Lista często zadawanych pytań

Every day the Doctor Web virus monitoring service collects more than 250,000 new malicious programs, the most dangerous of which have been developed by professional virus writers who are members of criminal organizations. These programs focus on stealing money from single companies (or a series of “targeted” companies); the creators of these programs know what security systems are in use, and devise their malware accordingly.

It is commonly believed that by installing a protection system on a mail server, one can reduce the inflow of spam and the number of viruses in a company network, and speed the delivery of important emails. But apart from solving these problems, a modern mail server anti-virus also affords the opportunity to delete previously unknown malicious programs from mailboxes. Only by installing an anti-virus on a company mail server can one escape situations in which the server becomes a source of infection. An anti-virus can’t protect a server file system, because such anti-viruses can’t cure databases, including mail server databases.

The latest malicious programs, undetected by all heuristic mechanisms, reach the virus monitoring laboratory, and thus their victims, only after criminals have begun spreading them.

It is imperative to take into account the probability of criminals being able to bypass a company’s security systems and access its network (or employees’ PCs) and also the possibility of criminals being able to impact the protection systems in use, with the goal of stopping their operation.

To minimize risks to mail servers in particular, user mailboxes should be scanned regularly with an anti-virus to check for the presence of previously unknown malicious programs.

No anti-virus can detect the newest malicious programs 100 percent of the time. Even tests designed to detect malicious programs created after the latest anti-virus update say nothing about an anti-virus’s capacity to reveal the ‘infection’ created by criminals familiar with the anti-virus. Such anti-virus programs will not be detected by an anti-virus right up to the moment the necessary update is received.

That’s why the choice of an anti-virus should not be based on “test” results, but on an understanding of the following features of an anti-virus system:

• An anti-virus has to have a reliable system of self-protection— criminals must not be able to disable the anti-virus (or one of its components).
• Anti-virus updating and control systems must be completely under the control of the anti-virus’s self-protection system and must not use system components that are not under its control.

Once a company’s computers fall into a botnet, they often become a source of spam, and that harms the company’s reputation among its partners. Using Dr.Web Mail Security Suite and Dr.Web Desktop Security Suite will significantly reduce a company’s risk of becoming compromised by being blacklisted and disconnected from the Internet for acting as a spam bot.

A system for scanning mail traffic must be installed on the server as well as on the work stations, because incoming and outgoing messages go not only through a company’s mail server, but also directly through employees’ PCs (via SMTP, pop3/imap4 and closed links). In addition, the mail server (or the programs installed on it) can create mailings, including unwanted messages.

For evaluation purposes, you can use the trial version. Download the distribution from Doctor Web's site at https://download.drweb.com/demoreq. The demo license period is 30 days.

You can also take advantage of the Dr.Web LiveDemo remote testing service by filling out an application at https://download.drweb.com/live_demo. It should be noted that when testing a product via Dr.Web LiveDemo, the accompanying step-by-step instructions on how to test the product’s basic functionality are tremendously helpful.

Yes. Dr.Web ATM Shield can be used not only for conventional OSs—Windows® XP Professional, Windows® Vista, Windows® 7 and Windows® 8—but also for Windows® XP Embedded, Windows® 7 Embedded, and Windows® 8 Embedded.

It must be remembered that some devices may lack various operating system components. This is a feature of Embedded OSs.

Dr.Web ATM Shield was developed with low-end platforms in mind¬¬¬. Dr.Web ATM Shield can run on an embedded device with just 512 MB of RAM.

It should be noted that Dr.Web products, including Dr.Web ATM Shield, are distinguished by compact virus databases and small size updates that make it possible to protect remote devices with ‘narrow’ Internet channel or a company network.

Dr.Web ATM Shield conforms to the anti-virus program requirements of the Federal Law on Personal Data (No. 152-FZ), FSTEC Russia’s orders No. 17 and No. 21, and other regulatory demands in the sphere of personal data protection.

When applied, Dr.Web ATM Shield meets the anti-virus program requirements of PCI DSS v2.0 and v3.0 standards.

PCI DSS standards require only the fact that an anti-virus is being used and don’t make any claims about the functionality and features of the solution being used. Moreover, these standards stipulate the requirements for protecting devices in general, not their separate components. Therefore, the certificate isn’t provided for anti-viruses.

‘But Symantec has a PCI DSS certificate of compliance!’

Symantec has more than just anti-viruses in its portfolio. And the certificate you mentioned doesn’t belong to anti-virus software.

A peculiarity of the way embedded devices work (including ATMs) is that you cannot carry out updates (specifically, updates to the OS and applications launched on them) on them that may at some point require a device reboot as soon as update data is available — even if the system is busy.

Therefore, Dr.Web ATM Shield has two types of updates: virus database updates (that don’t require system restarts) and updates for Dr.Web ATM Shield’s basic components, including the drivers. Basic components updates, carried out when new types of malicious programs appear, may require a reboot of the protected device.

Because updates that potentially require a system restart can only be carried out during routine maintenance checks, it’s essential for employee home and work PCs to be protected by an anti-virus in order to prevent the newest malicious programs from penetrating removable data-storage devices used for routine maintenance.

The following routes of infection are typical for embedded systems:

• An infected company intranet, if embedded systems can be accessed from it;
• Vulnerabilities that exist due to the absence of security updates;
• Employee removable data-storage devices (including those that have been used for purposes other than embedded systems maintenance);
• Hacker-owned removable data-storage devices, if the hackers have unauthorized access to ATM equipment compartments;
• Internet sites visited by company personnel during maintenance periods.

Therefore, anti-virus protection that includes a traffic control module and an access restriction module for removable data-storage devices and Internet resources is essential for embedded systems to operate normally.

Dr.Web ATM Shield is required in all embedded devices that are subject to the requirements of PCI DSS and STO BR RF, and in all systems that can be infected through unknown vulnerabilities.

No, you cannot, because Dr.Web CureNet! requires the Wizard to be installed on a LAN PC. This is, however, a great advantage of Dr.Web CureNet! — and you can launch the utility from USB data storage

Yes, you can. Dr.Web CureNet! is designed to operate in a network environment protected with other security products.

If the Dr.Web CureNet! serial number is not registered yet, please register it on this page. At the final stage of registration a link to download Dr.Web CureNet! personal distribution file will be generated.

If the Dr.Web CureNet! serial number is already registered, go to Dr.Web CureNet! personal area and download your Dr.Web CureNet! personal distribution file.

Download the program distribution demo file to evaluate Dr.Web CureNet! Remote curing is not available in demo version so you need to purchase a license to download fully functional Dr.Web CureNet! version.

You can register it on this page. At the final stage of registration a link to download Dr.Web CureNet! personal distribution file will be generated.

In order to update Dr.Web CureNet!, you need to log into the Dr.Web CureNet! user personal area and download the latest version from there. Since a PC from which a LAN is scanned might not have an Internet access or its an access blocked by the provider, we strongly recommend to download an actual Dr.Web CureNet! version before scanning your network. Unique Dr.Web CureNet! distribution files are generated for each user.

You can use Dr.Web CureNet! for regular scans of your local network hosts if they are not protected by any other anti-virus, or if you suspect that the installed product doesn't detect some viruses.

Caution! Dr.Web CureNet! is not designed to provide constant anti-virus protection but perform only one-time scans. It doesn’t prevent malicious programs from infiltrating into a network between scanning sessions.

The product is licensed per number of workstations on which scanning followed by curing will be performed for 10, 30 or 365 days of use. Such license periods are used because Dr.Web CureNet! is designed for regular scanning but not to provide resident protection.

No anti-virus can detect all malicious programs currently in the wild, let alone the fact different anti-viruses vary significantly in terms of detection and curing capabilities. The number of viruses in the Internet is huge and new species appear very quickly. Regular local network “health” checks with Dr.Web CureNet! will help you verify reliability of your anti-virus software and cure computers in emergency situations when your anti-virus fails to neutralize a threat.

Register the serial number for the valid Dr.Web Enterprise Suite license.
You are allowed to use Dr.Web Enterprise CureNet! free of charge as long as the Dr.Web Enterprise Suite serial number is valid. However, your Dr.Web CureNet! personal distribution file will only be valid for 1 day. Therefore, you will have to register the serial number every time you need Dr.Web CureNet!. Every time a new Dr.Web CureNet! personal distribution file will be generated for you.

Dr.Web CureIt! is used to scan individual PCs and can fulfil needs of small companies. However, if there are many computers in the company, scanning each of them will take a lot of system administrator time and distract employees form their work. Dr.Web CureNet! allows performing scanning remotely over a network in the background so that a user can remain unaware of it. System administrator can operate from the single computer thus minimizing anti-virus influence on the performance of computers being scanned.

Dr.Web Enterprise Suite is designed to permanently protect the network. It is a very powerful product rich of numerous features. In order to use Dr.Web Enterprise Suite one has to deploy it on all hosts while with Dr.Web CureNet! you won’t need to deploy or install anything. Moreover, scanners will remove themselves from target hosts upon completion of scanning.