Igor Kurzin

You can remove Kaspersky products via command line only if you first enable password protection in the product, then you can run uninstallation and include the name/password. Which upgrade are you planning to make? (trying to figure out if clearing KSC first is needed).

Hi Flood, The responsible teams are working on this. There is a process they have to follow and due to several reasons it is taking time. There was a communication on the issue (5436901) this week, I am keeping an eye on it, and as soon as it is fixed, I will give you an update. Sounds good? :)

Hi @kyuno1 , Please submit this sample at https://opentip.kaspersky.com, if it is not detected yet, please click ‘Submit to reanalyze’ button.

Hi Flood, Since you are browsing my.kaspersky.com site the corresponding help article is available in my.k help: https://support.kaspersky.com/KPC/1.0/en-US/96890.htm

Hi @Dylan , Check this article out: https://support.kaspersky.com/us/14674#block4

Hi @DARKxx56 , You can submit a ticket via https://support.kaspersky.com/b2c/ for assistance with this issue.

Hi @System_Info , Did you try to reinstall the product without keeping the settings? We would need to check some logs from your PC, do you mind submitting a ticket to technical support via https://support.kaspersky.com/b2c/ and letting me know the incident number?

Hola @Bambiton, ¿Tienes alguna de estas dos aplicaciones instaladas en tu PC? Web Companion HP Velocity

Hi @intelvir , Can you please submit a ticket to technical support via https://support.kaspersky.com/b2c/ and let me know its number? We will collect some additional information to further analyze and fix this issue.

Thank you for the screenshots. To fix this, please add subdomains to Trusted addresses as well, e.g. pfsense.thedurlands.site.

Hi @Necro PC , The default setting (Smart Scan) is the optimal one for majority of the situations and users. You can read the description below and choose another option if needed: Smart mode. In this mode, File Anti-Virus scans an object based on an analysis of actions taken on the object. For example, when working with a Microsoft Office document, Kaspersky Total Security scans the file the first time it is opened and the last time it is closed. Intermediate operations that overwrite the file do not cause it to be scanned. On access and modification. In this mode, File Anti-Virus scans objects whenever there is an attempt to open or modify them. On access. In this mode, File Anti-Virus scans objects only upon an attempt to open them. On execution. In this mode, File Anti-Virus only scans objects upon an attempt to run them. Kaspersky Internet security detect EICAR-TEST-FILE sometimes What is the scenario (step by step) when eicar test file is not detected? I am asking, so we can check in our environment.

Hi @BudTheGrey , To make sure we are on the same page, can you post a screenshot of the Trusted addresses, the error message when connecting to one of the local devices (so that URL in the browser address bar is visible as well)?

Hi @MangoBui , Trojan.Multi.Accesstr detection is triggered when Kaspersky products detect that one of Windows utilities in %systemroot%\system32 folder is replaced by cmd.exe or powershell.exe. The trojan.multi.accesstr.ash can be detected in situations when cmd.exe was renamed to C:\Windows\System32\sethc.exe Please check the following: 1. Press Win+R to open the Run menu. Paste C:\Windows\System32\sethc.exe and press OK. If Command Prompt windows opens, it means there is no actual trojan, there is a cmd.exe file that had been renamed to a sethc.exe. Windows contains accessibility features that may be launched with a key combination before a user has logged in (for example, when the user is on the Windows logon screen). Someone can modify the way these programs are launched to get a command prompt or backdoor without logging in to the system. So the renamed cmd.exe file itself does not contain malicious code, but it is a serious security flaw, that needs to be taken care of. And detecting it as "trojan" is a way to mitigate this security flaw. You can simply rename sethc.exe back to cmd.exe or delete it.

Hi all, Usually malware analysts are lightning fast to fix false positives, this time it is taking a little longer than expected, I have checked with them, they are giving an ETA for 24-48 for the fix to arrive. Sorry for the inconveniences caused.

Hi @Studynx , If changing password/resetting 2fa requires a code that you get on your mobile device and have to enter it manually, assuming the malicious person does not have access to your mobile device, the account hacking seems not probable.

Hi @Snowwolfboi , It depends on your needs. Check this out: https://support.kaspersky.com/common/buy/15494

Hi @Wakior , What exactly happens, is there an error message? Can you post a screenshot? Does it help to pause protection?

Hey Flood, Thanks for your post, we can update both topics after this is sorted out by the malware analysts.

Hi, we are on it, please stand by.

Добрый день, С учетом устаревших антивирусных баз в этом нет практического смысла.

Hey Flood, Such things can happen, new links are added to databases not the very same second they appear in the wild.

Hi @always_working , Links are checked at the moment of getting them and informing the user that the link is harmful. The scenario “malware deployed without ever opening the text” seems improbable.

Hi @Dk Om , Sorry, we do not provide malware (in any form). If you would like to test detection of malware, you can use the test program, here is more information: https://support.kaspersky.com/common/diagnostics/7399

hi @AAmado , My question is: does the VPN installed on the computer individually block, or change the IP of all devices connected to the network, even without being installed The answer is ‘no’, VPN installed on the computer does not influence other devices in the network, it only serves to make a VPN tunnel between the computer and the remote VPN server.

Hi @Studynx , Real time protection by default does not scan large files, as per the settings: As you can see you can remove the ‘Do not unpack large compound files’ and let real time protection check bigger files. This may affect overall system performance though. Quick Scan does not scan all types of files by default. Or you mean Scan from Context Menu? For a test, I just ran a scan of ~30Gb archive. No issues scanning. You can scan bigger files, you only need enough free space on the disk to unpack and scan. What you can do to make sure that files inside the 22Gb file are scanned: Go to Settings → Interface → Notification settings → Scan → under ‘Informational’ part check to Save in local report all the events: ‘Object processed’, ‘Object skipped’, etc. Go to Scan → Scan from context menu settings → Advanced settings → uncheck ‘iSwift’ and ‘iChecker’ technologies → Save. Right click on the downloaded 22Gb file and choose to scan. Then check the report for the status of the scan.