Jump to content

JakeSDS

Members
  • Content Count

    29
  • Joined

  • Last visited

About JakeSDS

  • Rank
    Candidate

Recent Profile Visitors

603 profile views
  1. It has been solved on the original servers, it is now being detected within other paths on other machines. It is possible to have the .exe marked as safe within the Kaspersky databases?
  2. Thanks, after a few changes the false positive is no longer detected.
  3. They are detected by the Critical Areas Scan/Custom scans, all the exclusions cover Real-Time File Protection and On-Demand Scan.
  4. [Possible SPAM!!!]ary - Trusted Zone - Exclusions. I also added the exclusions to a KES policy and the exclusions worked however I am not as familiar with Kaspersky Security for Windows Server. Trusted Zone is being applied.
  5. I should add that the file aqnetutils.exe multiple times within different applications. Probably infected object detected: Trojan HEUR:Trojan.Win32.Hesv.gen. Object name: C:\Documents and Settings\Administrator\AppData\Local\Temp\TestComplete1240.exe//TestComplete.msi//Data1.cab/aqnetutils.exe. User: SYSTEM Probably infected object detected: Trojan HEUR:Trojan.Win32.Hesv.gen. Object name: C:\Documents and Settings\Administrator\AppData\Local\Temp\TestComplete1240 (2).exe//TestComplete.msi//Data1.cab/aqnetutils.exe. User: SYSTEM Probably infected object detected: Trojan HEUR:Trojan.Win32.Hesv.gen. Object name: C:\Documents and Settings\administrator.SDSUK\AppData\Local\Temp\TestExecute1240.exe//TestExecute.msi//Data1.cab/aqnetutils.exe. User: SYSTEM
  6. I have attached the .xml generated when exporting under exclusions in the Trusted Zone. Is this what you need? Active Policy Export - SmartBear.xml
  7. Hi, Issue remains on machines with Kaspersky Security for Windows Server 10.1.0.622
  8. Hi, A program has recently been flagged as a HEUR:Trojan.Win32.Hesv.gen. File Protection and On-Demand scans detect this however when the file is scanned in quarantined it reports it as a false positive and when the specific .exe within the .cab is uploaded to virusdesk it reports the file as safe. I have excluded this successfully for a KES policy however I have not been able to exclude the flagged file for Kaspersky for Server. The file is - \AppData\Local\Temp\TestExecute1240.exe//TestExecute.msi//Data1.cab/aqnetutils.exe (Automated QA software) What is the process for having this file recognised as safe by the on-demand scan? Thanks
  9. Upgrading to KES 11.0.1.90 has made no change to the restarting. Any Hyper-V VMs on our Server 2019 host with KES restart within seconds of booting in an endless cycle. I am also unable to get any GSI reports from the VM as the restarts happen almost immediately. Is there a way to determine exactly what is it within Endpoint that is causing the restart?
  10. Thanks, I've run the updates on the installation package and downloaded the KSC10_KES11.zip from the plug-in centre however the version number is still showing as 11.0.0.6499. Is there a way to manually download the patch? Regards
×
×
  • Create New...

Important Information

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.