[Topic 87342]

Frequently asked questions

Getting Started

• How to install the Kaspersky Protection extension in browsers
• How to manage computer protection remotely
• How to configure Kaspersky Small Office Security notifications

Security

• How to run a Full Scan
• How to run a Quick Scan
• How to start an update of databases and application modules
• How to restore a deleted or disinfected file
• How to recover the operating system after infection

Performance

• How to terminate an app that slows down your computer
• How to reserve operating system resources
• How to enable the Focused Work Mode
• How to update applications installed on the computer
• How to do backups

Privacy

• How to protect your online purchases
• How to keep websites from collecting data about you
• How to check website security
• How to protect your passwords online
• How to protect your webcam

Page top

[Topic 144975]

Data provision

This section contains information on the specific data that you provide to Kaspersky. The Saving data to the application operation report subsection contains data that are stored locally on your computer and are not sent to Kaspersky.

[Topic 144976]

Data provision under the End User License Agreement

Information on the specific data that are provided to Kaspersky if you have installed a version of the application that is not intended for use in the European Union, the United Kingdom, Brazil, Vietnam, or by California residents is contained in the End User License Agreement (the license.txt file) in the application installation folder.

[Topic 175193]

Data provision under the End User License Agreement on the territory of the European Union, the United Kingdom, Brazil, Vietnam, or by California residents

This section contains information on the specific data that are provided to Kaspersky if you have installed the application version which is intended for use in the European Union, the United Kingdom, Brazil, Vietnam, or by California residents.

The information mentioned in this section does not contain any personal data of the User.

The information received is protected by the Rightholder in the manner prescribed by the law and is required for the operation of the Software made available to use under the license.

Kaspersky may use the acquired statistical data based on the information received to monitor trends in computer security threats and publish reports on those threats.

[Topic 144978]

Saving data to the application operation report

Report files can contain personal data obtained as a result of the operation of protection components, such as File Anti-Virus, Mail Anti-Virus, Safe Browsing, Anti-Spam, and Web Policy Management.

Report files can contain the following personal data:

• IP address of the user's device
• Online browsing history
• Blocked links
• Versions of the browser and operating system
• Names of cookies and other files and paths to them
• Email address, sender, message subject, message text, user names, and list of contacts

Report files are stored locally on your computer and are not transmitted to Kaspersky. Path to report files: %allusersprofile%\Kaspersky Lab\AVP21.14\Report\Database.

The maximum number of records that can be displayed in each section of the report file is 10000.

Reports are stored in the following files:

• reports.db
• reports.db-wal
• reports.db-shm (does not contain any personal data)

Report files are protected against unauthorized access if self-defense is enabled in Kaspersky Small Office Security. If self-defense is disabled, report files are not protected.

[Topic 144977]

Data provision to Kaspersky Security Network

The scope of data transmitted to Kaspersky Security Network is described in the Kaspersky Security Network Statement.

To view the Kaspersky Security Network Statement:

1. Open the main application window.
2. Click the button in the lower part of the application window.

   This opens the Settings window.

3. Go to Security settings → Kaspersky Security Network.

   The Kaspersky Security Network window opens showing the details of Kaspersky Security Network and Kaspersky Security Network participation settings.

4. Click the Kaspersky Security Network Statement link to open the text of the Kaspersky Security Network Statement.

Page top

[Topic 248517]

Locally processed data

This section contains information on data that is collected and processed locally. The data is used to send statistics about product errors to improve its functionality.

• Software component ID
• Version of the Software component
• Source file path
• Number of the string in the script where the error has occurred
• Name of the module in which the failure probably occurred
• Software module ID
• Nested error occurred during the application operation
• Error type
• Text of the error message
• Memory stack of the Software process failure
• Address for the Software module loading
• Process system ID (PID)
• Size of the object being processed
• Description of an object being processed as defined in the object properties
• Attribute data

[Topic 178754]

Saving data for Technical Support

The application processes and stores the following personal data for further analysis by Technical Support:

• Data that is displayed in the application interface:
  • Email address used to connect to Kaspersky Small Office Security Management Console
  • Website addresses that were added to the exclusions (displayed in the Safe Browsing, Anti-Banner, Private Browsing, and Network components, and in the Reports window)
  • License data

  This data is stored locally in a non-modified form and can be viewed under any user account on the computer.

• Data on the system memory of Kaspersky Small Office Security processes at the moment when a memory dump is created.
• Data that is gathered when traces are enabled.

This data is stored locally in a modified form and can be viewed under any user account on the computer. This data is transmitted to Kaspersky only with your consent when contacting Technical Support. To learn more about the data, click the Support Statement link in the Support Tools window.

[Topic 160950]

About using the application in the European Union, the United Kingdom, Brazil, Vietnam, or by California residents

The versions of the application that Kaspersky and our partners distribute in the European Union, the United Kingdom, Brazil, Vietnam (as well as the versions intended to be used by California residents) meet the requirements of the regulations governing the collection and processing of personal data that have been established in these regions.

To install the application, you must accept the End User License Agreement and the terms of the Privacy Policy.

In addition, the Setup Wizard prompts you to accept the following provisions regarding how your personal data is processed:

• Kaspersky Security Network Statement. This statement allows Kaspersky experts to promptly receive information about threats detected on your computer, about applications being run and signed applications being downloaded, as well as operating system information to improve your protection.
• Statement regarding data processing for marketing purposes. This statement allows us to create more valuable offers for you.
• Statement regarding data processing while using Anti-Spam. This statement allows Kaspersky experts to receive data in order to improve the Anti-Spam component.

You can accept or decline the Kaspersky Security Network Statement and Statement regarding data processing for marketing purposes at any time from the Settings → Security settings → Kaspersky Security Network window.

[Topic 119653]

What's new

The following new features and improvements are introduced in Kaspersky Small Office Security:

• You can now search the functionality of the application.
• The Kaspersky application now complies with regulations governing the collection and processing of personal data in Vietnam.
• Now you can resize the security news window. This functionality is not always available.
• Problems with resizing the main window of the application have been resolved. The application now remembers the size of the screen in case of a restart.
• Improved text of the notification that suggests installing Kaspersky Password Manager. The installation status of the application is also displayed.

Functionality that was removed in the current and previous versions of the application

[Topic 118604]

Comparison of application functions depending on the type of operating system

The table below compares Kaspersky Small Office Security functions depending on the type of operating system (personal computer or file server).

The list of functions is the same for Personal Computer and Terminal Server.

Comparison of Kaspersky Small Office Security functions

Page top

[Topic 43520]

Hardware and software requirements

General requirements

• 1500 MB free disk space on the hard drive
• Processor that supports the SSE2 instruction set (except ARM)
• Internet access (for the application installation and activation, for the use of Kaspersky Security Network, and for updating databases and application modules)
• Microsoft Windows Installer 4.5 or later
• Microsoft .NET Framework 4 or later
• Webcam access protection is provided only for compatible webcam models

When deploying on a personal computer

For the Safe Browsing, Anti-Banner, and Safe Money protection components to work, the Base Filtering Engine service must be running in the operating system.

Terminal server support

When installed on a personal computer, the application supports multisession terminal connections for the following operating systems:

• Microsoft Windows 10 Enterprise for Virtual Desktops (EVD)
• Microsoft Windows 7 Enterprise for Virtual Desktops (EVD)
• Microsoft Windows Server 2022
• Microsoft Windows Server 2019
• Microsoft Windows Server 2016
• Microsoft Windows Server 2012 R2
• Microsoft Windows Server 2012
• Microsoft Windows Server 2008 R2

Browser support

The following browsers support installing the Kaspersky Protection extension:

• Chromium-based Microsoft Edge 77.x – 117.x;
• Mozilla Firefox versions 52.x – 117.x, including Mozilla Firefox MSIX 94.x;
• Mozilla Firefox ESR 52.x, 60.x, 68.x, 78.x, 91.x, 102.x, 115.x;
• Google Chrome versions 48.x – 117.x.

The following browsers support On-Screen Keyboard and scanning of encrypted connections:

• Chromium-based Microsoft Edge 77.x – 117.x;
• Mozilla Firefox versions 52.x – 117.x, including Mozilla Firefox MSIX 94.x;
• Mozilla Firefox ESR 52.x, 60.x, 68.x, 78.x, 91.x, 102.x, 115.x;
• Google Chrome 48.x – 117.x.

The following browsers support Protected Browser mode:

• Microsoft Internet Explorer 8.0, 9.0, 10.0, 11.0;
• Chromium-based Microsoft Edge 77.x – 117.x;
• Mozilla Firefox versions 52.x – 117.x, excluding Mozilla Firefox MSIX 94.x in Protected Browser mode;
• Mozilla Firefox ESR 52.x, 60.x, 68.x, 78.x, 91.x, 102.x, 115.x;
• Google Chrome 48.x – 117.x;
• Yandex Browser 18.3.1 – 22.9.5, 23.x (with limitations).

Newer versions of browsers can be supported if the browser supports the corresponding technology.

Kaspersky Small Office Security supports Google Chrome and Mozilla Firefox in 32-bit and in 64-bit operating systems.

Requirements for tablet computers

• Microsoft Windows 7, Microsoft Windows 8, Microsoft Windows 8.1, Microsoft Windows 10, Microsoft Windows 11;
• Intel Celeron processor with a clock speed of 1.66 GHz or faster;
• 1000 MB free RAM.

Requirements for netbooks

• Intel Atom CPU 1.60 GHz or faster;
• 1024 MB free RAM;
• 10.1-inch display with 1024x768 screen resolution;
• Intel GMA 950 graphics core or later.

The requirements for Kaspersky Password Manager are available in the help files of this application.

When deploying on a file server

Kaspersky Small Office Security cannot be installed on Microsoft Windows Server Datacenter and on file servers running in Server Core mode.

Page top

[Topic 149022]

Compatibility with other Kaspersky applications

Kaspersky VPN functionality is not available in some regions.

Kaspersky Small Office Security is compatible with the following Kaspersky applications:

• Kaspersky Safe Kids 1.5 and Safe Kids 2023
• Kaspersky Password Manager 10.0, 10.1, 10.2, 10.3, 2023, 2023.1, 2023.2
• Kaspersky Software Updater 2.1
• Kaspersky Virus Removal Tool 2015, 2020
• Kaspersky VPN Secure Connection 4.0, 5.0, 5.1, 5.2, 5.3, 5.4, 5.5, 5.6, 5.7, 5.8, 5.9, 5.13, 5.14, 5.15

Kaspersky Small Office Security that is installed on a file server is compatible with Kaspersky Security for Microsoft Exchange Servers 9.0 Maintenance Release 6 or higher (including hotfix 1) and Kaspersky Security for Microsoft Exchange Servers 9.0 Maintenance Release 6. For proper operation of Kaspersky Small Office Security File Server together with those applications:

• Disable Mail Anti-Virus.
• Disable Safe Browsing or in the Safe Browsing settings add the web addresses of Exchange Web Services to the list of trusted URLs (Safe Browsing settings → Advanced Settings → Trusted URLs).

[Topic 226833]

How to install or remove the application

[Topic 43538]

How to install the application

Kaspersky created a special version of the application for residents of the U.S. state of California. If you are a resident of the U.S. state of California, you need to download and install this version of the application.

The application is installed to your computer in interactive mode using the Setup Wizard.

Installation on a file server or personal computer is performed from the same installation package. The application will operate in Personal Computer mode if option Use to protect Terminal server - RDTS is selected during installation. For more details, please refer to the Comparison of application functions depending on the type of operating system section.

The Wizard consists of a series of windows (steps). The number and sequence of steps in the Wizard depend on the region where you install the application. In some regions, the Wizard prompts you to accept additional agreements regarding how your personal data is processed. To stop the Wizard's activity at any step of installation, close the Wizard window.

If the application will be used to protect more than one computer (with the maximum number of computers defined by the terms of the End User License Agreement), the installation procedure will be identical on all computers.

To install the application on your computer,

• If you are using an installation disk, insert the disk into the disk drive and follow the instructions on your screen.
• If you have downloaded the application from the Internet, launch it. The application is then installed using the standard Setup Wizard. In this case, the Wizard displays several additional installation steps for some localization languages.

You can also install the application from the command prompt.

The Setup Wizard goes through the following steps:

1. Starting installation

   During this step, the Wizard prompts you to install the application.

   During installation of Kaspersky Small Office Security, you can additionally install the following applications:

   • Kaspersky VPN Secure Connection, which enables Kaspersky VPN functionality using Virtual Private Network (VPN) technology.

   Kaspersky VPN functionality is not available in some regions.

   • Kaspersky Password Manager for protecting passwords.

   You can uninstall Kaspersky VPN Secure Connection and Kaspersky Password Manager independently of Kaspersky Small Office Security.

   Depending on the installation type and the localization language, during this step the Wizard may prompt you to view the End User License Agreement concluded between you and Kaspersky, and ask whether you want to participate in Kaspersky Security Network.

   Reviewing the End User License Agreement

   This step of the Wizard is displayed for some localization languages when installing the application downloaded from the Internet.

   During this step, the Wizard prompts you to review the End User License Agreement concluded between you and Kaspersky.

   Read the End User License Agreement thoroughly and, if you agree with all of its terms, click Continue (this button is called Accept in some regions).

   In some versions of the application, the End User License Agreement can be opened by clicking the link on the Wizard welcome screen. In this case, only the Back button is available on the window containing the text of the End User License Agreement. By clicking the Continue button, you accept the terms of the End User License Agreement.

   Installation of the application to your computer then continues.

   If the terms of the End User License Agreement are not accepted, the application will not be installed.

   In some regions, you must also accept the terms of the Privacy Policy to continue installation of the application.

   Reviewing the Kaspersky Security Network Statement

   During this step, the Wizard invites you to participate in Kaspersky Security Network. Participation in the program involves sending information about threats detected on your computer, running applications, and downloaded signed applications, as well as information about your operating system, to AO Kaspersky Lab. No personal data received from you is collected, processed, or stored.

   Review the Kaspersky Security Network Statement. If you accept all of its terms, in the Wizard window, click the Accept button.

   If you do not want to participate in Kaspersky Security Network, click the Decline button.

   After you accept or decline participation in Kaspersky Security Network, application installation continues.

   In some application versions, the Kaspersky Security Network Statement includes information about personal data processing.

2. Installing the application

   Installation of the application can take some time. Wait for it to finish. Upon installation completion, the Setup Wizard automatically proceeds to the next step.

   Checks during application installation

   The application performs several checks during installation. These checks may detect the following problems:

   • Non-compliance of the operating system with the software requirements. During installation the Wizard checks the following conditions:
     • Whether the operating system and Service Pack meet the software requirements;
     • All the required applications are available;
     • The amount of free disk space is enough for installation;
     • The user installing the application has administrator privileges.

     If any of the above-listed requirements is not met, a corresponding notification is displayed.

   • Presence of incompatible applications on the computer. If any incompatible applications are detected, they are displayed in a list on the screen, and you will be prompted to remove them. Applications that cannot be removed automatically must be manually removed by clicking the Remove manually button.

   When removing incompatible applications, you will need to restart your operating system, after which installation of Kaspersky Small Office Security continues automatically.

3. Completing the installation

   During this step, the Wizard informs you of the completion of application installation.

   All necessary application components will be automatically started immediately after installation is complete.

   In some cases, you may need to restart your operating system to complete installation.

Along with the application, plug-ins for browsers are installed to ensure safe Internet browsing.

Page top

[Topic 43545]

How to activate the application

The Activation Wizard is started at the first launch of Kaspersky Small Office Security.

Activation is the process of making operational a fully functional version of the application for a specified period of time.

Remote management of licensing and protection of connected devices becomes available only after you create the account of the organization's manager or administrator on Kaspersky Small Office Security Management Console. You can create an account in the account connection window during application activation. This account will be used to install Kaspersky Small Office Security on computers and mobile devices of employees. After creating the account, register your license for Kaspersky Small Office Security on Kaspersky Small Office Security Management Console.

To activate the application:

The following options for Kaspersky Small Office Security activation are offered:

• If you have purchased a license to use the application, enter the activation code in the text box and click Activate.
• If your account has a current license, click Receive license from your account.

  Enter your email address and password and connect to the Kaspersky Small Office Security Management Console to activate the application.

• If you want to install a trial version of the application before you make the decision to purchase a license, click Try for free. You will be able to use the application and all of its features during a short evaluation period. When the trial license expires, the trial version of the application cannot be activated for a second time.

During application activation, you may have to register on Kaspersky Small Office Security Management Console. You can create an account in the connection window.

An Internet connection is required for activation of the application.

[Topic 97156]

Kaspersky Protection browser extension

In order for Kaspersky Small Office Security to fully support browsers, the Kaspersky Protection extension must be installed and enabled in the browsers. The Kaspersky Protection extension injects a script into the web page opened in Protected Browser and into traffic. The application uses this script to interact with the web page and to transmit data to banks whose websites are protected by the Safe Money component. The application protects data transmitted by the script using a digital signature. The application can embed the script without using the Kaspersky Protection extension.

The application signs data transmitted by the script using the installed anti-virus databases and requests to Kaspersky Security Network. The application sends requests to Kaspersky Security Network regardless of whether or not you accepted the terms of the Kaspersky Security Network Statement.

When working with your browser, the Kaspersky Protection extension allows you to:

Manage Private Browsing

Manage Anti-Banner

Inform about suspected phishing

Inform about website problem

Open On-Screen Keyboard

Installing the Kaspersky Protection extension in Chromium-based Microsoft Edge, Mozilla Firefox, and Google Chrome

Automatic installation of Kaspersky Protection extension in Chromium-based Microsoft Edge, Mozilla Firefox, and Google Chrome is not available. You must download and install the Kaspersky Protection extension manually. You can download and install the extension from the notification window that is displayed when you start the browser for the first time after installing the application. Alternatively, you can download and install the extension from the application window.

How to download and install Kaspersky Protection extension in Chromium-based Microsoft Edge, Mozilla Firefox, and Google Chrome

Yandex Browser support

When using Yandex Browser, the following application components are operating:

• Protected Browser;
• URL Advisor;
• Safe Browsing;
• Anti-Phishing.

The Private Browsing and Anti-Banner components operate but cannot be configured in Yandex Browser.

Internet Explorer support

Kaspersky Protection does not support Internet Explorer.

[Topic 43539]

How to uninstall the application

After removing the application, your computer and personal data will be unprotected.

The application is removed using the Setup Wizard.

How to uninstall the application in Windows 7

How to uninstall the application in Windows 8 or later

Removal involves the following steps:

1. To remove the application, you must enter the password for accessing the application settings. If you cannot specify the password for any reason, application removal will be prohibited.

   This step is displayed if a password has been set for application removal.

2. Saving data for future use

   During this step you can specify which of the data used by the application you want to keep for further use during the next installation of the application (for example, when installing a newer version of the application).

You can save the following data:

• License details lets you use the existing license in the future, if it will not have expired at the time of installation, instead of activating the application.
• Quarantine files are files scanned by the application and moved to Quarantine.

• After the application is removed from the computer, quarantined files become unavailable. To perform operations with these files, Kaspersky Small Office Security must be installed.

• Operational settings of the application are values of application settings selected when configuring the application.

  You can also export the protection settings at the command prompt, by using the following command: avp.com EXPORT <file_name>.

• iChecker data are files that contain information about objects that have already been scanned using
  iChecker technology

  iChecker is a technology that increases the speed of anti-virus scans by excluding objects that have remained unchanged since their last scan, provided that the scan parameters (the anti-virus database and settings) have not changed. The information for each file is stored in a special database. This technology is used in both real-time protection and on-demand scan modes.

  For example, you have an archive file that was scanned by a Kaspersky application and assigned not infected status. Next time, the application will skip this archive unless the archive has been altered or the scan settings have been changed. If you altered the archive content by adding a new object to it, modified the scan settings, or updated the anti-virus database, the archive is re-scanned.

  Limitations of iChecker technology:

  • This technology does not work with large files, since it is faster to scan a file than to check whether the file has been modified since it was last scanned.
  • The technology supports a limited number of formats (EXE, DLL, LNK, TTF, INF, SYS, COM, CHM, ZIP, RAR).
  .
• Anti-Spam databases are databases with specimens of spam messages added by the user.
• Secret Vault are files placed in storage using Secret Vault functionality.

  Transfer of the settings from a Personal Computer application to the File Server one and vice versa is not supported.

1. Confirming removal

   Since removing the application threatens the security of your computer and personal data, you will be asked to confirm your intention to remove the application. To do this, click the Remove button.

2. Completing removal

During this step, the Wizard removes the application from your computer. Wait until removal is complete.

This functionality may be unavailable in some regions.

During removal of the application, you must restart your operating system. If you cancel an immediate restart, completion of the removal procedure is postponed until the operating system is restarted or the computer is turned off and then started up.

Page top

[Topic 71677]

How to update Kaspersky Small Office Security

The application is updated automatically if you select the Automatically update mode in the update settings window (Security → Anti-Virus Database Update → Databases update schedule).

The application is automatically updated if you install a new version of the application over the previous one. When you update the application, all your settings are preserved.

If the user has paused scanning tasks at the moment when the update arrives, the application will force these tasks to stop and will run the update. Active scanning tasks are not forced to stop.

Installing Kaspersky Small Office Security over Kaspersky Small Office Security 5, 6 or 7

If you install Kaspersky Small Office Security on a computer where Kaspersky Small Office Security 5, 6, or 7 is already installed, the following types of data will be unavailable:

• Anti-Spam databases
• Files in Quarantine

If you have a current license for a previous version of Kaspersky Small Office Security, you do not need to activate the application. The Setup Wizard will automatically retrieve information about the license for the previous version of Kaspersky Small Office Security and apply it during installation of Kaspersky Small Office Security.

While downloading the update, the application compares the previous and new versions of the End User License Agreement, Kaspersky Security Network Statement, and Statement regarding data processing for marketing purposes. If the texts of agreements and/or statements are not identical, the application prompts you to read and accept them again.

Certain limitations apply to the upgrade from the previous version.

If you had previously created a container in Kaspersky Small Office Security 4, on first access to the container, Kaspersky Small Office Security converts it to a Secret Vault. Files in the Secret Vault become available when the conversion is complete. It may take a long time to convert containers to Secret Vaults.

The application can be upgraded if the following versions of Kaspersky Small Office Security are installed on your computer:

• Kaspersky Small Office Security 5
• Kaspersky Small Office Security 6
• Kaspersky Small Office Security 7

Limitations on upgrades from a previous version of the application

Upgrading from Kaspersky Small Office Security entails the following limitations and special considerations:

• After an upgrade from a previous version, Kaspersky Small Office Security starts automatically even if automatic startup of the application is disabled in the settings that have been saved. When the operating system restarts afterwards, Kaspersky Small Office Security does not start automatically if automatic startup of the application is disabled in the settings that have been saved.
• If there was no System Watcher component in the previous version of Kaspersky Small Office Security on a file server, this component will be enabled by default when upgrading to a new version. If you upgrade from a version of Kaspersky Small Office Security which already includes the System Watcher component, the settings of this component are saved.

[Topic 69238]

Application licensing

This section covers the main aspects of application licensing.

[Topic 35505]

About the End User License Agreement

The End User License Agreement (License Agreement) is a binding agreement between you and AO Kaspersky Lab that stipulates the terms on which you may use the application.

Carefully read the License Agreement before you start using the application.

By confirming that you agree with the License Agreement when installing the application or starting it for the first time, you accept the terms of the License Agreement. If you do not accept the terms of the License Agreement, cancel application installation and do not use the application.

[Topic 70647]

About the license

Functionality is not available in some regions.

A license is a time-limited right to use Kaspersky Small Office Security, granted under the terms of the signed License Contract (End User License Agreement).

The scope of services and validity period depend on the license under which the application is used.

The following license types are provided:

• Trial

  A free license intended for trying out the application. A trial license usually has a short term.

  When a trial license expires, all Kaspersky Small Office Security features become disabled. To continue using the application, you need to purchase a commercial license.

  You can use the application under a trial license for only one trial period.

• Commercial

  A paid license.

  When a commercial license expires, key features of the application become disabled. To continue using Kaspersky Small Office Security, you must renew your commercial license. After a commercial license expires, you cannot continue using the application and must remove it from your device.

  We recommend renewing your license before it expires, to ensure uninterrupted protection against all security threats.

Before purchasing a license, you can get a free trial version of Kaspersky Small Office Security. The trial version of Kaspersky Small Office Security remains functional during a short evaluation period. After the evaluation period expires, all the features of Kaspersky Small Office Security are disabled. To continue using the application, you must purchase a license.

Kaspersky Small Office Security can be installed on the following devices:

• Microsoft Windows
• Microsoft Windows Server
• Android (Kaspersky Small Office Security version for that operating system)
• macOS (Kaspersky Small Office Security version for that operating system)

A license for Kaspersky Small Office Security entitles you to use Kaspersky Password Manager.

You also get access to Kaspersky Small Office Security Management Console for managing device protection.

[Topic 71345]

About the subscription

The subscription determines your application usage settings (subscription expiration date and the number of protected devices).

You can subscribe through a service provider (for example, your Internet provider). You can pause or resume your subscription, renew it automatically, or cancel it. You can manage your subscription in your account on the website of the service provider through which you subscribed. Depending on the service provider, the set of subscription management options may vary.

To activate the subscription on your device, apply the activation code received from your service provider. In some cases, an activation code can be downloaded and applied automatically.

If another license is already active in the application when you get a subscription from a service provider, the application will be used with the subscription from the service provider. Your current license can be used on a different device until it expires.

A subscription can be unlimited (with no expiration date) or limited (for example, to one year). Unlimited subscriptions are renewed automatically as long as timely prepayment has been made to the service provider. To continue using the application after a limited subscription expires, you must take steps to renew it.

When using the application with a subscription that you got through a service provider, you cannot add a reserve activation code to keep the subscription going.

If you did not renew the subscription, or the service provider was unable to renew your subscription automatically, once it expires, you may be granted a grace period to renew the subscription; the functionality of the application remains available during the grace period. The application may switch to limited functionality mode when the grace period expires. If the service provider does not provide a grace period or a limited functionality mode, all functionality of the application stops being available when the subscription expires.

Page top

[Topic 71010]

About the activation code

An activation code is a code that you receive when you purchase a license for Kaspersky Small Office Security. This code is required for activating the application.

The activation code is a unique sequence of twenty digits and Latin letters in the format xxxxx-xxxxx-xxxxx-xxxxx.

Depending on how you purchased the application, you can obtain the activation code in one of the following ways:

• When you purchase a boxed version of Kaspersky Small Office Security, an activation code is provided in the manual or on the retail box that contains the installation CD.
• When you purchase Kaspersky Small Office Security from an online store, an activation code is emailed to the address that you have specified when ordering.

The license term expiration countdown starts from the date when you activate the application. If you have purchased a license for the use of Kaspersky Small Office Security on several devices, the license term starts counting down from the moment you first apply the activation code.

We recommend that you create a Kaspersky Small Office Security Management Console account so that you do not lose your activation code when you reinstall your operating system, install the application on a new device or reinstall the application on your current device. You can create a Kaspersky Small Office Security Management Console account at the time of application installation and activation. If you didn't create a Kaspersky Small Office Security Management Console account at the time of application installation and activation, you can also create an account in the application after you install it.

If you delete your activation code by mistake or lose it, you can try to restore it.

[Topic 140542]

How to restore activation codes

If you have lost an activation code that was previously provided to you, you can restore it using one of the following methods:

• If you have a Kaspersky Small Office Security Management Console account, you can find your activation codes in the Licenses section of the Kaspersky Small Office Security Management Console website.
• If you have do not have a Kaspersky Small Office Security Management Console account, but the application is installed and activated on one of your devices, you can create a Kaspersky Small Office Security Management Console account on this device and use it to connect to Kaspersky Small Office Security Management Console. The application sends information about your license to the account. The activation code will be displayed in the Licenses section of the Kaspersky Small Office Security Management Console website.
• If you have neither a Kaspersky Small Office Security Management Console account nor an activated application on any of your devices, then please contact Technical Support.

[Topic 71235]

How to purchase or renew a license

If your license has expired, you can renew it in the user interface of the application. If you were using a trial version of the application, you can purchase a license.

To purchase or renew a license:

1. Open the main application window.
2. Go to the Profile section and do one of the following:
   • To renew the license, click Renew now.
   • If your trial license has expired, click Buy now.

   This opens the website of Kaspersky Online Store or a partner company where you can renew or purchase a license.

3. When you renew or purchase the license, an activation code is sent to the specified email address.
4. Activate the application using that activation code.

[Topic 214985]

Renewing the license using a reserve activation code

If you have a new activation code, you can add it to the application to be used as a reserve code. When the current license expires, the application is activated automatically with the reserve activation code. This way, you can ensure uninterrupted protection for your device.

There are cases when you cannot add a reserve activation code.

To add a reserve activation code:

1. Open the main application window.
2. Go to the Profile section.
3. Under license information, click the three dots and select Enter activation code.
4. In the entry field, enter the activation code and click the Save activation code button.

The reserve activation code will be displayed in the License details window.

If you enter a reserve activation code that was issued for multiple devices, you must follow the steps to apply the reserve code on all devices where you want to renew the license automatically.

An attempt to activate and fully verify the reserve code will be made when the current license expires, or if the license key is removed from the device. The application verifies the expiration date of the reserve activation code, the maximum number of devices that the license can be used on, as well as the compatibility of the license with the installed version of the application. During the activation of a reserve activation code, a connection to the Kaspersky Small Office Security Management Console account may be required.

If the reserve activation code that you are adding has already been applied on this device or on another device, the activation date for the purpose of renewing the license using the reserve code is the date on which the application was activated with this code for the first time. To renew the license, add a reserve activation code that has an expiration date later than the expiration date of the license currently used by the application.

If the application did not automatically activate with a reserve activation code, you can activate it manually by clicking the Try again button. If the current license key is blocked, you can activate the application using a reserve activation code by clicking Activate now.

It can take up to 24 hours after purchase before the correct license status is displayed.

[Topic 94055]

About limited functionality mode

The table below shows which Kaspersky Small Office Security features are available and which are unavailable when the application is in limited functionality mode. If the value in the Limited functionality mode column is "yes", this means that the relevant functionality is available in limited functionality mode. If the value in the Limited functionality mode column is "no", the relevant functionality is unavailable. Additional information is available in the Restrictions column.

Functions of Kaspersky Small Office Security in limited functionality mode

Page top

[Topic 85309]

Remote management of computer protection

This section provides information on remote management of computer protection at your organization via Kaspersky Small Office Security Management Console.

[Topic 85310]

About remote management of computer protection

If Kaspersky Small Office Security is installed on computers of your organization, you can manage protection of such computers remotely. Computer protection can be managed remotely via the Kaspersky Small Office Security Management Console website.

The sequence for configuring remote management of computers is as follows:

1. Registering the administrator account via the Kaspersky Small Office Security Management Console website
2. Registering the license for Kaspersky Small Office Security via the Kaspersky Small Office Security Management Console website
3. Connecting devices whose protection you want to manage remotely to the Kaspersky Small Office Security Management Console website in the administrator account

The Kaspersky Small Office Security Management Console website lets you perform the following tasks vital to computer security at your organization:

• View the list of computer security problems and fix them remotely
• Scan the computer for viruses and other threats
• Update anti-virus databases and application modules
• Configure Kaspersky Small Office Security components

If a computer scan is started from the Kaspersky Small Office Security Management Console website, Kaspersky Small Office Security processes objects that are detected automatically without your involvement. On detecting a virus or other threat, Kaspersky Small Office Security attempts to perform disinfection without rebooting the computer. If disinfection without restarting the computer is impossible, the list of computer security problems on the Kaspersky Small Office Security Management Console website shows a message to the effect that the computer needs restarting to perform disinfection.

If the list of detected objects on the Kaspersky Small Office Security Management Console website includes more than 10 items, they are grouped. In this case, the detected objects can be processed via the website only together without the ability to examine each object separately. To view separately objects in this case, you are advised to use the interface of the application installed on the computer.

[Topic 101735]

About Kaspersky Small Office Security Management Console account

To sign in to the Kaspersky Small Office Security Management Console website as well as to use the website and certain Kaspersky applications, you need an account.

If you do not have an account yet, you can create one on the website or in the application in the process of connecting the device to your account.

Page top

[Topic 85311]

Connecting the computer to Kaspersky Small Office Security Management Console

You can sign in to the Kaspersky Small Office Security Management Console account using your email address and password, or with your Google, Facebook, or Apple account. If you already have an account, you can configure quick sign-in with your Google, Facebook, or Apple account in the window used for connecting your device to the Kaspersky Small Office Security Management Console account. This is possible if, when creating the Kaspersky Small Office Security Management Console account, you used the email address from your Google, Facebook, or Apple account.

Signing in with Facebook, Google and Apple is not available in some regions. For more details on restrictions in Russia, please see this article (available only in English and Russian).

To connect the computer to Kaspersky Small Office Security Management Console:

1. Install Kaspersky Small Office Security on the computer whose protection you want to manage.
2. Open the main application window.
3. Go to the Profile section.
4. In the Sign in to Management Console block, click the Sign in button.
5. Enter the administrator password. This step is available if protection of access to application management is enabled.
6. In the account connection window, select the connection method that you find the most convenient:
   • Sign in with an email address. Enter your email address in the text box. A message with a password creation link is sent to the specified email address.

     If you have configured two-step verification in your Kaspersky Small Office Security Management Console account, a text message containing the verification code is sent to your phone. In the entry field, enter the verification code and click Continue.

   • Sign in with Google, Facebook, or Apple account.
     1. Click Sign in with Google, Sign in with Facebook, or Sign in with Apple.

        This opens a browser window; in that window, sign in to your Google, Facebook, or Apple account and allow the application to gain access to your email address.

        If you do not have a Google, Facebook, or Apple account, you can create one and proceed with configuring quick sign-in to Kaspersky Small Office Security Management Console.

        If two-step verification is configured for your Kaspersky Small Office Security Management Console account, configure quick sign-in in your account on the Kaspersky Small Office Security Management Console website then go back to the application and sign in with Google, Facebook, or Apple.

        If you are using the Microsoft Edge browser, to configure the sign-in to Kaspersky Small Office Security Management Console, you will need a version of Microsoft Edge based on Chromium 77.x or later. In case of a connection error, select a different browser as your default browser, install the latest version of the Microsoft Edge browser, or update the Microsoft Windows operating system.

     2. Go back to the application and proceed with creating the account by clicking Continue. Follow subsequent on-screen instructions.

        Your device will be connected to your Kaspersky Small Office Security Management Console account. In addition, you can set up a password for your account on the Kaspersky Small Office Security Management Console website.

        Data processing when signing in to the account

        When you sign in to your Kaspersky Small Office Security Management Console account with Google, Facebook, or Apple, the following data is processed:

        • Rightholder's resource ID
        • Value generated for request verification
        • Token type
        • URI to which the response of the authentication provider is sent

        When you sign in to the account on a service provider website using authentication providers, the following data is processed:

        • Rightholder's resource ID
        • Token used for authorization in the service provider's infrastructure
        • Token type
        • Parameters requested from the authentication providers
        • URI to which the response of the authentication provider is sent

   In some regions, the application prompts you to read and accept the Statement regarding data processing for purpose of using Web-Portal. If you accept the terms of the statement, click Accept.

After a successful connection, the Profile section displays information about your connection to Kaspersky Small Office Security Management Console. You can now manage protection of this computer remotely via Kaspersky Small Office Security Management Console.

‎

[Topic 183017]

How to configure checking password strength for remote access to the file server

Kaspersky Small Office Security checks the strength of the password of your Windows account that is used for remote access to the file server.

Kaspersky Small Office Security uses the following criteria to check password strength:

• Time of last password change
• Minimum number of characters that a password should contain

To configure password strength checking:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to the Privacy settings section.
4. In the Privacy settings window, click the Secure Data Input button.
5. In the Windows account password strength check section, perform the following actions:
   • Select the Warn about out-of-date password in ... check box and then select a period of time after which the application will notify you about the outdated password.
   • In the Recommend changing password in ... drop-down list, select a period of time after which the application will recommend you to change your password.
   • Select the Warn if minimum allowed password length in Windows settings is less than ... check box if you want the application to check the minimum password length set in the Windows policy for this device. If the password length in the Windows policy is less than the value specified here, Kaspersky Small Office Security will show you a notification that suggests increasing the minimum password length in the Windows policy.

Page top

[Topic 229661]

Basic functionality of the application

In this section you will learn about basic setup of the application, including configuring notifications and user interface, and how to fix security issues that may arise.

[Topic 70907]

Assessing computer protection status and resolving security issues

Problems with computer protection are symbolized by an indicator located in the upper part of the main application window. Green indicates that your computer is protected. Yellow indicates that there are protection problems and red indicates that your computer's security is at serious risk. You are advised to fix problems and security threats immediately.

You can open the Notification Center window by clicking the Details button in the main application window. This window provides detailed information about the protection status of the computer and suggests possible actions for rectifying problems and threats.

Problems with protection are grouped by categories. For each problem, a list is displayed of actions that you can take to solve the problem.

The Status section displays information about the computer protection status and subscription status. If problems are detected that must be fixed, a Fix button is displayed next to the notification; you can fix security problems by clicking this button.

The Recommendations section lists actions that should be performed to optimize operation of the application and use it more effectively.

The News section displays cybersecurity news.

Clicking the Show N ignored notifications button displays notifications to which the Ignore action has been applied. Ignored notifications do not affect the color of the protection indicator in the main application window.

Page top

[Topic 221186]

How to fix security issues on your PC

To fix security issues on your PC:

1. Open the main application window.
2. Click on the Details link in the upper part of the main application window to go to the Notification Center window.
3. Go to the Status section. This section displays security issues on your PC.
   • Select an issue from the list and click an action button, e.g. Fix.
   • Select Ignore from the drop-down list if you do not want to fix this issue now. You can view the list of ignored notifications later by clicking the Show N ignored notifications button.
4. Go to the Recommendations section. This section displays recommendations that are not mandatory but will help you optimize your usage of the application and better protect your PC.
   1. Select a suggestion from the list.
   2. Click the button next to a suggested action; for example, click the Enable button next to the Want to get rid of noisy pop-up ads? suggestion.
5. Go to the News section. In this section, you will find cybersecurity news. Use the navigation buttons to read the next news item or to go back to the previous news.

Page top

[Topic 230368]

Application activity log and detailed report

In the main window, you can view a brief overview of all actions performed by the application in the course of operation. This information helps you understand exactly how the application protects your device and your data.

To view the timeline:

1. Open the main application window.

   In the Home section, look under Timeline to see a brief activity history of the application.

2. To view the activity history of the application, click View all.

   This opens a window with a detailed description of actions taken by the application and the time when events occurred.

3. To view a detailed report of the application, click View reports.

   This takes you to the Reports window.

You can also view the detailed report by clicking Reports in the Security section. The Reports window displays data in the form of a table. For convenient viewing of reports, you can select various filtering options.

Page top

[Topic 201574]

How to configure the application interface

This section contains information on how to configure the interface of the application.

[Topic 201575]

How to configure application notifications

Notifications that appear in the taskbar notification area inform you of application events that require your attention. Depending on how critical the event is, you may receive the following types of notifications:

• Critical notifications inform you of events that have critical importance for the computer's security, such as detection of a malicious object or dangerous activity in the operating system. Windows used for critical notifications and pop-up messages are red.
• Important notifications inform you of events that are potentially important for the computer's security, such as detection of a probably infected object or suspicious activity in the operating system. Windows used for important notifications and pop-up messages are yellow.
• Information notifications inform you of events that do not have critical importance for the computer's security. Windows used for information notifications and pop-up messages are green.

  If a notification is displayed on the screen, you should select one of the options that are suggested in the notification. The optimal option is the one recommended as the default by Kaspersky experts. A notification can be closed automatically when the computer is restarted, when Kaspersky Small Office Security is quit, or in Connected Standby mode in Windows 8. Intrusion Prevention notifications are closed automatically after 500 seconds. Notifications about the startup of the application are closed after 1 hour. When a notification is closed automatically, Kaspersky Small Office Security performs the default recommended action.

Click the links below to learn how to configure the application notifications.

How to configure delivery of notifications

How to configure delivery of notifications containing news and special offers from Kaspersky

How to enable notification sounds

Page top

[Topic 201577]

How to change the application design theme

The capability to change the application design theme is not available in some regions.

To change the application design theme:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Interface settings section.
4. In the Design theme block, select the Use a custom design theme check box if you want to use a custom design theme. Click Select and enter the path to the ZIP archive or folder containing the files with the custom design theme.

The design theme is applied after application restart.

Page top

[Topic 201576]

How to configure the application icon

In this section, you will learn about configuring the application icon on your desktop and in the notification area.

How to change the application icon

How to change the icon in the notification area depending on the protection status

Page top

[Topic 70756]

How to password-protect access to the application management functions

A single computer may be shared by several users with various levels of experience and computer literacy. Unrestricted access of different users to the application and its settings may compromise the level of computer security.

To restrict access to the application, you can define an administrator password for the KLAdmin account. This user has unlimited rights to manage and modify the settings of the application, and to assign application access permissions to other users. After you create a password for KLAdmin, you can assign application access permissions to various users or groups of users.

To create a KLAdmin administrator password:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Interface settings section.
4. Switch the Password protection toggle to On.
5. In the opened window, fill in the User name (KLAdmin is recommended), Enter password and Confirm password fields.

   Tips on creating a strong password:

   • The password must contain at least eight and no more than 128 characters.
   • The password contains at least one number.
   • The password contains both lowercase and uppercase letters.
   • The password must contain at least one special character (for example: ! @ # $ % ^ & *).
6. Click the Save button.

A forgotten password cannot be recovered. If you have forgotten your password, contact Technical Support to recover access to the application settings.

The user KLAdmin can assign permissions to the following users and user groups:

• Everyone user group. This group includes all users of the operating system. If you grant this group permission to perform a particular action, then group users will always be allowed to perform this action, even if a specific user or a user group belonging to the Everyone user group does not have individual permission to perform the action. By default, members of the Everyone group are not allowed to perform any actions.
• <system user>. By default, the selected user is not allowed to perform any actions. This means that when you try to perform a prohibited action, you will be prompted to enter your KLAdmin account password.

How to add a user or user group

How to edit permissions for a user or user group

How to allow an action for an individual user or user group

How to forbid an action for an individual user or user group

When you try to perform any action from the list in the Add permissions for a user or a group window, the application will ask you to enter a password. In the password window, enter the username and password for the current user account. The action will be executed if the specified account has permission to perform this action. In the password window, you can specify the time interval during which the user will not have to reenter the password.

In the password window, you can switch the input language only by pressing ALT+SHIFT. Any other shortcuts will not switch the input language, even if that shortcut is configured in the operating system.

Page top

[Topic 70884]

How to restore the default settings of the application

You can restore the application settings recommended by Kaspersky experts at any time. When the settings are restored, the Optimal security level is set for all protection components.

To restore the default settings of the application:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Manage settings section.
4. Click the Restore link to run the Settings Restore Wizard.
5. Click the Next button.

   The window of the Wizard shows the progress of restoring the application settings back to the default settings configured by Kaspersky experts.

6. After the default application settings restoration process is finished, click Done.

[Topic 82867]

How to apply the application settings on another computer

Having configured Kaspersky Small Office Security in a particular way, you can then apply the settings on another computer. As a result, Kaspersky Small Office Security will be configured identically on both computers.

Kaspersky Small Office Security settings are saved in a configuration file that you can move from one computer to another.

The settings of Kaspersky Small Office Security are moved from one computer to another in three steps:

1. Save Kaspersky Small Office Security settings to configuration file.
2. Move the configuration file to the other computer (for example, by email or on a removable drive).
3. Import the settings from the configuration file to Kaspersky Small Office Security that is installed on the other computer.

How to export settings

How to import settings

[Topic 70886]

How to pause and resume computer protection

Pausing protection means temporarily disabling all protection components for some time.

When protection is paused or Kaspersky Small Office Security is not running, the activity of the applications running on your computer is monitored. Information about the results of monitoring of application activity is saved in the operating system. When Kaspersky Small Office Security is started again or protection is resumed, the application uses this information to protect your computer from malicious actions that may have been performed when protection was paused or when Kaspersky Small Office Security was not running. Information about the results of monitoring of application activity is stored indefinitely. This information is deleted if Kaspersky Small Office Security is removed from your computer.

To pause computer protection:

1. In the context menu of Kaspersky Small Office Security icon located in the taskbar notification area, select the Pause protection item.

   The Pause protection window opens.

2. In the Pause protection window, select the time interval after which protection will be resumed:
   • Pause for – protection is enabled after expiration of the time interval selected from the drop-down list.
   • Pause until application restart – protection is enabled after the application is started again or the operating system is restarted (if the application automatically starts on startup).
   • Pause – protection will be resumed when you decide to resume it.
3. Click the Pause protection button and confirm your choice in the window that opens.

How to resume computer protection

Page top

[Topic 256059]

Searching the functionality of the application

You can search the functionality of the application in the header of the main window. Clicking the text box takes you to the Search results window.

The application searches:

• For exact matches with the text you entered; typos are not taken into account
• Among all names of functions and settings

Search results are displayed as cards which take you to the relevant screen of the application when clicked.

[Topic 226944]

Security

Today's hackers are getting smarter in their target to break into your devices. New ransomware, phishing and other malware types call out for new cybersecurity solutions to get you a step ahead the growing threats. We created Kaspersky Small Office Security to help you stay on top of today's threats. Find out what you can do to feel secured.

[Topic 82511]

Scanning the computer

During scanning, the application searches for infected files and malware. There are several types of scans that vary in their search duration and scope.

• Full Scan. Scans all areas of the computer. This scan requires a lot of time to complete.
• Quick Scan. Scans objects that are loaded when the operating system starts as well as system memory and boot files. This scan does not require a lot of time to complete.
• Selective Scan. Scans the selected file or folder.
• Removable drives scan. Scan of removable drives, such as hard drives and USB sticks connected to the computer.
• Instant File Scan. This option scans files from the context menu.
• Background Scan. Scan of system memory, the system partition, boot sectors, and startup objects, as well as rootkits search.

This functionality is unavailable if Kaspersky Small Office Security is installed on a file server.

• Application Vulnerability Scan. Scan the computer for vulnerabilities in applications that malware can exploit to infect your system.

After you install the application, we recommend that you perform a full scan of your computer.

[Topic 70771]

How to run a Full Scan

During a full scan, the application scans the following objects by default:

• System memory;
• Objects loaded on operating system startup;
• System backup storage;
• Hard drives and removable drives.

We recommend running a full scan immediately after installing the application to your computer.

To run a Full Scan:

1. Open the main window of the application and go to the Security section.
2. In the Scan block, click the Choose scan button.

   This opens the Scan window.

3. In the Scan window select the Full Scan section.
4. In the drop-down list next to the Run button, select the action to perform when the scan is complete.
5. Click the Run button.

The application starts a full scan of your computer.

Page top

[Topic 70905]

How to run a Custom Scan

A Selective Scan lets you scan a file, folder, or drive for viruses and other threats.

To run a Custom Scan:

1. Open the main application window.
2. Go to the Security section.
3. In the Scan block, click the Choose scan button.

   This opens the Scan window.

4. In the Scan window select the Selective Scan section.
5. Click the Select button and specify an object in the file or folder selection window that opens.
6. Click the Run button.

Page top

[Topic 70775]

How to run a Quick Scan

During a quick scan, the application scans the following objects by default:

• Objects loaded on operating system startup;
• System memory;
• Disk boot sectors.

To run a Quick Scan:

1. Open the main window of the application and perform the following actions:
   • Go to Home section, and click the Quick Scan button.
   • Go to the Security section.
     1. In the Scan block, click the Choose scan button.
     2. This opens the Scan window.
     3. In the Scan window select the Quick Scan section.
     4. In the Quick Scan section, click the Run button.

The application starts a quick scan of your computer.

Page top

[Topic 199671]

How to run a removable drive scan

Removable drives that you connect to the computer may contain viruses or other applications that present a threat. Kaspersky Small Office Security scans removable drives to prevent your computer from becoming infected. You can configure a removable drive scan to be started manually or automatically when a removable drive is connected to the computer. Automatic scanning of removable drives is enabled by default.

To run a removable drive scan manually:

1. Open the main application window.
2. Go to the Security section.
3. In the Scan block, click the Choose scan button.

   This opens the Scan window.

4. In the Scan window select the Removable Drive Scan section.
5. In the drop-down list, select the drive letter of the external device and click on the Run button.

The application will start scanning the connected device.

Page top

[Topic 199673]

How to run a Context Menu File or Folder Scan

To run a Context Menu File or Folder Scan:

1. Right-click on the file or folder that needs to be scanned.
2. In the context menu that opens, select Scan for viruses.

The application will start scanning the selected file or folder.

In Microsoft Windows 11, you must expand the context menu of an object to see the application commands.

Page top

[Topic 199672]

How to enable or disable a background scan

A Background scan is an automatic scan mode that does not display notifications. This scan requires fewer computer resources than other types of scans (for example, Full Scan). When in this mode, the application scans the system memory, system volumes, boot sectors and startup objects, and searches for rootkits.

This functionality is unavailable if Kaspersky Small Office Security is installed on a file server.

A background scan is started in the following cases:

• After the databases and application modules are updated
• 30 minutes after application launch
• Every six hours
• If the computer remains idle for five or more minutes (after the screen saver is started)

A background scan is interrupted when any of the following conditions is met:

• The computer becomes active again.
• The computer (laptop) switches to battery mode.

If a background scan has not been performed for over ten days, the scan is not stopped. When running a background scan, the application does not scan files whose contents are located in OneDrive cloud storage.

To enable or disable a background scan:

1. Open the main application window.
2. Go to the Security section.
3. In the Scan block, click the Choose scan button.

   This opens the Scan window.

4. Click the icon in the Background scan block.

   This opens the Background scan settings window.

5. In the Background scan settings window, switch the toggle to On or Off.

Page top

[Topic 202599]

How to create a scan schedule

To create a scan schedule:

1. Open the main application window.
2. Go to the Security section.
3. In the Scan block, click the Choose scan button.

   This opens the Scan window.

4. In the Scan window, select the type of scan and click the icon.
5. In the opened window, click the Scan schedule link to proceed to the Scan schedule window.
6. In the Scan schedule window, in the Run scan list, select a period, such as Daily, and specify the time to start the scan.

A scan schedule cannot be created for the Scan from Context Menu or Background Scan.

Page top

[Topic 70776]

How to search for vulnerabilities in applications installed on your computer

Applications installed on your computer may have vulnerabilities that can be exploited by malware. Scanning your computer will help find these vulnerabilities and prevent infection of your computer.

To run the Application Vulnerability Scan:

1. Open the main application window.
2. Go to the Security section.
3. In the Scan block, click the Choose scan button.

   This opens the Scan window.

4. In the Scan window select the Application Vulnerability Scan section.
5. Click the Run button.

The application starts scanning your computer for vulnerabilities in applications.

Page top

[Topic 227390]

How to exclude a file, folder, or threat type from scanning

To exclude a file, folder, or threat type from scanning:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Security settings → Exclusions and actions on object detection.
4. Click the Manage exclusions link to open the Exclusions window.
5. Click the Add button.
6. Add an exclusion in one of the following ways:
   • Click Browse and select the folder or file that you want to exclude from scanning. Click the Select button.
   • In the File or folder field, enter the full name or mask of the file or folder.
   • In the Object field, enter the full name or mask of the threat type in accordance with the Kaspersky classification of detected object.
   • If you fill in both fields, File or folder and Object, the specified file or folder is not scanned for the specified threat type.
   • In the File hash field, enter the hash if you want files to be excluded from scanning by their hashes.
7. Clear the check boxes for protection components that the exclusion rule must not apply to. Enter a comment if you like.
8. Select the Active status for the rule and click Add.

Specified objects are excluded from scanning.

For details about the settings, see the Exclusions and actions on object detection window

Page top

[Topic 172863]

Scanning files in OneDrive cloud storage

In Windows 10 RS3 or later, Kaspersky Small Office Security does not scan files in OneDrive cloud storage. If the application detects such files during a scan, it shows a notification stating that the files in cloud storage were not scanned.

The following components do not scan files in OneDrive cloud storage:

• Full Scan
• Selective Scan
• Quick Scan
• Background Scan

The report on the operation of Kaspersky Small Office Security contains a list of files in OneDrive cloud storage that were skipped during scan.

Files downloaded from OneDrive cloud storage to a local computer are scanned by real-time protection components. If a file scan was postponed and the file has been uploaded back to OneDrive cloud storage before the scan is started, this file may be skipped during a scan.

When running applications and scripts, the Intrusion Prevention and System Watcher components download applications from the OneDrive cloud storage to the local computer to scan.

In order to make sure that OneDrive files are displayed in Explorer, turn on the Files on demand in the OneDrive client application feature. If you are connected to the Internet, you can use them just like any other files on your computer.

[Topic 70772]

Updating anti-virus databases and application modules

This section contains information about database and application module updates.

[Topic 93957]

About updating databases and application modules

The installation package of the application includes databases and application modules. Using these databases:

• The application detects the majority of threats using Kaspersky Security Network, which requires an Internet connection.
• The application detects adware, auto dialers, and other legitimate software that can be used by intruders to damage your computer or personal data.

To get full protection, we recommend updating the anti-virus databases and application modules as soon as the application has been installed.

Databases and application modules are updated in stages:

1. The application starts updating databases and application modules according to the specified settings: automatically, on schedule, or on demand. The application contacts an update source that stores an anti-virus databases and application modules update package. To complete the installation of the update package for application modules, the computer must be restarted.
2. The application compares the existing databases with the databases available at the update source. If the databases are different, the application downloads the missing parts of the databases.

The application then uses the updated databases and application modules to scan the computer for viruses and other threats.

Update sources

You can use the following update sources:

• Kaspersky update servers
• HTTP or FTP server
• Network folder

Special considerations involved in updating anti-virus databases and application modules

Updates of anti-virus databases and application modules are subject to the following restrictions and specifics:

• Anti-virus databases are considered out of date after one day and extremely out of date after seven days.
• To download an update package from Kaspersky servers, an Internet connection is required.
• Updates of anti-virus databases and application modules are unavailable in the following cases:
  • The license has expired, and the grace period or limited functionality mode is not available.
  • A metered mobile Internet connection is used. This limitation applies on computers running under Microsoft Windows 8 or more recent versions of this operating system if automatic updates or scheduled updates are enabled and a traffic limit has been set for a metered mobile connection. If you want the application to update anti-virus databases and application modules in this case, clear the Limit traffic on metered connections check box in Settings → Security settings → Advanced settings → Network settings.
  • The application is used under subscription from a service provider, and you have suspended your subscription on the website of the service provider.

Installing an update package

When an update package (patch) is received, the application installs it automatically. To complete the installation of an update package, you must restart the computer. Until the computer is restarted, the application icon in the notification area is red, and the application Notification Center window displays a prompt to restart the computer.

Page top

[Topic 93958]

How to start an update of databases and application modules

By default, databases and application modules are updated automatically. You do not need to take any action. If automatic updates are disabled, you can update application databases and modules manually.

To start an update of databases and application modules:

1. Open the main application window.
2. Go to the Security section.
3. In the Anti-Virus Database Update window, click the Update button.

[Topic 70909]

Intrusion Prevention

Kaspersky Small Office Security helps to minimize the risk associated with using unknown applications (such as the risk of infection with viruses and other malware).

Kaspersky Small Office Security includes components and tools that allow checking an application's reputation and controlling its activities on your computer.

[Topic 70910]

About Intrusion Prevention

The Intrusion Prevention component prevents applications from performing actions that may be dangerous for the operating system, and controls access to operating system resources (including file resources located on remote computers) and your personal data.

Intrusion Prevention tracks actions performed in the operating system by applications installed on the computer and regulates them based on rules. These rules restrict suspicious activity of applications, including access by applications to protected resources, such as files and folders, registry keys, and network addresses.

On 64-bit operating systems, applications' rights for the following actions cannot be configured:

• Direct access to physical memory
• Managing printer driver
• Service creation
• Service reading
• Service editing
• Service reconfiguration
• Service management
• Service start
• Service removal
• Access to internal browser data
• Access to critical objects of the operating system
• Access to password storage
• Setting debug privileges
• Use of program interfaces of the operating system
• Use of program interfaces of the operating system (DNS)
• Use of program interfaces of other applications
• Change system modules (KnownDlls)
• Start drivers

On 64-bit Microsoft Windows 8 and Microsoft Windows 10, applications' rights for the following actions cannot be configured:

• Sending windows messages to other processes
• Suspicious operations
• Installation of keyloggers
• Interception of inbound stream events
• Making of screenshots

Applications' network activity is controlled by the Firewall component.

When an application is started on the computer for the first time, Intrusion Prevention checks the safety of the application and assigns it to a group (Trusted, Untrusted, High Restricted, or Low Restricted). The group defines the rules that Kaspersky Small Office Security applies for controlling the activity of the application.

Kaspersky Small Office Security assigns applications to trust groups (Trusted, Untrusted, High Restricted, or Low Restricted) only if Intrusion Prevention or Firewall is enabled, and also when both these components are enabled. If both these components are disabled, the functionality that assigns applications to trust groups does not work.

You can edit application control rules manually.

The rules you create for applications are inherited by child applications. For example, if you deny all network activity for cmd.exe, that activity will also be denied for notepad.exe when it is started using cmd.exe. When an application is not a child of the application it runs from, rules are not inherited.

[Topic 82507]

How to change Intrusion Prevention settings

To change Intrusion Prevention settings:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Security settings section.
4. Select the Intrusion Prevention component.
5. In the Intrusion Prevention settings window, click the Manage applications link to open the Manage applications window.
6. Select the application you need in the list and double-click its name to open the Application rules window.
7. To configure the rules for access by an application to operating system resources:
   1. On the Files and system registry tab, select the relevant resource category.
   2. Click the icon in the column with an available action for the resource (Read, Write, Delete, or Create) to open the menu. In the menu, select the relevant item (Inherit, Allow, Ask user, or Deny).
8. To configure the rights of an application to perform various actions in the operating system:
   1. On the Rights tab, select the relevant category of rights.
   2. In the Action column, click the icon to open the menu and select the relevant item (Inherit, Allow, Ask user, or Deny).
9. To configure the rights of an application to perform various actions on the network:
   1. On the Network rules tab, click the Add button.

      This opens the Network rule window.

   2. In the window that opens, specify the required rule settings and click Save.
   3. Assign a priority to the new rule. To do so, select the rule and move it up or down the list.
10. To exclude certain application actions from the scan, on the Exclusions tab, select the check boxes for actions that you do not want to be controlled.
11. Click the Save button.

    All exclusions created in the Intrusion Prevention rules are accessible in Kaspersky Small Office Security settings window, in the Exclusions and actions on object detection section.

Intrusion Prevention monitors and restricts the actions of the application in accordance with the specified settings.

Page top

[Topic 70908]

Checking application reputation

Kaspersky Small Office Security allows you to verify the reputation of applications with users all over the world. The reputation of an application comprises the following criteria:

• Name of the vendor;
• Information about the
  digital signature

  An encrypted block of data embedded in a document or application. A digital signature is used to identify the author of the document or application. To create a digital signature, the document or application author must have a digital certificate proving the author's identity.

  A digital signature lets you verify the data source and data integrity and protect yourself against counterfeits.

  (if the application is digitally signed);
• Information about the group to which the application has been assigned by Intrusion Prevention or most users of Kaspersky Security Network;
• Number of users of Kaspersky Security Network who use the application (available if the application has been included in the Trusted group in the Kaspersky Security Network database);
• Time at which the application become known to Kaspersky Security Network;
• Countries in which the application is the most widespread.

Checking of application reputation is available if you have agreed to participate in Kaspersky Security Network.

To learn the reputation of an application:

Open the context menu of the application’s executable file and select Check reputation in KSN.

This opens a window with information about the reputation of the application in Kaspersky Security Network.

[Topic 222843]

Network Monitor

Network Monitor allows you to view your PC's network activity data in real time, block network activity, or create network and packet rules for applications installed on your PC.

To go to the Network Monitor settings:

1. Open the main application window.
2. Go to the Security section.
3. In the Network Monitor block, click the View button.

This opens the Network Monitor window.

The Network activity section displays all the currently active network connections. It displays both the inbound and outbound connections. You can use the Block all network activity link to block all network connections.

The Open ports section lists all the open network ports. You can also use this section to create network and packet rules for applications.

The Network traffic section displays the volume of inbound and outbound network traffic between your PC and other computers on your network.

The Blocked computers section contains a list of IP addresses for remote computers from which the Network Attack Blocker has detected network attack attempts and has blocked their network activity.

[Topic 82529]

Controlling users' activity on the computer and on the Internet

This section provides information about how to control users' actions on the computer and on the Internet by using Kaspersky Small Office Security.

In this section

Using Web Policy Management

Proceeding to the Web Policy Management settings

Controlling computer use

Controlling Internet use

Controlling startup of games and applications

Monitoring message contents

Viewing the report on a user's activity

[Topic 70773]

Using Web Policy Management

Web Policy Management allows monitoring actions performed by users on the local computer and online. You can use Web Policy Management to restrict access to Internet resources and applications, as well as view reports on users' activities.

Internet users face multiple threats:

• Loss of time and / or money when visiting chat rooms, gaming resources, online stores, and auctions
• Downloading of files infected with malware

Web Policy Management allows you to reduce the risks posed by computer and Internet use. To do this, the following functions are available:

• Limiting the time for computer and Internet use
• Creating lists of allowed and blocked games and applications, as well as temporarily restricting use of allowed applications
• Creating lists of allowed and blocked websites and selectively blocking categories of websites with inappropriate content
• Enabling safe search mode on search engines (links to websites with questionable content are not displayed in search results)
• Restricting file downloads from the Internet
• Blocking sending of certain personal data

You can configure features of Web Policy Management for each user account on a computer individually. If a user uses two accounts, for example, a local account of the operating system and a Microsoft user account, Web Policy Management settings should be configured for the Microsoft user account.

You can also view Web Policy Management reports on the activities of monitored users.

When the time zone changes, or when switching to and from daylight savings time, the following rules apply for using the computer and Internet, as well as for starting games and applications:

• If the date is not changed when the time zone changes, the current countdown until blocking continues without changes. The same rule applies when switching to or from daylight savings time.
• If the date is increased or decreased when the time zone changes, the time spent by the user is zeroed out and the countdown until blocking begins again.

Web Policy Management is unavailable if Kaspersky Small Office Security is installed on a file server.

In this Help section

Proceeding to the Web Policy Management settings

Controlling computer use

Controlling Internet use

Controlling startup of games and applications

Monitoring message contents

Viewing the report on a user's activity

Selecting a user profile

[Topic 82844]

Proceeding to the Web Policy Management settings

To go to the Web Policy Management settings:

1. Open the main application window.
2. Go to the Security section.
3. In the Web Policy Management block, click the Enable button.
4. If access to Web Policy Management settings is not password-protected, the application prompts the user to set a password. Select one of the following options:
   • To protect access to Web Policy Management settings with a password:
     1. Fill out the Password and Confirm password fields and click Continue.
     2. In the Password scope window, click the Create password button.
     3. In the Enter password window, confirm the password and click the Sign in button.
   • If you do not want to password-protect access to Web Policy Management settings, click the Skip link to continue to the Web Policy Management settings.

   The Web Policy Management window opens.

5. Select a user account and click the Configure restrictions link to open the Web Policy Management settings window.

[Topic 70787]

Controlling computer use

Web Policy Management allows you to limit the amount of time spent by the user at the computer. You can specify a time interval during which Web Policy Management should block access to the computer (bedtime), as well as a daily time limit on total computer use. You can specify different limit amounts for weekdays and for weekends.

To configure time limits on computer use:

1. Go to the Web Policy Management settings window.
2. In the Web Policy Management settings window, select the Computer section.
3. To specify a time interval during which Web Policy Management will block access to the computer, in the Weekdays and Weekends sections, select the Block access from N to N check box.
4. In the drop-down list next to the Block access from N check box, specify the block start time.
5. In the to N drop-down list, specify the block end time.

   Web Policy Management blocks the user's access to the computer during the specified time interval.

6. You can also set up a schedule of computer use by using a table. To view the table, click the button.

   Web Policy Management blocks the user's access to the computer by schedule specified in the table.

7. To set a time limit on total computer use during the day, in the Weekdays and Weekends sections, select the Allow access for no longer than N hours per day check box and, from the drop-down list next to the check box, select a time interval.

   Web Policy Management blocks the user's access to the computer when the total computer use during a day exceeds the specified amount of time.

8. To set up breaks in the user's sessions of computer use, in the Time breaks section, select the Take a break <time> for <duration> check box and then, from the drop-down lists next to the check box, select values for the frequency of breaks (for example, every hour) and their length (for example, 10 minutes).
9. Flip the toggle switch in the upper part of the window to Control is enabled .

Web Policy Management blocks the user's access to the computer in accordance with the specified settings.

[Topic 70785]

Controlling Internet use

By using Web Policy Management, you can limit time spent on the Internet and prohibit users from accessing certain categories of websites or specified websites. You can also prohibit the user from downloading files of certain types (such as archives or videos) from the Internet.

How to limit Internet use time

How to restrict visits of specific websites

How to block downloading of specific types of files

In this section

Web Policy Management. Exclusions

Add / Edit web address window

Information about website categories

[Topic 70783]

Controlling startup of games and applications

By using Web Policy Management, you can allow or prohibit the user to start games depending on their age rating. You can also prohibit the user from starting specified applications (such as games or IM clients) or limit the time allowed for using applications.

How to block games with age-inappropriate content

How to restrict startup of a specific application

In this section

Block games by categories

Application usage restriction window

Application usage window

[Topic 70789]

Monitoring message contents

By using Web Policy Management, you can monitor and prohibit the user's attempts to insert specified personal data (such as names, phone numbers, bank card numbers) into messages.

How to configure control of personal data transfer

In this section

List of personal data window

Add / Edit personal data window

[Topic 70769]

Viewing the report on a user's activity

You can access reports on the activity of each user account that is controlled by Web Policy Management, with separate reporting on each category of controlled events.

To view a report on the activity of a controlled user account:

1. Go to the Web Policy Management settings window.
2. Select a user account and click the View report link to go to the reports window.
3. In the section with the relevant type of restriction (for example, Internet), open the report on monitored actions by clicking the Details link.

The window displays a report on monitored actions of the user.

[Topic 82512]

Pre-Kaspersky virus removal

This section contains information on restoring the operating system after it has been infected with malware.

[Topic 40951]

Recovering the operating system after infection

If you suspect that the operating system of your computer has been corrupted or modified due to malware activity or a system failure, use the Microsoft Windows Troubleshooting Wizard, which clears the system of any traces of malicious objects. Kaspersky recommends that you run the Wizard after the computer has been disinfected to make sure that all threats and damage caused by infections have been fixed.

The Wizard checks whether there are any changes to the system, which can include access to the network being blocked, file name extensions for known formats being changed, Control Panel being blocked, etc. There are different reasons for these different kinds of damage. These reasons may include malware activity, incorrect system configuration, system failures, or malfunctioning applications for system optimization.

After the review is complete, the Wizard analyzes the information to evaluate whether there is system damage that requires immediate attention. Based on the review, the Wizard generates a list of actions that are necessary to eliminate the damage. The Wizard groups these actions by category based on the severity of the problems detected.

[Topic 82513]

Troubleshooting the operating system by using the Microsoft Windows Troubleshooting Wizard

To run the Microsoft Windows Troubleshooting Wizard:

1. Open the main application window.
2. Go to Security → Microsoft Windows Troubleshooting.
3. Click Find damage.

The Microsoft Windows Troubleshooting Wizard window opens.

The Wizard consists of a series of pages (steps), which you can navigate through by clicking the Back and Next buttons. To close the Wizard after it finishes, click the Done button. To stop the Wizard at any stage, click the Cancel button.

Let us review the steps of the Wizard in more detail.

Start recovery of the operating system

1. Select one of the two options for Wizard operation:
   • Search for damage caused by malware activity. The Wizard will search for problems and possible damages.
   • Roll back changes. The Wizard will roll back the fixes applied to previously identified problems and damages.
2. Click Next.

Search for problems

If you selected the Search for damage caused by malware activity option, the Wizard searches for problems and possible damages that should be fixed. When the search is complete, the Wizard proceeds automatically to the next step.

Select actions to fix damage

All damage found at the previous step is grouped based on the type of danger that it poses. For each damage group, Kaspersky recommends a set of actions to repair the damage.

There are three groups:

• Strongly recommended actions eliminate problems that pose a serious security threat. You are advised to repair all damage in this group.
• Recommended actions are aimed at repairing damage that may pose a threat. You are also advised to repair damage in this group.
• Additional actions repair operating system damage that is not dangerous now, but may pose a threat to the computer's security in the future.

Expand the list of the selected group to view damage within the group.

To get the Wizard to fix a specific type of damage, select the check box next to the damage description. By default, the Wizard fixes damage belonging to the groups of recommended and strongly recommended actions. If you do not want to fix a specific type of damage, clear the check box next to it.

It is strongly recommended that you not clear the check boxes selected by default, as doing so will leave your computer vulnerable to threats.

After you define the set of actions for the Wizard to perform, click the Next button.

Fix damage

The Wizard performs the actions selected during the previous step. It may take a while to fix damage. After fixing damage, the Wizard automatically proceeds to the next step.

Wizard completion

Click the Done button to exit the Wizard.

Page top

[Topic 96493]

Operating system emergency recovery

Kaspersky Rescue Disk is intended for emergency recovery of the operating system. You can use Kaspersky Rescue Disk for scanning and disinfecting infected computer that cannot be disinfected using other methods (for example, with anti-virus applications).

More details on using Kaspersky Rescue Disk are available on the Kaspersky Support website.

[Topic 70904]

How to restore a deleted or disinfected file

Backup copies of deleted or disinfected files are placed in a special folder on your computer, named Quarantine. Backup copies of files are stored in a special format that is not dangerous to your computer. You can restore deleted or disinfected file from the backup copy stored in Quarantine.

We recommend that you avoid restoring deleted or disinfected files since they may pose a threat to your computer.

The application does not disinfect Windows Store apps. If scanning results indicate that such an app is dangerous, it is deleted from your computer. When a Windows Store app is deleted, Kaspersky Small Office Security does not create a backup copy of it. To restore such objects, you must use the recovery tools included with the operating system (for detailed information, see the documentation for the operating system that is installed on your computer) or update apps via the Windows Store.

To restore deleted or disinfected file:

1. Open the main application window.
2. Go to the Security section.
3. In the upper-right corner of the application window, click the Quarantine button.

   This opens the Quarantine window.

4. In the Quarantine window that opens, select the required file from the list and click the Restore button.

Page top

[Topic 82514]

Protecting email

This section provides information about how to protect your email against spam, viruses, and other threats.

[Topic 70873]

Configuring Mail Anti-Virus

Kaspersky Small Office Security allows scanning email messages for dangerous objects by using Mail Anti-Virus. Mail Anti-Virus starts when the operating system is started and remains constantly in the RAM of the computer, scanning all email messages that are sent or received over the POP3, SMTP, IMAP, and NNTP protocols, as well as via encrypted connections (SSL) over the POP3, SMTP, and IMAP protocols.

By default, Mail Anti-Virus scans both incoming and outgoing messages. If necessary, you can enable scanning of incoming messages only.

To configure Mail Anti-Virus:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Security settings section.
4. In the Security settings window, select the Mail Anti-Virus component.

   This takes you to the Mail Anti-Virus settings window.

5. Make sure that the switch in the upper part of the window that enables / disables Mail Anti-Virus, is enabled.
6. Select a security level:
   • Optimal. When this security level is set, Mail Anti-Virus scans incoming and outgoing messages and attached archives, and performs heuristic analysis with the Medium scan level of detail.
   • Low. If you select this security level, Mail Anti-Virus scans incoming messages only, without scanning attached archives.
   • Extreme. When this security level is set, Mail Anti-Virus scans incoming and outgoing messages and attached archives, and performs heuristic analysis with the Deep scan level of detail.
7. In the Action on threat detection section, select the action that you want Mail Anti-Virus to perform when an infected object is detected (for example, disinfect).

If no threats are detected in an email message, or if all infected objects have been successfully disinfected, the message becomes available for further access. If the component fails to disinfect an infected object, Mail Anti-Virus renames or deletes the object from the message and adds a notification to the message subject line, stating that the message has been processed by Kaspersky Small Office Security. Before deleting an object, Kaspersky Small Office Security creates a backup copy of it and places a copy in Quarantine.

When you upgrade to a more recent application version, the user-configured Mail Anti-Virus settings are not saved. The new application version will use the default Mail Anti-Virus settings.

If Kaspersky Small Office Security detects the password for the archive in the message text during scanning, the password is used to scan the contents of that archive for malware. The password is not saved. The archive is unpacked before scanning. If the application crashes while unpacking the archive, you can manually delete the files that are unpacked at the following path: %systemroot%\temp. The files have the PR prefix.

Page top

[Topic 70766]

Blocking unwanted email (spam)

If you receive large amounts of unwanted messages (spam), we recommend that you enable the Anti-Spam component and set the Optimal security level for it.

This functionality is unavailable if Kaspersky Small Office Security is installed on a file server.

To enable Anti-Spam and set the Optimal security level:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Privacy settings section.
4. Select the Anti-Spam component.

   The window displays the settings of Anti-Spam.

5. Enable Anti-Spam using the switch.
6. In the Security level section, make sure that the Optimal security level is set.

The following limitations apply to Anti-Spam:

• The Anti-Spam component can only analyze messages that are fully downloaded from the mail server, regardless of the protocol used.
• The Anti-Spam component does not check mail transferred using MAPI protocol.

The Anti-Spam component is disabled when you upgrade to a more recent application version. You can enable the component manually.

In some versions of the application, to enable the Anti-Spam component, you must accept the terms of the Statement regarding data processing for Anti-Spam.

Page top

[Topic 41367]

Participating in Kaspersky Security Network

Kaspersky Small Office Security uses cloud protection to make protection of your computer more effective. Cloud protection is implemented using the Kaspersky Security Network infrastructure that uses data received from users all over the world.

Kaspersky Security Network (KSN) is the cloud-based knowledge base of Kaspersky containing information about the reputation of applications and websites. The use of data from Kaspersky Security Network ensures faster responses by Kaspersky Small Office Security to new threats, improves the performance of some protection components, and reduces the likelihood of false positives.

Users' participation in Kaspersky Security Network allows Kaspersky to promptly receive information about types and sources of new threats, develop solutions for neutralizing them, and minimize the number of false positives. Participation in Kaspersky Security Network lets you access reputation statistics for applications and websites.

If you participate in Kaspersky Security Network, you automatically send information about the configuration of your operating system and the start and completion time of processes in Kaspersky Small Office Security to Kaspersky.

[Topic 70882]

How to enable or disable participation in Kaspersky Security Network

Participation in Kaspersky Security Network is voluntary. You can enable or disable the use of Kaspersky Security Network (KSN) when installing Kaspersky Small Office Security and/or at any moment after the application is installed.

To enable or disable participation in Kaspersky Security Network:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Security settings → Kaspersky Security Network.

   The Kaspersky Security Network window opens showing the details of Kaspersky Security Network and Kaspersky Security Network participation settings.

4. Enable or disable participation in Kaspersky Security Network by using the toggle in the upper part of the window:
   • If you want to participate in Kaspersky Security Network, set the toggle to On.

     A window with the text of the Kaspersky Security Network Statement opens. If you accept the terms of the statement, click I agree.

   • If you do not want to participate in Kaspersky Security Network, set the toggle to Off.

In some versions of Kaspersky Small Office Security, the Kaspersky Security Network window shows the Kaspersky Security Network Statement instead of information about Kaspersky Security Network.

To accept Kaspersky Security Network Statement:

1. Click the Accept button in the Kaspersky Security Network Statement section.

   Kaspersky Security Network Statement opens. This statement allows Kaspersky experts to promptly receive information about threats detected on your computer, about applications being run and signed applications being downloaded, as well as operating system information to improve your protection.

2. If you accept the terms of the statement, click the Accept button.

To decline the Kaspersky Security Network Statement,

click the Decline button in the Kaspersky Security Network Statement section.

Page top

[Topic 70883]

How to check the connection to Kaspersky Security Network

Your connection to Kaspersky Security Network may be lost for the following reasons:

• You do not participate in Kaspersky Security Network.
• Your computer is not connected to the Internet.
• Current key status does not allow connecting to Kaspersky Security Network. For example, a connection to KSN may be unavailable due to the following reasons:
  • The application is not activated.
  • License or subscription has expired.

License key issues have been identified (for example, the key has been added to denylist).

To check the connection to Kaspersky Security Network:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

   Go to Security settings → Kaspersky Security Network.

The Kaspersky Security Network window shows the status of your connection to Kaspersky Security Network.

In some cases, Kaspersky may temporarily restrict requests to Kaspersky Security Network concerning the reputation of files. When temporary restrictions are imposed on requests for information from Kaspersky Security Network, the corresponding notification is displayed.

Page top

[Topic 179968]

Protection using hardware virtualization

In this section, you will learn how you can protect your computer using hardware virtualization.

[Topic 83057]

About protection using hardware virtualization

When Kaspersky Small Office Security is installed in 64-bit Microsoft Windows 8, Microsoft Windows 8.1 or Microsoft Windows 10, it uses

Protection using hardware virtualization is enabled by default. If protection has been disabled manually, you can enable it in the application settings window.

On computers running 64-bit Microsoft Windows 8, Microsoft Windows 8.1 or Microsoft Windows 10, the protection provided by Kaspersky Small Office Security hardware virtualization (hypervisor) has the following limitations:

• This feature is not available when a third-party hypervisor is running, such as the hypervisor used by the VMware virtualization software. After you close the third-party hypervisor, protection against screenshots becomes available again.
• The feature is not available if the CPU of your computer does not support hardware virtualization technology. For more details on whether your CPU supports hardware virtualization, please refer to the documentation shipped with your computer or to the website of the CPU manufacturer.
• The feature is not available if a third-party hypervisor (such as the VMware hypervisor) is running when you start Protected Browser.
• The feature is not available if hardware virtualization is disabled on your computer. For details on how to enable hardware virtualization on your computer, please refer to your computer's technical documentation or visit the website of your processor's manufacturer.
• The feature is not available if Device Guard is enabled in the Microsoft Windows 10 operating system.
• The feature is not available if Virtualization Based Security (VBS) is enabled in the Microsoft Windows 10 operating system.

[Topic 82967]

How to enable protection using hardware virtualization

To enable protection using hardware virtualization:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Privacy settings → Secure Data Input.
4. Select the Use hardware virtualization if available check box. This check box is displayed when the application is installed on a 64-bit version of Windows 8, Windows 8.1 and Windows 10.
5. Select the Use advanced features of hardware virtualization check box if you want to turn hardware virtualization on when the operating system starts.

If hardware virtualization is disabled on your computer, protection using hardware virtualization will be disabled.

Page top

[Topic 185853]

Protection using Antimalware Scan Interface (AMSI)

This section informs you that third-party applications such as Microsoft Office can send scripts to Kaspersky Small Office Security to be scanned using the Antimalware Scan Interface (AMSI), and describes how to disable protection using the AMSI in Kaspersky Small Office Security.

[Topic 185854]

About protection using Antimalware Scan Interface

Antimalware Scan Interface (AMSI) allows a third-party application that supports AMSI to send objects (for example, PowerShell scripts) to Kaspersky Small Office Security for additional scanning and to receive scan results for these objects. For example, Microsoft Office applications can be such third-party applications. For more information about the AMSI interface, refer to Microsoft documentation.

Antimalware Scan Interface allows only to detect a threat and notify a third-party application about the detected threat. After receiving the threat notification, the third-party application prevents malicious actions (for example, shuts down).

Kaspersky Small Office Security may decline a request from a third-party application if, for example, this application exceeds the maximum number of requests allowed for a period. In this case, Kaspersky Small Office Security displays a notification about the declined request. If you receive such a notification, you do not have to perform any actions.

Protection using Antimalware Scan Interface is available on Windows 10 Home / Pro / Education / Enterprise and Windows 11 Home / Pro / Enterprise operating systems.

[Topic 186113]

How to enable protection using Antimalware Scan Interface

To enable protection using Antimalware Scan Interface:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Security settings → AMSI Protection.
4. In the Script scanner section, select the Scan scripts using Antimalware Scan Interface (AMSI) check box.

Page top

[Topic 186114]

How to exclude a script from scanning using Antimalware Scan Interface

To exclude a script from scanning using Antimalware Scan Interface:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Security settings → AMSI Protection.
4. In the Script scanner section, select the Scan scripts using Antimalware Scan Interface (AMSI) check box.
5. Click the Manage exclusions link to go to the Exclusions window.
6. In the Exclusions window, click the Add button.

   The Add new exclusion window opens.

7. In the File or folder field, specify the folder with the script.
8. In the Object field, specify the name of the script.

   You can also add several files of the same type to the exclusions by using a mask.

9. In the Protection components section, select the check box next to the File Anti-Virus component.
10. Select the Active status.

The specified object will not be scanned using Antimalware Scan Interface.

Page top

[Topic 203269]

Performance

If your device slows down or hangs up, you are not alone. Sometimes apps refuse to open or a browser will fail to respond at a crucial time. There are multiple reasons why it can happen. Ensure the stable operation of your device for many years to come.

[Topic 127465]

App Updater

This section provides information on how you can use Kaspersky Small Office Security to update installed applications.

[Topic 127466]

About App Updater

If you have not updated applications on your computer for a long time, these applications may contain vulnerabilities. Intruders can exploit such vulnerabilities to harm your computer or data.

Updating installed applications improves the security of your computer. Using Kaspersky Small Office Security, you can search for updates for installed applications and download and install the latest updates.

Kaspersky Small Office Security divides application updates into two types:

• Important – updates that fix vulnerabilities of installed applications and improve the security of your computer.
• Recommended – updates that improve the functionality and/or make changes to the installed applications.

Kaspersky Small Office Security regularly searches for updates. When Kaspersky Small Office Security finds a new update for an application installed on your computer, Kaspersky Small Office Security shows a pop-up notification in the notification area. Information about the availability, quantity, and type of available updates is displayed in the Notification Center. You can view, download, and install available updates via the Notification Center.

You can also manually start the search for application updates.

By default, Kaspersky Small Office Security automatically downloads and installs all updates for known applications if they do not require you to accept new end user license agreements. If Kaspersky Small Office Security is installed on a file server, updates for applications are not downloaded automatically.

In Windows 8 and later versions, Kaspersky Small Office Security pauses automatic downloads of application updates when a metered Internet connection is used. Downloading of updates is resumed once the unlimited connection is restored. If you have manually started the update, Kaspersky Small Office Security will download the update regardless of whether or not you are using a limited connection.

You may need administrator privileges on the computer to update certain applications.

Applications that you do not want to update or for which you do not want to install individual updates are placed by Kaspersky Small Office Security into the exclusions list. You can view and edit the list of exclusions.

[Topic 127467]

How to change App Updater settings

To change App Updater settings:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Performance settings section.
4. Click App Updater.

   This opens the App Updater settings window.

5. If you do not want Kaspersky Small Office Security to automatically download and install application updates that do not require acceptance of a new end user license agreement, clear the Automatically download and install updates if you do not have to accept new license agreements check box.

   This check box is selected by default.

6. In the Search for application updates section, select which application updates will be downloaded and installed by Kaspersky Small Office Security:
   • Select Important updates that improve computer security if you want Kaspersky Small Office Security to install only important updates that fix software vulnerabilities and improve the security of your computer.
   • Select All updates for known applications if you want Kaspersky Small Office Security to install all software updates.

Page top

[Topic 127468]

Search for application updates

To start the search for application updates:

1. Open the main application window.
2. Go to the Performance section.
3. In the App Updater block, click the Search for updates button.

This starts the search for application updates.

Page top

[Topic 152134]

How to configure the update search mode

To configure the update search mode for installed applications:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Performance settings section.
4. Click the App Updater button.

   This opens the App Updater settings window.

5. In the Update block, select the Enable search for application updates check box.
6. Click the Set up updates search mode link to open the Updates search mode window.
7. In the Search for updates drop-down list, select one of the following options:
   • Automatically. If you select this option, Kaspersky Small Office Security will run a search for application updates at least once every 24 hours according to the internal settings of the application.
   • Daily / Weekly / Monthly. If you select one of these options, Kaspersky Small Office Security will search for updates based on your defined schedule up to the exact minute. When one of these options is selected, the Postpone running after application startup for N minutes list is available.
8. Select the Search for updates on the next day if computer is turned off check box to start a search when the computer is turned on after a scheduled search was missed. If the check box is not selected, the application will start the search for updates only at the scheduled time while the computer is turned on.
9. To save the settings, click the Save button.

Page top

[Topic 129908]

Viewing the list of application updates

Kaspersky Small Office Security regularly searches for updates for applications installed on your computer. Information about the number and types of updates available for applications can be viewed in Notification Center.

To view the list generated as a result of searching for application updates:

1. Open the main application window.
2. Click the Details button in the upper part of the window.

   This opens the Notification Center window.

3. In the Status section, click the Show button in the line with the message about available application updates.

   This opens the App Updater window with a list of available application updates.

4. To update all applications appearing in the list, click the Update all button (not available in some regions).
5. To selectively update specific applications, perform one of the following actions:
   • Click the Update button in the line containing the application that you want to update.

     You are advised to read the end user license agreement before updating the application. End user license agreements are available in the License agreements drop-down list. By default, the language of the end user license agreement corresponds to the language of the application interface. If the end user license agreement in the language of the application interface is unavailable, the EULA text is provided in the language of Kaspersky Small Office Security interface. In all other cases, the text of the end user license agreement is provided in English or the first available language if the English text is unavailable.

   • Click the button to open the menu and select Do not update this application if you want Kaspersky Small Office Security to stop notifying you about available updates for the selected application.

     The selected application is moved to the list of exclusions. Kaspersky Small Office Security stops showing notifications about new updates released for this application.

   • Click the button to open the menu and select Skip this update if you want Kaspersky Small Office Security to stop notifying you about the selected update.

     The selected application update is moved to the list of exclusions. Kaspersky Small Office Security shows a notification about a new update released for this application.

   • Click the button to open the menu and select Open the vendor website if you want to manually download and install the update for the selected application.

     The default browser of the operating system opens the website of the software vendor. You can view the update on the website and download it manually.

The window interface, App Updater, and viewing of the End User License Agreements may differ depending on the localization language of Kaspersky Small Office Security.

Page top

[Topic 127469]

Removing an update or application from the exclusions list

When viewing the list of application updates, you can skip notifications about individual updates or skip notifications about all updates for specific applications. Kaspersky Small Office Security adds these updates and applications to the exclusions list.

To remove an update or application from the exclusions list:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Performance settings section.
4. Click the App Updater button.

   This opens the App Updater settings window.

5. Click the Exclusions link to open the Exclusions window.

   The Exclusions list contains the applications and updates for which you have indicated that no updates are necessary, as well as individual updates of applications that you did not install.

6. Select the update or application in the list and click the Delete button.

During the next search for updates, Kaspersky Small Office Security will notify you about the availability of updates for applications that you have removed from the exclusions list.

Page top

[Topic 84523]

Backup and Restore

This section provides information about data backup.

[Topic 84679]

About Backup and Restore

Backup and Restore is needed to protect your data against loss when your computer malfunctions or gets stolen, or when it is deleted accidentally or corrupted by hackers.

To backup data, create and start a backup task. The task can be started automatically according to schedule or manually. The application also lets you view information about completed backup tasks.

It is recommended to save backup copies of data on removable drives or in Online storage.

Kaspersky Small Office Security cannot create a full copy of a drive while a Microsoft Windows operating system is active on the drive.

Kaspersky Small Office Security lets you use the following storage types for creating backup copies:

• Local drive;
• Removable drive (e.g., an external hard drive);
• Network drive;
• Online storage.

Creating tasks based on user's access rights

Backup tasks are created based on user's access rights to files on the local computer.

If you do not have local administrator rights on the computer, you can access only tasks created by yourself. If you have local administrator rights on the computer, you see all backup tasks, but you cannot modify tasks created by other users.

Backup tasks that were created earlier without taking user rights into account are available to all users of the computer. However, if such a task gets modified, it will be run based on the rights of the user that modified the task.

Restoring tasks based on user's access rights

If you do not have local administrator rights on the computer, you can restore data only from backup tasks created by yourself and only to folders you have rights to access. If you have local administrator rights on the computer, you can restore data from any backup task to any folder.

The total size of the copied files in a folder may exceed the size of that folder if it contains links to other folders (for example, when copying the Documents folder, the My Music, My Pictures and My Videos folders will also be copied if the Documents folder contains links to those folders).

About Backup and Restore in OneDrive

When backing up files to a OneDrive folder on your computer, Kaspersky Small Office Security acts differently depending on whether the cloud file is downloaded to the OneDrive folder:

• If the file is in the cloud and in the OneDrive folder on your computer, Kaspersky Small Office Security makes a backup copy of this file.
• If the file is not in the cloud, but it is present in the OneDrive folder on your computer, Kaspersky Small Office Security makes a backup copy of this file.
• If the file is displayed in the OneDrive folder but it is only stored in the cloud and not on your computer, Kaspersky Small Office Security makes a backup copy of this file.

[Topic 84524]

How to create a backup task

To create a backup task:

1. Open the main window of Kaspersky Small Office Security.
2. Select the Performance section.
3. In the Backup and Restore block, click the Select files button.

   The Backup Task Creation Wizard starts.

   The Wizard consists of a series of pages (steps), which you can navigate through by clicking the Back and Next buttons. To close the Wizard after it finishes, click the Done button. To stop the Wizard at any step, click the Cancel button.

   Let us review the steps of the Wizard in more detail.

[Topic 93342]

Step 1. Select files

At this step of the Wizard, select the type of files or specify folders that you wish to back up:

• Select one of the preset file types (files from the My Documents and Desktop folders, photos and images, movies and videos, music files) to perform quick configuration. If you confirm this option, the wizard takes you straight to Step 4 "Select backup storage".

  Kaspersky Small Office Security does not create backup copies of files located in the "Desktop" and "My Documents" folders if these folders are located on a network drive.

• Select the Create backup copies of files from specified folders option to manually specify folders that you want to back up.

Page top

[Topic 93343]

Step 2. Select folders for backup

If you have selected the Create backup copies of files from specified folders option at the previous step of the Wizard, click the Add folder button and select a folder in the Select folder for backup window that opens or drag the folder into the application window.

Select the Limit backup by file types check box if you want to specify the categories of files to back up in the folders selected.

Page top

[Topic 93344]

Step 3. Select file types for backup

If you selected the Limit backup by file types check box at the previous step of the Wizard, at this step of the Wizard select check boxes opposite the types of files that you want to back up.

Page top

[Topic 93345]

Step 4. Select backup storage

At this step, select the a backup storage:

• Online storage. Select this option if you want to store backup copies in the Dropbox online storage. The Online storage has to be activated before it can be used. When you back up data in Online storage, Kaspersky Small Office Security does not create backup copies of data of the types that are subject to restrictions by Dropbox usage rules.
• Local drive. If you wish to store backup copies on a local drive, select the relevant local drive in the list.
• Network drive. If you wish to store backup copies on a network drive, select the relevant network drive in the list.

• Removable drive. If you wish to store backup copies on a removable drive, select the relevant removable drive in the list.

To ensure data security, we recommend using the Online storage or creating backup storages on removable drives.

How to add network storage

How to add a removable drive as storage

Select the Use advanced storage settings check box to configure file storage settings, such as the number of versions of backup copies of files stored and the duration of storage of backup copies.

Page top

[Topic 93346]

Step 5. Creating a backup schedule

Do one of the following at this step of the Wizard:

• Specify the backup task schedule if you want the backup task to start automatically.
  1. In the Run backup drop-down list, select a time interval to run the task (for example, daily) and specify the task run time in the At field.
  2. In the Account section, specify the user name and password of your Windows account on this computer. The data of your Windows account is required to access files during backup. If you are logged in to the operating system under a domain account, specify the username and password of your domain account to create the backup task.
  3. Select the Run scheduled backup at computer startup if it was turned off at the specified time check box if you want to run backup as soon as possible after the computer is turned on. For example, backup is scheduled to be performed every weekend. If the computer was turned off at the weekend, backup is performed after the computer is turned on a weekday. If the check box is cleared, backup is performed according to schedule without retrying to run backup after a failed attempt.
• In the Run backup list, select the on demand option if you wish to start the task manually.

When working with backup tasks, please note the following:

• If you create a scheduled backup task, you need to specify the data of your account on this computer.
• If you create an on-demand backup task, you do not need to specify the data of your account on this computer.
• If you change an on-demand task to a scheduled task, you need to specify the data of your account on this computer.

Page top

[Topic 93347]

Step 6. Setting a password to protect backup copies

Select the Enable password protection check box and fill out the Password for access to backup copies and Confirm password fields to protect access to backup copies with a password.

The password is required to protect the backup storage against unauthorized access.

The application will prompt you to enter a password in the following cases:

• When you first create a backup storage on a local or removable drive (like a flash drive). When creating subsequent backup tasks to a local drive or this removable drive, the application will no longer ask you to enter a password. The password that you previously entered will be used.

  If you copy the local backup storage to a removable drive and connect this removable drive to another computer, the application will ask you to enter a password to copy or restore data from this storage.

• When you connect a removable drive to your computer. The application checks the removable drive and asks you to enter a password if it detects a backup storage on this removable drive.

Page top

[Topic 93348]

Step 7. File versions storage settings

This step is available if the Use advanced storage settings check box was selected at Step 4 "Select backup storage".

Specify file storage settings:

• Select the Restrict the number of versions of backup copies check box, and in the Versions of backup copies to store field specify the number of versions of backup copies of one file to be stored.
• Select the Restrict storage period for versions of backup copies check box, and in the Keep old versions of backup copies for field specify the number of days that each file version of a backup copy should be stored.

Page top

[Topic 93349]

Step 8. Entering the backup task name

Do the following at this step:

• Enter the backup task name.
• Select the Run backup when setup is complete check box to start the backup process automatically when the wizard finishes.

Page top

[Topic 93350]

Step 9. Wizard completion

This window shows the process of configuring the backup storage. The configuration process may take some time.

When configuration completes, click Done.

A backup task is created. The task you have created appears in the Backup and Restore window.

Page top

[Topic 84965]

How to start a backup task

To start a backup task:

1. Open the main window of Kaspersky Small Office Security.
2. Select the Performance section.
3. In the Backup and Restore block, click the View backup copies button.
4. In the Backup and Restore window that opens, select a backup task and click the Run button.

The backup task is started.

Page top

[Topic 84525]

Restoring data from a backup copy

To restore data from a backup copy:

1. Open the main application window.
2. Select the Performance section.
3. In the Backup and Restore block, click the View backup copies button.

   This opens the Backup and Restore window.

   • Click the Restore files button opposite the relevant backup task.
   • Click the Manage storages button to open a window and click the Restore files button opposite the relevant backup storage.
4. If a password was specified when the backup copy was created, enter this password in the Enter your password to access the storage window.
5. In the Backup date / time drop-down list, select the date and time of creation of the backup copy.
6. Do one of the following:
   • If you want to restore all data, select the All data check box.
   • If you want to restore only certain folders, select the check boxes next to the relevant folders.
   • If you want to restore only certain files, select the check boxes next to the relevant files in the Name column.
7. To restore only specific types of files, select these file types in the File type drop-down list.
8. Click Restore selected files.

   This opens the Restore files from backup copies window.

9. Select one of the two options:
   • Original folder. If this option is selected, the application restores data to the original folder.
   • Specified folder. If this option is selected, the application restores data to the specified folder. Click the Browse button to select the folder to which you want to restore data.
10. In the If file names conflict drop-down list, select the action to be performed by the application when the name of the file being restored matches the name of the file already present in the destination folder:
    • ask – when file names match, the application prompts you to choose one of the following options: replace the file with the backup copy, save both files, or do not restore the file.
    • replace file with backup copy – Kaspersky Small Office Security deletes the existing file and replaces it with the file restored from the backup copy.
    • save both files – Kaspersky Small Office Security leaves the existing file unchanged and saves the file restored from the backup copy under a new name in the same folder.
    • do not restore this file – Kaspersky Small Office Security leaves the existing file unchanged and does not restore the file of the same name from the backup copy.
11. Click Restore.

    The files selected for recovery will be restored from the backup copy and saved in the specified folder.

[Topic 201581]

Restoring data from FTP storage

Kaspersky Small Office Security does not support Backup and Restore over FTP. To restore backup copies created in other Kaspersky applications from FTP storage, follow the instructions below.

To restore backup copies from FTP storage:

1. Open the main application window.
2. Select the Performance section.
3. In the Backup and Restore block, click the View backup copies button.

   This opens the Backup and Restore window.

4. Click the Manage storages link to open the Storages window.
5. Open the FTP storage folder in Windows Explorer.
6. Copy the data (including the storage.xml file) to a local drive (for example, С:\<folder name>).
7. In the Storages window next to the FTP storage, click the Delete storage button.
8. In the deletion confirmation window, click Delete.

   The storage is now deleted.

9. In the Storages window, click the Connect existing storage button.
10. In the Connect storage window, select the Local drive section and use the Browse button to specify the path to the folder containing the backup copies that you copied to the local drive from FTP storage.
11. In the Storages window, next to the connected storage, click the Restore files button.
12. Follow the standard restoration procedure.

Page top

[Topic 57646]

Restoring data from a backup copy using Kaspersky Restore Utility

Kaspersky Restore Utility lets you manage backup storage data on a computer where a Kaspersky application is corrupted or has been removed. By default, after installation of the application the utility is located in the Kaspersky Restore Utility folder located in the application setup folder. To use the utility on a computer where a Kaspersky application is not installed or is corrupted, copy the utility to a removable drive.

To start Kaspersky Restore Utility, you need local administrator rights.

How to start the Restore Utility

How to open a storage using the Restore Utility

How to restore data from a backup copy

[Topic 84772]

About Online storage

Kaspersky Small Office Security lets you save backup copies of your data in Online storage on a remote server via the Dropbox service.

To use Online storage:

• Make sure that the computer is connected to the Internet.
• Create an account on the website of the online data storage service provider.
• Activate Online storage.

You can use one and the same Dropbox account to back up data from different devices with Kaspersky Small Office Security installed to a single Online storage.

The Online storage size is determined by the provider of the online storage services, the Dropbox web service. See the Dropbox website for more details on the terms of use of the web service.

When copying files to Dropbox, Kaspersky Small Office Security does not differentiate between uppercase and lowercase letters in the name of a file and/or name of a path to the file. Therefore, when attempting to create backup copies of files whose names and/or paths differ only by their case, Kaspersky Small Office Security creates only one backup copy because a conflict arises in Dropbox.

[Topic 84526]

How to activate Online storage

To activate Online storage:

1. Open the main window of Kaspersky Small Office Security.
2. Select the Performance section.
3. In the Backup and Restore block, click the Select files button.

   The Backup Task Creation Wizard starts.

4. In the data type selection window, select the data category or manually specify the files that you want to back up.
5. In the storage selection window, select the Online storage option and click the Activate button.

   An Internet connection is required to create an Online storage.

   A Dropbox account login dialog opens.

6. In the window that opens, perform one of the following operations:
   • Complete registration if you are not a registered Dropbox user.
   • If you are a registered Dropbox user, log into your Dropbox account.
7. To finish Online storage activation, confirm that Kaspersky Small Office Security is allowed to use your Dropbox account for backing up and restoring data. Kaspersky Small Office Security places backup copies of saved data in a separate folder that is created in the Dropbox storage folder for applications.

   After Online storage activation has been completed, the storage selection window opens. It contains a selection of online storages to choose from. For the activated Online storage, the application shows the amount of used space and the amount of free space available for data storage.

When copying files to Dropbox, Kaspersky Small Office Security does not differentiate between uppercase and lowercase letters in the name of a file and/or name of a path to the file. Therefore, when attempting to create backup copies of files whose names and/or paths differ only by their case, Kaspersky Small Office Security creates only one backup copy because a conflict arises in Dropbox.

Page top

[Topic 222852]

Current Activity

If you have noticed that your computer freezes or runs slower, you can open the Application Activity window, which shows a list of currently running apps and active processes, and terminate an app or apps that are consuming too much of your computer's resources.

To see the current activity and/or terminate an app:

1. Open the main application window.
2. Go to the Performance section.
3. In the Current Activity block, click the View activity button.

   This will open the Application Activity window on the Running tab.

4. From the app list, select the one consuming the most of your processor resources (in the CPU column) and/or RAM (the Memory column), and click the Terminate process button.

The app will terminate.

Page top

[Topic 222853]

Do not Disturb Mode

In the Do not Disturb Mode, Kaspersky Small Office Security does not show pop-up notifications about events on your PC that occur during a video call, when you are watching a movie, actively using installed applications or the keyboard. Do not Disturb Mode can also pause some automatically started tasks or delay running scheduled tasks to avoid excessive utilization of computer resources.

The Do not Disturb Mode is enabled and disabled automatically. You do not have to change the application settings.

After exiting Do not Disturb Mode, the application will use the taskbar notification area to display a message regarding any event that occurred while you were busy. If there were multiple events, click the View button to go to the Notification Center and view all events.

You can also view all events that occurred over the past three days in the Notification Center on the Status tab in the Notifications section.

As long as the Focused Work Mode or Do Not Disturb mode is enabled, you will also not see notifications from Kaspersky VPN Secure Connection and Kaspersky Password Manager applications installed on the same device.

You can find out more about displaying notifications in the How to configure application notifications section of Help.

Page top

[Topic 70774]

How to reserve operating system resources

When Kaspersky Small Office Security runs together with some full-screen applications, the following issues may occur:

• Application performance becomes degraded due to lack of system resources
• Notification windows of Kaspersky Small Office Security distract the user

To avoid changing the settings of Kaspersky Small Office Security manually every time you switch to full-screen mode, you can use Focused Work Mode. If Focused Work Mode is being used and you are working with an application in full-screen mode, Kaspersky Small Office Security does not run scan and update tasks and does not display notifications.

To turn on Focused Work Mode:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Performance settings → PC performance optimization.
4. Select the Focused Work Mode check box.

As long as the Focused Work Mode or Do Not Disturb mode is enabled, you will also not see notifications from Kaspersky VPN Secure Connection and Kaspersky Password Manager applications installed on the same device.

Page top

[Topic 199601]

Optimizing the load on the operating system

When you run a computer scan using Kaspersky Small Office Security, it can consume significant system resources. In order to optimize the load on the system, you can configure Kaspersky Small Office Security to run scan tasks (for system memory, the system partition, and startup objects) and to update databases when the computer is locked or the screen saver is activated. This additional setting allows you to enhance the security of your computer without sacrificing performance when you are using it.

If the computer is running on battery, Kaspersky Small Office Security will not execute tasks when the computer is idle in order to prolong battery life.

To optimize the load on the operating system:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Performance settings → PC performance optimization.
4. Select the Postpone computer scan tasks when the CPU and disk systems are at high load check box.

Page top

[Topic 226949]

Privacy

Nowadays massive data breaches, marketers tracking your every step online — the list of digital annoyances goes on and on. Keeping your privacy protected becoming crucial. Learn how Kaspersky Small Office Security protects your privacy online, so you can manage and control your digital footprint.

[Topic 246433]

Kaspersky VPN

Kaspersky VPN functionality is not available in some regions.

This section contains information on how to securely connect to Wi-Fi networks and establish a secure VPN connection.

[Topic 127182]

About secure connection to Wi-Fi networks

Kaspersky VPN functionality is not available in some regions.

Public Wi-Fi networks may be under-protected, for example, if a Wi-Fi network uses a vulnerable encryption protocol or a weak password. When you make Internet purchases over insecure Wi-Fi networks, your passwords and other confidential data are transmitted in non-encrypted text. Hackers can intercept your confidential data such as your bank card number and obtain access to your money.

To ensure your security when using insecure Wi-Fi networks, you can enable VPN via a specially allocated server located in the region you specify. Traffic from the website first goes to the allocated server and only then is sent to your device over an encrypted secure connection.

To use the Kaspersky VPN component, you need to run Kaspersky VPN. Kaspersky VPN Secure Connection is installed together with Kaspersky Small Office Security.

The Kaspersky VPN component provides the following advantages:

• Safe use of payment systems and booking sites. Intruders will not be able to intercept the number of your bank card when you make online payments, book hotel rooms, or rent cars.
• Protection of your secret information. No one will be able to determine the IP address of your computer or your location.
• Protection of your privacy. No one will be able to intercept and read your private correspondence on social networks.

VPN connection can also be used for other types of network connections such as a local Internet connection or USB modem connection.

By default, Kaspersky VPN Secure Connection does not prompt you to enable VPN if the HTTPS protocol is used to connect to a website.

Changing your location when visiting websites of banks, payment systems, booking websites, social networks, chats, and email websites could result in the triggering of anti-fraud systems (systems intended for analyzing online financial transactions for signs of fraudulent operations).

The usage of VPN connection may be regulated by local legislation. You may use VPN connection only in accordance with its purpose and without violating local legislation.

[Topic 127185]

How to enable VPN

Kaspersky VPN functionality is not available in some regions.

The VPN connection is established using Kaspersky VPN Secure Connection. You can start Kaspersky VPN Secure Connection from the Start menu (in the Microsoft Windows 7 operating system or earlier version), from the start screen (in the Microsoft Windows 8 operating system or later versions), or from the window of Kaspersky Small Office Security.

To start Kaspersky VPN Secure Connection from Kaspersky Small Office Security window:

1. Open the main window of Kaspersky Small Office Security.
2. Go to the Privacy section.
3. In the Kaspersky VPN block, click the Use button.

This opens the main window of Kaspersky VPN Secure Connection.

More details about the operation of Kaspersky VPN Secure Connection are available in the help files of this application.

[Topic 92436]

Private Browsing

This section provides information on how Kaspersky Small Office Security can protect you against tracking of your online activity.

[Topic 93724]

About Private Browsing

While you browse the web, websites use tracking services to collect information about your online activity. Tracking services use the received information to analyze your activity and can use analysis results to show you relevant advertisements.

The Private Browsing component is designed to prevent the collection of information about your online activity.

In detection mode, the Private Browsing component detects and counts attempts to collect data and writes this information in a report. Detection mode is enabled by default, and data collection is allowed on all websites.

In blocking mode, the Private Browsing component detects and blocks attempts to collect data, and information about these attempts are written in a report. In this mode, data collection is blocked on all websites except:

• by websites added to exclusions
• by websites of Kaspersky and its partners
• by websites that may be rendered inoperable as a result of tracking services being blocked, according to information available to Kaspersky

The counter of blocked attempts to collect data displays the total number of blockings across the entire site depending on how many site pages are open in the browser. If one page is open in the browser, only blocked attempts to collect data on this page of the site are counted. If several pages of the same site are open in the browser, the blocked attempts to collect data on all pages of the site opened in the browser are counted.

You can manage the Private Browsing component via the Kaspersky Small Office Security interface or with the help of the Kaspersky Protection extension in your browser.

Private Browsing has the following limitations:

• The application does not block data collection by the tracking service of the "Social networks" category while you are on the website of the relevant social network.
• If the web page from which the data collection attempt originated could not be determined, Kaspersky Small Office Security does not block this data collection attempt and does not display information about it.
• If the web page from which the data collection attempt originated could be determined but could not be matched to any web page currently open in the browser, Kaspersky Small Office Security applies the action specified in the Private Browsing settings (blocks or allows data collection). The application displays information about the data collection attempt in reports but does not include this information in the Private Browsing statistics displayed in the browser.

This functionality is unavailable if Kaspersky Small Office Security is installed on a file server.

[Topic 93505]

Blocking data collection

To block data collection:

1. Open the main application window.
2. Go to the Privacy section.
3. Select the Private Browsing component, and click the icon.

   This opens the Private Browsing settings window.

4. If the component is disabled, enable it by setting the toggle in the upper part of the window to On.
5. Select the Block data collection option.

   Kaspersky Small Office Security will block data collection attempts on all websites except exclusions.

6. If you want to block or allow data collection based on the categories of tracking services:
   1. Click the Categories and exclusions link to open the Categories and exclusions window.
   2. By default, data collection is blocked for all categories of tracking services and all social networks. Clear the check boxes opposite the categories of tracking services and social networks for which you want to allow data collection.

Page top

[Topic 129231]

Allowing data collection on all websites

To allow data collection on all websites:

1. Open the main application window.
2. Go to the Privacy section.
3. Select the Private Browsing component, and click the icon.

   This opens the Private Browsing settings window.

4. If the component is disabled, enable it by setting the toggle in the upper part of the window to On.
5. Select the Only gather statistics option.

   Kaspersky Small Office Security detects and counts attempts to track your online activity without blocking them. You can view the results of the component's operation in the report.

Page top

[Topic 93506]

Allowing data collection as an exclusion

You can allow tracking of your activity on specific websites as an exclusion.

To allow data collection as an exclusion:

1. Open the main application window.
2. Go to the Privacy section.
3. Select the Private Browsing component, and click the icon.

   This opens the Private Browsing settings window.

4. If the component is disabled, enable it by setting the toggle in the upper part of the window to On.
5. Select the Block data collection option.

   Kaspersky Small Office Security will block data collection attempts on all websites except exclusions.

6. By default, there is an exclusion to allow data collection on the websites of Kaspersky and its partners. If you want to block data collection on these websites, clear the Allow data collection on the websites of Kaspersky and its partners check box.
7. By default, there is an exclusion to allow data collection on websites that may be rendered inoperable as a result of data collection being blocked, according to information available to Kaspersky. If you want to block data collection on these websites, clear the Allow data collection on incompatible websites check box.

   Kaspersky updates the list of incompatible websites as compatibility issues are resolved.

8. If you want to specify your own exclusions:
   1. Click the Categories and exclusions link to open the Categories and exclusions window.
   2. Click the Exclusions link to open the Private Browsing exclusions window.
   3. Click the Add button.
   4. In the window that opens, enter the address of the website on which you want to allow activity tracking, and click the OK button.

      The specified website is added to the list of exclusions.

You can also allow data collection on a chosen website while it is open in the browser.

Page top

[Topic 93501]

Viewing a report on attempts to collect your data on the Internet

To view a report on attempts to collect your data on the Internet:

1. Open the main application window.
2. Go to the Privacy section.
3. Select the Private Browsing component, and click the icon.

   This opens the Private Browsing settings window.

   If the component is disabled, enable it by setting the toggle in the upper part of the window to On.

The window displays a consolidated report with information about attempts to collect data on your online activity.

You can also view the report on data collection attempts in a browser or in the application performance report.

Page top

[Topic 93503]

Managing the Private Browsing component in a browser

You can manage the Private Browsing component directly in the browser:

• Enable the component if it is disabled;
• View statistics on detected attempts to collect data;
• Go to the Private Browsing settings window;
• Block or allow data collection.

To manage the Private Browsing component in the browser,

Click the  Kaspersky Protection button on the browser toolbar.

The menu that opens shows information about the operation of the component and the component controls.

[Topic 84839]

Password Manager

Kaspersky Password Manager is designed to safely store and synchronize passwords across your devices. Kaspersky Password Manager has to be installed independently of Kaspersky Small Office Security.

After installation, you can start Kaspersky Password Manager from the Start menu (in Microsoft Windows 7 or Microsoft Windows 10), from the Start screen (in Microsoft Windows 8 or Microsoft Windows 8.1), or from the Kaspersky Small Office Security window.

If Kaspersky Small Office Security is installed on a file server, you cannot install and start Kaspersky Password Manager.

How to start Kaspersky Password Manager from the Kaspersky Small Office Security window

How to download and install Kaspersky Password Manager

See the Kaspersky Password Manager Help for instructions on using Kaspersky Password Manager.

Kaspersky Password Manager may be unavailable in certain regions. If you have previously installed Kaspersky Password Manager, you are advised to save your passwords before you migrate to Kaspersky Small Office Security.

[Topic 70744]

Safe Money

This section provides instructions on how you can protect your financial transactions and purchases online with Kaspersky Small Office Security.

[Topic 110417]

About protection of financial transactions and online purchases

To protect confidential data that you enter on websites of banks and payment systems (such as bank card numbers and passwords for online banking), as well as to prevent funds from being stolen when you make online payments, Kaspersky Small Office Security prompts you to open such websites in Protected Browser. If you select the option to open the website without Protected Browser, Kaspersky Small Office Security does not prompt you to open that website in Protected Browser for the next 50 minutes.

Protected Browser is a special browser operating mode designed to protect your data as you access bank or payment system websites. Protected Browser is started in an isolated environment to prevent other applications from injecting their code into the process of Protected Browser. Kaspersky Small Office Security creates special profiles for the Mozilla Firefox and Google Chrome browsers to prevent third-party add-ons from affecting the operation of Protected Browser. The application does not affect your data that the browsers may save in the profiles created for them.

When you first open the Protected Browser, you will be prompted to copy data, settings, and plug-ins from your main browser. After completing the data migration, Kaspersky Small Office Security will not keep your main browser and Protected Browser synchronized. This means, for example, that data deleted from your main browser will persist in Protected Browser. In this case, you must take steps to delete the same data from Protected Browser.

If you are using Chromium-based Microsoft Edge, Google Chrome, Mozilla Firefox, or Internet Explorer, Protected Browser is opened in a new window.

The application uses the Kaspersky Protection extension to provide a number of Protected Browser functions.

Browsers that do not meet the software requirements cannot operate in Protected Browser mode. Instead of such browsers, either Chromium-based Microsoft Edge or another browser configured in application settings starts in Protected Browser mode.

It is impossible to run Protected Browser under the following conditions:

• The Enable Self-Defense check box is cleared in the Self-Defense settings window, Security settings → Self-Defense section.
• JavaScript is disabled in the browser.

Running Protected Browser in Yandex Browser

Kaspersky Small Office Security supports securing your financial transactions in Yandex Browser with some limitations. To run Protected Browser, the application injects a special script into the web page (and traffic). The Kaspersky Protection extension is not available. The Private Browsing and Anti-Banner components operate but cannot be configured in Yandex Browser.

Protected Browser capabilities

In Protected Browser mode, the application provides protection against the following types of threats:

• Untrusted modules. The application runs a check for untrusted modules every time you visit a bank or payment system website.
• Rootkits. The application scans for rootkits at Protected Browser startup.
• Invalid certificates of bank or payment system websites. The application checks certificates when you visit a bank or payment system website. The check is performed against a database of compromised certificates.

Protected Browser status

When you open a website in Protected Browser, a frame appears on the borders of the browser window. The color of the frame indicates the protection status.

The frame of the browser window can display the following color indications:

• Green frame. Signifies that all checks have been performed successfully. You can continue using Protected Browser.
• Yellow frame. Signifies that checks have revealed security problems that need to be resolved.

  The application can detect the following threats and security problems:

  • Untrusted module. Computer scanning and disinfection is required.
  • Rootkit. Computer scanning and disinfection is required.
  • Invalid certificate of a bank or payment system website.

  If you do not eliminate the threats detected, the security of the bank or payment system website connection session is not guaranteed. Events involving the launch and use of Protected Browser with reduced protection are recorded in the Windows event log.

About protection against screenshots

To protect your data when you browse protected websites, Kaspersky Small Office Security prevents spyware from taking unauthorized screenshots. Protection against screenshots is enabled by default. Protection against screenshots is running even if hardware virtualization is disabled.

About clipboard data protection

Kaspersky Small Office Security blocks unauthorized access by applications to the clipboard when you make online payments, thus preventing theft of data by criminals. Such blocking is active only if an untrusted application attempts to obtain unauthorized access to your clipboard. If you copy data manually from the window of an application to another application's window (for example, from Notepad to a text editor window), access to clipboard is allowed.

Clipboard protection is not running if hardware virtualization is disabled on your computer.

If Protected Browser is started under the Microsoft Windows 10 operating system, Kaspersky Small Office Security will block interaction of Universal Windows applications with the clipboard.

Page top

[Topic 82230]

How to change Safe Money settings

To configure Safe Money:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Privacy settings section.
4. Click the Safe Money button.

   The window displays the settings of the Safe Money component.

5. Enable Safe Money by clicking the switch in the upper part of the window.
6. In the On first access to websites of banks and payment systems section, select the action to be performed by the application when you first open a bank or payment system website in your browser:
   • Select Run Protected Browser if you want the application to open the website in Protected Browser.
   • Select Ask user if you want the application to ask you whether or not you want to open the website in Protected Browser when you visit the website.
   • Select Do not run Protected Browser if you want the application not to open the website in Protected Browser.
7. In the Additional section, open the To proceed to websites from the Safe Money window, use drop-down list and select the browser that the application will run in Protected Browser mode when you visit a bank or payment system website from the Safe Money window.

   You can select one of the browsers installed on your computer or use the default browser of the operating system.

Page top

[Topic 82231]

How to configure Safe Money for a specific website

To configure Safe Money for a specific website:

1. Open the main application window.
2. Go to the Privacy section.
3. Select the Safe Money section, and click the View websites button.

   This opens the Safe Money window.

4. Click the Add website to Safe Money link to open fields for adding the website information.
5. In the Website for Safe Money (URL) field, enter the web address of the website that you want to open in Protected Browser.

   A website address must be preceded by the prefix for the HTTPS protocol (for example, https://example.com), which is used by default by Protected Browser.

6. Select the action that you want Protected Browser to perform when you open the website:
   • If you want the website to open in Protected Browser every time you visit it, select Run Protected Browser.
   • If you want Kaspersky Small Office Security to prompt you for an action when the website is opened, select Ask user.
   • If you want to disable Safe Money for the website, select Do not run Protected Browser.
7. Click the Add description link to open the Description field and enter the name or description of this website.
8. Click the Add button.

The website will be displayed in the list.

Page top

[Topic 126790]

How to send feedback on Safe Money

You can send to Kaspersky your feedback on the operation of the Safe Money component or report a problem in this component.

How to send feedback

How to report a problem

If Kaspersky Small Office Security fails to send your feedback (for example, Internet connection is not available), this feedback is saved to your computer. Feedback is stored openly for 30 days.

You can send feedback on the operation of the Safe Money component up to 10 times per day.

You can also send feedback after the Safe Money component is disabled. After the component is disabled, you can send feedback once per month.

[Topic 144122]

Webcam and Mic Control

This section contains information on how to prevent spying through your webcam and eavesdropping through your microphone.

[Topic 82474]

About application access to the webcam and microphone

Intruders may attempt to spy on you using your webcam or eavesdrop on you by gaining access to your microphone. Kaspersky Small Office Security protects your webcam and microphone from unauthorized access if the Webcam and Mic Control component is enabled. In component settings, you can block all application access to webcam and microphone or request to be notified whenever an application tries to gain access to your webcam or microphone.

If the component is enabled, but access to your webcam and mic is not fully blocked, access is granted or denied based on the trust group that the relevant application is part of. Access is blocked for applications in the High Restricted or Untrusted groups.

In the Intrusion Prevention settings window, you can allow access to the webcam or mic for applications included in the High Restricted and Untrusted groups. If an application from the Low Restricted group is trying to gain access to the webcam or microphone, Kaspersky Small Office Security blocks the access and notifies you if you have configured notifications in component settings.

In the drop-down list of the notification, you can block application access to webcam or microphone, or go to access settings. The notification is not displayed if some applications are running in full-screen mode on your computer.

In the drop-down list of the notification, you can choose to hide notifications or proceed to configure notification display settings.

How Kaspersky Small Office Security manages the webcam

How Kaspersky Small Office Security manages the microphone

Page top

[Topic 85234]

How to change settings of application access to the webcam or microphone

To change settings of application access to the webcam or microphone:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. In the Privacy settings section, select the Webcam and Mic Control component.
4. Under Webcam settings, select one of the following actions:
   • Block all apps from accessing your webcam. Webcam access is blocked for all applications installed on your computer.
   • Notify if an app is using the webcam. Applications that have access by default will be allowed access to the webcam. A notification will be displayed, informing the user that a specific application is using the webcam.

     This setting is not available if the Block all apps from accessing your webcam action is selected.

5. Under Mic settings, select one of the following actions:
   • Block all apps from accessing your mic. Mic access is blocked for all applications installed on your computer.
   • Notify if an app is using the mic. Applications that have access by default will be allowed access to the microphone. A notification will be displayed, informing the user that a specific application is using the microphone.

     This setting is not available if the Block all apps from accessing your mic action is selected.

Page top

[Topic 82864]

How to allow or block access to the webcam for an individual application

To allow or block access to the webcam for an application:

1. Open the main application window.
2. Go to the Security section.
3. Select the Intrusion Prevention component.
4. Click the Manage applications link to open the Manage applications window.
5. In the list, select the application for which you want to allow access to sound recording devices. Double-click the application to open the Application rules window.
6. In the Application rules window, go to the Rights tab.
7. In the list of rights categories, select Operating system modification → Suspicious modifications in the operating system.
8. Select Access webcam.
9. In the Action column, select Allow or Deny.
10. Click Save.

If you select Block all apps from accessing your webcam, application access to the webcam is blocked regardless of the trust group and manually configured permissions.

Page top

[Topic 94351]

How to allow or block access to the mic for an individual application

To allow or block access to the mic for an application:

1. Open the main application window.
2. Go to the Security section.
3. Select the Intrusion Prevention component.
4. Click the Manage applications link to open the Manage applications window.
5. In the list, select the application for which you want to allow access to the mic and double-click to open the Application rules window.
6. In the Application rules window, go to the Rights tab.
7. In the list of rights categories, select Operating system modification → Suspicious modifications in the operating system → Access sound recording devices.
8. In the Action column, select Allow or Deny.
9. To receive notifications about instances of applications being allowed or denied access to the audio stream, in the Action column, click the icon and select Log events.
10. Click Save.

If you select Block access for all applications, application access to the mic is blocked regardless of the trust group and manually configured permissions.

Page top

[Topic 222844]

Detection of stalkerware and other applications

Some legitimate applications can be used by criminals to steal your personal data and spy on you. Most of these applications are useful, and many people benefit from using them. These applications include IRC clients, autodialers, file downloaders, system activity monitors, password management utilities, FTP, HTTP, or Telnet servers.

However, if criminals get access to these apps on your computer or manage to covertly deploy them there, they will be able to use some of the functionality to steal your personal data or commit other illegal actions.

Below you will information about various types of software that criminals can use.

You can enable protection from stalkerware and other applications that can be used by criminals, and we will warn you if we discover such applications.

To enable protection from stalkerware and other applications:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Go to Security settings → Exclusions and actions on object detection.
4. In the Stalkerware and other applications section, select check boxes:
   • Detect stalkerware

     For protection from applications that help criminals gain access to your location, messages, or websites and social networks you visit.

   • Detect legitimate apps that intruders can use to damage your computer or personal data

     For protection from applications that criminals can use to download malware to your computer or use your computational resources for their nefarious purposes. Kaspersky Small Office Security does not detect remote administration applications that are considered as trusted.

If these check boxes are cleared, you may receive notifications about some applications from the table above because they are included in special categories and are processed by default regardless of application settings, for example: RemoteAdmin, PSWTool, Monitor.

Page top

[Topic 89109]

Anti-Banner

This section provides information on how Kaspersky Small Office Security can protect you against ad banners on the Internet.

[Topic 127381]

About Anti-Banner

The Anti-Banner component is designed to provide protection against banners while you browse the web. Anti-Banner blocks banners shown on the websites that you visit and in the interface of some applications. Anti-Banner blocks banners from the list of known banners which is embedded in the Kaspersky Small Office Security databases. You can manage the blocking of banners via the Kaspersky Small Office Security interface or directly in the browser.

By default, banners are allowed on websites from the list of Kaspersky websites. This list is compiled by Kaspersky experts and includes Kaspersky websites and its partners' websites that host Kaspersky advertisements. You can view this list or disable the use of this list if you consider it necessary to block banners on the websites of Kaspersky and its partners.

The blocked banners counter displays the total number of blocked banners across the entire site depending on how many site pages are open in the browser. If one page is open in the browser, only blocks on this page of the site are counted. If several pages of the same site are open in the browser, the blocked banners on all pages of the site opened in the browser are counted.

Information about the operation of Anti-Banner is available in reports.

The following limitations apply to Anti-Banner:

The following limitations apply to Anti-Banner:

• Some sites detect that ads on their pages are blocked and do not show content until the user turns off the ad blocker. To view the content of such site, you need to add its address to exclusions.
• If the web page on which the banner is located could not be determined, Kaspersky Small Office Security does not block this banner and does not display information about it.
• If the web page on which the banner is located could be determined but could not be matched to any single web page opened in the web browser, Kaspersky Small Office Security blocks the banner or allows the banner to be displayed depending on the information that has been determined. The application displays information about the banner in reports but does not include this information in the Anti-Banner statistics displayed in the browser.
• The Anti-Banner statistics displayed in the browser can include banners blocked the previous time the web pages loaded, including banners blocked previously and loaded again.
• The Anti-Banner statistics displayed in the browser do not include banners that were blocked in dynamic content of a page after a website has been loaded.
• Due to the fact that some JavaScript features are not supported by Internet Explorer, Kaspersky Small Office Security cannot block certain banners in this browser.

This functionality is unavailable if Kaspersky Small Office Security is installed on a file server.

[Topic 89110]

How to enable the Anti-Banner component

The Anti-Banner component is disabled by default. You can enable it via Kaspersky Small Office Security interface or with the help of the Kaspersky Protection extension in your browser.

How to enable Anti-Banner in Kaspersky Small Office Security interface

How to enable Anti-Banner in the browser window

After enabling or disabling Anti-Banner, you must reload the web page in the browser for the changes to take effect.

[Topic 127257]

Blocking banners

Anti-Banner blocks website banners from the list of known banners which is embedded in Kaspersky Small Office Security databases. If a banner is displayed on a web page even while Anti-Banner is running, this could mean that the banner is not in the list of known banners. You can manually block the display of this banner.

To block a banner, you must add it to the list of blocked banners. You can do this directly on the web page or in Kaspersky Small Office Security.

If a banner is on a website from the list of websites with allowed banners, you cannot block the display of this banner.

How to block a banner on a web page

How to block a banner in Kaspersky Small Office Security

[Topic 127277]

Allowing banners

You can allow an individual banner as well as all banners on a website that you specify.

How to allow an individual banner

How to allow all banners on a website

[Topic 149074]

How to configure Anti-Banner filters

To configure Anti-Banner filters:

1. Open the main application window.
2. Click in the lower part of the main window.

   This opens the Settings window.

3. Select the Privacy settings section.
4. Select the Anti-Banner component.

   This opens the Anti-Banner settings window.

5. Enable the Anti-Banner component by clicking the switch in the upper part of the window.
6. Click the List of filters link to open the List of filters window.
7. In the List of filters window, configure the filters as necessary:
   • Recommended. This group includes the general filter and language filter corresponding to your region. These filters are enabled by default.
   • Thematic. This group includes two filters:
     • Social media. Enable this filter if you want to block items such as the Like and Share buttons on websites of social networks.
     • Annoyances. Enable this filter if you want to block pop-up messages, windows and other elements that do not belong to the particular website.
   • Language-specific. In this group of filters, you can select a language. The application will block banners on websites in the specified language.

Page top

[Topic 127231]

How to manage Anti-Banner in the browser

You can manage the Anti-Banner component directly in the browser by using the Kaspersky Protection extension.

The Kaspersky Protection extension lets you perform the following actions:

• Enable and disable the component
• View the statistics for blocked banners
• Go to the Anti-Banner settings window
• View information about whether or not banners are blocked on a website opened in the browser, and manage the display of banners on a website

How to manage the Anti-Banner component via the Kaspersky Protection extension

[Topic 222845]

Unwanted App Installation Blocker

Sometimes you are installing a program only to find out later that you have installed several more applications you have not requested along with the one you wanted. Sounds familiar? These unwanted applications are installed without your knowledge and may spam you with ads or even change your default browser.

Enable the Unwanted App Installation Blocker to forget about this issue once and for all. The Unwanted App Installation Blocker will automatically clear the checkboxes for any additional applications suggested for installation to save you the trouble of unchecking them manually.

You can also enable the Unwanted App Installation Blocker in the Application Manager settings window.

To do this, select the During installation of applications, automatically clear check boxes for installation of additional software. Warn about any attempts to install additional programs check box.

[Topic 222846]

Adware Remover

Do you get a lot of annoying ads? Kaspersky Small Office Security can delete from your PC the apps that display ads in your browsers and on your desktop. In addition to adware, we will also remove any autodialer tools and suspicious packers that may contain viruses and other threats. Enable the Adware Remover to never see those annoying ads again.

To remove adware:

1. Open the main application window.
2. Go to the Privacy section.
3. Turn on the Adware Remover functionality.

Page top

[Topic 95482]

How to change Application Manager settings

To change Application Manager settings:

1. Open the main application window.
2. Select the Privacy section.
3. In the Unwanted App Installation Blocker block, click .

   This takes you to the Application Manager settings window.

4. In the Unwanted App Installation Blocker group of settings, select the During installation of applications, automatically clear check boxes for installation of additional software. Warn about any attempts to install additional programs check box to block installation of additional software during installation of new applications. If unwanted operations are prevented during installation of the new application, Kaspersky Small Office Security will notify you about this.

   If the check box During installation of applications, automatically clear check boxes for installation of additional software. Warn about any attempts to install additional programs was cleared after you started installing a certain application, the Unwanted App Installation Blocker continues to run for the duration of the current installation. Check boxes opposite applications offered for additional installation are cleared, and the additional applications themselves are not installed. This functionality will be disabled during the next installation. Additional applications will be installed together with the main application.

5. Select the Do not display installation steps that may contain advertisements and offers to install additional programs check box to block the display of installation steps with ads during installation of new software on the computer. If such installation steps are removed, Kaspersky Small Office Security will notify you about this.

Page top

[Topic 84581]

Secret Vault

This section describes how to protect data using secret vaults.

[Topic 84966]

About Secret Vault

Secret Vaults is designed to protect your confidential data against unauthorized access. A Secret Vault is a data storage on your computer that you can lock or unlock using the password that only you know. You have to enter the password to modify the files stored in a secret vault. If you have entered an invalid password 10 times in a row, access to the secret vault is blocked for one hour.

If you lose or forget the password, you will not be able to recover your data.

To create a secret vault, Kaspersky Small Office Security uses the AES XTS data encryption algorithm with an effective key length of 56 bits.

If the FAT32 file system is used on your computer, you can create secret vaults no more than 4 GB in size.

[Topic 84611]

How to move files to a secret vault

To move files to a secret vault:

1. Open the main window of Kaspersky Small Office Security.
2. Go to the Privacy section.
3. In the Secret Vault section, perform one of the following:

If you do not have a secret vault yet