Jump to content

Wesly.Zhang

Moderators
  • Posts

    1772
  • Joined

  • Last visited

Everything posted by Wesly.Zhang

  1. Hello, @nexon Does the browsers change its Privacy Policy rule related to XSS or official anti-banner rule? Try to see the browsers settings and change related settings to check this issue again.
  2. Hello, I advice you repair OS first. This blue screen is a BSOD issue and the key process has been broken , so system crash. How to go into windows 10 safe mode: https://support.microsoft.com/en-us/windows/start-your-pc-in-safe-mode-in-windows-92c27cff-db89-8644-1ce4-b3e5e56fe234#WindowsVersion=Windows_10 Using Dism Repair a Windows Image: https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/repair-a-windows-image?view=windows-11 DISM.exe /Online /Cleanup-image /Restorehealth Using above command to restore windows 10 image. Please reply back its execution result. Regards.
  3. Hello, @appie Have you ever tried to add a self-signed certificate to the system's trusted root certificate store? This may be able to solve your problem.
  4. Hello, @John1954 Could you make a screeshot on the "blue page" and upload here? Is it a ransomware? Regards.
  5. Hello, which version of the outlook?which email provider you encounter the issue do you use? Maybe I need do a test and do you try to report this issue to kl support via my.kaspersky.com/b2c ? Regards.
  6. Hello, I think you might turn on the two-factor authentication mechanism for your Kaspersky account using microsoft authenticator in account security settings. Regards.
  7. Hello, 你到网页反病毒的设置,信任网址中去看看。有些设置在重启计算机后会自动恢复,你也可以去试试。
  8. Hello, 请你卸载后重启计算机,然后对C盘进行磁盘扫描修复遇到的任何文件系统问题后在重新安装产品。
  9. Hello, I remember this setting will automatically fail after rebooting, have you tried rebooting? Regards.
  10. Hello, @somebody It seems that there is a problem with the system digital certificate. Have you changed the encrypted IMAP and SMTP protocol settings of your mailbox? Regards.
  11. Also, May I ask you what input method do you use, Microsoft input method or other third-party input method? Is this detection very regular, between 15 minutes and 20 minutes after the system starts up? Until there is no final solution, you can turn off background (rootkit) detection first. https://support.kaspersky.com/KTS/21.3/en-US/199672.htm
  12. Hello, @Bagus1414 Have you updated any software or installed any software recently? As I think, Usually this detection is to find the existence of expanded memory in the memory process to store code. For example, this situation exists under the explorer.exe process. This operation may be due to a legitimate program (just a false alarm) or an illegal program. So now you need to troubleshoot the problem one by one, you can also report this situation to Kaspersky technical support.
  13. All the above operations about terminate the process are only valid for the current one. If you shut down and restart OS, please re-terminate the related process again.
  14. Hi, @Bagus1414 I have received your file and check some place. As an investigation, I need you to prevent some software from running in the background first, for example, to prevent some software from starting automatically at OS boot period. At this point, wait a while to see if the detection still occurs. Finally report the situation and give us feedback. First, you should update the windows to install all hotfix or patch. Second, Try to config some application settings. Synapse3 - C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe //If you have some basic functions to use, you can terminate process Lightshot - C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe //search its settings to uncheck start with system boot optional or kill its process. Web Companion - C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe //search its settings to uncheck start with system boot optional or kill its process. TrayApplication - C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe //search its settings to uncheck start with system boot optional or kill its process. vksts - C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\vksts.exe //search its settings to uncheck start with system boot optional or kill its process. CodecPackTrayMenu.lnk - C:\Windows\SysWOW64\Codecs\TrayMenu.exe //search its settings to uncheck start with system boot optional or kill its process. BlueStacksHelper - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe //kill this process Winrar - D:\Folder APP\WinrarFile\rarext.dll // I recommend you use 7zip instead of this software. Regards.
  15. Hi, @Bagus1414 Could you export microsoft autoruns logs to me via pm?File-->Save... https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns Regards.
  16. Hello, @appie Could you take a screenshot on the message?Upload here. Regards.
  17. Hello, 在某些AMD中央处理器的系统内,该选项不可用。
  18. Hello, @ptwl @Yliven 的意思可能是让你用QQ邮箱,以超大附件的形式将分析数据通过QQ邮箱发送给它们。
  19. Hello, 没有明白这个导致无效的什么意思。如果你指的是到达激活码最大激活次数的话,这是会影响的。
  20. Hello, @Saoirse Please login my.kaspersky.com using the account you want to delete. and select this button to finish deleting.
  21. There is a situation that needs to be understood. Now test white EXE + gray/bad dll + vulnerability white driver + load arbitrary kernel code, you can passby/kill/hang all antivirus software. And future attacks will destroy all kernel protections of antivirus in a similar way, and then do whatever you want. Now anti-software has done a terrible job of attacking and defending at the kernel layer. , In addition to the ROOTKIT attack method, there is also the BOOTKIT attack method, which is also a hang-up of various anti-software. Microsoft WIN11's strong push of TPM and SECURE BOOT / Device Control is also a reluctant action, but most of them are resisting except those in the industry, resulting in future security problems that cannot be solved.
  22. Hello, 首先在卡巴斯基设置里面去取消使用虚拟化。然后重启,之后应该就不会蓝屏了。
  23. Hello., 这个程序可能位于低限制组,卡巴斯基并不信任这个程序,对磁盘信息进行操作可能引起主防报警,毕竟这是一个敏感操作,主防对于不信任的程序进行敏感操作进行报警,并非误报。如果这个工具来自于官方网站而非第三方下载站或者破解版,我认为是不会有问题的。
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.