CONTACTING THE TECHNICAL SUPPORT SERVICE
You can receive information about the application from the specialists of the Technical Support Service over the phone or via Internet. While contacting the Technical Support Service, please provide information about your license for the Kaspersky Lab's product that is used with Kaspersky Administration Kit. Experts at Technical Support Service will answer your questions pertaining to the installation and use of the application that are not covered in help topics. If your computer has been infected, they will assist you in neutralizing the consequences of malware activity. Please read the support rules before contacting the Technical Support service http://support.kaspersky.com/support/rules.
Email request to the Technical Support Service
You can ask your question to the Technical Support Service specialists by filling out a Helpdesk web form at http://support.kaspersky.com/helpdesk.html. You can send your inquiry in Russian, English, German, French or Spanish. To send an email request, you should specify your customer ID received during registration at the Technical Support Service web site, and your password in it. If you are not yet a registered user of Kaspersky Lab's applications you can fill out a registration form (https://support.kaspersky.com/en/personalcabinet/registration/form/). During registration enter the activation code for your application or the license key serial number. The Technical Support service will respond to your request in your Personal Cabinet https://support.kaspersky.com/en/PersonalCabinet), and to the email address you specified in your request. Please describe your problem with all possible details in the query web form. Specify in the mandatory fields: Request type. Most frequent user questions are arranged in separate topics, for example, "Problems with Setup / Remove application" or "Virus disinfection". If you find no suitable section, select "General question".
Application name and version number. Request description. Please describe your problem with all details. Customer ID and password. Enter the customer ID and password received during registration at the Technical Support Service web site. Email address. The experts of the Technical Support Service will send their reply to your inquiry to that address.
Technical support over the phone
If an urgent problem has occurred, you can always call the Technical Support Service in your city. Before you contact the specialists of the Russian (http://support.kaspersky.ru/support/support_local) or international (http://support.kaspersky.com/support/international) Technical Support, please collect information (http://support.kaspersky.com/support/details) about your computer. It will help our experts assist you with maximum efficiency.

APPLICATION STRUCTURE

The Kaspersky Administration Kit consists of three major components: Administration Server performs the functions of centralized storage of information about Kaspersky Lab's applications installed in the corporate network and about the management of these applications. Network Agent coordinates interaction between the Administration Server and Kaspersky Lab's applications installed on a specific network node (a workstation or a server). This component supports all Windows applications included in Kaspersky Open Space Security products. Separate versions of the Network Agent exist for Kaspersky Lab's Novell and Unix applications. The Administration Console provides a user interface to the administration services of the Administration Server and Network Agent. The management module is implemented as an extension of the Microsoft Management Console (MMC). The Administration Console allows connection to the remote Administration Server via Internet.
HARDWARE AND SOFTWARE REQUIREMENTS

Administration Server

Software requirements: Microsoft Data Access Components (MDAC) 2.8 or higher. MSDE 2000 with installed Service Pack 3, or Microsoft SQL Server 2000 with installed Service Pack 3 or higher, or MySQL Enterprise 5.0.32 and 5.0.70, or Microsoft SQL 2005 or higher; or Microsoft SQL Express 2005 or higher, Microsoft SQL Express 2008, Microsoft SQL 2008. It is recommended to use Microsoft SQL 2005 with Service Pack 2, Microsoft SQL Express 2005 with Service Pack 2 and later versions. Microsoft Windows 2000 with installed Service Pack 4 or higher; Microsoft Windows XP Professional with installed Service Pack 2 or higher; Microsoft Windows XP Professional x64 or higher; Microsoft Windows
Server 2003 or higher; Microsoft Windows Server 2003 x64 or higher; Microsoft Windows Vista with installed Service Pack 1 or higher, Microsoft Windows Vista x64 with installed Service Pack 1 and all current updates, for Microsoft Windows Vista x64 the Microsoft Windows Installer 4.5 should be installed; Microsoft Windows Server 2008; Microsoft Windows Server 2008 deployed in the Server Core mode; Microsoft Windows Server 2008 x64 with installed Service Pack 1 and all current updates, for Microsoft Windows Server 2008 x64 the Microsoft Windows Installer 4.5 should be installed; Microsoft Windows 7. When using Microsoft Windows 2000 with installed Service Pack 4, it is necessary to install the following updates for Microsoft Windows: 1) Update Rollup 1 for Windows 2000 SP4 (KB891861); 2) Security Update for Windows 2000 (KB835732). Hardware requirements: Intel Pentium III 800 MHz or higher. 256 MB of RAM. 1GB of available disk space.

Administration Console

Software requirements: Microsoft Windows 2000 with installed Service Pack 4 or higher; Microsoft Windows XP Professional with installed Service Pack 2 or higher; Microsoft Windows XP Home Edition with installed Service Pack 2 or higher; Microsoft Windows XP Professional x64 or higher; Microsoft Windows Server 2003 or higher; Microsoft Windows Server 2003 x64 or higher; Microsoft Windows Vista with installed Service Pack 1 or higher, Microsoft Windows Vista x64, Microsoft Windows Vista x64 with installed Service Pack 1 and all current updates, for Microsoft Windows Vista x64 the Microsoft Windows Installer 4.5 should be installed; Microsoft Windows Server 2008; Microsoft Windows Server 2008 x64 with installed Service Pack 1 and all current updates, for Microsoft Windows Server 2008 x64 the Microsoft Windows Installer 4.5 should be installed; Microsoft Windows 7. Microsoft Management Console 1.2 or higher. Work with Microsoft Windows 2000 requires installed Microsoft Internet Explorer 6.0. Work with Microsoft Windows 7 E Edition and Microsoft Windows 7 N Edition requires installed Microsoft Internet Explorer 8.0 or higher. Hardware requirements: Intel Pentium III 800 MHz or higher. 256 MB of RAM. 70 MB of available disk space.

Files of policies and groups tasks are distributed using multi-address IP delivery. Use Wake On LAN functionality is also available for clients in subnetworks other than the Administration Server subnet in the event of manual task launch. Restart settings for client computers can be specified in the properties of a remote deployment task. The algorithm used for restriction of the number of notifications sent within specified time unit has been modified; now the restrictions are calculated independently for each event type. Functionality for searching for groups and slave Administration Servers by Server hierarchy has been added. Statistics of Update Agents has been extended. The task for removal of external applications now allows removing several applications at once. Utility has been developed for preparation of computers included in a workgroup for remote deployment. Functionality for retrieval of updates necessary for an application immediately after the creation of its installation package has been implemented. Opportunity to take into account the applications connected to slave Administration Servers while downloading the required updates has been implemented. Classification of possible errors returned by the application deployment subsystem has been introduced and guidelines for troubleshooting of typical problems have been added. Functionality for automatic application of patches for the modules of the administration system components has been added.

BASIC CONCEPTS

This section explains the basic concepts used in Kaspersky Administration Kit. Definitions of these concepts and some terms are listed in the Glossary.
Administration Server. Administration groups.... 14 Administration Server Hierarchy.... 15 Client computer. Group..... 15 Administrator's workstation..... 16 Application configuration plug-in.... 16 Policies, application settings and tasks..... 17 Relation between policies and local application settings.... 18
ADMINISTRATION SERVER. ADMINISTRATION GROUPS
Components of Kaspersky Administration Kit allow remote management of Kaspersky Lab's applications within a corporate network. Computers with the installed Administration Server component will be further referred to as Administration Servers (or Servers). The whole variety of computers in the corporate network can be subdivided into groups arranged into a certain hierarchical structure. We shall refer to such groups as administration groups. The structure of administration groups is displayed in the console tree within the Administration Server node. Administration Server is installed on host computer as a service with the following set of attributes: under the name of Kaspersky Administration Server; using automatic startup type when the operating system starts; using to log on the Local System account or user account selected during component installation. Functions performed by an Administration Server or, more specifically, by the Administration Server component installed on it are as follows: storage of the administration groups structure; storage of configuration data copies for client computers; organization of repositories for distribution packages of Kaspersky Lab's applications; remote deployment and removal of applications from computers; updating databases and application modules; management of policies and tasks on client computers;

The settings that are not "locked" in the inherited policy, can be modified (see section "Relation between policies and local application settings" on page 18) in the slave Server policies (the icon is ). If a parameter is not "locked" in the slave Server policy, it can also be redefined (see section "Relation between policies and local application settings" on page 18) in the application and task settings. The icon will be displayed next to the names of group tasks inherited from the master Administration Server ).
(the regular task icon is
Deployment tasks for specific computers cannot be transferred to slave Administration Servers. Transfer of group tasks is configured in task properties. Updating of the client computers connected to a slave Administration Server (see section "Updating of slave Servers and their client computers" on page 63) can be configured to launch the updates download task automatically after the master Server receives updates. Its successful completion will trigger the launch of application update tasks on client computers of the slave Server.
REMOTE MANAGEMENT OF APPLICATIONS
Kaspersky Administration Kit supports management only for Kaspersky Lab's applications that include a specialized component application management plug-in. The management of applications is performed in two ways: management of application settings through definition of policies (see section "Managing policies" on page 48) or editing of the local settings (see section "Local application settings" on page 52) of corresponding applications; creation and launch of tasks (see section "Managing the operation of applications" on page 52).
Managing policies..... 48 Local application settings.... 52 Managing the operation of applications..... 52

MANAGING POLICIES

An application policy can only be created if the management plug-in for that application is installed on the administrator's workstation. To create a policy, use the Create a new policy link located in the task pane of the group for which the policy is being created. When creating a policy, you can specify a minimum set of parameters required for application operation. All other settings are set to the default values applied during the local installation of the application. For quick creation of policies for individual applications use the links Create a new Kaspersky Anti-Virus for Windows Workstations policy and Create a new Kaspersky Anti-Virus for Windows Servers policy in the task pane. Policies created for applications within a group appear in the corresponding folder of the console tree. Icons reflecting the status of policies are displayed next to their names. The icons and corresponding statuses are listed in the Reference Guide.

Administration Server tasks are stored in the Kaspersky Administration Kit tasks container. To create a new Administration Server task, open in the console tree the context menu of the Kaspersky Administration Kit tasks node and use the command Create / Task.

Figure 20. Group tasks

You can view the list of local tasks on a client computer in its properties window. To do that, perform the following actions: 1. 2. 3. In the console tree, open the Client computers folder of the group including the necessary computer. Select a computer in the list displayed in the results pane. Open the computer properties window on the Tasks tab that contains the list of local tasks for the selected computer. To do that, use the Tasks link to the left of the computers list in the results pane or the Tasks item of the context menu for the selected computer.
Exchange of information about the tasks between a local application and the database of Kaspersky Administration Kit occurs at the connection of the Network Agent with Server. During the procedure information about local tasks arrives in the Administration Server database. You can edit the settings of tasks, monitor their execution, copy, export and import tasks from one group to another and also delete them using the context menu commands and the task pane links. Application settings used while performing tasks on each client computer are defined in accordance with the group policy (see section "Relation between policies and local application settings" on page 18), task settings and the parameters of that application on the client computer.
Most of the settings are determined by the policy for the application performing a specific task. If modification of some values is locked in policy, they cannot be edited in task settings (see the figure below).
Figure 21. Task settings locked in a policy
However, some settings are individual for every task: task launch schedule, the account used to run a task, scan scope for on-demand scanning tasks, etc. Values for those settings are specified for every task and they can be changed after task creation (see the figure below).

The results of group task distribution to slave Administration Servers are displayed in the Task results window within the properties window of the Administration Server group task. Similarly, you can view the results of group task distribution to client computers in the properties window of the corresponding slave Administration Server group task having connected to it first.
UPDATING THE DATABASE AND PROGRAM MODULES
Timely updates of the application databases used while scanning infected objects, installation of critical patches for application modules and their regular updating are essential factors affecting the reliability of anti-virus protection systems. Updates to the application databases on Kaspersky Lab's update servers are released every hour. You are advised to update the databases with the same frequency and immediately install all critical updates to program modules. To update the databases and program modules of the applications managed using Kaspersky Administration Kit, you should create the task of downloading of updates to the repository. During its performance the server will retrieve updates to databases and program modules from the update source in accordance with the task settings. Downloaded data are stored on Administration Server in the Updates shared folder and can be distributed to client computers and slave Administration Server automatically immediately after update completion. The shared folder is created during Administration Server setup. By default, the shared folder is KLShare subfolder in the program folder selected during installation of the Administration Server component (<Drive>:\Program Files\Kaspersky Lab\ Kaspersky Administration Kit). Updates are distributed to client computers using the update tasks for applications. Slave Servers are updated using the Administration Server update download tasks. Those tasks can run automatically immediately after the master Server downloads updates irrespectively of the schedule in task settings. Updates can be tested for correct functioning before their distribution to client computers. The application includes updates testing functionality for that purpose. Updates testing implies that updates are distributed first to a set of test computers and then, if no errors occur, to other client computers.
Downloading of updates to the Administration Server repository... 59 Distribution of updates to client computers..... 62 Updating of slave Servers and their client computers.... 63 Distribution of updates via Update Agents.... 64

Others: Report on application registry contains information about all applications installed on the client computers of the administration groups. Report on administrator notes displays a list of administrator notes saved in a group within the specified time interval. You can generate reports using predefined templates. Most of the default templates can be found in the Reports and notifications node of the console tree (see the figure below). You can also select some additional templates in the report generation wizard.
Figure 39. Viewing the list of reports
There is a number of standard templates corresponding to the types of reports about the anti-virus protection status: You can create new templates, delete the existing ones, view and edit their settings. To view reports, use the results pane of the node corresponding to the template necessary for report generation or the default web browser. When the hierarchical structure of Administration Servers is used, you can create summary reports including information from slave Administration Servers. If some Administration Servers are not accessible, information about that will be included in the report.
To save a report, select it in the console tree, open its context menu and select Save. Use the started wizard screen to specify the folder for report files and select from the dropdown list the format in which the report will be saved. Click the Finish button.

DETECTING COMPUTERS

To view information about an individual computer or a group of computers, you can use the computer search function based on the specified criteria. While searching for computers, the program can use information from slave Administration Servers. Search results can be saved to a text file. The search feature allows finding: client computers in administration groups of an Administration Server and its slave Servers; hosts that are not added to administration groups, but included in computer networks where an Administration Server and its slave Servers are installed; all computers in the networks where Administration Server and its slave Servers are installed regardless of their membership in administration groups.
To find computers, in the console tree, use the Search context menu command of the Administration Server node, of the Unassigned computers folder, of the Managed computers folder, or of the nested administration groups' folders (see the figure below). For that purpose you can also use the task pane links: Find unassigned computers for the Unassigned computers node and Find managed computers for the folders in the Managed computers node.

Figure 40. Detecting computers. The Network tab
Depending on the node being searched, it will return the following results: In the Managed computers node or any of its subfolders search for client computers connected to the Administration Server associated with the selected group. Search will be performed using the information about the structure of Administration Server folders and its slave Servers (if the Include data from slave Servers (down to level) box is checked in the search settings). In the Unassigned computers node - search for computers not included in administration groups within the network where the Administration Server is installed.
Search will be performed using the data collected by the Administration Server and slave Servers (if the Include data from slave Servers (down to level) box is checked in the search settings) while polling the computer network. The search will list computers included in the Unassigned computers node selected for the search, and in the Unassigned computers node on all slave Servers (if the Include data from slave Servers (down to level) box is checked in the search settings). Administration Server <server name> full search for computers. Search will be performed based on information about the structure of administration groups and the data collected by the Administration Server and slave Servers (if the Include data from slave Servers (down to level) box is checked in the search settings) while polling the computer network. The search will return: client computers included in the administration groups of the selected Administration Server and all its slave Servers (if the Include data from slave Servers (down to level) box is checked in the search settings); computers included in the Unassigned computers group of the selected Administration Server and the Unassigned computers groups of all its slave Servers (if the Include data from slave Servers (down to level) box is checked in the search settings). To find, save and display information about computers in an individual folder of the console tree, use the feature for creation of computer selections.

COMPUTER SELECTIONS

For more flexible control over the status of client computers, information about them based on various criteria is displayed in a separate node of the console tree Event and computer selections in the Computer selections folder (see the figure below).
Figure 41. Computer selections
Status diagnostics of client computers is performed based on the data describing the anti-virus protection status on a host and information about its network activity. Diagnostics settings can be configured individually for every administration group on the Computer status tab (see the figure below).

In the in (min) field time during which the specified number of viruses was detected.
Figure 44. Viewing the Administration Server properties. The Virus outbreak tab
The Virus outbreak event is generated based on the Detection of Viruses, Worms, Trojans, and Malware and Infected objects detected events in the operation of anti-virus applications. Therefore, for successful recognition of a virus outbreak all information about those events should be stored on Administration Server. To do that, appropriate settings must be selected in the policies for all anti-virus applications. In the properties window of the Detection of Viruses, Worms, Trojans, and Malware and Infected objects detected events the On Administration Server for (days) box must be checked.
Figure 45. Configuring event registration
The procedure for notification about the Virus outbreak event is defined on the Administration Server within the Notification tab of the event properties (see the figure below). Automatic change of the current policy for applications can be configured as response to a virus outbreak. The set of policies for every type of virus outbreaks is defined in the Policy activation window that opens after clicking the Configure policies to activate on "Virus outbreak" event link on the Virus outbreak tab of the Administration Server settings window.
To count the Detection of Viruses, Worms, Trojans, and Malware and Infected objects detected events, only information from the client computers of the master Administration Server is to be taken into account. For each slave Server the Virus outbreak event is configured individually.
Figure 46. Editing the settings for email notifications

UNPROCESSED FILES

Information about the files for which scheduled scanning and disinfection has been postponed, is available in the Unprocessed files folder of the Repositories node. The folder contains information about all such files within the Administration Servers and client computers. Postponed processing and disinfection are performed upon request or after a specified event. You can configure the settings for postponed disinfection of selected files.
BACKUP COPYING AND RESTORATION OF ADMINISTRATION SERVER DATA
Backup copying allows you to move an Administration Server from one computer to another without data losses and restore information in case of Administration Server database transfer to another host or upgrade to a newer version of the Kaspersky Administration Kit application. When an Administration Server is uninstalled from the computer, the Kaspersky Administration Kit always suggests making a backup copy.
During backup copying the following data is saved or restored: information database of the Administration Sever (policies, tasks, application settings and events saved on the Administration Server); configuration information about the structure of the administration groups and client computers; repository of the installation files for deployment of applications (content of the Packages, Uninstall, Updates folders); Administration Server certificate. Data restoration during migration to a later application version is supported beginning with Kaspersky Administration Kit 5.0 Maintenance Pack 3. If during the restoration of the Administration Server data, the path to the shared folder has changed, you should verify correct execution of tasks in which the folder is used (update, remote deployment tasks) and, if necessary, change the settings. Copying of the Administration Server data for backup and subsequent restoration can be performed by a backup task or manually using the klbackup utility included in the distribution package of Kaspersky Administration Kit. Data restoration is only performed using the klbackup utility. After Administration Server setup the klbackup utility is saved in the program folder specified during installation of the component. When started from the command line, it copies or restores data depending upon the selected options. The backup task is created manually; it is added to the Kaspersky Administration Kit tasks node. To perform actual data backup, you should configure the task. You can also create a backup task manually: select Kaspersky Administration Kit as the application for which the task will be created; and define Administration Server data backup as the task type.

GLOSSARY

ADMINISTRATION CONSOLE
Kaspersky Administration Kit component that provides user interface for the management services of the Administration Server and Network Agent.

ADMINISTRATION SERVER

Kaspersky Administration Kit component that centralizes the storage of information about Kaspersky Lab applications installed in the corporate network and about the management of those applications.
The certificate used for the Administration Server authentication during connection of Administration Consoles to it and data exchange with client computers. The Administration Server certificate is created during server installation; it is stored in the Cert subfolder of the program folder.
ADMINISTRATION SERVER CLIENT (CLIENT COMPUTER)
A computer, server or workstation running the Network Agent and managed Kaspersky Lab's applications.
ADMINISTRATION SERVER DATA BACKUP
Copying of the Administration Server data for backup and subsequent restoration performed using the backup utility. The utility allows restoring of: information database of the Administration Sever (policies, tasks, application settings, events saved on the Administration Server); configuration information about the structure of the logical network and client computers; repository of the installation files for deployment of applications (content of the Packages, Uninstall, Updates folders); Administration Server certificate.

ADMINISTRATION GROUP

A set of computers grouped together in accordance with the performed functions and the Kaspersky Lab's applications installed on those machines. Computers are grouped for their convenient management as one single entity. A group can include subgroups. A group can contain group policies for each application installed in it and appropriate group tasks.
Computer with the installed component that provides an application management interface. For anti-virus products it is the Anti-Virus Console, and for Kaspersky Administration Kit - the Administration Console. The administrator's workstation is used to configure and manage the server portion of the application; in Kaspersky Administration Kit - to build the system of centralized anti-virus protection for corporate LAN based on Kaspersky Lab's applications.

EVENT SEVERITY

A property of an event encountered during the operation of a Kaspersky Lab's application. There exist four severity levels: Critical event. Error. Warning. Info. Events of the same type may have different severity levels depending on the situation in which the event occurred.

GROUP TASK

A task defined for an administration group and performed on all client computers within this group.

INCOMPATIBLE APPLICATION

Anti-virus application of another vendor or a Kaspersky Lab's application that does not support management via Kaspersky Administration Kit.

INSTALLATION PACKAGE

A set of files created for remote installation of a Kaspersky Lab's application using the Kaspersky Administration Kit remote administration system. An installation package is created based on special files with the.kpd and.kud extensions that are included in the application distribution package; it contains a set of parameters required for application setup and its configuration for normal functioning immediately after installation. Parameter values correspond to application defaults.
KASPERSKY LAB'S UPDATE SERVERS
List of Kaspersky Lab's HTTP and FTP servers from which applications download databases and module updates to your computer.

KEY FILE

File with the.key extension, which contains your personal product key necessary for work with a Kaspersky Lab's application. The key file is included in the distribution package, if you purchased it from Kaspersky Lab's distributors, or it arrives in email, if you bought the product online.

LOCAL TASK

A task defined and running on a single client computer.
LOGICAL NETWORK ADMINISTRATOR
The person managing the application operations via the Kaspersky Administration Kit system of remote centralized administration.

LOGICAL NETWORK OPERATOR

A user monitoring the status and operation of a protection system managed via Kaspersky Administration Kit.
LOGIN SCRIPT-BASED INSTALLATION
Method for remote installation of Kaspersky Lab's applications, which allows you to link the start of a remote setup task to specified user account(s). When the user logs in to domain, the system attempts to install the application on the corresponding client computer. This method is recommended for deployment of the company's applications to computers running Microsoft Windows 98 / Me operating systems.

NETWORK AGENT

Network Agent is a component of Kaspersky Administration Kit that coordinates interaction between the Administration Server and Kaspersky Lab's applications installed on a specific network node (a workstation or a server). This component
supports all Windows applications included in Kaspersky Lab's products. Separate versions of the Network Agent exist for Kaspersky Lab's Novell and Unix applications.
PERIOD OF LICENSE VALIDITY
Time period during which you can use full functionality of a Kaspersky Lab's application. Typically, a validity period of a license is one calendar year since its installation. After license expiry the application functionality becomes limited: you cannot update the application database.

POLICY

A set of application settings in an administration group managed via Kaspersky Administration Kit. Application settings can differ in various groups. A specific policy is defined for each application in a group. A policy includes the settings for complete configuration of all application features.

PROTECTION STATUS

Current protection status, which characterizes the level of computer security.

PUSH INSTALL

Method for remote installation of Kaspersky Lab's applications, which allows you to install software on the specified client hosts within a logical network. For successful push install completion, the account used for the task must have sufficient rights for remote execution of applications on client computers. This method is recommended for software deployment to computers running Microsoft Windows NT / 2000 / 2003 / XP operating systems and supporting that functionality or to computers running Microsoft Windows 98 / Me with the Network Agent installed.

REMOTE INSTALL

Installation of Kaspersky Lab's applications using the services provided by Kaspersky Administration Kit.
REPOSITORY FOR BACKUP COPIES
Special folder for storage of Administration Server data copies created using the backup utility.

RESERVE LICENSE

The license installed for the operation of a Kaspersky Lab's application, which has not been activated. A reserve license is activated when the current license expires.

RESTORATION

Relocation of the original object from Quarantine or Backup to its original folder where the object had been stored before it was quarantined, disinfected or deleted, or to a user-defined folder.
RESTORATION OF ADMINISTRATION SERVER DATA
Restoration of Administration Server data from the information saved in backup copy using the backup utility. The utility allows restoring: information database of the Administration Sever (policies, tasks, application settings, events saved on the Administration Server); configuration information about the structure of the logical network and client computers; repository of the installation files for deployment of applications (content of the Packages, Uninstall, Updates folders); Administration Server certificate.

Functions performed by a Kaspersky Lab application are implemented as tasks, for example: Real-time protection of files, Full computer scan and Database update.
TASK FOR SPECIFIC COMPUTERS
A task assigned for a set of client computers from arbitrary administration groups within a logical network and performed on those hosts.

TASK SETTINGS

Task-specific application settings.

UPDATE

The procedure of replacement / addition of new files (databases or application modules), downloaded from the Kaspersky Lab's update servers.

UPDATE AGENT

Computer acting as an intermediate source for distribution of updates and installation packages in an administration group.

VIRUS ACTIVITY THRESHOLD

Maximum allowed number of events of the specified type within a limited time; when exceeded, it is interpreted as an increase of virus activity and threat of a virus attack. The property is important during the periods of virus outbreaks since it enables administrators to react in a timely manner to occurring virus attack threats.

KASPERSKY LAB

Kaspersky Lab was founded in 1997. Today it is the leading Russian developer of a wide range of high-performance information security software products, including anti-virus, anti-spam and anti-hacking systems. Kaspersky Lab is an international company. Headquartered in the Russian Federation, the company has offices in the United Kingdom, France, Germany, Japan, the Benelux countries, China, Poland, Romania and the USA (California). A new company office, the European Anti-Virus Research Centre, has recently been established in France. Kaspersky Lab's partner network includes over 500 companies worldwide. Today, Kaspersky Lab employs over a thousand highly qualified specialists, including 10 MBA degree holders and 16 PhD degree holders. All Kaspersky Lab's senior anti-virus experts are members of the Computer Anti-Virus Researchers Organization (CARO). Our company's most valuable assets are the unique knowledge and collective expertise accumulated during fourteen years of continuous battle against computer viruses. Thorough analysis of computer virus activities enables the company's specialists to anticipate trends in the development of malware, and to provide our users with timely protection against new types of attacks. This advantage is the basis of Kaspersky Lab's products and services. The company's products remain one step ahead of other vendors in delivering comprehensive anti-virus coverage to our clients. Years of hard work have made the company one of the top anti-virus software developers. Kaspersky Lab was the first to develop many of the modern standards for anti-virus software. The company's flagship product, Kaspersky Anti-Virus, reliably protects all types of computer systems against virus attacks, including workstations, file servers, mail systems, firewalls, Internet gateways and hand-held computers. Its easy-to-use management tools maximize the automation of anti-virus protection for computers and corporate networks. A large number of developers worldwide use the Kaspersky Anti-Virus kernel in their products, including Nokia ICG (USA), Aladdin (Israel), Sybari (USA), G Data (Germany), Deerfield (USA), Alt-N (USA), Microworld (India), and BorderWare (Canada). Kaspersky Lab's customers enjoy a wide range of additional services that ensure both stable operation of the company's products and full compliance with the customer's specific business requirements. We design, implement and support corporate anti-virus systems. Kaspersky Lab's anti-virus database is updated every hour. The company provides its customers with 24-hour technical support service in several languages. If you have any questions, comments, or suggestions, you can contact us through our dealers, or at Kaspersky Lab directly. We will be glad to assist you, via phone or email, in any matters related to our products. You will receive full and comprehensive answers to all your questions. Kaspersky Lab official site: http://www.kaspersky.com

Figure 1. Selecting the server name
3.2. Installing the Administration
Server and Administration Console on Local Host
This section describes a local installation of Administration Server and/or Console. If there is even a single Administration Server running on a network, additional servers may be installed using forced installation under the remote installation task. When creating the task, use an Administration Server installation package To install the Administration Server and / or the Administration Console on local host, 1. Run the setup.exe file in installation CD. The installation wizard will then suggest that you configure settings Follow the setup wizards instructions. 2. First, the wizard will unpack required files from the distribution package and copy them to the hard drive of your computer, offer you to accept the license agreement and provide information about the user and the company.
3. Then define the folder to be used to install the components. The default folder is: <Disk:\Program Files\Kaspersky Lab\Kaspersky Administration Kit. If this folder does not exist, it will be created automatically. To change the folder, use the Browse button. 4. After this, select Kaspersky Administration Kit components that you wish to install (see Figure 2): Administration Server. Under this option, it can be specified whether standard Kaspersky Lab components to integrate with Cisco NAC are to be installed. If installation is required, check Kaspersky Lab Posture Validation Server for Cisco NAC. Parameters for cooperation with Cisco NAC may be configured under properties or Administration Server policies (cf. Kaspersky Administration Server Reference Guide). Administration Console. Network Agent
Figure 2. Selecting components for installation
You can select either all components or the Administration Console only. You cannot select installation of the Administration Server without installation of the Console. The default option is to install all components.
A server version of the Network Agent will be installed with the Administration Server. Their joint installation is impossible using a regular version of the Network Agent. If this component is already installed on your computer, remove it and reinstall the Administration Server. Pay attention to the information displayed in the wizard window: in the Description field in right section - about the component selected; in the bottom section - about the disk space required to install the selected components and available disk space on the drive selected for the installation. If you selected only the Administration Console, no further steps devoted to configuring the installation settings will be required and you will switch directly to the stage where you only review these settings and start the installation. 5. If you selected installation of the Administration Server, define during the next step under which account the Administration Server will be started as a service on this computer (see Figure 3).

If the user you selected is a domain administrator, but it does not have the rights listed above, such rights will be granted to this user (see Figure 5).
Figure 5. Message about rights granted to the user.
7. During the next stage you will be offered to define resourse Microsoft SQL server (MSDE) or MySQL (see Figure 6), that will be used to store the Administration Server information database.
Figure 6. Selecting the database
8. If during the previous stage you selected MSDE or Microsoft SQL server and you are planning to use a server installed within the corporate network to work with Kaspersky Administration Kit, indicate such server's name in the SQL server name and specify the name of the database that will be created to store the Administration Server data in the SQL server database name (see Figure 7). The default database name is KAV.
Value (local) will be automatically assigned to the Server name field if an SQL server is detected on the computer from which Kaspersky Administration Kist is being installed. To display the list of all Microsoft SQL servers installed in the network, press the Browse button. If the Administration Server will be started under the local administrator's account or under the system account, the Browse button will not be available.
Figure 7. Selecting SQL server
If during the previous stage MySQL server was selected, specify in this window (see Figure 8) its name in the MySQL server name field (by default IP address of the computer onto which Kaspersky Administration Kit is being installed will be used) and specify port to be used for connection in the Port field (the default port is 3306). In the MySQL server database name field specify the database name that will be created to store the Administration Server data (by default the database will be created under name KAV). If during the previous stage MySQL server was selected, specify in this window
Figure 8. Selecting MySQL server
If there are no SQL servers in the network and you cannot use them, you have to install one (see section 3.1 on page 15). If you wish to install an SQL server on the computer from which you are installing Kaspersky Administration Kit, you have to abort the installation and restart it after you have installed the SQL server. If you install Kaspersky Administration Kit onto a remote computer, it is not required to interrupt the Kaspersky Administration Kit installation wizard. Install the SQL server and return to the Kaspersky Administration Kit installation. 9. During this step you have to define the authentication mode to be used by the Administration Server to connect to the SQL server. For MSDE or Microsoft SQL server you can select of the following two options (see Figure 9). Microsoft Windows Authentication Mode - in this case the account used to start the Administration server will be used to verify the rights; SQL Server Authentication Mode - if you select this option, the account specified below will be used to verify the rights. Fill in the Account, Password and Confirm password fields.

If Administration Server Database is on another computer, you need to choose SQL server authentication mode when installing or updating an Administration Server.
Figure 9. SQL server authentication mode
For MySQL server indicate the account and the password (see Figure 10).
Figure 10. MySQL server authentication mode
10. After this (see Figure 11), specify the location to store the shared folder that will be used: to store files required for remote installation of applications (files will be copied to the Administration Servers when installation packages are created); to store the updates copied from the updates source to the Administration server.
This resource will be public to all users for reading only.
Figure 11. Creating a shared folder
You can select one of the following two options: Create new shared folder - to create a new folder; you will have to specify path to the folder in the field below. Select existing shared folder - in order to select a shared folder from the list of existing shared folders.
A public shared folder can be stored either locally, on the computer from which the installation is performed or remotely, on any of the computers included into the corporate network. A shared folder can be specified both using the Browse button, and manually by entering a UNC path (for example, \\server\KLShare) in the appropriate field.
By default a local folder KLShare will be created in the folder specified for installation of the Kaspersky Administration Kit application components. 11. Use the next wizard dialog to specify Administration Server address (cf. Figure 13) by setting: DNS name. This option is used when there is a DNS server on the network which clients can use to obtain Administration Server address. NetBIOS name. This option is used where clients obtain Administration Server address through the NetBIOS protocol or if there is a WINS server on the network. IP address. This option is used where the Administration Server has a static IP address which will not subsequently change.

If required, check Allow NetBIOS Name Service in Kaspersky Antivirus 6.0 Anti-Hacker. This will open UDP port 137 in Kaspersky Antivirus 6.0 Anti-Hacker installed on the host. This port is used to obtain Administration Server IP address.
Figure 12. Administration Server Address
12. After this configure settings to be used for connection to the Administration Server (see Figure 13);
port number that will be used to connect to the Administration Server. By default port 14000 will be used. If it has been assigned, you can change it. SSL port number that will be used for secure connection to the Administration Server u sing SSL protocol. By default port 13000 port is used. If the Administration Server is running Microsoft Windows XP SP 2, then the in-built firewall will block TCP port under numbers 13000 and 14000. Therefore, in order to ensure access, these ports must be opened manually on the host running the Administration Server.
Figure 13. Settings used to connect to the Administration Server
13. In this wizard window (see Figure 14), indicate the method for creation the certificate to be used for authentication of the Administration Server being installed. Two options are provided: Create new certificate - select this option if you are installing a new Administration Server. Save a backup copy of the certificate so that later, if required, it would be easier for you to restore the date and structure of the logical network of this
Server. In order to do it, check the Create a backup copy of the certificate box. Restore certificate - select this option if you are restoring the Administration server with no backup copy available. In this case you can restore the data and the structure of the logical network of the previous Administration Server.
Figure 14. Selecting the method to be used to receive the Administration Server certificate
14. If during the previous stage you selected creation of a new certificate and saving its backup copy, specify the following in the corresponding window (see Figure 15): folder for saving the backup copy of the certificate file; password that will be use for encryption when creating a new certificate and its decryption during its restoration from a backup copy; password confirmation. In order to be able to restore the data of the Administration Server later, you must save the Server's certificate. When restoring the certificate you must enter the same password that was used for backup copying. If you enter an incorrect password, the certificate will not be restored.

CHAPTER 4. INSTALLATION AND REMOVAL OF SOFTWARE ON THE COMPUTERS
Before you start the installation, you must make sure that the software and hardware of the computers meet the corresponding requirements (see section 1.3 on page 9) Kaspersky Administration Kit allows installation and removal of Kaspersky Lab's applications using the following methods: remotely in a centralized way, via the Administration Console; locally, individually on each computer.
Connection of the Administration Server with the client computers is ensured by the Network Agent component. Therefore this component must be installed on each computer that will be connected to the remote centralized administration system before the installation of the anti-virus applications. If you use the centralized method to install the applications via the Administration Console, the Network Agent can be installed together with one of the applications. On the computer on which the Administration Server is installed, only server version of the Network Agent can be used. It is included into the Administration Server structure and is installed and removed together with the Administration Server (see section 3.2 on page 17). You do not have to install the Network Agent on this computer. The Network Agent is installed the same way as the applications - that is either remotely or locally. The Network Agents can differ depending on the Kaspersky Lab's applications for which they are installed. In some cases only local installation of the Network Agent is possible (details see Guides to the corresponding applications). The Network Agent is installed on the client computer only once. Kaspersky Administration Kit application administration interface is implemented by the corresponding administration plugins. Therefore, in order to access the application administration interface, the corresponding plugin must be installed on the administrator's workstation. In case of the remote installation method, it is installed automatically when the first installation package for the corresponding application is created. In case of a local installed on the client computer, the administration plugin must be installed manually by the administrator.
Under the current version of Kaspersky Administration Kit the following Kaspersky Lab applications may be managed remotely: Workstation and file server protection: Kaspersky Antivirus 5.0 for Windows File Servers; Kaspersky Antivirus 6.0 for Windows Servers; Kaspersky Antivirus 5.0 for Windows Workstations; Kaspersky Antivirus 6.0 for Windows Workstations; Kaspersky Antivirus 5.0 Second Opinion Solution; Kaspersky Antivirus 5.7 for Novell NetWare;
Perimeter defense: Kaspersky Antivirus 5.6 for Microsoft ISA Server 2000 Enterprise Edition.
Mail server protection: Kaspersky Antivirus 5.5 for Microsoft Exchange Server 2000/2003, Planned Update 1; Kaspersky Security 5.5 for Microsoft Exchange Server 2003, Planned Update 1.

4.1.1. Creating an installation package
in order to create an installation package: 1. Connect to the Administration Server you need.
2. Select in the console tree the Remote installation node, open the shortcut menu and select command Create Installation Package or use the analogous item in the Action menu. This will start the wizard. Follow its instructions. 3. You will be offered to specify the name of the installation package and during the next step - to specify the application to be installed (see Figure 17). If you are installing an application that supports remote installation via Kaspersky Administration Kit, you have to select the Create the installation package for Kaspersky Lab's application option from the drop-down list. Using the Browse button, select file that contains description of the application (file has extension.kpd and is bundled with all Kaspersky Lab applications for which remote administration via Kaspersky Administration Kit is supported) or a self-extracting archive of the Kaspersky Lab's application (file has extension.exe and can be downloaded from the Kaspersky Lab's website). As the result, fields with the application name and the version number will be automatically filled in.
Figure 17. Creating an installation package. Selecting application to be installed
Settings of the installation package will be created by default and will correspond to the application selected to be installed. You can change the settings after the package is created using the package properties review window (see section 4.1.2 on page 40).
If you create an installation package to install other applications (see Figure 18): select Create installation package for application specified by the user from the drop-down list; indicate the path to the application distribution package using the Browse button; install the Copy entire folder into the installation package box, if the package must contain the entire content of the folder in which the distribution file is located; specify the settings used to run the executable file in the entry line provided if such settings are required to install the application (for example, running in non-interactive mode using switch /s).

Microsoft Windows NT/2000/2003/XP that support such ability or onto computers running Microsoft Windows 98/Me on which the Network Agent is installed. If the connection between the Administration Server and the client computer is established via Internet or is protected by a firewall, shared folders cannot be used to transfer data. In this case the files required to install the application to the client computer can be delivered by the Network Agent. The Network Agent is installed on such computers locally. The second method - installation using the startup scenario - allows to assign a remote installation task to a specific user (or several users') account. As the result of the task execution, a record about launching the installer application will be entered into the startup scenario for the selected users. The installer application is located in the shared folder on the Administration Server. In order to ensure successful task execution, the account under which it is run or the Administration Server must have the right to modify the startup scenarios in the domain controller database. As the results of the user registration with the domain an attempt will be made to install the application on the client computer from which the user has registered. This method is recommended for installation of the Kaspersky Lab's applications onto the computers running MS Windows 98/Me. In order to ensure successful execution of the remote installation task using the startup scenario, users for which changes are made in the scenarios, must have the local administrator's rights on their respective computers. Group tasks for remote software installation onto the client computers are executed using the forced installation method only. When creating a global task, you can select the method you require: the forced installation or installation using the startup scenario. In order to create a global task for remote installation using the forced installation method: 1. 2. Connect to the required Administration Server. Select the Global tasks node in the console tree, open the shortcut menu and select the New / Task command or use the analogous item in the Action menu. This will start the task creation wizard. Follow its instructions. Specify the task name. When selecting the application and the task type (see Figure 29), specify values Kaspersky Administration Kit and Remote application installation respectively.

Figure 45. Selecting an installation package
4. In the next wizard window, if required, specify the Network Agent installation package to be jointly installed (details see section 0 on page 53). 5. In the wizard window (see Figure 46) determine on which computers the application will be installed. In order to do it, select one of the options:
Install the application onto selected computers, if you select this option, then after the wizard is complete a global application deployment task will be created. Install application onto computers in the administration group - as the result of the wizard's work, a group task will be created.
Figure 46. Selecting a task type
6. Then if you are creating a group task, specify a group on whose computers the application will be remotely installed (see Figure 47), or select computers for the installation. If the application must be installed on all client computers within the logical network, select the Groups group.
Figure 47. Selecting a group
7. Then determine under which account the deployment task will be run on the computers (details see section 0 on page 53).
Figure 48. Selecting a user's account
8. After this a window will open that will display the process of distribution and execution of the deployment task on the computers of the selected group (see Figure 49). You can switch to the final window of the wizard without waiting for the process to be completed. In order to do it, press the Next button. You can view detailed information about the results of the task execution on each computer using the History button.
Figure 49. Deployment task execution
4.3. Local software installation
The local software installation is performed individually on each computer. In order to perform local installation you must have the administrator's right for the local computer. Some applications that support administration using Kaspersky Administration Kit can be installed on computers only locally. Details see Guides to the corresponding applications. General procedure for the software installation during local deployment of the anti-virus protection system can be as follows: install the Network Agent and configure the connection between the client computer and the Administration Server (see section 4.3.1 on page 76);
install the required applications on the computer that will be included into the anti-virus protection system according to the description in the corresponding Guides; install the administration plugin for each of the installed Kaspersky Lab's applications into the administrator's workstation (see section 4.3.2 on page 81).
Kaspersky Administration Kit support local application installation in noninteractive mode based on the files created during installation package creation (see section 4.3.3 on page 82).
4.3.1. Local installation of the Network Agent

In order to locally install the Network Agent on the computer: 1. Run file setup.exe (or setup.msi) located on the distribution CD of the Kaspersky Administration Kit application in folder NetAgent. The installation process is facilitated by the wizard. The wizard will offer you to configure the installation settings. Follow its instructions. 2. First steps of the installation process are the usual procedure and involve unpacking required files from the distribution package and copying them on the hard drive of your computer, accepting the license agreement and providing information about the user and the company. 3. Then you have to define the Network Agent installation folder. The default installation folder is Program Files\Kaspersky Lab\NetworkAgent. If such folder does not exist, it will be created automatically. To change the folder use the Browse button. 4. In the next wizard window (see Figure 50) you will have to configure settings used by the Network Agent to connect to the Administration Server. In order to do this define the following: address of the computer on which the Administration Server is or will be installed. The computer's IP address or name in the Windows network can be used as the computer address. Alternatively, you can select the computer using the Browse button. whether UDP Port 137, used to obtain Administration Server IP address needs to be opened in Kaspersky Antivirus 6.0 AntiHacker. If so, check Enable NetBIOS Name Service in Kaspersky Antivirus 6.0 Anti-Hacker.
the port number using which the Network Agent will connect to the Administration Server. By default port 14000 will be used. If it has been assigned, you can change it. Only decimal representation is allowed. port number that will be used for secure connection to the Administration Server using SSL protocol. By default port 13000 port is used. If it has been assigned, you can change it. Only decimal representation is allowed. In order to make sure that the connection is using a secured port (using SSL protocol) check the Use SSL to connect to server box.
Figure 50. Configuring settings used to connect to the Administration Server
5. If the Network Agent connects to the Server via a proxy server (see Figure 51)l, configure the corresponding connection settings: Check the Use a proxy server to connect to the Administration Kit Server box and enter the address and the name of the port to connect to the proxy server. Only decimal notation is allows (for example: Proxy address: proxy.test.com; Port: 8080). If a password is used to access the proxy server, fill in the Proxy login and the Proxy password fields.

Figure 54. Configuring the launch of the Network Agent
After the wizard is complete, the Network Agent will be installed on your computer. You can review the properties of the Kaspersky Network Agent service, start, stop or monitor it using the standard Windows administration tools - Computer Management Services. A plugin for cooperation with Cisco Network Admission Control (NAC) is always installed to a host together with an Administration Agent. The plugin is invoked if the Cisco Trust Agent application is installed.
4.3.2. Local installation of the application administration plugin
In order to install the application administration plugin, on the computer on which the Administration Console is installed, run executable file klcfginst.exe, located on the application's distribution CD. This file is included into all applications that can be administered via Kaspersky Administration Kit. The installation is facilitated by a wizard and does not require any configuration. It will offer you to configure the installation settings and start it.
The file of the administration plugin for the Network Agent klcfginst.exe is located in the NetAgent folder of the distribution package of Kaspersky Administration Kit
4.3.3. Installing applications in noninteractive mode
In order to install an application in non-interactive mode: 1. Create the required installation package (see section4.1.1xx) if the installation package for the application you would like to install has not been created. Installation packages will be saved in some shared folder under the Administration Server Packages system directory when the Administration Server is being installed. A subfolder will correspond to each installation package. 2. Configure installation package settings as required. 3. Install application using one of the methods below: Copy the entire folder corresponding to the desired installation package from the Administration Server to the client. Open the copied folder on the client and start the executable (file with the.exe extension) using the /s switch. Access the shared folder for the desired installation package on the Administration Server from the client. Then start the executable with the /s switch. 4. Run executable file setup.exe with modifier /s included into the distribution package of the application being installed, on the computer onto which you plan to install the application using noninteractive mode. Installation packages are stored on the Administration Server in the shared folder specified during the Administration Server installation stage, in service folder Packages. When installing Kaspersky Administration Kit non-interactively, an answer file may be used. This file contains all the application install parameters and enables the application to be installed more than once with the same parameters.

Appendix A

Administration Server. It is located in the Cert folder of the installation folder. B Block object Prevent external applications from accessing an object. The blocked object cannot be read, executed, modified, or deleted. Backing up copying data of the Administration server for storage and subsequent restoration performed by the backup utility. The utility allows to save: Administration Server database that stores policies, tasks, application settings, and events logged on the Administration Server Information about the logical networks and client configurations Installation files for the remote installation of applications (contents of the Packages, Uninstall, Updates folders) Administration Server certificate Backup folder A directory that contains backups of deleted and disinfected objects. Backup license key a license key installed for a Kaspersky Lab's application, but not activated. Depending on the settings, activation of the key can be performed automatically upon the expiration of the current key or manually. Backup storage A folder that contains the backup copies of Administration Server data created by the backup utility. C Console (management) plug-in A special component that provides an interface for remotely managing an application through the Administration Console. The plug-ins are specific to each application and are included in all Kaspersky Lab applications that can be managed through Kaspersky Administration Kit. Centrally managing an application Managing an application through Kaspersky Administration Kit. Client, Administration Server (or client computer) a computer, a server, or a workstation with the installed Network Agent and managed Kaspersky Lab applications. Current license key a license key installed and currently used to work with a Kaspersky Lab's application. This key determines the license period and the licensing policy regarding to the product. D Disinfection A method of treating infected objects. Disinfection implies partial or full recovery of data or results in a decision that these files cannot be disinfected. Objects are disinfected using the anti-virus database. If disinfection is the first action to be applied to an object, i. e.
the first action after detection of a suspicious object, the program creates a backup of this file. If some data are lost during disinfection, you can use the backup to recover this object. Deleting an object A method of handling an object. To delete an object is to remove it physically from a computer. This method is recommended for treating infected objects. If deleting is the first action applied to an object, it is necessary to create a backup of this object before deleting it. You can use the backup to restore the original object. E Exclusions User-defined settings that exclude certain objects from scans. You can customize the exclusion rules for real-time protection and ondemand scans. Thus, you can disable scanning of archives during a full scan or exclude files from scans by their masks. E-mail databases Databases that contain e-mail messages stored on your computer. Every incoming/outgoing message is saved in the database after you receive/send it. Such databases are scanned in the on-demand scanning mode. F Forced installation a method of remote installation of Kaspersky Lab's applications that allows to perform remote installation on specific client computers of the logical network. In order to ensure successful execution of a forced installation task the account used to run the task must have the right for remote launch of the applications on the client computers of the logical network. This method is recommended for installation of applications onto computers running Microsoft Windows NT/2000/2003/XP that support such feature or onto computers running Microsoft Windows 98/Me on which the Network Agent is installed. G Global task A task defined for and running on a number of clients from different administration groups. Group Task A task defined for and running on all clients in a group. Group policy A set of application settings in an administration group managed through Kaspersky Administration Kit. Group policies can be different for each group. Group policies are specific to individual applications. The policy involves configuration of all parameters of applications. I IChecker technology A technology that excludes the objects from future scans that remained unmodified since the last scan. The IChecker technology was implemented by using the object checksum database.

Kaspersky Corporate Suite
This package provides corporate networks of any size and complexity with comprehensive, scalable anti-virus protection. The package components have been developed to protect every tier of a corporate network, even in mixed computer environments. Kaspersky Corporate Suite supports the majority of operating systems and applications installed across an enterprise. All package components are managed from one console and have a unified user interface. Kaspersky Corporate Suite delivers a reliable, high-performance protection system that is fully compatible with the specific needs of your network configuration.
Kaspersky Corporate Suite provides comprehensive anti-virus protection for:
Workstations running Microsoft Windows 98/ME, Microsoft Windows NT/2000/XP Workstation and Linux; File servers running Microsoft Windows NT 4.0 Server, Microsoft Windows 2000, 2003 Server/Advanced Server, Novell Netware, FreeBSD, Linux; Samba file storage
Depending on the type of distribution kit.
E-mail systems, including Microsoft Exchange Server 2000/2003, Lotus Notes/Domino, sendmail, postfix , exim, and qmail mail systems Internet gateways: CheckPoint Firewall 1; Microsoft ISA Server 2000 Enterprise Edition, Microsoft ISA Server 2004 Enterprise Edition Hand-held computers (PDAs), running Symbian OS, Microsoft Windows CE and Palm OS, and also smartphones running Microsoft Windows Mobile 2003 for Smartphone and Microsoft Smartphone 2002.
Corporate Suite distribution kit includes Kaspersky The Kaspersky Administration Kit, a unique tool for automated deployment and administration.
You are free to choose from any of these anti-virus applications, according to the operating systems and applications you use. Kaspersky Anti-Spam Kaspersky Anti-Spam is a cutting-edge software suite that is designed to help organizations with small- and medium-sized networks wage war against the onslaught of unsolicited e-mail messages (spam). The product combines the revolutionary technology of linguistic analysis with modern methods of e-mail filtration, including DNS Black Lists and formal letter features. Its unique combination of services allows users to identify and wipe out up to 95% of unwanted traffic. Installed at the entrance to a network, where it monitors incoming e-mail traffic streams for spam, Kaspersky Anti-Spam acts as a barrier to unsolicited e-mail. The product is compatible with any mail system and can be installed on either an existing mail server or a dedicated one. Kaspersky Anti-Spams high performance is ensured by daily updates to the content filtration database adding samples provided by the Companys linguistic laboratory specialists. Databases are updated every 20 minutes. Kaspersky Security for Microsoft Exchange 2003 Kaspersky Security for Microsoft Exchange performs anti-virus processing of incoming and outgoing mail messages as well as messages stored at the server, including letters in public folders and filters out unsolicited correspondence using "smart" spam recognition techniques in combination with Microsoft technologies. The application scans all messages arriving at an Exchange Server via SMTP protocol checking them for the presence of viruses using Kaspersky Lab's antivirus technologies and for the presence of SPAM attributes. It filters out spam based on formal attributes (mail address, IP address, letter size, heading) and analyzes the content of messages and of their attachments using "smart' technologies, including unique graphic signatures for identifying graphic SPAM. The application scans both the message body and the attached files.

Kaspersky Mail Gateway Kaspersky Mail Gateway is a comprehensive solution that provides complete protection for users of mail systems. This application installed between the corporate network and the Internet scans all components of e-mail messages for the presence of viruses and other malware (Spyware, Adware, etc.) and performs centralized anti-spam filtration of e-mail stream. The application contains a number of advanced tools for filtering e-mail traffic by name and MIME attachments and a series of tools that reduce the load on the mail system and prevent hacker attacks. Kaspersky Anti-Virus for Proxy Servers Kaspersky Anti-Virus for Proxy Server is an antivirus solution for protecting web traffic transferred over HTTP protocol through a proxy server. The application scans Internet traffic in real time, protects against malware penetrating your system while web surfing, and scans files downloaded from the Internet. Kaspersky Anti-Virus for MIMESweeper for SMTP Kaspersky Anti-Virus for MIMESweeper for SMTP provides high-speed antivirus scans of SMTP traffic on servers running Clearswift MIMESweeper. The program is designed as a plug-in for Clearswift MIMESweeper for SMTP and scans for viruses and processes incoming and outgoing e-mails in real time.

B.2. Contact Us

If you have any questions, comments, or suggestions, please refer them to one of our distributors or directly to Kaspersky Lab. We will be glad to assist you in any matters related to our product by phone or via email. All of your recommendations and suggestions will be thoroughly reviewed and considered. Technical support General information Please find the technical support information at http://www.kaspersky.com/supportinter.html WWW: http://www.kaspersky.com http://www.viruslist.com Email: sales@kaspersky.com
APPENDIX C. LICENSE AGREEMENT
NOTICE TO ALL USERS: CAREFULLY READ THE FOLLOWING LEGAL AGREEMENT (AGREEMENT) FOR THE LICENSE OF SPECIFIED SOFTWARE (SOFTWARE) PRODUCED BY KASPERSKY LAB. (KASPERSKY LAB). IF YOU HAVE PURCHASED THIS SOFTWARE VIA INTERNET BY CLICKING THE ACCEPT BUTTON, YOU (EITHER AN INDIVIDUAL OR A SINGLE LEGAL ENTITY) CONSENT TO BE BOUND BY AND BECOME A PARTY TO THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS OF THIS AGREEMENT, CLICK THE BUTTON THAT INDICATES THAT YOU DO NOT ACCEPT THE TERMS OF THIS AGREEMENT, AND DO NOT INSTALL THE SOFTWARE. IF YOU HAVE PURCHASED THIS SOFTWARE ON A PHYSICAL MEDIUM, HAVING BROKEN THE CD'S SLEEVE, YOU (EITHER AN INDIVIDUAL OR A SINGLE ENTITY) ARE CONSENTING TO BE BOUND BY THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS OF THIS AGREEMENT DO NOT BREAK THE CD's SLEEVE ,DOWNLOAD, INSTALL OR USE THIS SOFTWARE. IF YOU HAVE BROKEN THE CD'S SLEEVE OR OPENED THE BOX, YOU WILL NOT BE ENTITLED TO RETURN THE SOFTWARE FOR REFUND. SOFTWARE FOR HOME USE (KASPERSKY ANTI-VIRUS PERSONAL, KASPERSKY ANTI-VIRUS PERSONAL PRO, KASPERSKY ANTIHACKER, KASPERSKY SECURITY FOR PDA) PURCHASED AS A DOWNLOAD VIA THE INTERNET MAY BE RETURNED FOR A FULL REFUND WITHIN 14 DAYS AFTER PURCHASE FROM KASPERSKY LAB, IT'S AUTHORIZED DISTRIBUTOR OR RESELLER. OTHER PRODUCTS ARE NON REFUNDABLE. THE RIGHT TO RETURN AND REFUND EXTENDS ONLY TO THE ORIGINAL PURCHASER. All references to Software herein shall be deemed to include the software activation key (Key Identification File) with which you will be provided by Kaspersky Lab as part of the Software. 1. License Grant. Subject to the payment of the applicable license fees, and subject to the terms and conditions of this Agreement, Kaspersky Lab hereby grants to you the non-exclusive, non-transferable right to use one copy of the specified version of the Software and the accompanying documentation (the Documentation) for the term of this Agreement solely for your own internal business purposes. You may install one copy of the Software on one computer, workstation, personal digital assistant, or other electronic device for which the