Files Protection

Protects the files on the file system. This protection has two components:

  • Anti-Malware Mode - Protection of your network from all kinds of malware threats, ranging from worms and Trojans to adware and keystroke loggers. Use Anti-Malware to manage the detection and treatment of malware on your endpoint computers.

    There are three configuration options for this protection:

    • Prevent - Protects your files from malware threats.

    • Detect - Detects the threats, so they appear in the logs, although the virus or malware are still executable. Use this mode with caution.

    • Off - No protection from malware.

    Notes -

    • Starting from the Endpoint Security Client E83.20, Check Point certified the E2 client version (the Anti-Malware engine is DHS compliant) for Cloud deployments.

    • The E1 Anti-Malware blade can scan these archive file formats:

      • ZIP

      • Z

      • LZIP

      • 7Z

      • RAR

      • ISO

      • CAB

      • JAR

      • BZIP2

      • GZIP

      • DMG

      • XAR

      • TAR

      • ACE

    • The E2 DHS Anti-Malware blade can scan these archive file formats:

      • ZIP

      • Z

      • 7Z

      • RAR

      • ISO

      • CAB

      • JAR

      • BZIP2

      • GZIP

      • DMG

      • XAR

      • TAR

      • ACE

  • Files Threat Emulation Mode - Emulation of files on the system.

    There are three configuration options for this protection:

    • Prevent - Detects a malicious file, logs the event and deletes the file.

    • Detect - Detects a malicious file and logs the event.

    • Off - Files Threat Emulation mode is off. Does not run the Threat Emulation on the file.

This is supported with Endpoint Security client version E86.80 and higher.