always_working
-
Posts
55 -
Joined
-
Last visited
Posts posted by always_working
-
-
Have the app set to scan daily and update databases automatically but generally don't like to leave data on and don't connect via WIFI.
Is it advisable to leave the data on so the app can update or is it best practice to turn the data on and update daily (and then turn data off again)?
Is there a best approach?
Any insight is appreciated!
-
Thanks for the informative reply.
Regarding v21.9, I (mistakenly) thought that app/version updates took place automatically (like the virus definitions do).
Is there no way to be notified when there is a new version or update within the app itself? Is the answer to just continuously check for new updates and install over the top of the old version? There must be a better way.
After I've updated, I'll reach out to Kaspersky support if the issue persists.
Thanks again!
-
1
-
-
Thanks!
1. I did read the guide but it applied to Total Security. Icon right-click / About worked. Kaspersky Premium 21.8.5.452 (c)
2. Windows. Would I need / it is recommended to switch to Mozilla if Firefox will be my default browser?
3. I will log a request if need be but it's my thinking that I just need a better understanding to move forward and don't think it's an error or technical malfunction. I want to learn what those notifications mean in this circumstance.
-
1
-
-
Running Windows 10 Pro and the latest version of Kaspersky Premium (I'm having trouble finding the full version number).
Migrating to Firefox and have applied profile preferences via a user-overrides.js file for enhanced privacy and security.
After doing so, I'm receiving the two errors as attached immediately upon opening the browser. I did read the information at https://support.kaspersky.com/us/common/error/other/13720.
However, I'm wondering how they apply to my specific use case. I didn't get them before setting the preferences and am unsure if it's safe to "ignore and remember".
Any insight would be sincerely appreciated!
-
Or is the best approach to use a cookie / cache autodelete extension at the end of each working day?
Perhaps both?
Any insight appreciated!
-
Are these executables related to Kaspersky VPN only or are they necessary for other AV functionality?
I don't use the VPN and am not sure if I should allow them to run (I generally like to limit exe's when possible).
Information appreciated!
-
1
-
-
This is extremely helpful and useful information - thanks again!
Still not sure why I never received the notification but that was on KSC so hopefully it won't be an issue with the Free version. I will also be upgrading from that for further network security at some point.
I was also going to ask if you had any idea why the Network Attack Blocker task would have been started by NT Authority\System instead of the active user? This happened twice on a different PC (running KSC) but I've never logged into any other user account.
Having a hard time figuring that one out as well!
After this, I'll leave you be for a while ;]
-
1
-
-
1 hour ago, Berny said:
@always_working Thank you for your feedback
- You don't need to install Wireshark and create a Log.
- A Kaspersky scan without detections means your system is clean.
Thanks again for your help.
While I'm glad the system is clean, this will always bother me.
I don't even have Apple QuickTime installed on the computer that initiated the attempted port scan and will always wonder! Any idea what can cause such a port scan if it's not malicious in nature?
-
On 10/30/2022 at 1:06 PM, Berny said:
A manual on top install from the new Kaspersky products 2022 is importing the settings from the previous version.
→ Download Kaspersky Free application : https://usa.kaspersky.com/downloads/free-antivirus
Slightly off-topic, but what product might you suggest upgrading to for increased network security and related tools?
-
13 hours ago, Flood and Flood's wife said:
Hello @always_working,
You're most welcome!
Thank you for posting back & the information!
Kaspersky's previous advice for Scan.Generic.PortScan.TCP events, has been:
"To fully identify that Scan.Generic.PortScan.TCP is the known issue, one needs to check the report and make sure the string: “Detected object is added to exclusions” is present. If the attack is blocked and there is no “Detected object is added to exclusions” - Kaspersky need to further investigate."
We're following up with Kaspersky, we will update this topic when their advice is available.
Thank you?
Flood?+?I have run a full scan on both computers with no detected malware. If it wasn't added to exclusions as referenced, does that mean that Kaspersky wasn't able to identify with certainty that it wasn't a malicious attack?
I'm not sure what my next step should be.
-
17 hours ago, always_working said:
Yes, it is in the range and point from my primary pc to my secondary one. I don't have Wireshark.
Would a log still be useful (if I install and learn Wireshark) or would it have to have been from the time when the potential attack was blocked?
-
2 hours ago, Flood and Flood's wife said:
Hello @always_working,
Thank you for posting back & the information!
- Check the Network Attack Blocker Report, does it show “Detected object is added to exclusions”?
- We are checking with Kaspersky regarding the Network Attack Blocker, Notify on screen issue - we will update this topic when their advice is available.
- Technical Support is not available to users of Kaspersky Free, Trial or Beta software versions.
Thank you?
Flood?+?No, the result shows as blocked. No mention in the report of exclusions.
I appreciate your assistance via this forum and look forward to getting to the bottom of these issues!
-
4 hours ago, Berny said:
A manual on top install from the new Kaspersky products 2022 is importing the settings from the previous version.
→ Download Kaspersky Free application : https://usa.kaspersky.com/downloads/free-antivirus
Thanks for the information. Will do as soon as I figure out the immediate issues I'm working on.
-
3 hours ago, Berny said:
If the IP number in the report is showing 192.168.x.x then the alert is pointing to your local network. To confirm or deny a FP your best option is to submit a WireShark log to Kasperksy Technical Support.
PS : This community is not providing suggestions via PM.Yes, it is in the range and point from my primary pc to my secondary one. I don't have Wireshark.
-
Hi Flood,
I'm in the SE US. I have to think it's available because I believe that one version of KSC updated to Free automatically (when I updated the databases) which is why I was surprised that the other two installations didn't follow suit.
Will I lose all my settings if I install Free and will I have to uninstall KSC first? Generally speaking, am I losing any security by doing so?
-
1
-
-
Hi Flood,
Thanks so much for the reply and offer to help!
Although I respect that the report might offer more clarity, I guess I'd rather not post the it publicly on the forum since it does include IP addresses. It seems that you can't be too careful these days.
However, the event is listed as "Network attack detected" with a name of Scan.Generic.Portscan.TCP (Protocol TCP, Local Port 458) from my primary PC to my secondary PC.
I do use SoftPerfect Wifi Guard but I haven't been able to recreate the event with further scans using the software (even selecting that I don't know the device).
Also, I "Notify on screen" was selected but I never did see the notification. Perhaps I missed it somehow. I do get desktop alerts from Kaspersky as well and think that one of those would also be generated?
Thanks again!
P.S. If the report is crucial, perhaps I can send it to you via PM.
-
I have a simple home network with two work PC's behind an unmanaged switch.
Security Cloud Network Attack Blocker detected a Scan.Generic.Portscan.TCP (Protocol TCP, Local Port 458) from my primary PC to my secondary PC.
Could this be something innocuous such as SoftPerfect Wifi Guard scanning the network or might it be something malicious? The Object type was a Network packet which was blocked. If it isn't malicious, what might this mean for the communication between these two devices?
Also, is there a way to be notified in Security Cloud in real-time when this happens? I would never have known unless I specifically examined the Network Attack Blocker report and think it's crucial to be notified when such attacks are detected.
Any insight appreciated!
-
Is there a way to upgrade Security Cloud to Free? I have Free one on PC and Security Cloud on two...and would like to use the software more consistently.
Is Free generally considered an upgrade and the next generation?
Thanks in advance!
-
Hello,
Was getting some annoying pop-up ads on my pc and found that ending the SPEPOPUD.EXE process killed them. Then found out that it was an Iobit (uninstaller program) file.
Is this something Kaspersky Security Cloud should / could have caught or not?
I'm thinking it slipped by due to the fact that I've had that program on my computer for a while but it's still concerning.
Uninstalling the program seems to have alleviated the issue but is it possible the system is still infected?
Any help appreciated!
-
Thanks for the replies! This is quite helpful.
-
1
-
-
Does safe messaging also protect against malware deployed without ever opening the text or does it scan the links only?
I’ve read that some texts can be malicious through the multimedia messaging service without clicking on a link but just by opening it...and that it might even be possible to get infected without even opening the text (just by receiving it in the first place).
Any insight appreciated!
-
Thanks for the exceptional information, Thoughts!
I do agree that KSC is extremely impressive and, IMO, the best AV software out there.
On that note, I’m strongly considering upgrading to Personal but am unsure if I need the additional tools and don’t need a password manager or cleaning abilities (and don’t have a family). Frankly, I’m thinking of upgrading because it’s the right thing to do and I value their work and efforts.
I’m really glad you mentioned the importance of KSN and suggested the uBlock Origin settings...and agree with the importance of regular and secure backups.
-
Beyond increasing CPU and memory usage, I’d say the worst case scenario could be a malware attack where the response of one (KSC or Malwarebytes) was seen as suspicious behaviour by the other and so tries to block it. In other words, two AVs seeing each other as a threat.
Don’t forget an AV doesn’t know the ‘other’ software is an AV, it just sees what the other was trying to do, which it could determine was itself an attack by malware.
As an aside, Malwarebytes offers a separate browser extension, used independently of their AV software, so you could use that, in conjunction with KSC and Malwarebytes (scanner only mode). Real-time malware protection would come KSC, with Malwarebytes Browser Guard giving you a further URL check beyond that of Kaspersky.
Thanks for your input. Due to the fact that MWB has caught so many things with real-time protection turned on, I’m really struggling with turning it off (ransomware is off at this point).
I do believe and have trust in Kaspersky (I know how highly rated they are in terms of detection) but it’s hard to know.
You make a very valid point in regards to potential conflicts and I find myself wondering how often this actually happens “in the wild”. This seems to be one of the topics that it’s difficult to find consensus for.
I have heard of that extension. Can I ask if you use it and are satisfied with it? I do use the Kaspersky Protection extension at this time as well as uBlock Origin.
Really appreciate your insight as I want to stay as safe as possible!
-
I know this topic has been brought up before (and I’ve read those threads), but what’s the worst case scenario if MWB Premium has all real-time protection on while running KSC?
Will they conflict at times and simply “fight over” certain types of protection, or is it possible that this combination will actually cause security vulnerabilities?
I work online and MWB Premium has stopped me from visiting several websites (that I thought were secure), detected a few trojans, found some Adware and PUPs, etc.
My concern is that if I turn off real-time protection, I might not be as safe since I’ve seen it stop so much.
Is the answer just to keep the faith and turn off real-time protection?
Is it Safe to Leave Data on So Kaspersky Premium on Android can Automatically Update the Databases?
in Kaspersky: Basic, Standard, Plus, Premium
Posted
Thanks for your reply. I'm trying not to think about times being easier and adapting instead ;]
Doesn't it introduce new security risks, though, to always leave data on?