-
File Anti-Virus protects the file system of the virtual machine against infiltration by malware. It can scan the activity of all applications in real time or on demand.
-
Mail Anti-Virus scans incoming and outgoing emails for viruses and other malware.
-
Web Anti-Virus intercepts and blocks execution of malicious scripts on websites. It protects data transmitted via the HTTP and FTP protocols, and blocks access to blacklisted (phishing or suspicious) URLs.
-
IM Anti-Virus protects information exchanged via instant messengers.
-
Firewall monitors and filters traffic according to the configured network rules.
-
Network Attack Blocker scans inbound network traffic for activity that is typical of network attacks.
-
Network Monitor provides information about current network activity of the virtual machine.
-
System Watcher collects data on the activity of applications on the virtual machine and passes this information to other components for more reliable protection of the virtual machine.
-
Application Startup Control runs on the protected virtual machine according to allow and block rules that are specified by the administrator of the local area network. Rules can be created on the basis of application categories that are provided by Kaspersky Lab or conditions that are specified by the administrator of the local area network.
-
Application Privilege Control blocks application activity on the protected virtual machine depending on the level of application danger and the reputation information that Kaspersky Lab provides.
-
Vulnerability Monitor detects vulnerabilities both in applications that are started on the virtual machine and in all applications that are installed on the virtual machine.
-
Device Control allows you to you set flexible restrictions on access to data storage devices and data transmission devices connected to the virtual machine.
-
Web Control allows you to limit or block users' access to web resources according to rules. Categories of web content, data types, and individual web addresses or their groups can be specified as rule parameters.
-
Protection has been improved through interaction with Kaspersky Security Network that provides up-to-date information on the reputation of files and web addresses.
-
Centralized management of application instances and database updates on protected virtual machine via Kaspersky Security Center using group policies and group tasks.
-
Faster scanning of protected virtual machines and reduced load on hypervisor's resources owing to the centralized cache of scan results.
-
Reduced load on the disk subsystem owing to intelligent scanning of files.
-
Monitoring of the execution of scan tasks and scan threads: limiting the number of simultaneous scan tasks running on a single protected virtual machine, configuring the number of Anti-Virus kernel scan threads on the SVM, and configuring the number of scan threads on the side of Light Agent.
-
Centralized storage of databases and optimized Light Agent databases' updates.
-
Automatic detection of the SVM by Light Agent.
-
Possibility to deploy the protection solution on a resource pool of Citrix XenServer hypervisors.
-
Possibility to deploy the protection solution on Windows Server 2008 R2 Hyper-V and Windows Server 2012 Hyper-V hypervisors in a cluster.
-
Support of disinfection scenarios that involve direct access to guest operating system's processes on the protected virtual machine.