FortiGate Version 3.0 MR4 Administration Guide
346 01-30004-0203-20070102
Config AntiVirus
Viewing the grayware list
Grayware programs are unsolicited commercial software programs that get
installed on computers, often without the user’s consent or knowledge. Grayware
programs are generally considered an annoyance, but these programs can cause
system performance problems or be used for malicious ends.
The FortiGate unit scans for known grayware executable programs in each
enabled category. The category list and contents are added or updated whenever
the FortiGate unit receives a virus update package. New categories may be added
at any time and will be loaded with the virus updates. By default, all new
categories are disabled. Grayware is enabled in a protection profile when Virus
Scan is enabled.
Grayware categories are populated with known executable files. Each time the
FortiGate unit receives a virus and attack definitions update, the grayware
categories and contents are updated.
To view the grayware list, go to AntiVirus > Config > Grayware.
Figure 229:Sample grayware options
Enabling a grayware category blocks all files listed in the category. The categories
may change or expand when the FortiGate unit receives updates. You can choose
to enable the following grayware categories:
Note: If virtual domains are enabled on the FortiGate unit, antivirus features are configured
globally. To access these features, select Global Configuration on the main menu.
Adware Block adware programs. Adware is usually embedded in freeware
programs and causes ads to pop up whenever the program is
opened or used.
BHO Block browser helper objects. BHOs are DLL files that are often
installed as part of a software package so the software can control
the behavior of Internet Explorer 4.x and later. Not all BHOs are
malicious, but the potential exists to track surfing habits and gather
other information.
Dial Block dialer programs. Dialers allow others to use the PC modem
to call premium numbers or make long distance calls.