Igor Kurzin

Hi Thi Vo, Does it help to disable scan of encrypted connections via Settings -> Additional -> Network -> select "Do not scan encrypted connections"? Try this: - Open Kaspersky > Settings > General > uncheck Enable self-defence option. - Save settings > unload Kaspersky by right-click on the 'Green shield' Kaspersky icon in System Tray (on the bottom right corner of your screen) and select “Exit”. When asked if you are sure you want to exit, please click on “Continue”. - Go to C:\ProgramData\Kaspersky Lab\AVP21.3\Report - Delete contents of this folder. - Launch Kaspersky, enable self-defence and check.

Hi BigHotStud, Can be something 'legal' working in the background. You can try to find out what it is by disabling other processes (start up tasks). 1.Start in Clean boot: https://support.microsoft.com/en-us/topic/how-to-perform-a-clean-boot-in-windows-da2f9573-6eec-00ad-2f8a-a97a1807f3dd 2.Disable scheduled tasks: - go to c:\windows\system32\tasks - create a folder with any name (e.g. 'Test') - move all the contents of c:\windows\system32\tasks to this new folder - restart PC

Hi John, Which tools are you referring to? These? In the new version the components from under 'More Tools' are located in the main menu.

Подскажите, пожалуйста, вы тоже делали откат к предыдущей точке восстановления Windows после установки продукта? У вас проблема сразу после установки стала проявляться или после каких-то действий?

Wir haben die Website zur Erkennung hinzugefügt. Jetzt ist es: Komponente: Web-Anti-Virus Ergebnisbeschreibung: Blockiert Typ: Bösartiger Link Name: https://wp20.ru/favicon.ico Präzision: Genau Bedrohungsstufe: Hoch Objekttyp: Webseite Objektname: favicon.ico Objektpfad: https://wp20.ru Grund: Cloud-Schutz Danke!

Vielen Dank, wir werden das prüfen.

¿Has creado exclusiónes para?: С:\Program Files (x86)\NetSupport\NetSupport Manager\client32.exe C:\Program Files (x86)\NetSupport\NetSupport Manager\PCICTLUI.EXE Tienes y es necesario cambiar esto por 'No analizar todo el tráfico'.

Hi, The product for Android takes care of the threats that can be harmful for Android OS. Detecting all the known threats would be an unnecessary overkill, as it would overload the product, reduce the performance, etc. The product for Windows detects all the threats, including those for Android OS.

Hola, Además de lo que Harlan ha publicado... ¿Ayuda salir de Kaspersky o solo ayuda la desinstalación?

Hi darkflux, Looks like the issue is due to "locking your PC down". Can you please give more details on how the Windows 7 is locked down, how changes are wiped and reset?

Hi, in addition to what Flood has posted, it may be a good first step to reset Chrome browser via the instruction: https://support.google.com/chrome/answer/3296214?hl=en

This file contains temporary data of Kaspersky, the size of 1,6Gb on the disk is normal. You can disable Self-Defense in the Kaspersky product, then exit Kaspersky product and delete the file.

You can remove Kaspersky products via command line only if you first enable password protection in the product, then you can run uninstallation and include the name/password. Which upgrade are you planning to make? (trying to figure out if clearing KSC first is needed).

Hi Flood, The responsible teams are working on this. There is a process they have to follow and due to several reasons it is taking time. There was a communication on the issue (5436901) this week, I am keeping an eye on it, and as soon as it is fixed, I will give you an update. Sounds good? :)

Hi @kyuno1 , Please submit this sample at https://opentip.kaspersky.com, if it is not detected yet, please click ‘Submit to reanalyze’ button.

Hi Flood, Since you are browsing my.kaspersky.com site the corresponding help article is available in my.k help: https://support.kaspersky.com/KPC/1.0/en-US/96890.htm

Hi @Dylan , Check this article out: https://support.kaspersky.com/us/14674#block4

Hi @DARKxx56 , You can submit a ticket via https://support.kaspersky.com/b2c/ for assistance with this issue.

Hi @System_Info , Did you try to reinstall the product without keeping the settings? We would need to check some logs from your PC, do you mind submitting a ticket to technical support via https://support.kaspersky.com/b2c/ and letting me know the incident number?

Hola @Bambiton, ¿Tienes alguna de estas dos aplicaciones instaladas en tu PC? Web Companion HP Velocity

Hi @intelvir , Can you please submit a ticket to technical support via https://support.kaspersky.com/b2c/ and let me know its number? We will collect some additional information to further analyze and fix this issue.

Thank you for the screenshots. To fix this, please add subdomains to Trusted addresses as well, e.g. pfsense.thedurlands.site.

Hi @Necro PC , The default setting (Smart Scan) is the optimal one for majority of the situations and users. You can read the description below and choose another option if needed: Smart mode. In this mode, File Anti-Virus scans an object based on an analysis of actions taken on the object. For example, when working with a Microsoft Office document, Kaspersky Total Security scans the file the first time it is opened and the last time it is closed. Intermediate operations that overwrite the file do not cause it to be scanned. On access and modification. In this mode, File Anti-Virus scans objects whenever there is an attempt to open or modify them. On access. In this mode, File Anti-Virus scans objects only upon an attempt to open them. On execution. In this mode, File Anti-Virus only scans objects upon an attempt to run them. Kaspersky Internet security detect EICAR-TEST-FILE sometimes What is the scenario (step by step) when eicar test file is not detected? I am asking, so we can check in our environment.

Hi @BudTheGrey , To make sure we are on the same page, can you post a screenshot of the Trusted addresses, the error message when connecting to one of the local devices (so that URL in the browser address bar is visible as well)?

Hi @MangoBui , Trojan.Multi.Accesstr detection is triggered when Kaspersky products detect that one of Windows utilities in %systemroot%\system32 folder is replaced by cmd.exe or powershell.exe. The trojan.multi.accesstr.ash can be detected in situations when cmd.exe was renamed to C:\Windows\System32\sethc.exe Please check the following: 1. Press Win+R to open the Run menu. Paste C:\Windows\System32\sethc.exe and press OK. If Command Prompt windows opens, it means there is no actual trojan, there is a cmd.exe file that had been renamed to a sethc.exe. Windows contains accessibility features that may be launched with a key combination before a user has logged in (for example, when the user is on the Windows logon screen). Someone can modify the way these programs are launched to get a command prompt or backdoor without logging in to the system. So the renamed cmd.exe file itself does not contain malicious code, but it is a serious security flaw, that needs to be taken care of. And detecting it as "trojan" is a way to mitigate this security flaw. You can simply rename sethc.exe back to cmd.exe or delete it.