Sandboxing in Avast Antivirus
Avast provides a free antivirus program for personal use, as well as premium versions with additional features or for commercial use. Avast Free Antivirus offers only auto sandboxing, while Avast Pro Antivirus and Avast Internet Security offer both auto and manual sandboxing.
Like CIS, each Avast product automatically runs suspicious programs in the virtual environment; by default, the utility will prompt you before doing so. Within the Avast settings, you can specify programs you want to exclude from being sandboxed automatically.
Manually running programs inside the sandbox with the Avast premium products is similar to using CIS. You can select a program to run via the main Avast program window (under the Additional Protection, Sandbox tab).
If you prefer, you can right-click a program anywhere in Windows and select Run in Sandbox or Always Run in Sandbox. Unlike CIS, Avast gives you the sandboxing options even when you right-click a shortcut rather than just the executable program file itself. Additionally, you can specify that a program always run sandboxed even when you open it normally. Avast also gives you more sandboxing settings to customize, such as limiting which sandboxed applications can access the Internet.
Avast Free Antivirus is great for automatic sandboxing, but if you want manual sandboxing or Web browsing protection, consider upgrading to the Avast paid products or using another utility. The premium editions of Avast are good for manual sandboxing, but you still might want to try another application, such as Sandboxie, for advanced customization and use.
Sandboxie is a shareware utility offered free for personal use, though if you don't pay for it after 30 days you'll get nag screens. It allows you to open your Web browser, email client, and any other program inside customizable sandboxes.
Sandboxie lets you create multiple highly customizable sandboxes, each running in its own virtual environment and retaining its own data. For example, you might use one sandbox for running questionable programs and browsing on potentially dangerous sites, and another sandbox for performing sensitive activities such as online banking or shopping.
Sandboxie will create one default sandbox for you. To add more, you open Sandbox Control, click Sandbox, and select Create New Sandbox.
Unlike the sandboxing features of some antivirus programs, Sandboxie doesn't automatically sandbox unknown programs. But it does provide several ways to open programs within the sandbox.
- Open your Web browser: Click the Sandboxed Web Browser shortcut on your desktop or Start menu to open your default browser within a sandbox.
- Open any program via Sandboxie: Click Start, All Programs, Sandboxie, Run any program Sandboxed. Select the sandbox to launch in, and then browse for the program.
- Open any program via Windows: Anywhere in Windows, right-click a program and select Run Sandboxed.
- Open items from the Start menu: Click Start, All Programs, Sandboxie, Sandboxie Start Menu, and then select the sandbox to launch in. Choose a program from the Sandboxie list of your Start menu desktop shortcuts.
The registered version of Sandboxie also lets you specify any programs that should be sandboxed automatically, even when you open them normally: To set this up, open Sandboxie Control, right-click the desired sandbox, select Sandbox Settings, choose Program Start, and then select Forced Programs.
By default each sandbox retains any data associated with the programs you run inside the sandbox. For example, if you run a Web browser, it saves your browsing history and temporary Internet files. However, you can delete the sandbox data contents at any time: Open Sandboxie Control, right-click the desired sandbox, and select Delete Contents.
When you download files within a sandboxed browser or save files from any sandboxed program, Sandboxie prompts you to recover them. This action lets you save the items outside of the sandbox onto your regular drives. If you choose not to recover files when prompted, you can always view and recover them later: Open Sandboxie Control, right-click the desired sandbox, and select Quick Recovery.
Sandboxie is great if you plan on using sandboxing on a daily basis, or even just occasionally when you're Web browsing. But for automatic protection against possible malware, consider using an antivirus suite that includes sandboxing, such as Comodo Internet Security or Avast.
Eric Geier is a freelance tech writer; follow him on Twitter to keep up with his projects. He's also the founder of NoWiresSecurity, which helps homes and businesses easily protect their Wi-Fi networks with enterprise (802.1x) security.