Wesly.Zhang

Hello, 请善用论坛的搜索功能。

Hello, 首先在卡巴斯基设置里面去取消使用虚拟化。然后重启，之后应该就不会蓝屏了。

Hello., 这个程序可能位于低限制组，卡巴斯基并不信任这个程序，对磁盘信息进行操作可能引起主防报警，毕竟这是一个敏感操作，主防对于不信任的程序进行敏感操作进行报警，并非误报。如果这个工具来自于官方网站而非第三方下载站或者破解版，我认为是不会有问题的。

Hello, 这是系统监控的行为检测，修改磁盘信息请退出卡巴斯基程序在操作以免导致数据丢失。

Hello, @barzo55 When you login the my kaspersky account via https://my.kaspersky.com/ , What's the situation in https://my.kaspersky.com/MyDevices and https://my.kaspersky.com/MyLicenses . There has a device which you have installed Kaspersky free in My Devices before. right? Does the orginal activation code for Kaspersky Free is invalid, right? I think if yes, you should install kaspersky security cloud free instead. Regards.

Hello, @BigHotStud You don't worried about this error at all. This file is safe without any problem. It seem scan engine doesn't handle to process unpack the file correctly. If you are convenience, you can sent the file to KL for analyses the fault reason for processing this file. Regards.

Hi @vividmoon It seems the download speed is very low form github.com, Could you sent the software to here? If you have uploaded, Please let me know. or try to add a exclude rule for jamovi.exe Regards.

Hi @vividmoon I am now downloading the software to install it and check this issue, Please wait for my reply. Regards.

Hello, @ramjam I check the situation which you have reported here. Here is the operation step. Do I reproduce the case correct? https://cloud.qainfo.ru/s/8oLdTNPPeqTUNqm It seems no problem at all. Regards.

Hello, virtual keyboard? microsoft virtual keyboard or any third-party virtual keyboard? Please tell us more information, you can take a screeshot picture, which will help us know your issue clearly. Regards.

Hi, @Louiss Could you login my kaspersky via its website？Please login and change your password. After do that, please re-check this issue. Regards.

Hello, Could you please check this issue after a while?

Hello, 网页中的对象基本上是对JS文件或者是页面内联的JS代码的问题。

Hello， 请注意自己的电脑不要成为别人挖矿的矿机。其他没有什么。

Hello， 禁用所有浏览器插件后在观察！你可能需要排查是哪个浏览器插件引起这个问题。

Hello， Yes, You can.

I would like you to be able to inform about the risks when you tell me how to disable features. People have a right to know the risks of doing something.

Hi @alex.normal.person Why disable core isolation? The protection it provides comes from the bottom layer of the operating system, which is not at the same level as Kaspersky's.

You should check what settings related to this situation in the optimizer app, such as network speedup. The hosts file is an operating system file on Windows PC that lets you map specific domain names to an IP address. If you do not need to perform a DNS query, but directly convert the domain name into an IP address through the host file, and request an http link directly from the IP address, it will reduce the time required to request a DNS query, so some optimization software will use names such as network acceleration to realise. There is actually no speed change, for current internet speeds. But this file may be exploited by malicious programs. It is used to provide fake DNS requests and forge the requested IP address. Therefore, the modification of this file will be strictly controlled.

You can say yes or no, depending on what perspective you stand on. Under normal circumstances, this file will not be edited, keep default. Then there will be no chance of being detected, but once edited, as a potentially risky modification, there is no big problem being detected.

OK, you can run the optimizer app again to check this situation. If it happened again, You should make a exclude rule for this host file in order to avoid detection. Notice: You need to check the contents of this file frequently, normally it should be as follows. if some application add some rules in this file, you should check whether the content is normal or not. this file is a location DNS cache. it will change DNS query result.

Yes, We all know it. So the next question is which application do the job. As I just asked the question, what applicaiton are you using when this detection occurs.

Hi, C:\Windows\System32\drivers\etc\host. If some application want to edit this file, the detection will maybe popup. I'm more interested in the conditions under which this detection event occurs.

Do you change the hosts file before this detection occur?

Hello, Please take care the threats name whether it start with "not-a-virus:" if yes, you need resolved it by manual. KL product doesn't deal with PUA OR Risk software automatically. Regards.