Glenna Howell

Hi all, I'm back with a new problem. I have a several-month-old laptop that I originally set up for a different user. I wiped it and set it up for another person, but for some reason Kaspersky Endpoint Security isn't connecting to the workspace; it's visible for two minutes and then disappears from the Cloud. The laptop retains the same name as before... is that a known issue? I'm going from one workspace to another, and had reassigned the other user to another machine before deleting this machine from that workspace. I've tried uninstalling completely, wiping Kaspersky off the face of the planet from this machine, reinstalling with a package from the new workspace, installing the update, putting in the activation key... just about everything except renaming the computer.

Ugh. Ok. Thanks for the swift response.

So, I have to ‘push’ out the install package for Kaspersky Endpoint Security, 11.6. Can I download one package from one Workspace and send it out or do I have do an email per Workspace? Thanks, Glenna

Hi, I know that this has been solved, but if this ever becomes a repeating issue with installs of update packages check that the local machines, if they’re Windows 10, aren’t set to Randomize Hardware addresses under Network and Sharing. I had this issue with only ONE machine because that particular version of laptop had it set to ‘on’ by default. cheers!

Thanks Adons. I was eventually able to manually delete the biggest files. I’ve noticed that in the Endpoint Security Cloud console some of the switches don’t seem to work? there are supposedly options in the client to limit the Trace file size, which probably would still mean that there would be thousands of files and still would add up (like my collection of useless pennies), but again they’re greyed out. I also don’t see any anything to turn Trace off until required.

KES Cloud, KES for Windows 11.5 on this client; So on Wednesday, I started getting notices that my hard drive was filling up, so I went and ran Disk Clean up, as we’re supposed to regularly do as computer-users… and I was only able to recover 30 GB. Windows update packages and a restore point I didn’t need. At this point in my job, I’m not writing databases or making training videos, so I was puzzled. I checked my disk space usage. With all my options greyed out in the Kaspersky client from my end, and me being brand new to the system, I have seen some documentation that says that I can delete these traces from the cloud management console, but I haven’t had an opportunity to try that out.

I have an issue of a 50 GB trace file… and I’m using KES 11.5...

I’ve been told to basically ignore it. So I’ve been telling users the same. It’s all we can do unless you care to officially lodge a complaint about it. I’ve been researching AMSI in the background as well, trying to figure out of if the issue is that it’s Win32...odd, for a security program...maybe I have to grumble to Microsoft to get some answers. It does seem like a lot of Antivirus/Firewall and Gateway applications, such as SOPHOS were moving to include AMSI integrations as of Fall 2019. If anybody else has any other information, or has seen AMSI in action outside of UAC notifications and PowerShell, I’d love to know.

I went and looked up the role of AMSI in Microsoft Windows: Antimalware Scan Interface (AMSI) - Win32 apps | Microsoft Docs As far as the Cloud Management Console, it’s not even mentioned:

Ok. I’ve looked, I can see the stopped component, but how do I start it? It’s greyed out and there seems to be no corresponding area in the web portal.

Hi all: I’m preparing for a ‘rollout’ of KES Cloud, and the three devices we’ve installed on so far have this notice that says ‘Protection may be at risk’. I know that in the past, on other machines with other programs I’ve been able to solve the issue by running scans or making sure the code/key is the correct one. There’s even a solution for Kaspersky Internet Security, which is to clear the reports. Seeing nothing else for solutions, I tried that. It didn’t work. Is this something to do with the fact that we only have Cloud and all the Cloud Plus features are listed but not available? Has anybody seen this? Is there a solution that nobody is talking about?