VM_MPN

Thank you for your reply Caos, Yes, as expected file shows as infected: At this point I’m turning off / exiting Kaspersky client on every workstation to be able to run and install this file… I have been dealing with NexTech for years and I can virtually guarantee their files are legitimate and clean. What can I say… Thank you again, VM P.S. Link to the original file: https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fservices.nextech.com%2FClient%2FUpdate%2FNxTSAddin%2FNxTSAddinSetup.exe&data=04%7C01%7Cc.kobil%40nextech.com%7Cd169e44f19624d4ec35d08d9adeebdaf%7Cfc68edfc9b5346948fe4a73270550dd1%7C0%7C0%7C637732064085483626%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=no2efKz2BmmMrNjwyUaSNC4RnVQm21PG%2FiAKWoR%2BTfw%3D&reserved=0

Hello, Hoping anybody can help me here, I’m running Kaspersky Security Cloud across multiple clients (around 50 licenses) and one client in particular uses proprietary Practice Management Software (NexTech) which requires installation of executable app (details below). Kaspersky recognizes it as a trojan and deletes this file from the download folder automatically. My problem is I can’t whitelist / exclude this file from Kaspersky Security portal by either filename, object name, etc. Download itself goes smoothly - file saved under downloads folder. File activated (opened) with the following error… Shortly after it disappears! Looking at Kaspersky client threat protection log its flagged as Trojan… Adding exceptions under Kaspersky Cloud Web portal does not seem to work… I’ve tried adding exclusion by direct path to the file: (example: C:\Users\*\NxTSAddinSetu*.exe) Possible Object names I have found under Kaspersky log (example: NxTSAddinSetup(1).exe also UDS:Trojan.Win32.Scar or even SHA256 hash 4DF57CAE33AF2E6596A2E366731A3A8D764788F81750A22F32151B5C18C26643 None of these exclusions worked at the end - each time I download and try to execute this file its detected as a threat and quarantined by Kaspersky upon execution. All this has been tried on Windows 2012 server or multiple Windows 10 Pro workstations by the way. I strongly suspect I’m doing something wrong but can’t figure this out so far… Being licensed business user I also found it difficult to contact Kaspersky support directly (do they even have dedicated email address or phone number for technical issues in USA?) . Any help from this community will be greatly appreciated! VM

Has been resolved - don’t know how)

After KES 11.3.0.773 update I can’t VPN to the server using either PPTP or L2TP protocols (native Microsoft VPN client to server connectivity). I’ve heard patch is available to address this problem with earlier products but I have no idea where to look for official info on this. Trying to register business account with Kaspersky but not receiving confirmation emails for some reason so can’t activate. Interesting detail to note is that I have multiple clients with Microsoft servers running the same version of KES - VPN works for some clients, but not for this particular one. Could be another (non Kaspersky) issue of course, but I’ve wasted 48 hours trying to figure out what I’ve missed on my end and I come back to needing some KES wisdom. Good software, but support channels are locking, Please help!