A new post on Securelist:
SMBv1 or SMBv2 (both), does Kaspersky stop it (yes it surely does), IOCs/YARA (link & rules inside)
https://securelist.com/blog/research/78411/wannacry-faq-what-you-need-to-know-today/
↧
WannaCry FAQ: What you need to know today
↧
Software vulnerabilities persist [Kaspersky Security Center]
Hello.
I need an advise of Kaspersky SecurityCenter expert.
We have bought the SELECT licence so Kaspersky is unable to patch software vulnerabilities automatically. We need to do it manually. No problem. For example when I see Adobe Flash NPAPI/ActiveX vulnerabilities than I downloadthe newest versions from official websites and deploy them to the computers containing vulnerabilities. Updates are successfully installed to the newest version BUT Kaspersky keeps saying that vulnerabilities for Adobe Flash NPAPI/ActiveX still exist there.
I do not think it is problem of Kaspersky software. Updates are often successful and solve vulnerability issues. But sometimes (it's usually problem of Adobe software) vulnerabilities persist. I would like to get rid of them but it's impossible even with the updated software.
Can someone explain me why?
I...
↧
↧
Can't upgrade NA because a newer version is detected?
I just built a new task with Network Agent v/10.3.407a and Endpoint Security v. 10.3.0.6294.
My machines currently have NA v. 10.3.407 & ES v. 10.2.5.3201
When I perform the task I get an error message saying:
"Kaspersky Security Center Network Agent (10.3.407): Remote installation completed with error on client computer: Fatal error during installation. (Application cannot be installed. The later version of Network Agent (10.3.3011) is detected.)"
I look at the desktop details (in KSC) and it shows the 10.3.407 NA version. I even logged into the machine and looked in Control Panel --> Programs and it shows the same.
Why am I getting this message and how to do I get past it? Thanks!
↧
Kaspersky feature requests
Does someone here know how to make feature requests to Kaspersky?
I'd like to request they modify the Type Of Operating System Field to show POS/Embedded variants or create a new field.
Now that KES10SP2 removed support for POS and Embedded variants being able to split out the variants is more important than ever.
↧
Kaspersky maxing out our Bandwidth
Hi,
I've been scrambling for 2 days now to figure out why the avp.exe is using too much bandwidth on some of our PCs. We have a centralized Kaspersky Security Center and all workstations are configured to connect to that server for update.
I discovered this when one of our users complained network slowness, upon checking our Sonicwall diagnosis, I found out that some PCs are using up ingress bandwidth from an Public IP Address registered to our ISP. I checked which program from that port and discovered that it was avp.exe. I blocked that IP Address subnet (202.78.83.33/27)but now, avp.exe started to use204.79.197.223 (Microsoft IP). I don't have any idea why Kaspersky needs to connect to our ISP and Microsoft. Here are the screenshots:
Am I being paranoid? Is it a legit traffic? I'm not sure if it's just a DNS polling (we're using...
↧
↧
Kaspersky download repository issue
Hi all ,
please help me to resolve the issue by suggesting some solution.
Downloading the update to repository ending with an error showing that update component please help me to resolve the issue .
.png "Image: //static.spiceworks.com/shared/post/0024/9058/Capture_(1).png")
Note: The kaspersky security center is in the intranet. manually updates are copy from the internet kaspersky server to the intranet server .
then i had tried to download the updates its showing the error of component missing
because of that some client system completing the update task with malfunction.
even i have tried the clear repository
please help me to suggest the solution to resolve this...↧
Kaspersky download repository issue
Hi all ,
please help me to resolve the issue by suggesting some solution.
Downloading the update to repository ending with an error showing that update component please help me to resolve the issue .
Note: The kaspersky security center is in the intranet. manually updates are copy from the internet kaspersky server to the intranet server .
then i had tried to download the updates its showing the error of component missing
because of that some client system completing the update task with malfunction.
even i have tried the clear repository
please help me to suggest the solution to resolve this...↧
Network Agent on more computers than KES licenses
Hi everybody who wants to help me.
I am an admin in company of 400+ PCs. I use Kaspersky Security Center with 300 licenses for Kaspersky Endpoint Security. And I would like to have the Network Agent installed on all computers (300 PCs with NA and KES and 100+ PCs with NA only). Is it possible to have it this way? OR Is the number of NA installations limited by number of licenses?
Thank you for your time.
↧
Kaspersky AntiCryptor False Positives
Has anyone else who has implemented Kaspersky Anti-Cryptor on their servers experienced any false positives affecting .xlsx, .pdf or .ink files?
↧
↧
Kaspersky Policy for Offline Devices
Happy Friday.
I'm curious if Out of Office policies are most effective for devices that are offline periodically? We have a few devices that are powered off, but are viable and only turned on for business cases suit. They will throw warnings for database definitions and we're just trying to limit the amount of warnings from them.
↧
Kaspersky Security Center 10
Does anybody know how to update, remove or rebuild the Application Registry.
I have tried running a new inventory task but it does not seem to add new applications or remove uninstalled applications from the application registry list.
Kaspersky support has been unable to help with this
↧
Suspicious network activity detected
Has anyone else using KES10 experienced or received any of the "Suspicious network activity detected" alerts?
I don't see anywhere to configure or control it (or how it works).
↧
Is there a Kaspersky Endpoint Security 10 for Mac 10.1.1.622ab?
On the Kaspersky site I see the latest version listed as 10.1.1.622ab release 05 June 2017
https://support.kaspersky.com/kes10mac#downloads
The Files link has the 10.1.0.622b.zip. The Release notes id:12328 reference this as being the 03 April release.
I'm not finding any info on 10.1.1.622ab with a Google search.
↧
↧
I have a number of users in my network, i want to install kaspersky
I have a number of users in my network, i want to install kaspersky, how can I add the kasperky in each and every user from my Local sever...?what are the steps I have to follow?
↧
Kaspersky Anti-Ransomware Tool for Business
When i try to install the software its giving me a fatal error no matter how I install it.
↧
KSC Issues: Updates and virus scans fail
Good Monday (eh?)!
Our KSC seems to be functioning fairly normal, except certain machines have been ignoring their policy. They won't update and I have to force them to update. These policies apply to all machines, but these few do not ever kick off. I have to manually perform it. Not a huge deal, but a time sink.
Now the machines are doing the same thing with their virus scans. I have to manually execute these virus scans. And a few new computers started doing it this morning. It's quite frustrating when I have these policies setup that work for near 2 years and then they decide they're..done I guess? I'm a bit at a loss since scouring the Kaspersky forums is basically useless. I've had a few recommendations of reinstall the software, but that's inefficient and if that's the case, I think I'll need to just remove Kaspersky and go with...
↧
How to fix repository files
Our Kaspersky Security Center has started failing it administration data backup task and Google doesn't seem to be very helpful in this case.
The error message I get on the task itself is as follows:
Database is corrupted. At least one repository corrupted:
C:\ProgramData\Application
Data\KasperskyLab\adminkit\1093\.working\storages\51fa6053-ef13-46e2-84f4-ed441ca01027\SS_SETTINGS.dat
How should I go about fixing this? Or is reinstalling the KSC my only option?
↧
↧
Clearing the unprocessed files from Kaspersky Repository
Hi,
I would like to clear the repository files on the Kaspersky Security Center console. I tried selecting the particular files then clicked the delete option but they are not cleared from the repository.
Anyone who knows how to remove empty the unprocessed files please help.
Regards
Nelson
↧
Kaspersky Security Centre 10 - Web Control issue
Hi all,
I have enabled Web Control and am happily blocking sites via category and a blacklist.
My issue is that, when a site is blocked, the message that is supposed to be sent to the Administrator by clicking the Request Access link on the block message doesn't appear to work.
I have set the notification delivery settings to use my exchange server and the test message works and gets delivered so I don't understand why the Web Control portion doesn't play ball.
Any ideas?
Rgds,
Rob
↧
Kaspersky Security Center - Pushing batch file doesn't work.
Hello everyone,
I have a little issue with my Kaspersky Security Center. When I use a .bat or .cmd file as an installation package, nothing works. I do test the file locally to be sure it works. I tested using a batch file that copy one folder to another, I tested with a batch file that call script using cscript, but none work. It says "Successful" but it's not.
Is there something to do? Am I the only one having this issue?
(PS: when I push .exe or .msi, it works perfectly).
Thanks!
↧