Recommendations how to configure Kaspersky AniVirus
for computers running under Windows 2000,
Windows XP and Windows Server 2003 operating systems
from http://www.kaspersky.com/support/kav7/tech?print=true&qid=199961045
Concerning to:
Attention! The article gives some tips about changing the system registry. Before making any changes in the system registry back up the system registry and study the restoring from the back up procedure. Incorrect changes of the parameters in the system registry by the registry editor or any other program may lead to serious faults and/or necessity to reinstall the operating system. Kaspersky Lab is not responsible for changes made in your system registry and does not provide help in troubleshooting the situation.
The article gives recommendations that might help to protect the computers running under Microsoft Windows Server 2003, Microsoft Windows 2000 and Microsoft Windows XP and the data stored on the computers from viruses. These recommendations will help to minimize the effect caused by the anti-virus software on the system efficiency and the network.
For Windows Server 2003, Windows 2000 and Windows XP operating systems:
It is recommended not to scan for viruses the files and folders given below. These files do not undergo the threat of being infected by viruses. As the files are blocked during the scan, the scan procedure can deliberately decrease system efficiency. The following files can be excluded from the scan:
- File of the database of the service Microsoft Windows update or automatic updates service. The file resides in C:\WINDOWS\SoftwareDistribution\DataStore named Datastore.edb
- Files of the transaction logs in the directory C:\WINDOWS\SoftwareDistribution\DataStore\Logs by mask Edb*.log
For domain controllers running under Windows Server 2003 and Windows 2000.
Attention! Kaspersky Lab’s experts recommend using the following test configuration and make sure it does not lead to any unexpected consequences which may influence or even damage system environment and efficiency. When the volume of anti-virus scan is too large there is a risk that the “changed” attribute may be assigned to files wrongly which results in excess replication in the service of Active Directory folders. If the testing shows that the recommendations given below do not influence the replication volume, then the anti-virus programs can be used in the working environment. The following files can be excluded from scan:
Main files of the NTDS database of the Active Directory service. Location of these files is given in the branch of the system registry HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters\DSA Database File. By default the files reside in the directory C:\WINDOWS\ntds with the names Ntds.dit and Ntds.pat
Files of the transaction log of the Active Directory service. Location of these files is given in the branch of the system registry HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters\Database Log Files Path. By default the files reside in the directory C:\WINDOWS\ntds. Files can be excluded by the mask EDB*.log, or by names Res1.log, Res2.log and Ntds.pat
Files of the NTDS temporary folder given in the following branch of the system registry HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters\DSA Working Directory. Files can be excluded by the names Temp.edb and Edb.chk
Files of the temporary folder of the files replication service (FRS). Location of the folder is given in the branch of the system registry HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NtFrs\Parameters\Working Directory. Files can be excluded by masks FRS Working Dir\jet\sys\edb.chk, FRS Working Dir\jet\ntfrs.jdb and FRS Working Dir\jet\log\*.log
Files of the files replication service log. Location of the files is given in the branch of the system registry HKEY_LOCAL_MACHINE\system\currentcontrolset\services\NtFrs\Parameters\DB Log File Directory. By default the files reside in the directory C:\WINDOWS\ntfrs. Files can be excluded by masks FRS Working Dir\jet\log\*.log and DB Log File Directory\log\*.log.
Allocation folder and its all embedded folders. The folders are given in the branch of the system registry HKEY_LOCAL_MACHINE\system\currentcontrolset\services\NtFrs\Parameters\Replica Sets\GUID\Replica Set Stage. By default the allocation folders reside in the directory C:\WINDOWS\sysvol\staging areas.
Pre-setup folder of the FRS service. The folder resides by the following path root_replication_directory\ DO_NOT_REMOVE_NtFRS_PreInstall_Directory. Pre-setup folder is always open when the files replication service is running.
Distributed file system (DFC). The same resources which are excluded from SYSVOL replication should be disabled when using the FRS service to replicate shared folders compared to DFC root and the link target folders on common computers or domain controllers running under Windows 2000 or Windows Server 2003 operating systems.
All Kaspersky Lab products
Kaspersky Lab Free Trials , Kaspersky Internet Security 7.0 , Kaspersky Lab products , Kaspersky internet Securiity 7.0 , Kaspersky Anti Virus 7.0 , Multi-year/multi-user licenses of Kaspersky Internet Security 7.0 , Kaspersky Anti-Virus 7.0 , Kaspersky Open Space Security , Kaspersky Personal Network Security Package for Linux and Windows , Kaspersky Anti-Virus Mobile , Kaspersky business products page , Kaspersky business products page
Комментариев нет:
Отправить комментарий