Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1 5.5.1185.0
-------------------------------------------------------------------
Description:

Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1 (hereinafter referred to as Kaspersky Anti-Virus) is designed for anti-virus protection of mailboxes and public folders on Microsoft Exchange Server 2000/2003.

Differences of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1 compared with Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003:

- The updating service has been improved for faster and more reliable operation.

- Scanning of archives is enabled by default.

- Added support for application management via the centralized control system of Kaspersky Administration Kit.

Differences from version 4.5:
 
1) Completely redesigned, convenient graphical interface of the application is implemented as a Microsoft Management Console snap-in.

2) The use of an extended set of anti-virus databases for scanning allows you to protect mail server both from malware and riskware, such as remote administration utilities, adware, programs making automatic chargeable phone calls, hack tools, and jokes.

3) The application allows selection of the level of anti-virus protection; thus the administrator can control the level of mail traffic security and server load while scanning.

4) Ability to save backup copies of objects prior to their disinfection, removal or renaming allows you to restore these objects later or send them for examination by experts at Kaspersky Lab. The opportunity to create and apply custom filters simplifies the search for necessary information within backup storage.

5) The mechanism of virus outbreak detection and notification thereof allows timely reaction to occurring non-standard situations and taking action to reinforce the anti-virus protection of your mail server.

6) The application supports scalability in accordance with the number of CPUs of the computer running the protected server. To increase application performance (the number of objects scanned simultaneously) several instances of the anti-virus engine can be started to run simultaneously.

7) Scanning of objects in memory has been enhanced. Parallel scanning in RAM of up to 8 objects up to 1 Mb each without accessing the disk subsystem increases considerably the performance of anti-virus protection.

8) The logging system has been improved significantly. You can customize the amount of information and the level of logged details. Logs can be reviewed within the standard Microsoft Windows Event Viewer. 

9) An opportunity to create extended regular reports on the status of anti-virus protection has been added. Reports can be generated automatically or upon administrator's request. The reporting subsystem provides for a fast, convenient and unified method of data access based on standard tools like Microsoft Internet Explorer. Reports can be sent by e-mail, too.

10) An opportunity to employ Net Send to inform network users about detection of infected or suspicious objects and the threat of a virus outbreak using has been added.

-------------------------------------------------------------------
INSTALLING THE APPLICATION

Hardware requirements:

- Intel Pentium II 300 MHz CPU or higher

- 256 Mb of available (free) RAM 

- 50 Mb of available disk space to install the application files and 100 Mb of disk space for temporary storage of the objects being scanned.


Software requirements:

Requirements to the protected Microsoft Exchange 2000 Enterprise Edition / Standard Edition Server:

- Microsoft Windows 2000 Server with installed Service Pack 4 or higher / Microsoft Windows 2000 Advanced Server with installed Service Pack 4 or higher.

- Microsoft Exchange Server 2000 Enterprise Edition / Standard Edition with installed Service Pack 2 or higher.

Requirements to the protected Microsoft Exchange 2003 Enterprise Edition / Standard Edition Server:

- Microsoft Windows 2000 Server with installed Service Pack 4 or higher / Microsoft Windows 2000 Advanced Server with installed Service Pack 4 or higher / Microsoft Windows Server 2003 Standard Edition or higher / Microsoft Windows Server 2003 Enterprise Edition or higher.

- Microsoft Exchange Server 2003 Enterprise Edition / Standard Edition.

Requirements to the computer that will be used for product management: 

- Microsoft Windows 2000 with installed Service Pack 4 or higher / Microsoft Windows XP / Microsoft Windows 2003.

- Microsoft Management Console (MMC) 1.2 or higher.

Application setup requires administrator's privileges on the target computer and the rights of a domain administrator.

-------------------------------------------------------------------
INSTALLATION PROCEDURE

1) If any version of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 is installed on this computer, it will be upgraded automatically to Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1.

2) If a beta version of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 is installed on the computer, it must be uninstalled before installing Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1. 

-------------------------------------------------------------------
KNOWN PROBLEMS

1. If Microsoft Office Outlook is used as the IMAP client, an error message appears when attempting to save a message with an infected attachment into a server folder. This message appears only once. The infected object will be processed in accordance with the anti-virus settings. This error does not occur when using Outlook Express.

2. If Kaspersky Anti-Virus 4.5 for Microsoft Exchange Server was installed and then removed from your computer, then application installer can detect an invalid registration of anti-virus software for Microsoft Exchange Server in the system registry. In such situation a warning message will be displayed suggesting that you remove the invalid registry entry detected. In order to proceed with the installation of Kaspersky Anti-Virus, confirm the removal of that registry entry.

3. If Kaspersky Anti-Virus is installed on a cluster of servers operating in the Active/Active mode, in some cases incorrect delivery of notifications is possible. 

4. If Kaspersky Anti-Virus is installed on all nodes of a cluster in the Active/Active mode, then storage exclusion from the protection scope even on one of the cluster nodes may entirely disable the protection of that storage.

5. If Kaspersky Anti-Virus is used to protect MS Exchange Server 2003 installed on a cluster of servers, then when an infected message is sent via a MAPI client, the sender may receive two notifications instead of just one.

6. Kaspersky Anti-Virus does not send notifications about password-protected archives it detects.

7. When using a trial key, the application may display different expiration dates on the General settings and on the License keys tabs.

8. If the Kaspersky Anti-Virus 5.5 for Exchange Server 2000/2003 MP1 service cannot be stopped when the stream of messages is continuous, perform the following steps:
   1) disable anti-virus protection
   2) wait until the Exchange system reloads the interceptors (it may take a while)
   3) stop the Network Agent service (if Kaspersky Administration Kit is installed)
   4) stop the service of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1.

9. When the number of instances of the anti-virus engine is modified in the Additional settings tab, the OutProcAdapter.exe anti-virus processes may be reloaded twice. This does not lead to any errors in the operation.

10. If the application is set to notify  recipients about virus detection in a message and the recipient is specified as a distribution group or security group within Active Directory, the number of notifications in some cases may be equal to the number of users in that group. 

11. When notifications are sent to a distribution group within Active Directory with a Display name different from the group name, the notifications do not reach the recipient.

12. After removal of an installed independent server, the application directory may contain several left subdirectories and/or files.

13. Incorrect application name. If Kaspersky Administration Kit has been installed without a plug-in necessary to control Kaspersky Anti-Virus for Microsoft Exchange Server 2000/2003, then an attempt to switch to the General tab in the server settings window will result in a warning informing that the plug-in is not installed.  The warning text contains 'null' instead of the application name.

14. If Kaspersky Anti-Virus 5.0 for Windows File Servers and Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003are installed on the same computer, the task updating the anti-virus databases in the list of tasks in Kaspersky Administration Kit appears to look identically for both applications. 

15. In case of an update from Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 to Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1 the MMC snap-in settings may get lost.

16. When the diagnostics level in the Diagnostics tab of application settings window is set to "None", system messages about application activity will not be delivered in Kaspersky Administration Kit.

17. When parameter changing is prohibited in a policy of Kaspersky Administration Kit, its value cannot be modified. However, the parameter is changed visually in the administration console of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003.

18. If you terminate the process of application removal, a number of services will remain stopped. The application displays on the screen information about specific services stopped during the removal process. 

19. If your Microsoft Exchange Server has a third party anti-virus product installed, installation of the administration console of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 is impossible.
 
20. When the Active Directory Global Catalog is inaccessible, the application switches to the "Management services only" mode.
 
21. The task disabling background scanning does not stop background scanning immediately.
 
22. Enabling scanning of the routed mail in some cases may require a restart of the IIS service.

23. Anti-virus protection is always disabled after the start of the application recovery procedure.

24. Duplicate records in quarantine directory may appear (one of them will be dated 1601), if an infected object is revealed in a digitally signed message.

25. A report cannot be sent by e-mail if it cannot be saved to disk. 

26. Anti-virus protection is always enabled after an update from Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 to Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1.

27. If there is insufficient free space on the drive where Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1 is installed, the application does not scan archives.

28. A part of configuration parameters may get lost after an update of Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 to Kaspersky Anti-Virus 5.5 for Microsoft Exchange Server 2000/2003 MP1 in cases, when a replacement template text contains too many characters.

29. The option in the local interface enabling storage of report statistics actually enables/disables storage of statistics in general instead of customizing the duration of storage period.

30. Product name may display incorrectly in the Russian version (unless Russian localization is used by default in the operating system settings).
 
31. Restoration of a removed license key is possible after restart of the KSCM4E service.

----------------------------------------------------------------------------

RECOMMENDATIONS FOR UPDGRADING FROM VERSION 4.5 TO 5.5

After version 5.5 is installed, the application will start functioning using the minimum set of parameters most of which are configured by default and are the optimal settings recommended by the Kaspersky Lab’s experts.

Additional configuration must be performed manually. In order to restore the system configuration in accordance with version 4.5 the required changes must be made. While making these changes the following must be taken into account:


1. Version 5.5 has no provision for the unprotected users group. Exclusions from the scan scope are configured through unprotected storages. You can configure the storage protection settings on the Protected Mail tab of the Anti-virus protection window.

2. By default, notifications are not registered in the events log in version 5.5. The settings for registering notifications in the logs are configured on the Actions tab of the Properties <Notification Name> window for configuration of notification settings.

3. When configuring the settings of notifications you only have to specify the recipients’ addresses. SMTP addresses are not required to be specified as version 5.5 does not use STMP for sending notifications. The notification settings are configured on the Actions tab within the Properties <Notification Name> window for configuration of notification settings.