.......................................................................................................... 27

5.14 Your computer networking design

.......................................................................................................... 28

5.15 AVG protection configuration is complete

........................................................................................................................ 29

6. After Installation

.......................................................................................................... 29

6.1 Scan optimization

.......................................................................................................... 29

6.2 Product Registration

.......................................................................................................... 29

6.3 Access to User Interfac e

.......................................................................................................... 30

6.4 Scanning of the whole computer

Page 3

.......................................................................................................... 30

6.5 Eicar Test

.......................................................................................................... 31

6.6 AVG Default Configuration

........................................................................................................................ 32

7. AVG User Interface

.......................................................................................................... 33

7.1 System Menu

.......................................................................................................... 33

7.1.1 File

.......................................................................................................... 33

7.1.2 Components

.......................................................................................................... 33

7.1.3 History

.......................................................................................................... 33

7.1.4 Tools

.......................................................................................................... 33

7.1.5 Help

.......................................................................................................... 36

7.2 Security Status Info

.......................................................................................................... 37

7.3 Quick Links

.......................................................................................................... 37

7.4 Components Overview

.......................................................................................................... 39

7.5 Statistics

.......................................................................................................... 39

7.6 System Tray Icon

........................................................................................................................ 41

8. AVG Components

.......................................................................................................... 41

8.1 Anti-Virus

.......................................................................................................... 41

8.1.1 Anti-Virus Principles

.......................................................................................................... 41

8.1.2 Anti-Virus Interface

.......................................................................................................... 43

8.2 Anti-Spyware

.......................................................................................................... 43

8.2.1 Anti-Spyware Principles

.......................................................................................................... 43

8.2.2 Anti-Spyware Interface

.......................................................................................................... 45

8.3 Anti-Spam

.......................................................................................................... 45

8.3.1 Anti-Spam Principles

.......................................................................................................... 45

8.3.2 Anti-Spam Interface

.......................................................................................................... 47

8.4 Anti-Rootkit

.......................................................................................................... 47

8.4.1 Anti-Rootkit Principles

.......................................................................................................... 47

8.4.2 Anti-Rootkit Interface

.......................................................................................................... 48

8.5 System Tools

.......................................................................................................... 48

8.5.1 Processes

.......................................................................................................... 48

8.5.2 Network Connections

.......................................................................................................... 48

8.5.3 Autostart

.......................................................................................................... 48

8.5.4 Browser Extensions

.......................................................................................................... 48

8.5.5 LSP Viewer

.......................................................................................................... 55

8.6 Firewall

.......................................................................................................... 55

8.6.1 Firewall Principles

.......................................................................................................... 55

8.6.2 Firewall Profiles

Page 4

.......................................................................................................... 55

8.6.3 Firewall Interface

.......................................................................................................... 59

8.7 E-mail Scanner

.......................................................................................................... 59

8.7.1 E-mail Scanner Principles

.......................................................................................................... 59

8.7.2 E-mail Scanner Interface

.......................................................................................................... 59

8.7.3 E-mail Scanner Detection

.......................................................................................................... 64

8.8 ID Protection

.......................................................................................................... 64

8.8.1 ID Protection Principles

.......................................................................................................... 64

8.8.2 ID Protection Interface

.......................................................................................................... 66

8.9 License

.......................................................................................................... 67

8.10 Link Scanner

.......................................................................................................... 67

8.10.1 Link Scanner Principles

.......................................................................................................... 67

8.10.2 Link Scanner Interface

.......................................................................................................... 67

8.10.3 AVG Searc h-Shield

.......................................................................................................... 67

8.10.4 AVG Ac tive Surf-Shield

.......................................................................................................... 71

8.11 Web Shield

.......................................................................................................... 71

8.11.1 Web Shield Principles

.......................................................................................................... 71

8.11.2 Web Shield Interface

.......................................................................................................... 71

8.11.3 Web Shield Detection

.......................................................................................................... 76

8.12 Resident Shield

.......................................................................................................... 76

8.12.1 Resident Shield Principles

.......................................................................................................... 76

8.12.2 Resident Shield Interfac e

.......................................................................................................... 76

8.12.3 Resident Shield Detec tion

.......................................................................................................... 80

8.13 Update Manager

.......................................................................................................... 80

8.13.1 Update Manager Principles

.......................................................................................................... 80

8.13.2 Update Manager Interfac e

.......................................................................................................... 82

8.14 AVG Sec urity Toolbar

.......................................................................................................... 82

8.14.1 AVG Security Toolbar Interface

.......................................................................................................... 82

8.14.2 AVG Security Toolbar Options

........................................................................................................................ 89

9. AVG Advanced Settings

.......................................................................................................... 89

9.1 Appearance

.......................................................................................................... 91

9.2 Sounds

.......................................................................................................... 93

9.3 Ignore Faulty Conditions

.......................................................................................................... 94

9.4 Identity Protection

.......................................................................................................... 94

9.4.1 Identity Protection Settings

.......................................................................................................... 94

9.4.2 Allowed List

.......................................................................................................... 98

9.5 Virus Vault

.......................................................................................................... 98

9.6 PUP Exceptions

Page 5

.......................................................................................................... 100

9.7 Anti-Spam

.......................................................................................................... 100

9.7.1 Settings

.......................................................................................................... 100

9.7.2 Performance

.......................................................................................................... 100

9.7.3 RBL

.......................................................................................................... 100

9.7.4 Whitelist

.......................................................................................................... 100

9.7.5 Blacklist

.......................................................................................................... 100

9.7.6 Advanced Settings

.......................................................................................................... 112

9.8 Web Shield

.......................................................................................................... 112

9.8.1 Web Protec tion

.......................................................................................................... 112

9.8.2 Instant Messaging

.......................................................................................................... 116

9.9 Link Scanner

.......................................................................................................... 117

9.10 Scans

.......................................................................................................... 117

9.10.1 Scan Whole Computer

.......................................................................................................... 117

9.10.2 Shell Extension Scan

.......................................................................................................... 117

9.10.3 Scan Specific Files or Folders

.......................................................................................................... 117

9.10.4 Removable Device Scan

.......................................................................................................... 124

9.11 Schedules

.......................................................................................................... 124

9.11.1 Scheduled Scan

.......................................................................................................... 124

9.11.2 Virus Database Update Schedule

.......................................................................................................... 124

9.11.3 Program Update Schedule

.......................................................................................................... 124

9.11.4 Anti-Spam Update Schedule

.......................................................................................................... 137

9.12 E-mail Scanner

.......................................................................................................... 137

9.12.1 Certification

.......................................................................................................... 137

9.12.2 Mail Filtering

.......................................................................................................... 137

9.12.3 Logs and Results

.......................................................................................................... 137

9.12.4 Servers

.......................................................................................................... 145

9.13 Resident Shield

.......................................................................................................... 145

9.13.1 Advanced Settings

.......................................................................................................... 145

9.13.2 Directory Exludes

.......................................................................................................... 145

9.13.3 Excluded Files

.......................................................................................................... 149

9.14 Anti-Rootkit

.......................................................................................................... 150

9.15 Update

.......................................................................................................... 150

9.15.1 Proxy

.......................................................................................................... 150

9.15.2 Dial-up

.......................................................................................................... 150

9.15.3 URL

.......................................................................................................... 150

9.15.4 Manage

.......................................................................................................... 157

9.16 Remote Administration

Page 6

........................................................................................................................ 159

10. Firewall Settings

.......................................................................................................... 159

10.1 General

.......................................................................................................... 160

10.2 Security

.......................................................................................................... 161

10.3 Areas and Adapters Profiles

.......................................................................................................... 162

10.4 Logs

.......................................................................................................... 164

10.5 Profiles

.......................................................................................................... 164

10.5.1 Profile Information

.......................................................................................................... 164

10.5.2 Defined Networks

.......................................................................................................... 164

10.5.3 Applic ations

.......................................................................................................... 164

10.5.4 System Services

........................................................................................................................ 176

11. AVG Scanning

.......................................................................................................... 176

11.1 Scanning Interface

.......................................................................................................... 177

11.2 Predefined Scans

.......................................................................................................... 177

11.2.1 Scan Whole Computer

.......................................................................................................... 177

11.2.2 Scan Specific Files or Folders

.......................................................................................................... 177

11.2.3 Anti-Rootkit Scan

.......................................................................................................... 187

11.3 Scanning in Windows Explorer

.......................................................................................................... 188

11.4 Command Line Scanning

.......................................................................................................... 188

11.4.1 CMD Scan Parameters

.......................................................................................................... 190

11.5 Scan Sc heduling

.......................................................................................................... 190

11.5.1 Schedule Settings

.......................................................................................................... 190

11.5.2 How to Scan

.......................................................................................................... 190

11.5.3 What to Scan

.......................................................................................................... 201

11.6 Scan Results Overview

.......................................................................................................... 202

11.7 Scan Results Details

.......................................................................................................... 202

11.7.1 Results Overview Tab

.......................................................................................................... 202

11.7.2 Infections Tab

.......................................................................................................... 202

11.7.3 Spyware Tab

.......................................................................................................... 202

11.7.4 Warnings Tab

.......................................................................................................... 202

11.7.5 Rootkits Tab

.......................................................................................................... 202

11.7.6 Information Tab

.......................................................................................................... 211

11.8 Virus Vault

........................................................................................................................ 213

12. AVG Updates

.......................................................................................................... 213

12.1 Update Levels

.......................................................................................................... 213

12.2 Update Types

.......................................................................................................... 213

12.3 Update Process

Page 7

........................................................................................................................ 215

13. Event History

........................................................................................................................ 217

14. FAQ and Technical Support

Page 8

1. Introduction

This user manual provides comprehensive documentation for AVG 9 Internet Security .

Congratulations on your purchase of AVG 9 Internet Security!

AVG 9 Internet Security is one of a range of award winning AVG products designed

to provide you with peace of mind and total security for your PC. As with all AVG products AVG 9 Internet Security has been completely re-designed, from the ground up, to deliver AVG’s renowned and accredited security protection in a new, more user friendly and efficient way.

Your new AVG 9 Internet Security product has a streamlined interface combined with more aggressive and faster sc anning. More security features have been automated for your convenience, and new ‘intelligent’ user options have been included so that you can fit our security features to your way of life. No more compromising usability over security!

AVG has been designed and developed to protect your computing and networking activity. Enjoy the experience of full protection from AVG.

Page 9

2. AVG Installation Requirements

2.1. Operation Systems Supported

AVG 9 Internet Security is intended to protect workstations with the following operating systems:

· Windows 2000 Professional SP4 + Update Rollup 1

· Windows XP Home Edition SP2

· Windows XP Professional SP2

· Windows XP Professional x64 Edition SP1

· Windows Vista (x86 and x64, all editions)

· Windows 7 (x86 and x64, all editions)

(and possibly higher service packs for specific operating systems)

Note: The ID Protection component is not supported on Windows 2000 and XP x64. On these operating systems you c an install AVG 9 Internet Security but only without the IDP component.

2.2. Minimum & Recommended HW Requirements

Minimum hardware requirements for AVG 9 Internet Security:

· Intel Pentium CPU 1,5 GHz

· 512 MB of RAM memory

· 390 MB of free hard drive space (for installation purposes)

Recommended hardware requirements for AVG 9 Internet Security:

· Intel Pentium CPU 1,8 GHz

· 512 MB of RAM memory

Page 10

· 510 MB of free hard drive space (for installation purposes)

Page 11

3. AVG Installation Options

AVG can be installed either from the installation file available on your installation CD, or you can download the latest installation file from AVG website (http://www.avg.com/).

Before you start installing AVG, we strongly recommend that you visit AVG website (http://www.avg.com/) to check for a new installation file. This way you can be sure to install the latest available version of AVG 9 Internet Security.

We recommend you to try out our new AVG Download Manager tool that will help you set up the installation file in your required language!

During the installation process you will be asked for your lic ense/sales number. Please make sure you have it available before starting the installation. The sales number can be found on the CD packaging. If you purchased your copy of AVG on-line, your license number will have been delivered to you via e-mail.

Page 12

4. AVG Download Manager

AVG Download Manager is a simple tool that helps you select the proper installation file for your AVG product. Based on your input data, the manager will select the specific product, license type, desired components, and language. Finally, AVG Download Manager will go on to download and launch the appropriate installation

process.

Warning: Please note that AVG Download Manager is not suitable for downloading of network and SBS editions and only the following operating systems are supported: Windows 2000 (SP4 + SRP roll-up), Windows XP, Windows Vista a Windows 7.

AVG Download Manager is available for download at AVG website (http://www.avg.

com/). Following please find a brief desc ription of eac h single step you need to take

within the AVG Download Manager:

4.1. Language Selection

In this first step of AVG Download Manager select the installation language from the roll-down menu. Note, that your language selection applies only to the installation process; after the installation you will be able to change the language directly from program settings. Then press the Next button to continue.

Page 13

4.2. Connectivity Check

In the next step, AVG Download Manager will attempt to establish an Internet connection so that updates c an be located. You will not be allowed to advance the download process until the AVG Download Manager is able to complete the connectivity test.

· If the test shows no connectivity, make sure you are really connected to

Internet. Then c lick the Retry button

· If you are using a Proxy connection to the Internet, c lick the Proxy Settings

button to specify your proxy information:

· If the c heck has been successful, press the Next button to continue.

Page 14

4.3. Proxy Settings

If AVG Download Manager was not able to identify your Proxy settings you have to specify them manually. Please fill in the following data:

· Server - enter a valid proxy server name or IP address

· Port - provide the respective port number

· Use proxy authentication - if your proxy server requires authentication, tick

this c heck box.

· Select authentication - from the drop-down menu select the authentication

type. We strongly recommend that you keep to the default value (the proxy server will then automatically convey its requirements to you). However, if you are a skilled user, you can also choose Basic (required by some servers) or NTLM (required by all ISA Servers) option. Then, enter a valid Username and Password (optionally).

Confirm your settings by pressing the Apply button to follow to the next step of AVG Download Manager.

Page 15

4.4. Download Files to Install

Now, you have provided all information needed for the AVG Download Manager to start the installation package download, and launch the installation process. Further, advance to the AVG Installation Process.

Page 16

5. AVG Installation Process

To install AVG 9 Internet Security on your computer, you need to get the latest installation file. You c an use the installation file from the CD that is a part of your box edition but this file might be out-of-date. Therefore we recommended getting the latest installation file online. You can download the file from AVG website (http://www.

avg.com/), the Support Center / Download section. Or, you can make use of our

new AVG Download Manager tool that helps you create and download the installation package you need, and launch the installation process.

The installation is a sequence of dialog windows with a brief description of what do at each step. In the following, we offer an explanation for eac h dialog window:

5.1. Installation Launch

The installation process starts with the Welcome to the AVG Setup Program window. In here you select the language used for the installation process. In the lower part of the dialog window find the Choose your setup language item, and select the desired language from the drop down menu. Then press the Next button to confirm and continue to the next dialog.

Attention: Here, you are selecting the language for the installation process only. You are not selecting the language for the AVG application - that c an be specified later on during the installation process!

Page 17

5.2. License Agreement

The License Agreement dialog provides the full wording of the AVG lic ense agreement. Please read it carefully and confirm that you have read, understood and accept the agreement by marking the I have read license agreement chec k box and pressing the Accept button.

If you do not agree with the license agreement press the Don't accept button, and the installation process will be terminated immediately.

5.3. Checking System Status

Having confirmed the license agreement, you will be redirected to the Checking System Status dialog. This dialog does not require any intervention; your system is

being chec ked before the AVG installation can start. Please wait until the process has finished, then continue automatically to the following dialog.

Page 18

5.4. Select Installation Type

The Select Installation Type dialog offers the choice of two installation options: standard and custom installation.

For most users, it is highly recommended to keep to the standard installation that installs AVG in fully automatic mode with settings predefined by the program vendor. This configuration provides maximum security combined with the optimal use of resources. In the future, if the need arises to change the configuration, you will always have the possibility to do so directly in the AVG application.

Custom installation should only be used by experienced users who have a valid reason to install AVG with non-standard settings. E.g. to fit specific system requirements.

5.5. Activate your AVG License

In the Activate your AVG License dialog you have to fill in your registration data. Type in your name (User Name field) and the name of your organization (Company Name field).

Then enter your license/sales number into the License Number text field. The sales number can be found on the CD packaging in your AVG 9 Internet Security box. The license number will be in the confirmation email that you received after purchasing your AVG 9 Internet Security on-line. You must type in the number exactly as

Page 19

shown. If the digital form of the license number is available (in the email), it is recommended to use the copy and paste method to insert it.

Press the Next button to continue the installation process.

If in the previous step you have selected the standard installation, you will be redirected directly to the AVG Security Toolbar dialog. If custom installation was selected you will continue with the Destination Folder dialog.

Page 20

5.6. Custom Installation - Destination Folder

The Destination Folder dialog allows you to specify the location where AVG 9 Internet Security should be installed. By default, AVG will be installed to the program

files folder located on drive C:. In case the folder does not exist yet, you will be asked in a new dialog to c onfirm you agree AVG creates this folder now.

If you want to change this location, use the Browse button to display the drive structure, and select the respective folder.

Press the Next button to confirm.

Page 21

5.7. Custom Installation - Component Selection

The Component Selection dialog displays an overview of all AVG 9 Internet Security components that can be installed. If the default settings do not suit you, you can remove/add spec ific components.

However, you can only select from components that are included in your purchased AVG edition. Only those components will be offered to be installed within the Component Selection dialog!

· Language selection

Within the list of components to be installed, you can define which language(s) AVG should be installed in. Check the Additional installed languages item and then select the desired languages from the respec tive menu.

· E-mail Scanner plug-ins

Click the E-mail Scanner item to open and decide on what plug-in is to be installed to guarantee your electronic mail sec urity. By default, Plugin for

Microsoft Outlook will be installed. If your purchased license includes the Anti-

Spam, it will installed automatically as well. Another specific option is the Plugin

for The Bat! If you use any other e-mail client (MS Exc hange, Qualcomm

Eudora,...), go for the Personal E-mail Scanner option to secure your e-mail communication automatically no matter what e-mail program you run.

Page 22

· Remote Administration

If you plan to connect your computer to the AVG Remote Administration later, please mark the respec tive item to be installed as well.

Continue by pressing the Next button.

5.8. AVG DataCenter

If in previous Custom Installation - Component Selection dialog you have marked the Remote administration item to be installed, it is necessary to specify AVG DataCenter parameters:

Into the AVG DataCenter specification text field please provide the connection string to AVG DataCenter in the form of server:port. If this information is not available at the moment, leave the field blank and you can set the configuration later in within the

Advanced Settings / Remote Administration dialog.

Note: For detailed information on AVG Remote administration please consult AVG

Network Edition user manual; to be downloaded from AVG website (http://www.avg.

com/).

Page 23

5.9. AVG Security Toolbar

In the AVG Security Toolbar dialog, decide whether you want to install the AVG

Security Toolbar (verification of search results of the supported Internet search

engines). If you do not change the default settings, this component will be installed automatically into your Internet browser (currently supported browsers are Microsoft Internet Explorer v. 6.0 or higher, and Mozilla Firefox v. 2.0 or higher) a to provide you with comprehensive online protection while surfing the Internet.

Page 24

5.10. Close down open applications

The Close down open applications dialog appears during the installation process only in case there are some other clashing programs running on your computer at the moment. Then, the list of programs that need to be closed in order to sucessfuly finish the installation process will be provided. Press the Next button to c onfirm you agree to close down the respective applications, and to continue to the next step.

Page 25

5.11. Installing AVG

The Installing AVG dialog shows the progress of the installation process, and does not require any intervention:

After the installation process is finished, you will be redirected to the next dialog automatically.

Page 26

5.12. Schedule regular scans and updates

In the Schedule regular scans and updates dialog set up the interval for new update files accessibility check-up, and define time when the scheduled scan should be launched. It is recommended to keep the default values. Press the Next button to continue.

5.13. Computer usage selection

Page 27

In this dialog, the Firewall Configuration Wizard asks what type of computer you use. For instance, your notebook, that connects to the Internet from many different locations (airports, hotel rooms, etc.) requires security rules that are stricter than those of a computer in a domain (company network, etc.). Based on the selected computer usage type the Firewall default rules will be defined with a different sec urity level.

You have two alternative options to select from:

· A desktop computer

· A portable computer

Confirm your selection by pressing the Next button and proceed to the next dialog.

5.14. Your computer networking design

In this dialog, the Firewall Configuration Wizard asks how your computer is connected to the Internet. Based on the selected connection type the Firewall default rules will be defined with a different security level.

You have three alternative options to select from:

· Directly via modem

· Directly via wired or wireless router

Page 28

· Your computer is a part of domain

Select the connection type that best describes your computer connection to the Internet.

Confirm your selection by pressing the Next button and proceed to the next dialog.

5.15. AVG protection configuration is complete

Now your AVG 9 Internet Security has been c onfigured.

In this dialog you decide whether you want to activate the option of anonymous reporting of exploits and bad sites to AVG virus lab. If so, please mark the I agree to

provide ANONYMOUS information about detected threats to improve my security option.

Finally, press the Finish button. Your computer restart may be required so that you can start working with AVG.

Page 29

6. After Installation

6.1. Scan optimization

The scanning optimization functionality searches the Windows and Program files folders where it detec ts appropriate files (at the moment those are the *.exe, *.dll and *.sys files) and saves the information on these files. With the next acc ess these files will not be scanned again and this reduce the the sc anning time significantly.

Once the installation process is over you will invited via a new dialog window to optimize scanning:

We recommend to use this option and run the scanning optimization process by pressing the Optimize scanning now button.

6.2. Product Registration

Having finished the AVG 9 Internet Security installation, please register you product online on AVG website (http://www.avg.c om/), Registration page (follow the

instruction provided directly in the page). After the registration you will be able to gain full access to your AVG User account, the AVG Update newsletter, and other services provided exclusively for registered users.

6.3. Access to User Interface

The AVG User Interface is ac cessible in several ways:

· double-click the AVG icon on the system tray

· double-click the AVG icon on the desktop

Page 30

· from the menu Start/Programs/AVG 9.0/AVG User Interface

6.4. Scanning of the whole computer

There is a potential risk that a computer virus has been transmitted to your computer prior to AVG 9 Internet Security installation. For this reason you should run a Scan of

the whole computer to make sure there are no infections on your PC.

For instructions on running a Scan of the whole computer please consult the chapter AVG Scanning.

6.5. Eicar Test

To confirm that AVG 9 Internet Security has been installed correctly you can perform the EICAR test.

The EICAR test is a standard and absolutely safe method used to test antivirus system functioning. It is safe to pass around, because it is not an actual virus, and does not include any fragments of viral code. Most products react to it as if it were a virus ( though they typically report it with an obvious name, such as "EICAR-AV-Test"). You can download the EICAR virus from the EICAR website at www.eicar.com, and you will also find all necessary EICAR test information there.

Try to download the eicar.com file, and save it on your local disk. Immediately after you confirm downloading of the test file, the Web Shield will react to it with a warning. This notice demonstrates that AVG is correctly installed on your computer.

From the http://www.eicar.com website you can also download the compressed version of the EICAR 'virus' (e.g. in the form of eicar_com.zip). Web Shield allows

Page 31

you to download this file and save it on your local disk but then the Resident Shield detects the 'virus' as you try to unpack it.

If AVG fails to identify the EICAR test file as a virus, you should check the program configuration again!

6.6. AVG Default Configuration

The default c onfiguration (i.e. how the application is set up right after installation) of AVG 9 Internet Security is set up by the software vendor so that all components and functions are tuned up to achieve optimum performance.

Unless you have a real reason to do so, do not change the AVG configuration! Changes to settings should only be performed by an experienced user.

Some minor editing of AVG components settings is accessible directly from the specific component user interface. If you feel you need to change the AVG configuration to better suit your your needs, go to AVG Advanced Settings: select the system menu item Tools/Advanced settings and edit the AVG configuration in the newly opened

AVG Advanced Settings dialog.

Page 32

7. AVG User Interface

AVG 9 Internet Security open with the main window:

The main window is divided into several sections:

· System Menu (top system line in the window) is the standard navigation that

allows you to acc ess all AVG components, services, and features - details >>

· Security Status Info (upper sec tion of the window) provides you with

information on the current status of your AVG program - details >>

· Quick Links (left sec tion of the window) allow you to quickly access the most

important and most frequently used AVG tasks - details >>

· Components Overview (central section of the window) offer an overview of

all installed AVG components - details >>

Page 33

· Statistics (left bottom section of the window) provide you with all statistical

data regarding the programs operation - details >>

· System Tray Icon (bottom right corner of the monitor, on the system tray)

indic ates the AVG current status - details >>

7.1. System Menu

The System menu is the standard navigation used in all Windows applications. It is located horizontally in the very top part of the AVG 9 Internet Security main window. Use the system menu to access specific AVG components, feature, and services.

The system menu is divided into five main sections:

7.1.1. File

· Exit - closes the AVG 9 Internet Security's user interface. However, the AVG

application will continue running in the background and your computer will still be protected!

7.1.2. Components

The Components item of the system menu includes links to all installed AVG components, opening their default dialog page in the user interface:

· System overview - switch to the default user interface dialog with the

overview of all installed components and their status

· Anti-Virus - opens the default page of the Anti-Virus component

· Anti-Rootkit - opens the default page of the Anti-Rootkit component

· Anti-Spyware - opens the default page of the Anti-Spyware component

· Firewall - opens the default page of the Firewall component

· Link Scanner - opens the default page of the Link Scanner component

· System Tools - opens the default page of the System Tools

· Anti-Spam - opens the default page of the Anti-Spam c omponent

· E-mail Scanner - opens the default page of the E-mail Scanner component

· ID Protection - opens the default page of the ID Protection component

Page 34

· License - opens the default page of the License component

· Web Shield - opens the default page of the Web Shield component

· Resident Shield - opens the default page of the Resident Shield component

· Update Manager - opens the default page of the Update Manager

component

7.1.3. History

· Scan results - switches to the AVG testing interface, spec ifically to the Scan

Results Overview dialog

· Resident Shield Detection - open a dialog with an overview of threats

detected by Resident Shield

· E-mail Scanner Detection - open a dialog with an overview of mail messages

attachments detec ted as dangerous by the E-mail Scanner component

· Web Shield findings - open a dialog with an overview of threats detected by

Web Shield

· Virus Vault - opens the interface of the quarantine space (Virus Vault) to

where AVG removes all detected infections that cannot be healed automatically for some reason. Inside this quarantine the infected files are isolated and your computer's security is guaranteed, and at the same time the infected files are stored for possible future repair.

· Event History Log - opens the history log interface with an overview of all

logged AVG 9 Internet Security actions.

· Firewall - opens the Firewall settings interface on the Logs tab with a

detailed overview of all Firewall actions

7.1.4. Tools

· Scan computer - switches to the AVG scanning interface and launches a sc an

of the whole c omputer

· Scan selected folder - switches to the AVG scanning interface and allows you

to define within the tree structure of your computer which files and folders should be scanned

· Scan file - allows you to run an on-demand test over a single file selected from

Page 35

the tree structure of your disk

· Update - automatically launches the update process of AVG 9 Internet

Security

· Update from directory - runs the update process from the update files

located in a specified folder on your local disk. However, this option is only recommended as an emergency, e.g. in situations where there is no c onnection to the Internet (for example, your computer is infected and disconnected

from the Internet; your c omputer is connected to a network with no acc ess to the Internet, etc.). In the newly opened window select the folder where

you have previously placed the update file, and launch the update process.

· Advanced settings - opens the AVG advanced settings dialog where you

can edit the AVG 9 Internet Security configuration. Generally, it is recommended to keep the default settings of the application as defined by the software vendor.

· Firewall settings - open a standalone dialog for advanced configuration of

the Firewall component

7.1.5. Help

· Contents - opens the AVG help files

· Get Help Online - opens AVG website (http://www.avg.com/) at the

customer support center page

· Your AVG Web - opens AVG website (http://www.avg.com/)

· About Viruses and Threats - opens the online Virus Encyclopedia where you

can look up detailed information on the identified virus

· Reactivate - opens the Activate AVG dialog with the data you have entered

in the Personalize AVG dialog of the installation process. Within this dialog you can enter your license number to either replace the sales number (the

number you have installed AVG with), or to replace the old license number (e. g. when upgrading to a new AVG product).

· Register now - c onnects to the registration page of AVG website (http://

www.avg.com/). Please fill in your registration data; only customers who

Note: If using the trial version of AVG 9 Internet Security, the latter two items appear as Buy now and Activate, alowing you to buy the full version of

Page 36

the program right away. For AVG 9 Internet Security installed with a sales number, the items display as Register and Activate. For more information please consult the License sec tion of this documentation.

· About AVG - opens the Information dialog with five tabs providing data on

program name, program and virus database version, system info, license agreement, and contac t information of AVG Technologies CZ.

7.2. Security Status Info

The Security Status Info section is located in the upper part of the AVG main window. Within this sec tion you will always find information on the current security status of your AVG 9 Internet Security. Please see an overview of icons possibly depicted in this section, and their meaning:

The green icon indic ates that your AVG is fully functional. Your computer is completely protected, up to date and all installed components are working properly.

The orange icon warns that one or more components are incorrectly configured and you should pay attention to their properties/settings. There is no critical problem in AVG and you have probably decided to switch some component off for some reason. You are still protected by AVG. However, please pay attention to the problem component's settings! Its name will be provided in the Security Status Info section.

This icon also appears if for some reason you have decided to ignore a

component's error status (the "Ignore component state" option is available from

the context menu opened by a right-click over the respec tive component's icon in the component overview of the AVG main window). You may need to use this

option in a specific situation but it is strictly recommended to switch off the " Ignore component state" option as soon as possible.

The red icon indic ates that AVG is in critical status! One or more components does not work properly and AVG cannot protect your computer. Please pay immediate attention to fixing the reported problem. If you are not able to fix the error yourself, contac t the AVG technical support team.

It is strongly recommended that you pay attention to Security Status Info and in

Page 37

case the report indicates any problem, go ahead and try to solve it immediately. Otherwise your computer is at risk!

Note: AVG status information can also be obtained at any moment from the system

tray icon.

7.3. Quick Links

Quick links (in the left sec tion of the AVG User Interface) allow you to immediately access the most important and most frequently used AVG features:

· Overview - use this link to switch from any c urrently opened AVG interface to

the default one with an overview of all installed components - see c hapter

Components Overview >>

· Computer scanner - use this link to open the AVG scanning interface where

you can run tests directly, schedule sc ans, or edit their parameters - see chapter AVG Scanning >>

· Update now - this link open the updating interfac e, and launches the AVG

update process immediately - see c hapter AVG Updates >>

These links are accessible from the user interfac e at all times. Once you use a quick link to run a specific process, the GUI will switch to a new dialog but the quick links are still available. Moreover, the running process is further graphically depicted.

7.4. Components Overview

The Components Overview section is located in the c entral part of the AVG User

Interface. The sec tion is divided into two parts:

· Overview of all installed components consisting of a panel with the

component's icon and the information of whether the respective component is active or inactive

Page 38

· Description of a selected c omponent

Within the AVG 9 Internet Security the Components Overview sec tion contains information on the following components:

· Anti-Virus ensures that your computer is protected from viruses trying to

enter your computer - details >>

· Anti-Spyware scans your applications in the background as you run them -

details >>

· Anti-Spam checks all incoming e-mail messages and marks unwanted e-mails

as SPAM - details >>

· Firewall controls how your computer exchanges data with other computers on

the Internet or local network - details >>

· Link Scanner checks the search results displayed in your internet browser -

details >>

· Anti-Rootkit detec ts programs and technologies trying to camouflage malware

- details >>

· System Tools offers a detailed summary of the AVG environment and

operating system information - details >>

· E-mail Scanner chec ks all incoming and outgoing mail for viruses - details >>

· ID Protection - anti-malware component foc used on preventing identity

thieves from stealing your personal digital valuables - details >>

· License displays the license number, type and expiration date - details >>

· Web Shield scans all data being downloaded by a web browser - details >>

· Resident Shield runs in the bac kground and scans files as they are copied,

opened or saved - details >>

· Update Manager controls all AVG updates - details >>

Single-click any component's icon to highlight it within the components overview. At the same time, the component's basic functionality desc ription appears in the bottom part of the user interfac e. Double-click the icon to open the components own interface with a list of basic statistical data.

Page 39

Right-click you mouse over a component's icon to expand a context menu: besides opening the c omponent's graphic interface you can also select to Ignore component state. Select this option to express you are aware of the c omponent's error state but for some reason you wish to keep your AVG so and you do not want to be warned by the system tray icon.

7.5. Statistics

The Statistics section is located in the left bottom part of the AVG User Interface. It offers a list of information regarding the program's operation:

· Last scan - provides the date when the last scan was performed

· Last update - provides the date when the last update was launched

· Virus DB - informs you about the currently installed version of the virus

database

· AVG version - informs you about the AVG version installed (the number is in

the form of 9.0.xx, where 9.0 is the product line version, and xx stands for the number of the build)

· License expires - provides the date of your AVG license expiration

7.6. System Tray Icon

System Tray Icon (on your Windows taskbar) indicates the c urrent status of your

AVG 9 Internet Security. It is visible at all times on your system tray, no matter whether your AVG main window is opened or closed.

If in full color , the System Tray Icon indic ates that all AVG components are active and fully functional. Also, AVG system tray icon can be displayed in full color if AVG is in error state but you are fully aware of this situation and you have deliberately decided to Ignore the component state.

An icon with an exclamation mark indicates a problem (inactive component, error status, etc.). Double-click the System Tray Icon to open the main window and edit a component.

The system tray icon further informs on c urrent AVG activities and possible status changes in the program (e.g. automatic launch of a scheduled scan or update, Firewall profile switc h, a component's status change, error status occ urrence, ...) via a pop-up window opened from the AVG system tray icon:

Page 40

The System Tray Icon can also be used as a quick link to access the AVG main window at any time - double click on the icon. By right-click on the System Tray Icon you open a brief context menu with the following options:

· Open AVG User Interface - click to open the AVG User Interface

· Update - launches an immediate update

Page 41

8. AVG Components

8.1. Anti-Virus

8.1.1. Anti-Virus Principles

The antivirus software's sc anning engine scans all files and file activity (opening/ closing files, etc.) for known viruses. Any detec ted virus will be blocked from taking any ac tion and will then be c leaned or quarantined. Most antivirus software also uses heuristic scanning, where files are scanned for typical virus characteristics, so c alled viral signatures. This means that the antivirus scanner can detect a new, unknown virus, if the new virus contains some typical characteristics of existing viruses.

The important feature of antivirus protection is that no known virus can run on the computer!

Where just a single technology might fall short of detecting or identifying a virus, AntiVirus c ombines several technologies to ensure that your computer is protected from

viruses:

· Scanning - searching for character strings that are characteristic of a given

virus

· Heuristic analysis - dynamic emulation of the scanned object’s instructions in a

virtual computer environment

· Generic detection - detection of instructions characteristic of the given virus/

group of viruses

AVG is also able to analyze and detect executable applications or DLL libraries that could be potentially unwanted within the system. We call such threats Potentially Unwanted Programs (various kinds of spyware, adware etc.). Furthermore, AVG scans your system registry for suspicious entries, temporary Internet files and tracking cookies, and allows you to treat all potentially harmful items in the same way as any other infection.

Page 42

8.1.2. Anti-Virus Interface

The Anti-Virus component's interface provides some basic information on the component's functionality, information on the component's c urrent status (Anti-Virus component is active.), and a brief overview of Anti-Virus statistics:

· Infection definitions - number provides the count of viruses defined in the

up-to-date version of the virus database

· Latest database update - specifies when and at what time the virus

database was last updated

· Database version - defines the number of the latest virus database version;

and this number increases with every virus base update

There is just one operating button available within this component's interface (Back) - press the button to return to the default AVG user interface (components overview).

Please note: The software vendor has set up all AVG components to give optimum performance. Unless you have a real reason to do so, do not change the AVG configuration. Any changes to settings should only be performed by an experienced user. If you need to change AVG configuration, select the system menu item Tools / Advanced settings and edit the AVG c onfiguration in the newly opened AVG

Page 43

Advanced Settings dialog.

8.2. Anti-Spyware

8.2.1. Anti-Spyware Principles

Spyware is usually defined as a type of malware, i.e. software, that gathers information from a user's computer without the user's knowledge or consent. Some spyware applications may also be installed on purpose and often contain advertisements, window pop-ups or different types of unpleasant software.

Currently, the most common source of infection is websites with potentially dangerous content. Other methods of transmission, such as via e-mail or transmission by worms and viruses are also prevalent. The most important protection is to use an always-on background scanner, Anti-Spyware, that works like a resident shield and scans your applications in the background as you run them.

There is also the potential risk that malware has been transmitted to your computer prior to AVG installation, or that you have neglected to keep your AVG 9 Internet Security up-to-date with the latest database and program updates. For this reason, AVG allows you to fully scan your computer for malware/spyware using the scanning feature. It also detects sleeping and non-active malware, i.e. malware that has been downloaded but not yet ac tivated.

Page 44

8.2.2. Anti-Spyware Interface

The Anti-Spyware component's interface provides a brief overview on the component's functionality, information on the component's c urrent status (Anti- Spyware component is active.), and some Anti-Spyware statistics:

· Spyware definitions - number provides the count of spyware samples defined

in the latest spyware database version

· Latest database update - specifies when and at what time the spyware

database was updated

· Database version - defines the number of the latest spyware database

version; and this number increases with every virus base update

There is just one operating button available within this component's interface (Back) - press the button to return to the default AVG user interface (components overview).

Page 45

Advanced Settings dialog.

8.3. Anti-Spam

Spam refers to unsolicited e-mail, mostly advertising a product or service that is mass mailed to a huge number of e-mail addresses at a time, filling recipients’ mail boxes. Spam does not refer to legitimate c ommercial e-mail for which consumers have given their consent. Spam is not only annoying, but also can often be a source of scams, viruses or offensive c ontent.

8.3.1. Anti-Spam Principles

AVG Anti-Spam checks all incoming e-mail messages and marks unwanted e-mails as spam. AVG Anti-Spam can modify the subject of the email (that has been identified as spam) by adding a special text string. Then you can then easily filter your emails in your email client.

AVG Anti-Spam component uses several analyzing methods to process each e-mail message, offering maximum possible protection against unwanted e-mail messages. AVG Anti-Spam uses a regularly updated database for the detection of spam. It is also possible to use RBL servers (public databases of "known spammer" email

addresses) and to manually add email addresses to your Whitelist (never mark as spam) and Blacklist (always mark as spam).

Page 46

8.3.2. Anti-Spam Interface

In the Anti-Spam component's dialog you will find a brief text desc ribing the component's functionality, information on its c urrent status (Anti-Spam component is active.), and the following statistics:

· Database release - spec ifies when and at what time the spam database was

updated and published

· Spamcatcher version - defines the number of the latest version of the anti-

spam engine

There is just one operating button available within this component's interface (Back) - press the button to return to the default AVG user interface (components overview).

Advanced Settings dialog.

Page 47

8.4. Anti-Rootkit

A rootkit is a program designed to take fundamental control of a computer system, without authorization by the system's owners and legitimate managers. Ac cess to the hardware is rarely required as a rootkit is intended to seize control of the operating system running on the hardware. Typically, rootkits act to obscure their presence on the system through subversion or evasion of standard operating system security mec hanisms. Often, they are also Trojans as well, thus fooling users into believing they are safe to run on their systems. Tec hniques used to ac complish this can include concealing running processes from monitoring programs, or hiding files or system data from the operating system.

8.4.1. Anti-Rootkit Principles

AVG Anti-Rootkit is a specialized tool detecting and effec tively removing dangerous rootkits, i.e. programs and technologies that can camouflage the presence of malicious software on your computer. AVG Anti-Rootkit is able to detect rootkits based on a predefined set of rules. Please note, that all rootkits are detected (not just the infected). In case AVG Anti-Rootkit finds a rootkit, it does not nec essarily mean the rootkit is infected. Sometimes, rootkits are used as drivers or they are a part of correct applications.

8.4.2. Anti-Rootkit Interface

Page 48

The Anti-Rootkit user interface provides a brief description of the component's functionality, informs on the c omponent's current status (Anti-Rootkit component is active.) and also brings information on the last time the Anti-Rootkit test was launched.

In the bottom part of the dialog you can find the Anti-Rootkit settings section where you can set up some elementary functions of the rootkit presence scanning. First, mark up the respective check-boxes to specify objects that should be scanned:

· Scan applications

· Scan DLL libraries

· Scan drivers

Further you can pick the rootkit scanning mode:

· Quick rootkit scan - scans all running processes, loaded drivers and the

system folder (typically c:\Windows)

· Full rootkit scan - scans all running processes, loaded drivers, the system

folder (typically c :\Windows), plus all local disks (including the flash disk, but excluding floppy disk/CD drives)

Control buttons available:

· Search for rootkits - since the rootkit scan is not an implic it part of the Scan

of the whole computer, you can run the rootkit scan directly from the Anti-

Rootkit interfac e using this button

· Save changes - press this button to save all changes made in this interface

and to return to the default AVG user interface (c omponents overview)

· Cancel - press this button to return to the default AVG user interface

(components overview) without having saved any changes you made

8.5. System Tools

System Tools refer to tools offering a detailed summary of the AVG 9 Internet Security environment and the operating system. The component displays an overview

of:

· Processes - list of processes (i.e. running applications) that are currently

active on your computer

Page 49

· Network connections - list of currently active connections

· Autostart - list of all applications that are executed during Windows system

start-up

· Browser Extensions - list of plug-ins (i.e. applications) that are installed inside

your Internet browser

· LSP Viewer - list of Layered Service Providers (LSP)

Specific overviews can also be edited but this is only recommended for highly experienced users!

8.5.1. Processes

The Processes dialog contains a list of processes (i.e. running applications) that are currently active on your computer. The list is divided into several columns:

· Severity Level – graphical identification of the respective process severity on

a four-levels scale from less important ( ) up to critical ( )

· Process name - name of the running process

Page 50

· Path - physical path to the running process

· Window - if applicable, indicates application Window name

· Internet - indicates if the running process also connects to the Internet (Yes/

No)

· Service - shows if the running process is a service (Yes/No)

· PID - process identification number is a unique Windows internal process

identifier

Control buttons

The control buttons available within the System Tools interface are as follows:

· Refresh - updates the list of processes according to the current status

· Terminate Process - you can select one or more applications and then

terminate them by pressing this button. We strongly suggest not to terminate any applications, unless you are absolutely sure that they represent a real threat!

· Back - switches you bac k to the default AVG user interface (components

overview).

Page 51

8.5.2. Network Connections

The Network Connections dialog contains a list of currently ac tive connections. The list is divided into the following columns:

· Application - name of the application related to the connection (with the

exception of Windows 2000 where the information os not available)

· Protocol - transmission protocol type used for the connection:

TCP - protocol used in conjunction with Internet Protocol (IP) to transmit information over the Internet

UDP - alternative to TCP protocol

· Local address - IP address of the local computer and the port number used

· Remote address - IP address of the remote computer and the port number

connected to. If possible, it will also look up the host name of the remote computer.

· State - indicates the most probable current state (Connected, Server should

close, Listen, Active c lose finished, Passive close, Active close)

Page 52

To list only external connections, tick the Hide local connections checkbox in the bottom section of the dialog under the list.

Control buttons

The control buttons available are:

· Terminate Connection - closes one or more connections selected in the list

· Terminate Process - closes one or more applications related to connections

selected in the list

· Back - switch back to the default AVG user interface (components

overview).

Sometimes it is possible to terminate only applications that are currently in the connected state. We strongly suggest not to terminate any connections, unless you are absolutely sure that they represent a real threat!

8.5.3. Autostart

The Autostart dialog shows a list of all applications that are executed during Windows

Page 53

system start-up. Very often, several malware applications add themselves automatically to the start-up registry entry.

You can delete one or more entries by selecting them and pressing the Remove

selected button. The Back button switches you back to the default AVG user

interface (components overview).

We strongly suggest not to delete any applications from the list, unless you are absolutely sure that they represent a real threat!

8.5.4. Browser Extensions

The Browser Extensions dialog contains a list of plug-ins (i.e. applications) that are installed inside your Internet browser. This list may c ontain regular applic ation plug-ins as well as potential malware programs. Click on an object in the list to obtain detailed information on the selected plug-in that will be displayed in the bottom section of the dialog.

Control buttons

The control buttons available on the Browser Extension tab are:

Page 54

· Remove selected object - removes the plug-in that is currently highlighted in the

list. We strongly suggest not to delete any plug-ins from the list, unless you

are absolutely sure that they represent a real threat!

· Back - switches you bac k to the default AVG user interface (c omponents

overview)

8.5.5. LSP Viewer

The LSP Viewer dialog shows a list of Layered Service Providers (LSP).

A Layered Service Provider (LSP) is a system driver linked into the networking services of the Windows operating system. It has access to all data entering and leaving the computer, including the ability to modify this data. Some LSPs are necessary to allow Windows to c onnect you to other computers, including the Internet. However, certain malware applications may also install themselves as an LSP, thus having access to all data your computer transmits. Therefore, this review may help you to c heck all possible LSP threats.

Under certain circumstances, it is also possible to repair broken LSPs (for example when the file has been removed but the registry entries remain untouched). A new button for fixing the issue is displayed once a repairable LSP is discovered.

Page 55

To include Windows LSP in the list, uncheck the Hide Windows LSP chec kbox. The Back button switches you back to the default AVG user interface (components

overview).

8.6. Firewall

Firewall is a system that enforces an access control polic y between two or more networks by blocking/permitting traffic. Firewall contains a set of rules that protect the internal network from attac ks originating outside (typically from the Internet) and controls all communication on every single network port. The communication is evaluated ac cording to the defined rules, and then either allowed or forbidden. If Firewall recognizes any intrusion attempts, it “blocks” the attempt and does not allow the intruder access to the computer.

Firewall is configured to allow or deny internal/external communication (both ways, in or out) through defined ports, and for defined software applications. For example, the firewall could be c onfigured to only permit web data to flow in and out using Microsoft Explorer. Any attempt to transmit web data by any other browser would be blocked.

Firewall protects your personally-identifiable information from being sent from your computer without your permission. It controls how your computer exchanges data with other computers on the Internet or local network. Within an organization, the firewall also protects the single computer from attacks initiated by internal users on other computers in the network.

Recommendation: Generally it is not rec ommended to use more than one firewall on an individual computer. The security of the computer is not enhanced if you install more firewalls. It is more probable that some conflicts between these two applications will occur. Therefore we recommend that you use only one firewall on your computer and deactivate all others, thus eliminating the risk of possible conflict and any problems related to this.

8.6.1. Firewall Principles

In AVG, the Firewall component controls all traffic on every network port of your computer. Based on the defined rules, the Firewall evaluates applic ations that are either running on your computer (and want to connect to the Internet/local network), or applications that approach your computer from outside trying to c onnect to your PC. For eac h of these applications the Firewall then either allows or forbids the communication on the network ports. By default, if the application is unknown (i.e. has no defined Firewall rules), the Firewall will ask you if you wish to allow or block the communication attempt.

Note: AVG Firewall is not intended for server platforms!

Page 56

What AVG Firewall can do:

· Allow or block communic ation attempts of known applications automatically, or

ask you for confirmation

· Use complete profiles with predefined rules, according to your needs

· Switc h profiles automatically when connecting to various networks, or using

various network adapters

8.6.2. Firewall Profiles

The Firewall allows you to define specific sec urity rules based on whether your computer is located in a domain, or it is a standalone computer, or even a notebook. Each of these options requires a different level of protection, and the levels are covered by the respective profiles. In short, a Firewall profile is a spec ific configuration of Firewall component, and you can use a number of such predefined configurations.

Available profiles

· Allow all - a Firewall system profile that has been pre-set by the

manufac turer and is always present. When this profile is activated, all network communication is allowed and no safety policy rules are applied, as if the

Firewall protection was switched off (i.e. all applications are allowed but

packets are still being chec ked - to completely disable any filtering you need to disable Firewall). This system profile cannot be duplicated, deleted, and its

settings cannot be modified.

· Block all - a Firewall system profile that has been pre-set by the

manufac turer and is always present. When this profile is activated, all network communication is blocked, and the computer is neither accessible from outer networks, nor can communicate outside. This system profile cannot be duplicated, deleted, and its settings cannot be modified.

· Custom profiles:

Directly connected to the Internet – suitable for common desktop home computers c onnected directly to the Internet or notebooks connecting to the Internet outside the safe company network. Select this option if you connecting from home, or you are in a small company network with no c entral control. Also, select this option when traveling

Page 57

and connecting with your notebook from various unknown and possibly dangerous places (internet café, hotel room etc.). More restrictive rules will be created, as it is assumed that these computers have no additional protection and therefore require the maximum protec tion.

Computer in domain – suitable for computers in a local network, e.g. school or corporate network. It is assumed that the network is protected by some additional measures so that the security level can be lower than for a standalone computer.

Small home or office network – suitable for computers in a small network, e.g. at home or in a small business, typically only several computers connected together, without a "central" administrator.

Profile switching

The profile switc hing feature allows the Firewall to switch automatically to the defined profile when using a certain network adapter, or when c onnected to a c ertain type of network. If no profile has been assigned to a network area yet, then upon next connection to that area, the Firewall will display a dialog asking you to assign a profile.

You can assign profiles to all local network interfac es or areas and specify further settings in the Areas and Adapters Profiles dialog, where you can also disable the feature if you do not wish to use it (then, for any kind of connection, the default profile will be used).

Typically, users who have a notebook and use various types of connection will find this feature useful. If you have a desktop c omputer, and only ever use one type of connection (e.g. cable c onnection to the Internet), you do not have to bother with profile switching as most likely you will never use it.

Page 58

8.6.3. Firewall Interface

The Firewall's interface provides some basic information on the component's functionality, and a brief overview of Firewall statistics:

· Firewall has been enabled for - time elapsed since Firewall was last launched

· Blocked packets - number of blocked packets from the entire amount of

packets chec ked

· Overall packets - number of all packets checked during the Firewall run

Basic component configuration

· Select Firewall profile - from the roll-down menu select one of the defined

profiles - two profiles are available at all times (the default profiles named Allow all and Block all), other profiles were added manually by profile editing in the Profiles dialog in Firewall Settings.

· Enable gaming mode - Check this option to ensure that when running full-

screen applications (games, PowerPoint presentations etc.), the Firewall will not display dialogs asking you whether you want to allow or block

Page 59

communication for unknown applications. In case an unknown application tries to communicate over the network at that time, the Firewall will allow or block the attempt automatically acc ording to settings in the current profile.

· Firewall status:

Firewall enabled - select this option to allow communication to those applications that are assigned as 'allowed' in the set of rules defined

within selected Firewall profile

Firewall disabled - this option switc hes Firewall off completely, all

network traffic is allowed but not chec ked!

Emergency mode (block all internet traffic) - select this option to block all traffic on every single network port; Firewall is still running but all network traffic is stopped

Please note: The software vendor has set up all AVG components to give optimum performance. Unless you have a real reason to do so, do not change the AVG configuration. Any changes to settings should only be performed by an experienced user. If you need to change Firewall configuration, select the system menu item

Tools/Firewall settings and edit the Firewall configuration in the newly opened

Firewall Settings dialog.

Control buttons

· Configuration wizard - press the button to switch to the respective dialog (

used within installation process) called Computer Usage Selection where you can specify the Firewall component configuration

· Save changes - press this button to save and apply any changes made in this

dialog

· Cancel - press this button to return to the default AVG user interfac e (

components overview)

8.7. E-mail Scanner

One of the most common sources of viruses and trojans is via e-mail. Phishing and spam make e-mail an even greater source of risks. Free e-mail acc ounts are more likely to receive such malicious e-mails (as they rarely employ anti-spam technology), and home users rely quite heavily on such e-mail. Also home users, surfing unknown sites and filling in online forms with personal data (such as their e-mail address) increase

Page 60

exposure to attacks via e-mail. Companies usually use corporate e-mail accounts and employ anti-spam filters etc, to reduce the risk.

8.7.1. E-mail Scanner Principles

The E-mail Scanner component scans incoming/outgoing e-mails automatically. You can use it with e-mail clients that do not have their own plug-in in AVG (e.g. Outlook Express, Mozilla, Incredimail, etc.).

During AVG installation AVG there are automatic servers created for e-mail control: one for checking incoming e-mails and the sec ond one for checking outgoing e-mails. Using these two servers e-mails are automatically chec ked on ports 110 and 25 ( standard ports for sending/receiving e-mails).

E-mail Scanner works as an interface between e-mail client and e-mail servers on the Internet.

· Incoming mail: While receiving a message from the server, the E-mail

Scanner component tests it for viruses, removes infected attachments, and

adds certification. When detec ted, viruses are quarantined in Virus Vault immediately. Then the message is passed to the e- mail client.

· Outgoing mail: Message is sent from e-mail client to E-mail Scanner; it tests

the message and its attac hments for viruses and then sends the message to the SMTP server (sc anning of outgoing e-mails is disabled by default, and can be set up manually).

Note: AVG E-mail Scanner is not intended for server platforms!

Page 61

8.7.2. E-mail Scanner Interface

In the E-mail Scanner component's dialog you can find a brief text describing the component's functionality, information on its c urrent status (E-mail Scanner is active. ), and the following statistics:

· Total e-mails scanned - how many e-mail messages were scanned since the

E-mail Scanner was last launched (if needed, this value can be reset; e.g. for

statistic purposes - Reset value)

· Threats found and blocked - provides the number of infections detected in e-

mail messages since the last E-mail Scanner launch

· Installed e-mail protection - information about a specific e-mail protec tion

plug-in referring to your default installed e-mail client

Basic component configuration

In the bottom part of the dialog you can find the sec tion named E-mail Scanner settings where you can edit some elementary features of the component's

functionality:

Page 62

· Scan incoming messages - c heck the item to spec ify that all e-mails deliver

ed to your account should be scanned for viruses. By default, this item is on, and it is recommended not to change this setting!

· Scan outgoing messages - chec k the item to confirm all e-mail sent from

your account should be scanned for viruses. By default, this item is off.

· Display notification icon while E-mail is being scanned - check the item to

confirm you want to be informed via notification dialog displayed over the AVG icon on the system tray during the scanning of your mail via E-mail Scanner component. By default, this item is on, and it is recommended not to c hange this setting!

The advanced c onfiguration of the E-mail Scanner component is accessible via the Tools/Advanced settings item of the system menu; however advanced configuration is recommended for experienced users only!

Advanced Settings dialog.

Control buttons

The control buttons available within the E-mail Scanner interface are as follows:

· Save changes - press this button to save and apply any changes made in this

dialog

· Cancel - press this button to return to the default AVG user interfac e

(components overview)

Page 63

8.7.3. E-mail Scanner Detection

In the E-mail Scanner detection dialog (acc essible via system menu option History / E-mail Scanner detection) you will be able to see a list of all findings detec ted by the

E-mail Scanner component. For each detected object the following information is

provided:

· Infection- description (possibly even name) of the detected object

· Object - object location

· Result - action performed with the detected object

· Detection time - date and time the suspicious object was detected

· Object Type - type of the detected object

Page 64

Control buttons

The control buttons available within the E-mail Scanner detection interfac e are as follows:

· Refresh list - updates the list of detected threats

· Back - switches you bac k to the default AVG user interface (components

overview)

8.8. ID Protection

AVG Identity Protection is an anti-malware product that is focused on preventing identity thieves from stealing your passwords, bank account details, credit card numbers and other personal digital valuables from all kinds of malicious software ( malware) that target your PC. It makes sure that all programs running on your PC are operating correctly. AVG Identity Protection spots and blocks suspicious behavior on a continuous basis and protects your computer from all new malware.

8.8.1. ID Protection Principles

AVG Identity Protection is an anti-malware component that protec ts you from all kinds of malware (spyware, bots, identity theft, ...) using behavioral technologies and provide zero day protection for new viruses. As malware gets sophisticated and comes in a form of normal programs that c an open up your PC to the remote attacker for identity theft, AVG Identity Protection secures you from these new execution based malware. It is a c omplimentary protec tion to AVG Anti-Virus that protects you from file based and known viruses using signature mec hanism and sc anning.

We strongly recommend you have the both AVG Anti-Virus and AVG Identity Protection components installed, in order to have complete protection for your PC.

8.8.2. ID Protection Interface

The Identity Protection component interface provides a brief description of the component's basic functionality, its status (AVG Identity Protection is ac tive and fully functional.) and some statistical data:

· Malware items removed - gives the number of applications detected as

malware, and removed

· Processes monitored - number of currently running applications that are

Page 65

being monitored by IDP

· Behaviors monitored - number of specific ac tions running within the

monitored applications

Basic component configuration

In the bottom part of the dialog you will find the Identity Protection settings section where you can edit some elementary features of the component's functionality:

· Identity Protection is active - (on by default): check to activate the IDP

component, and to open further editing options.

In some cases, Identity Protection may report that some legitimate file is suspicious or dangerous. Since Identity Protection detects threats based on their behavior, this usually oc curs when some program tries to monitor key presses, install other programs or a new driver is installed on the computer.

Therefore please select one of the following options specifying Identity Protection component's behavior in case of a suspicious activity detection:

Always prompt - if an application is detected as malware, you will be asked whether it should be blocked (this option is on by default and it is

Page 66

recommended not to change it unless you have a real reason to do so)

Automatically quarantine detected threats - all applic ations detected as malware will be blocked automatically

Automatically quarantine known threats - only those applic ations that are with absolute certainty detec ted as malware will be blocked

Control buttons

The control buttons available within the Identity Protection interface are as follows:

· Save changes - press this button to save and apply any changes made in this

dialog

· Cancel - press this button to return to the default AVG user interfac e

(components overview)

8.9. License

In the Licence component interface you will find a brief text describing the

Page 67

component's functionality, information on its c urrent status (License component is active.), and the following information:

· License number - provides the exact form of your lic ense number. When

entering your license number, you have to be absolutely precise and type it exactly as shown. Therefore we strongly recommend to always use "copy & paste" method for any manipulation with the license number.

· License type - specifies the product type installed.

· License expires - this date determines the period of validity of your license. If

you want to go on using AVG 9 Internet Security after this date you have to renew your license. The license renewal can be performed online on AVG website (http://www.avg.c om/).

· Number of seats - how many workstations on which you are entitled to install

your AVG 9 Internet Security.

Control buttons

· Register - c onnects to the registration page of AVG website (http://www.

avg.com/). Please fill in your registration data; only customers who register

their AVG product can receive free tec hnical support.

· Re-activate - opens the Activate AVG dialog with the data you have entered

in the Personalize AVG dialog of the installation process. Within this dialog you can enter your license number to either replace the sales number (the

number you have installed AVG with), or to replace the old license number (e. g. when upgrading to a new AVG product).

Note: If using the trial version of AVG 9 Internet Security, the buttons appear as Buy now and Activate, alowing you to buy the full version of the program right away. For AVG 9 Internet Security installed with a sales number, the buttons display as Register and Activate.

· Back - press this button to return to the default AVG user interface

(components overview).

8.10. Link Scanner

Page 68

8.10.1. Link Scanner Principles

The LinkScanner component provides protec tion against websites, that are designed to install malware into your computer via the web browser or its plugins. The

LinkScanner tec hnology consists of two features, AVG Search-Shield and AVG

Active Surf-Shield:

· AVG Search Shield contains list of websites (URL addresses) which are known

to be dangerous. When searching Google, Yahoo!, Bing, Baidu, Altavista, or Yandex, all results of the search are checked according to this list and a verdict icon is shown (for Yahoo! search results only "exploited website" verdict icons are shown). Also if you type some address directly into your browser, click a link on any website or e.g. in your e-mail, it is chec ked automatically and blocked if necessary.

· AVG Active Surf-Shield scans the contents of the websites you are visiting,

regardless of the websites address. Even if some website is not detected by

AVG Search Shield (e.g. when a new malicious website is created, or when a

previously clean website now contains some malware), it will be detected and

blocked by AVG Active Surf-Shield once you try to visit it.

Note: AVG Link Scanner is not intended for server platforms!

8.10.2. Link Scanner Interface

The LinkScanner component consists of two parts that you can switch on/off in the LinkScanner component interfac e:

The LinkScanner component interface provides a brief description of the component's functionality and information on its current status (LinkSc anner c omponent is ac tive.). Further, you can find the information on the latest LinkScanner database version number (|LinkScanner Version).

Page 69

In the bottom part of the dialog you can edit several options:

· Enable AVG Search-Shield - (on by default): advisory notifying icons on

searches performed in Google, Yahoo!, Bing, Baidu, Yandex, or Altavista: having checked ahead the content of sites returned by the search engine.

· Enable AVG Active Surf-Shield - (on by default): active (real-time)

protection against exploitive sites as they are accessed. Known malicious site connections and their exploitive content is blocked as they are ac cessed by the user via a web browser (or any other application that uses HTTP).

· Enable reporting of detected threats to AVG - mark this item to allow bac k

reporting of exploits and bad sites found by users either via Safe Surf or Safe Search to feed the database c ollecting information on malicious activity on the web.

8.10.3. AVG Search-Shield

When searching Internet with the AVG Search-Shield on, all search results returned from the most popular search engines like Yahoo!, Google, Bing, Altavista, Yandex, etc. are evaluated for dangerous or suspicious links. By checking these links and marking the bad links, the AVG Link Scanner warns you before you click on dangerous or suspicious links, so you can ensure you only go to safe websites.

Page 70

While a link is being evaluated on the search results page, you will see a graphic sign next to the link informing that the link verification is in progress. When the evaluation is complete, the respec tive informative icon will be displayed:

The linked page is safe (with Yahoo! search engine within AVG Security

Toolbar this icon will not be displayed!).

The linked page does not contain threats but is somewhat suspicious (

questionable in origin or motive, therefore not recommended for e-shopping etc.).

The linked page can be either safe itself, but c ontaining further links to positively dangerous pages; or suspicious in code, though not directly employing any threats at the moment.

The linked page contains active threats! For your own safety, you will not be allowed to visit this page.

The linked page is not acc essible, and so could not be scanned.

Hovering over an individual rating icon will display details about the particular link in question. Information include additional details of the threat (if any), the IP address of the link and when the page was scanned by AVG:

8.10.4. AVG Active Surf-Shield

This powerful protection will block malicious content of any webpage you try to open, and prevent it from being downloaded to your computer. With this feature enabled, clicking a link or typing in a URL to a dangerous site will automatically block you from opening the web page thus protecting you from inadvertently being infected. It is important to remember that exploited web pages can infec t your computer simply by visiting the affected site, for this reason when you request a dangerous webpage containing exploits or other serious threats, the AVG Link Scanner will not allow your

Page 71

browser to display it.

If you do encounter a malicious web site, within your web browser the AVG Link

Scanner will warn you with a screen similar to:

Entering such web site is highly risky and it cannot be recommended!

8.11. Web Shield

8.11.1. Web Shield Principles

Web Shield is a type of a real time resident protection; it scans the c ontent of visited web pages (and possible files included in them) even before these are displayed in your web browser or downloaded to your computer.

Web Shield detec ts that the page you are about to visit includes some dangerous javascript, and prevents the page from being displayed. Also, it recognizes malware contained in a page and stops its downloading immediately so that it never gets to your computer.

Note: AVG Web Shield is not intended for server platforms!

8.11.2. Web Shield Interface

The Web Shield component's interface desc ribes the behavior of this type of protection. Further you can find information on the component's current status (Web Shield is active and fully functional.). In the bottom part of the dialog you will then find the elementary editing options of this component's functionality.

Basic component configuration

Page 72

First of all, you have the option to immediately switch on/off the Web Shield by checking the Enable Web Shield item. This option is enabled by default, and the Web Shield component is active. However, if you do not have a good reason to c hange this settings, we recommend to keep the c omponent active. If the item is checked, and the Web Shield is running, more configuration options are available and editable on two tabs:

· Web - you can edit the component's configuration regarding the scan of the

website c ontent. The editing interface allows you to configure the following elementary options:

Web protection - this option confirms that the Web Shield should perform sc anning of the www pages content. Provided this option is on ( by default), you can further switch on/off these items:

Ø Check archives - scan the content of archives possibly included in

the www page to be displayed

Ø Report Potentially Unwanted Programs - scan potentially

unwanted programs (executable programs that can operate as spyware or adware) included in the www page to be displayed

Ø Use heuristic analysis - scan the content of the page to be

Page 73

displayed using the heuristic analysis method (dynamic emulation of the scanned object’s instructions in a virtual computer environment see chapter Anti-Virus Principles)

Ø Maximum file size to be scanned - if included files are present in

the displayed page you can also scan their content even before these are downloaded to your computer. However, sc anning of large files takes quite some time and the web page download might be slowed significantly. You can use the slide bar to spec ify the maximum size of a file that is still to be scanned with Web Shield. Even if the downloaded file is bigger than specified, and therefore will not be scanned with Web Shield, you are still protected: in case the file is infected, the Resident Shield will detec t it immediately.

· Instant Messaging - allows you to edit the components settings referring to

instant messaging (e.g. ICQ, MSN Messenger, Yahoo ...) sc anning.

Instant Messaging protection - check this item if you wish that the Web Shield verifies the on-line communic ation is virus free. Provided this option is on, you can further specify which instant messaging application you want to c ontrol - c urrently AVG 9 Internet Security supports the ICQ, MSN, and Yahoo applications.

Page 74

Advanced Settings dialog.

Control buttons

The control buttons available within the Web Shield interface are as follows:

· Save changes - press this button to save and apply any changes made in this

dialog

· Cancel - press this button to return to the default AVG user interfac e (

components overview)

8.11.3. Web Shield Detection

Web Shield scans the content of visited web pages and possible files included in them even before these are displayed in your web browser or downloaded to your computer. If a threat is detected, you will be warned immediately with the following dialog:

The suspec t web page will not be opened, and the threat detection will be logged in the list of Web Shield findings - this overview of detected threats is acc essible via system menu History / Web Shield findings.

Page 75

For each detec ted object the following information is provided:

· Infection- description (possibly even name) of the detected object

· Object - object source (web page)

· Result - action performed with the detected object

· Detection time - date and time the threat was detected and blocked

· Object Type - type of the detected object

· Process - what action was performed to call out the potentially dangerous

object so that it could be detected

In the bottom part of the dialog, under the list, you will find information on total number of detected objects listed above. Further you can export the entire list of detected objects in a file (Export list to file) and delete all entries on detected objects (Empty list). The Refresh list button will update the list of finding detec ted by Web Shield. The Back button switches you back to the default AVG user

interface (components overview).

Page 76

8.12. Resident Shield

8.12.1. Resident Shield Principles

The Resident Shield component gives your computer continuous protection. It scans every single file that is being opened, saved, or copied, and guards the system areas of the computer. When Resident Shield discovers a virus in a file that is accessed, it stops the operation currently being performed and does not allow the virus to activate itself. Normally, you do not even notice the process, as it runs "in the background", and you only get notified when threats are found; at the same time, Resident Shield blocks ac tivation of the threat and removes it. Resident Shield is being loaded in the memory of your computer during system startup.

Warning: Resident Shield is loaded in the memory of your computer during startup, and it is vital that you keep it switched on at all times!

8.12.2. Resident Shield Interface

Besides an overview of the most important statistical data and the information on the component's current status (Resident Shield is active and fully functional), the Resident Shield interfac e offers some elementary component settings options, too. The statistics is as follows:

Page 77

· Resident Shield has been active for - provides the time since the latest

component's launch

· Threats detected and blocked - number of detected infections that were

prevented from being run/opened (if needed, this value can be reset; e.g. for statistic purposes - Reset value)

Basic component configuration

In the bottom part of the dialog window you will find the section called Resident Shield settings where you can edit some basic settings of the component's

functionality (detailed configuration, as with all other c omponents, is available via the Tools/Advanced settings item of the system menu).

The Resident Shield is active option allows you to easily switch on/off resident protection. By default, the function is on. With resident protection on you can further decide how the possibly detec ted infections should be treated (removed):

either automatically (Remove all threats automatically)

or only after the user's approval (Ask me before removing threats)

This choice has no impact on the security level, and it only reflects your preferences.

In both c ases, you can still select whether you want to Scan for tracking cookies. In specific cases you can switch this option on to achieve maximum sec urity levels, however it is switc hed off by default. (cookies = parcels of text sent by a server to a

web browser and then sent back unchanged by the browser each time it accesses that server. HTTP cookies are used for authenticating, tracking, and maintaining specific information about users, such as site preferences or the contents of their electronic shopping carts).

Advanced Settings dialog.

Control buttons

The control buttons available within the Resident Shield interfac e are as follows:

Page 78

· Manage exceptions - opens the Resident Shield - Directory Excludes dialog

where you can define folders that should be left out from the Resident Shield scanning

· Save changes - press this button to save and apply any changes made in this

dialog

· Cancel - press this button to return to the default AVG user interface

(components overview)

8.12.3. Resident Shield Detection

Resident Shield scans files as they are copied, opened or saved. When a virus or any kind of threat is detected, you will be warned immediately via the following dialog:

The dialog provides information on the threat detected, and it invites you to decide what ac tion should be taken now:

· Heal - if a cure is available, AVG will heal the infected file automatically; this

option is the recommended action to be taken

· Move to Vault - the virus will be moved to AVG Virus Vault

· Go to file - this option redirects you to the exact location of the suspicious object (

opens new Windows Explorer window)

· Ignore - we strictly recommend NOT TO use this option unless you have a

very good reason to do so!

The entire overview of all threats detec ted by Resident Shield can be found in the

Page 79

Resident Shield detection dialog accessible from via system menu option History /

Resident Shield findings:

The Resident Shield detection offers an overview of objects that were detected by the Resident Shield, evaluated as dangerous and either cured or moved to the Virus

Vault. For each detected object the following information is provided:

· Infection- description (possibly even name) of the detected object

· Object - object location

· Result - action performed with the detected object

· Detection time - date and time the object was detec ted

· Object Type - type of the detected object

· Process - what action was performed to call out the potentially dangerous

object so that it could be detected

Page 80

objects (Empty list). The Refresh list button will update the list of finding detec ted by Resident Shield. The Back button switc hes you back to the default AVG user

interface (components overview).

8.13. Update Manager

8.13.1. Update Manager Principles

No security software can guarantee true protection from various types of threats unless it is regularly updated! Virus writers are always looking for new flaws that they

can exploit in both software and operating systems. New viruses, new malware, new hacking attacks appear daily. For this reason, software vendors are continually issuing updates and security patches, to fix any security holes that are discovered.

It is crucial to update your AVG regularly!

The Update Manager helps you to control regular updating. Within this component you can schedule automatic downloads of update files either from the Internet, or the local network. Essential virus definition updates should be daily if possible. Less urgent

program updates can be weekly.

Note: Please pay attention to the AVG Updates chapter for more information on update types and levels!

Page 81

8.13.2. Update Manager Interface

The Update Manager's interface displays information about the c omponent's functionality and its c urrent status (Update manager is active.), and provides the relevant statistical data:

· Latest update - specifies when and at what time the database was updated

· Virus database version - defines the number of the latest virus database

version; and this number increases with every virus base update

· Next scheduled update - spec ifies when and at what time the database is

scheduled to be updated again

Basic component configuration

In the bottom part of the dialog you can find the Update Manager settings section where you can perform some changes to the rules of the update process launch. You can define whether you wish the update files to be downloaded automatically (Start automatic updates) or just on demand. By default, the Start automatic updates option is switched on and we recommend to keep it that way! Regular download of the latest update files is crucial for proper functionality of any sec urity software!

Page 82

Further you can define when the update should be launched:

Periodically - define the time interval

At a specific time - define the exact day and time

By default, the update is set for every 4 hours. It is highly recommended to keep this setting unless you have a true reason to change it!

Advanced Settings dialog.

Control buttons

The control buttons available within the Update Manager interface are as follows:

· Update now - launches an immediate update on demand

· Save changes - press this button to save and apply any changes made in this

dialog

· Cancel - press this button to return to the default AVG user interface

(components overview)

8.14. AVG Security Toolbar

AVG Security Toolbar is a new tool which works together with the Link Scanner component and checks search results of the supported Internet search engines ( Yahoo!, Google, Bing, Altavista, Baidu).

If you select to install the toolbar during the installation of AVG 9 Internet Security, it will be added into your web browser automatically.

AVG Security Toolbar can be used to control Link Scanner functions and to adjust its behavior.

Note: In case you are using some alternative Internet browser (e.g Avant Browser) you can meet unexpected behavior.

Page 83

8.14.1. AVG Security Toolbar Interface

The AVG Security Toolbar is designed to work with MS Internet Explorer (version

6.0 or greater) and Mozilla Firefox (version 2.0 or greater).

Note: AVG Security Toolbar is not intended for server platforms!

Once you have decided you want to install AVG Security Toolbar (during the AVG

installation process you were asked to decide whether or not you wish to install the

component), the component will be located in your web browser just under the

address bar:

The AVG Security Toolbar consists of the following:

· AVG logo - provides ac cess to general toolbar items. Click the logo button to

get redirected to AVG website (http://www.avg.c om/). Clicking the pointer next to the AVG icon will open the following:

Toolbar Info - link to the AVG Security Toolbar home page with detailed information on the toolbar's protection

Launch AVG 9.0 - opens the AVG user interface

Options - opens a c onfiguration dialog where you can adjust your AVG Security Toolbar settings to suit your needs - see the following chapter

AVG Security Toolbar Options

Delete History - allows you to Delete complete history of AVG Security Toolbar, or to Delete search history, Delete browser history, Delete downloaded history and Delete c ookies.

Update - checks for new updates for your AVG Security Toolbar

Help - provides options to open the help file, contact AVG technical

support, submit product feedback, or view the details of the c urrent

version of the toolbar

· Search box - Enter a word or phrase into the search box. Press Search to

Page 84

start searchin using the specified search engine (you can specify the desired search engine to be used within the AVG Security Toolbar Advanced Options, and you c an choose either Yahoo!, Wikipedia, Baidu, WebHledani, or Yandex),

no matter what page is currently displayed. The search box also lists your search history. Searches done through the search box are analyzed using the

AVG Search-Shield protection.

· Total Protection - this button appears optionally as either Total Protection /

Limited Protection / No Protection depending on the AVG Link Scanner

configuration

· AVG Info - provides links to important security information located on AVG website (

http://www.avg.c om/).

8.14.2. AVG Security Toolbar Options

All AVG Security Toolbar parameters configuration is ac cessible directly within the AVG Security Toolbar panel. The editing interface opens via the AVG / Options toolbar menu item in a new dialog called Toolbar Options divided into three sections:

· General

On the tab you can specify button that should be displayed / hidden within the AVG Security Toolbar panel:

AVG News Button - this option displays the AVG News button. Pressing

Page 85

the button within the AVG Security Toolbar panel you can open a drop- down menu with links to up-to-date AVG related press releases.

AVG Info Button - the AVG Info button opens the menu with the following options:

§ Toolbar Info - opens the AVG Security Toolbar product page with detailed information on the component

§ About Threats - opens the AVG virus lab web page with information on current threats, virus removal recommendations, FAQ list, etc.

§ AVG News - opens the web page providing the latest AVG related press release

§ Current Threat Level - opens the virus lab web page with a graphical display of the current threat level on the web

§ Virus Encyclopedia - opens the Virus Encyc lopedia page where you can search the specific viruses by name and get detailed information on eac h one

Delete History Button - this button allows you to Delete complete history, or Delete search history, Delete browser history, Delete download history, or Delete c ookies directly from the AVG Security

Toolbar panel.

· Security

Page 86

The Security tab is divided into two sections, AVG Browser Security and Ratings, where you can mark specific c heck-boxes to assign AVG Security Toolbar functionality you want to use:

AVG Browser Security - check this item to activate or switc h-off the

AVG Search-Shield and/or AVG Active Surf-Shield service

Ratings - select graphical symbols used for search results ratings by the AVG Search-Shield component that you want to use:

§ page is safe

§ page is somewhat suspicious

§ page containing links to positively dangerous pages

§ page contains active threats

§ page is not acc essible, and so could not be scanned

Mark the respec tive option to confirm you want to be informed about this specific threat level. However, display of the red mark assigned to

Page 87

pages c ontaining active and dangerous threats cannot be switchedoff. Again, it is recommended to keep the default configuration set

by the program vendor unless you have a real reason to change it.

· Advanced Options

On the Advanced Options tab first select what search engine you want to use as default. You have the choice of Yahoo!, Baidu, WebHledani, and Yandex. Having changed the default search engine, please restart your internet browser for the c hange to take effect.

Further, you can activate or switch-off further specific AVG Security Toolbar settings:

Set and keep Yahoo! as the search provider for Address bar - (off by default) - if marked, this option allows you to type a search keyword

directly into the address bar into your Internet browser and the Yahoo! service will be used automatically to search for relevant websites.

Let AVG make suggestion on browser navigation errors (404/DNS)

- (on by default) - if when searching the web you run into a non-existing page, or a page that c annot be displayed (404 error), you will be

Page 88

automatically redirected to a web page that allows you to select from an overview of alternative topic-related pages.

Set and keep Yahoo! as the search provider for your browser - (off by default) - Yahoo! is the default search engine for web search within

AVG Security Toolbar, and activating this option it can also become your web browser default search engine.

Re-display the AVG Security Toolbar when hidden (weekly) - (on by default) - this option is active by default and when your AVG Security

Toolbar gets hidden accidentally, it will re-display it again within one week term.

Page 89

9. AVG Advanced Settings

The advanced c onfiguration dialog of AVG 9 Internet Security opens in a new window named Advanced AVG Settings. The window is divided into two sections: the left part offers a tree-arranged navigation to the program configuration options. Select the component you want to change the configuration of (or its specific part) to open the editing dialog in the right-hand sec tion of the window.

9.1. Appearance

The first item of the navigation tree, Appearance, refers to the general settings of the AVG user interface and a few elementary options of the application's behavior:

Language selection

In the Language selection section you can chose your desired language from the drop-down menu; the language will then be used for the entire AVG user interface. The drop-down menu only offers those languages you have previously selected to be installed during the installation process (see chapter Custom Installation - Component

Page 90

Selection). However, to finish switching the application to another language you have

to restart the user interface; follow these steps:

· Select the desired language of the application and confirm your selection by

pressing the Apply button (right-hand bottom corner)

· Press the OK button confirm

· New dialog window pops-up informing you the language change of AVG user

interface requires the application restart:

Balloon tray notifications

Within this section you can suppress display of system tray balloon notifications on the status of the application. By default, the balloon notifications are allowed to be displayed, and it is recommended to keep this configuration! The balloon notifications typically inform on some AVG component's status change, and you should pay attention to them!

However, if for some reason you dec ide you do not wish these notifications to be displayed, or you would like only certain notifications (related to a specific AVG component) to be displayed, you can define and spec ify your preferences by checking/unchec king the following options:

· Display system tray notifications - by default, this item is checked (

switc hed on), and notifications are displayed. Uncheck this item to completely turn off the display of all balloon notifications. When turned on, you can further select what specific notifications should be displayed:

Display tray notifications about update - decide whether information

regarding AVG update process launch, progress, and finalization should be displayed;

Display components state change notifications - decide whether information regarding component's activity/inactivity or its possible

Page 91

problem should be displayed. When reporting a component's fault status, this option equals to the informative function of the system tray icon (color changing) reporting a problem in any AVG component;

Display Resident Shield related tray notifications - decide whether information regarding file saving, copying, and opening processes should be displayed or suppressed (this configuration only demonstrates if the Resident Shield Auto-heal option is on);

Display tray notifications about scanning - decide whether

information upon automatic launch of the scheduled scan, its progress and results should be displayed;

Display Firewall related tray notifications - decide whether information concerning Firewall status and processes, e.g. component's activation/deactivation warnings, possible traffic blocking etc . should be displayed;

Display E-mail Scanner related tray notifications - decide whether information upon sc anning of all incoming and outgoing e-mail messages should be displayed.

Gaming mode

This AVG function is designed for full-screen applications where possible AVG information ballons (displayed e.g. when a sc heduled scan is started) would be disturbing (they c ould minimize the applic ation or corrupt its graphics). To avoid this situation, keep the c heck box for the Enable gaming mode when a full-screen application is executed option marked (default setting).

9.2. Sounds

Within the Sounds dialog you can specify whether you want to be informed about specific AVG actions by a sound notification. If so, check the Enable sound events option (off by default) to activate the list of AVG actions:

Page 92

Then, select the respec tive event from the list and browse (Browse) your disk for an appropriate sound you want to assign to this event. To listen to the selected sound, highlight the event in the list and push the Play button. Use the Delete button to remove the sound assigned to a spec ific event.

Note: Only *.wav sounds are supported!

Page 93

9.3. Ignore Faulty Conditions

In the Ignore faulty components conditions dialog you can tick those c omponents that you do not want to get informed about:

By default, no component is selected in this list. It means that if any component get to an error status, you will be informed about it immediately via:

· system tray icon - while all parts of AVG are working properly, the icon is

displayed in four colors; however, if an error occurs, the icon appears with a yellow exclamation mark,

· text description of the existing problem in the Security Status Info section of

the AVG main window

There might be a situation that for some reason you need to switc h a c omponent off temporarily (this is not recommended, you should try to keep all components permanently on and in default configuration, but it may be happen). In that case the system tray icon automatically reports the component's error status. However, in this very case we cannot talk about an ac tual error since you have deliberately induced it

Page 94

yourself, and you are aware of the potential risk. At the same time, once being displayed in grey color, the icon cannot actually report any possible further error that might appear.

For this situation, within the above dialog you can select components that may be in an error state (or switched off) and you do not wish to get informed about it. The same option of Ignoring component state is also available for specific components directly from the components overview in the AVG main window.

9.4. Identity Protection

9.4.1. Identity Protection Settings

The Identity Protection settings dialog allows you to switch on/off the elementary features of the Identity Protection component:

Page 95

Identity Protection is active (on by default) – uncheck to turn off the Identity Protection component.

We strongly recommend not to do this unless you have to!

When the Identity Protection is activated, you can specify what to do when a threat is detected:

· Always prompt (on by default) - when a threat is detected, you will be asked

whether it should be moved to quarantine to make sure no applications you want to run are removed.

· Automatically quarantine detected threats - mark this check box to define

you want have all possibly detected threats moved to the safe space of AVG

Virus Vault immediately. Keeping the default settings, when a threat is

detected, you will be asked whether it should be moved to quarantine to make sure no applications you want to run are removed.

· Automatically quarantine known threats - keep this item marked if you wish

all applications detected as possible malware to be automatically and immediately moved to AVG Virus Vault.

Further you can assign specific items to optionally activate more Identity Protection functionality:

· Automatically submit to AVG Virus Lab - (on by default): Please keep this

check-box marked to feed the database collecting information on malicious activity on the web and to help us identify new threats.

· Prompt to save your work before removal - (on by default) - keep this item

checked if you wish to be warn before the application detected as possible malware gets removed to quarantine. In case you just work with the application, your project might be lost and you need to save it first. By default, this item is on and we strongly recommend to keep it so.

· Show progress of malware removal - (on by default) - with this item on,

once a potential malware is detected, a new dialog opens to display progress of the malware being removed to quarantine.

· Show final malware removal details - (on by default) - with this item on,

Identity Protection displays detailed information on each object moved to

quarantine (severity level, location, etc.).

Page 96

9.4.2. Allowed List

If within the Identity Protection settings dialog you decided to keep the Automatically quarantine detected threats item unchecked, every time a possibly

dangerous malware is detected, you will be asked whether it should be removed. If then you assign the suspicious application (detected based on its behavior) as safe, and you c onfirm it should be kept on your computer, the application will be added to so c alled Allowed list, and it will not be reported as potentially dangerous again:

The Allowed list provides the following information on each applic ation:

· Level - graphical identification of the respective process severity on a four-

levels scale from less important ( ) up to critical ( )

· Process path - path to the application's (process) executable file location

· Date allowed - date when you manually assigned the application as safe

Control buttons

Page 97

The control buttons available within the Allowed list dialog are as follows:

· Add - press this button to add a new application to the allowed list. The

following dialog pops-up:

File - type the full path to the file (application) that you want to mark as an exception

Checksum - displays the unique 'signature' of the chosen file. This checksum is an automatically generated string of characters, which allows AVG to unequivocally distinguish the chosen file from other files. The chec ksum is generated and displayed after successful addition of the file.

Any location - do not use full path - if you want to define this file as an exception only for the spec ific location, then leave this c heckbox unchec ked

· Remove - press to remove the selected application from the list

· Remove all - press to remove all listed applications

Page 98

9.5. Virus Vault

The Virus Vault maintenance dialog allows you to define several parameters regarding the administration of objects stored in the Virus Vault:

· Limit Virus Vault size - use the slider to set up the maximum size of the Virus

Vault. The size is specified proportionally compared to the size of your local

disk.

· Automatic file deletion - in this section define the maximum length of time

that objects should be stored in the Virus Vault (Delete files older than ...

days), and the maximum number of files to be stored in the Virus Vault ( Maximum number of files to be stored)

9.6. PUP Exceptions

AVG 9 Internet Security is able to analyze and detect executable applications or DLL libraries that could be potentially unwanted within the system. In some cases the user may wish to keep certain unwanted programs on the computer (programs that were installed on purpose). Some programs, especially free ones, include adware. Such

Page 99

adware might be detec ted and reported by AVG as a potentially unwanted program . If you wish to keep such a program on your computer, you can define it as a

potentially unwanted program exception:

The Potentially Unwanted Programs Exceptions dialog displays a list of already defined and currently valid exceptions from potentially unwanted programs. You can

edit the list, delete existing items, or add new exceptions. The following information can be found in the list for every single exception:

· File - provides the name of the respective application

· File Path - shows the way to the application's location

· Checksum - displays the unique 'signature' of the chosen file. This checksum

is an automatically generated string of c haracters, which allows AVG to unequivocally distinguish the c hosen file from other files. The checksum is generated and displayed after successful addition of the file.

Control buttons

Page 100

· Edit - opens an editing dialog (identical with the dialog for a new exception

definition, see below) of an already defined exception where you can change

the exception's parameters

· Remove - deletes the selected item from the list of exceptions

· Add exception - open an editing dialog where you can define parameters of

the new exception to be c reated:

File - type the full path to the file that you want to mark as an exception

File Info - displays any additional information available about the file (

license/version information etc.)

Any location - do not use full path - if you want to define this file as an exception only for the specific location, then leave this checkbox unchec ked

9.7. Anti-Spam