Jump to content

robertmac

Members
  • Content Count

    24
  • Joined

  • Last visited

About robertmac

  • Rank
    Candidate
  1. Hi Steve, from memory, as long as the computers are removed from the Security Centre (uninstall KAV/KES) and the Windows domain, the licenses should be freed up to re-use I needed to do this before and talked to Kaspersky and that is what I was told robert
  2. Hi Ebesonic, Kaspersky Endpoint Security 8 has a web filtering component that might do what you need. it can allow/block sites based on category (the usual categories are in here) you can deploy/manage it with Security Centre 9, its called Web Control and you can modify it using a policy its quite customisable, you can block categories, files, videos, sound, archive file. the rules can have time restrictions and you can also enforce with Active Directory security groups. you can even block Javascript and style sheets for some sites if you wish. not sure exactly if that is what you are looking for or not ? its worth a look if you hadn't considered it before Robert
  3. sorry forgot to say on my original post, the 2 virtual servers I denied the windows group on have disappeared from the list of virtual servers so I cant edit the permissions to un-deny the group. that would have been the first thing I did if I could see the virtual servers to edit. this is why I am looking through the security centre database trying to find where the groups deny or allow are set. thanks for the suggestion
  4. Hi, I appreciate I probably wont get an answer to this here but thought I'd ask in case anyone does know before I go to Kaspersky support directly. I use Security Centre with multiple virtual servers in it. (service provider edition) the problem I have is that on the security permissions of the virtual server I added a windows group to the permissions and set it to Deny. this seeems to have had the effect of denying access for everyone to that virtual server rather than just the group that I intended to Deny. obviously its going to be a setting in the database as oppposed to a file level permission but I searched a lot of the tables in the batebase and cannot figure out how the access is granted/denied so that I can un-deny the problem group. anyone got any clues ? thanks Robert
  5. I've not come across this before but it is annoying me now as nothing I have tried has worked. I am using the Service Provider Security Centre, but I dontt beleive the problem is related to that. what is happening is, the agent and Endpoint 8 are being installed onto a WinXP workstation. the agent connects to the security centre and reports itself as being installed, however it will not report that Endpoint is installed and therefore I cannot apply licenses/updates etc or run tasks that are relating to Endpoint because it believes it isnt installed. checked the registry location at HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\Components\34\1103\1.0.0.0\Statistics\AVState and the values there also dont believe that Endpoint is installed/running or does ithave any bases downloaded. "Protection_AvInstalled"=dword:00000000 "Protection_AvRunning"=dword:00000000 "Protection_BasesDate"="" I am led to believe from other posts that those 3 values are important to what is reported. I cant set them because they will revert back to 0/blank when it next Syncs. I've completely uninstalled it, reinstalled endpoint and agents, no dice. I had a cunning plan that I could license it manually and then run an update, but cant do that. it licences ok but says databsaes are out of date. so I tried to create an update task but there are no update sources and clicking Add to add one does nothing at all. even when I manually try to choose a region, it has the region drop down greyed out. I've never had so much bother trying to get one of these working before. I would initially think it is a client PC problem but all the workstations at this office have the same issue, which sort of indicates a server side problem or bad packages but the endpoint package is used for other customers without any problem. anyone got any ideas or pointers ? if you need more info, let me know and I shall provide thanks robert
  6. I'm using Windows 7 x64 with 4Gb of RAM and Endpoint 8. no noticeable slowdown over KAV 6 MP4 the times I have seen performance hits like you describe are when there is either existing AV software installed already or when the machine has been infected previously and some files/drivers are left behind. either of those 2 can cause major slowdown on your machine, checking CPU time and RAM usages would show nothing unusual. have you ever run a GSI before to gather a report ? it would identify any known incompatible drivers/software
  7. cheers. handy to know , I've used these admin kits for years and never needed to remove a key until now. thanks again robert
  8. I know this can be done from the client computer but is there any way to remove additional license keys from a clients computer via the Security Centre ? reason I ask is because I accidently deployed an additional key to a client and I want to remove it before it goes into use. but dont want the hassle of having to either connect to each machine individually or by asking them to do it since we manage their AV for them. be nice if I could just create a task to remove/blank out the additonal keys for all or some PCs. anyone know if this is possible ?
  9. I'd also check your reverse DNS zones for multiple names resolving to the same IP. I've seen this to cause exactly the same problem.
  10. if the firewall is off and there are no firewalls between you and the Kaspersky server then it isnt likely to be a port blocking issue. are you trying to get it to connect to your SQL server ? tcp/1433 is MS SQL Server and it isnt configured to listen for remote connections by default. if you are trying to configure something else to listen on that port you may experience conflicts and problems this ms kb for enabling it for sql 2005 should point you in the right place if you are intending to publish SQL server remotely http://support.microsoft.com/kb/914277 if you are not trying to publish SQL server then I would pick a different port number for what you need. hope that helps some. if not, can you expand on what you are doing and I'll help as much as I can robert
  11. Hi, now I'm not a mac Expert (yet) so I thought I'd ask where I'm more likely to get pointed in the right direction. I've installed Endpoint Security on mac (OS X 10.6.80), this is managed from a security centre and therefore has a policy. (I posted this here since it is more Mac related than it is Security Centre related) as soon as Endpoint finished installing, the Mac became near unusable, safari was next to useless. Outlook for Mac 2011 appears to hang. the only thing I can compare it to is when Kaspersky AV was installed onto a Windows machine where AV software already was installed and then you suffer extreme slowdown. as this mac isnt nearby I cant physically access it to check it so I have to connect remotely but cannot do this in the current state so I had to ask the Mac owner to uninstall Endpoint which then brought the mac back to life. is this a familiar sounding experience to anyone ? and if so, any pointers as to what to look for to help troubleshooting on a mac ? thanks robert
  12. regarding server 2008 R2 antivirus, I have been using the 'regular' Kaspersky Antivirus for Windows Servers 6.0.4.1424 builds. will be moving to endpoint when I get round to doing some install testing etc. I assume when you say what is the best antivirus, you meant which is the best Kaspersky product for you ? :-) if you are looking to manage multiple machines like Ali.nejad, then I would be looking at the Security Centre. It will make your life a lot easier in understanding the status of all your machines in 1 place. plus then you only need to download updates once and the Security Centre will deploy them across your managed nodes. currently, you are most likely downloading 15 sets of updates at each update interval for your windows 7 pcs, and then adding more will add more updates. the Security Centre isn't that difficult to use and when it is configured with tasks and notifications you can almost leave it alone. hope that helps a bit but ask whatever you need to know
  13. Flexnet is used in some Adobe products for licensing so you may have flexnet components on your systems. flexnet is used for licensing in number of products, I have come across some CAD software that also uses it. assuming you are using the security centre, does the unprocessed object repositories have anything in them related to flexnet or adobe paths ? that may explain the unprocessed object flag
  14. Hi, from the Kaspersky dialog box you got with the net send error, it says the message was sent successfully so I think we can skip troubleshooting the actual smtp connection since that would appear to be ok, otherwise the message would have been different. are you delivering to an internal mail server or a public internet one ? if its internal , what mail server software are you using and do you use any anti-spam software on this server that could have removed the message ? is the destination mailbox setup on this same server or are you sending the mail to another domain/address, if it isnt then there could be a problem relaying the message elsewhere. forgive me but I'm not sure when you say the logs say they were about dns, do you happen to have a snippet of the smtp log showing the server accepting the message? if you have any sort of method to track mail, ie, MS Exchange Message tracker, then it will tell you what it did with the mail.
  15. from that notification, it looks like the mail was sent successfully, and it was just the net send script that failed as I thought. do you have access to the mail server it is sending to ? just for checking its inbound SMTP logs to see what they say. have you tried using telnet to diagnose the mail connection ? (or using any tool that can show you the raw dialog for4 the smtp conversation) this will help to show you if the mail server is returning any messages that tell you what is wrong. I assume that the security centre will show an error if there is any problem delivering mail as I think from memory that a test email comes through to complete the test. smtp logs and message tracking (of some kind) will give you some clues as to where the notification has gone. smtp logs will at least show it was accepted and assigned a queue id
×
×
  • Create New...

Important Information

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.