Search the Community

Hello, Please check this article for further details about adding an Applications Launch Control rule : https://support.kaspersky.com/KSWS/11.0.1/en-US/178908.htm

Hi, I was just checking my Kaspersky license(s) the I noticed that notice(s) and notifications in notification area (bell icon) is in another language. For example, when My Kaspersky just opened (by clicking menu from Kaspersky Standard > Profile) there are two notices. One saying I have to authorize first to access My Kaspersky, the other one is about Kaspersky PURE license isn't being used but in Spanish (notifications area also in Spanish). After a refresh, the notice and notifications area changed to French. screenshots attached All other element(s) still in English and the site is set to English (I even re-set it to English) How and why did this happen? My laptop region and language setting is English (Indonesia). Installed keyboard layout are English (active) and Japanese (inactive)

Reinstall your keyboard driver - If any.. If your keyboard driver has developed a fault, your keyboard may stop working. To fix it: 1) Right-click the Start button, then click Device Manager. 2) Expand Keyboards then right-click Standard PS/2 Keyboard and click Uninstall. 3) When prompted to confirm, click OK. 4) Restart your computer after the uninstall. If the problem persists, it’s likely that your driver is outdated, rather than fault Also, check with your USB connection. Regards, J Wick

Been using kaspersky total for a while along with the kaspersky protection extension on chrome. But notice i get lag a lot on youtube via chrome and sometimes web browsing lags a lot. Thing is first time i had tons of issues with kaspersky total settings where i had to change a few such as turning off that on on screen keyboard and that annoying message of would you like to use a protected safe browser or something like that when on amazon or best buy... thus i know it was to protect you but i didn't want that. Also recall my keyboard... didn't work several times ... use a laptop with external keyboard ... and then i remember i did some change in the settings to get rid of it. Anyone know what exact setting that is? i want to turn off kaspersky total temporary and possibly remove kaspersky protection extension on chrome... and i just use the free windows defender in windows and possibly ublock origin to see... if it is indeed kaspersky total causing all these lag issues on chrome and on my computer as well. Was told i could disable kaspersky total temporarily... but even if i do that... it still shows two programs kaspersky anti virus and kaspersky lab launcher... both 32 bit. Thing is i have windows ten pro 64 bit so shouldn't that be also 64 bit? Also would i need to turn off both background processes to see if its indeed kaspersky total that is causing chrome to lag and also my laptop? Read somewhere you have to turn off both kaspersky programs at startup and restart it? if so, how to do that and is it necessary? But would it be better idea to just uninstall kaspersky total and the kaspersky protection extension on chrome and just use windows defender and ublock origin on chrome and see... if kaspersky total is the culprit for all these chrome lag issues? But if i were to then reinstall kaspersky it will have all the original settings right after installing it again? Then i would need to go to the settings and manually change all of it to the way it is now? So should i go to every setting on kaspersky total and take a screenshot of every single settings there is... then when i install it again... i just look at all the pictures to make sure its the exact same settings? My concern is when i install it again, the keyboard might not work and i have to make sure i find the setting that fixes this? Thoughts on what i should do here? Because even if i temporarily disable kaspersky total... well the program is stlll on my laptop... so its not the same as uninstalling it completely right? Also should background scan settings be always off? Always have that on. But that need to be on to give you real time protection or not?

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. There is an example of a step-by-step instruction to configure Single-Sign-On (SSO) for KATA 4.1/5+/6+ into HOME.LAB domain. Prerequisites Deployed Central Node Server Name should be FQDN. (In current case FQDN name of Central Node - kata-cn.home.lab) It can be checked via Settings/Network Settings of Central Node. A and PTR record should be set for Central Node in DNS. Domain User Account should be created to set up Kerberos authentication by means of keytab file (in current case Domain User Account is kata-sign-on). AES256-SHA1 encryption algorithm should be enabled into created Domain User Account. Step-by-step guide to create keytab file On Domain Controller: Launch CMD As Administrator Execute the following command to create keytab file C:\Windows\system32\ktpass.exe -princ HTTP/kata-cn.home.lab@HOME.LAB -mapuser kata-sing-on@HOME.LAB -crypto AES256-SHA1 -ptype KRB5_NT_PRINCIPAL -pass * +dumpsalt -out C:\TEMP\kata-sgn-on.keytab The utility requests the kata-sign-on user password when executing the command. The SPN of the selected server is added to the created keytab file. The generated salt is displayed on the screen: Hashing password with salt "<hash value>" For multiple Central Node servers you need to save "<hash value>" of hashing password to add an SPN for each subsequent Central Node servers further using ktpass.exe utility. On Central Node Web Interface Move to Settings/Users/Active Directory Integration Add the created keytab file: Keytab file status section contains File which contains SPN for this server The file contains section HTTP/*****@*****.tld Under Users tab click Add and select Domain user account. Set domain user as <username>@<domain> On client machine Host should be joined to the same domain. Domain user should be logged in with account added into the Central Node. Open Control Panel/Internet Options Click on Security and select Local Intranet Click on Sites and then on Advanced Add FQDN of central node - kata-cn.home.lab Close windows: Launch Web Browser and access to Web Interface of the Central Node https://kata-cn.home.lab:8443 and it should be opened without asking any Login/Password.

Hello, @Leo24 Received, then there is no problem with the file itself, so let's investigate who loaded this file and made the error. We may need to try to find some clues in the Windows logs. We need to get here. Start by pressing the Win + R keys on your keyboard. Second, in the pop-up Run window, type: eventvwr.msc and press Enter. Check the opened System Event Viewer for anything about the kernel32.dll error and see if there is any mention of the process that went wrong. We are waiting for your reply if you find relevant content. Regards.

thank you for the quick response but sorry i think i might have incorrectly descibed about the issue i can launch steam or epic games but it doesn't have an internet connection. it says it cant reach the servers but after disabling it it can. the website of steam do work fine just the app doesn't so it doesn't let me launch games either

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. This instruction is relevant only in case of troubleshooting incorrect loading or rendering of a web page. In order to troubleshoot issues KES network traffic related issues traffic dump is required. It is easier to analyze and does not require third-party software installation. If reproduction of the issue requires the web browser to open web pages(such as web control non-working as expected, web page not loading, and so on), the tests should be performed in Incognito mode(also known as private browsing). Chrome browser: Ctrl+Shift+N or you can start browser from terminal: & "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -incognito . Starting application from terminal will make launch key visible in traces and make diagnostic easier. Firefox browser: Ctrl+Shift+P or you can start browser from terminal: & "C:\Program Files\Mozilla Firefox\firefox.exe" -private-window . Starting application from terminal will make launch key visible in traces and make diagnostic easier. Microsoft Edge: Ctrl+Shift+P Opera browser: Ctrl+Shift+N KES11/12 Instructions Disable KES11/12 Self-defense Navigate to the following registry key: x86: HKLM\SOFTWARE\KasperskyLab\protected\KES<Build version>\environment\ x64: HKLM\SOFTWARE\Wow6432Node\KasperskyLab\protected\KES<Build version>\environment\ Create a string type value named DumpNetworkTraffic : DumpNetworkTraffic = (REG_SZ)"1" Restart the product or reboot the host Traffic dump files will be saved to %ProgramData%\Kaspersky Lab\KES<Build version>\Data\traffic Once the issue is reproduced compress the whole traffic directory Do not forget to disable traffic dump collection. To do so delete DumpNetworkTraffic value.Then restart the product or reboot the host.

"Maybe you can tell us which program you run when this error appears" •Please be informed that during download pdf articles, such announcement ..."kernel32.dll ... Entry Point Not Found"... popped up twice on two separate occasions. Also such announcement popped up, while using Pdf Creator, within an attempt to "print" the selected article. Moreover, Acrobat Reader DC version 22.3.20314.0 used to freeze for ~ 10 seconds after file opening. So, it was uninstalled and replaced with the earlier AdbeRdr11010. "whether there is any malicious program activity on your computer" •In fact, Internet drop-outs persisted for some time! Ten minutes after starting Internet session and then variously. As I was about to finish and while checking Wireless Network Connection Status, often interruption occurred. • "You can send a screenshot of the error here" Sadly, I failed to figure it out on my Latitude E5540 (Win 7 Pro), while using Fn + Print Scr keys. Possibly, due to the planned obsolescence by Dell. Consequently, some keyboard keys didn't work, yet the numeric pad numbers functioned OK.

Procedure for Potentially Reconfiguring Linguistic Parameters within the Kaspersky Application Post-OS Transition: Initiate the Kaspersky Interface: Firstly, activate the Kaspersky utility, ensuring it is not impeded by any underlying processes from the prior OS version, now upgraded to Windows 11. Navigate Toward Configuration Modules: Identify and interact with the ⚙️ symbol, generally discernible in the application's inferior-left quadrant. This interface pathway should theoretically transport you to the settings repository. Seek Out Semi-Autonomous Locale Variables: Once within the labyrinthine settings structure, embark on a meticulous search for the subcategory ostensibly titled Interface or, potentially, Appearance, wherein cryptic references to language modulations (commonly known as "Sprache" in German parlance) might be obscured. It’s essential to scrutinize every potential cue indicative of linguistic preference settings. Modify the Linguistic Parameter: From within the probable dropdown schema, initiate the reassignment of the operative language to the desired Deutsch (or Italiano, contingent on previous user configuration). Bear in mind, the exact location of this menu may be obfuscated by other non-linguistic interface variables. Application Reboot Procedure: Upon successful reconfiguration of language parameters, allow the system to prompt a termination and subsequent reinitialization of the Kaspersky application. Failing this, manually initiate a cessation of all processes associated with the application and commence a fresh launch. Optional Reinstallation Protocol: Should the aforementioned methodology prove futile, consider a complete procedural removal of the Kaspersky software package. Subsequently, navigate to the official distribution portal, and during the reinstallation process, exercise extreme vigilance in selecting the appropriate linguistic module—Deutsch (or Italiano)—at the preliminary stages of the installation process. By adhering to these labyrinthine instructions, you may ultimately succeed in reverting the application’s operational language to the initially intended state. If issues persist, further deconstruction of the user environment may be necessary.

Hello @blueice It sounds like Kaspersky is flagging your licensed WPS installation as a potential threat, possibly due to a false positive. To resolve this, you can whitelist WPS Office in Kaspersky's settings to prevent it from being removed automatically. Here’s how to do it: Steps to Whitelist WPS Office in Kaspersky: Open Kaspersky: Launch your Kaspersky security software. Go to Settings: In the main interface, click the gear icon (usually in the bottom left) to open Settings. Access Threats and Exclusions: Under Settings, look for the Additional section, and select Threats and Exclusions. Manage Exclusions: Click Configure exclusions under the Exclusions section. Add WPS Office to Exclusions: Click Add to create a new exclusion. Select Browse to locate the installation folder of WPS Office (often found in C:\Program Files or C:\Program Files (x86)). You can add the WPS folder, and make sure to check the option to exclude it from all protection components. Save the Exclusion: Confirm your changes by clicking Add and OK. Save and close the settings menu. Verify: After whitelisting, try reinstalling WPS Office and check if Kaspersky still removes it. If Kaspersky Still Removes WPS: Make sure your Kaspersky software is up-to-date, as outdated virus databases can result in more false positives. You can also contact Kaspersky support to report this issue, so they can review it and possibly remove the false flag in future updates. Let me know if this works or if you need more detailed instructions!

Heyo. I just wanted to add that I have personally have been using kaspersky for years. I have also tested out eset and other AV's but none of them came close to kaspesky's protection. I love kaspersky security software and will be keeping to them. I personally use the Kaspersky Prem. Never have had malware on my PC since. What made me change, is because I used to use AVG, eset, bit defender, quick heal, and a few others (NOT at the same time). Every time I got malware, they did crap all to help remove it. Change to kaspersky. It made sure that my PC was clean befor installing it. And boom nothing since.

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. This article is about Kaspersky Endpoint Security for Windows (KES for Windows) aescrypt.zip and TestProgExp.zip can be found here. Remote encryption test This test requires two participating workstations: an Attacker PC and a Victim PC. Behavior Detection component has to be configured on a Victim PC to detect malware activity, protect shared folders and block connections on detection of external encryption. Step-by-step guide On a Victim PC create folder with regular office-like files: *.DOC, *.DOCX, *.XLX, *.JPG Share folder on the Victim PC, ensure that the account logged on to the Attacker PC has full access to the shared folder. Map the shared folder as a network drive on the Attacker PC. Add/unpack the aescrypt.zip archive to the Attacker PC. Add contents to the list.txt file, based on the files in a mapped folder. Since the folder is mapped, paths will look like local ones, eg. Z:\Book1.xlsx. Use the contents of file example-list.txt as an example: On an Attacker PC, launch test.bat file to start encrypting files from list.txt . Behavior Detection in KES on the Victim PC will detect the attempt and will try to perform a rollback. Full access to a share on Victim PC for an Attacker PC will be blocked (if specified in KES policy). File restoring event is logged on a protected workstation Access to a folder is blocked from an attacker's point of view Local encryption test Step-by-step guide Prepare a folder with files to get encrypted, perform tests on files *.DOC, *.DOCX, *.XLX, *.JPG. Add/unpack to this folder the attached TestProgExp.zip utility. Launch TestProgExp utility to start the encryption. Files will be encrypted in a folder with test utility Allow some time for Behavior Detection in KES to detect the attempt and perform the rollback, as well as get rid of the suspicious software: Files get restored

Hello Berny, In the past i tested this version you suggested me to download but i had some problems with onscreen keyboard, and the issue was i can't put some accents on some fields from my Home Banking! My last name as an accent and my user name needs this accent to work. I asked some help in the topic bellow. "My onscreen keyboard doesn't work on my bank site i can't fill the user and password using onscreen keyboard." And the conclusion was i had to get back to previous version Kaspersky security cloud free because there was no European version available at that time! That's the reason why i asked if you know something. Best regards. Hugop

1) I try to use kaspersky protected mode in chrome for all browsing. 2) So when I restart my windows 11 destktop, I launch a normal chrome window. 3) And then I try to load a URL that I earlier chose to use protected view. This starts a new protected chrome window. 4) Then I close '2's wondow and use 3's window by opening other URLs as tabs. And thus then on all my brower tabs will be protected ones. But I often forget to do '2' and end up staying with 2. So after sometime if I start to try '3' to switch all to protected view like 4. step 3 keeps on spawning new tabs in a never ending fashion but never opens the URL. To get rid off this nuisance the only way that works is to restart the desktop and now remember to do 1, 2, 3, 4!!! Can you pl. help cure this disease?

Thanks all of you for your quick response. Please find attached screenshots.

This is more of a rant than a question. I manage Kaspersky since 2012 in my office. Everything was managed by KSC for windows for years and worked fine. Last year, September 2023 I was glad to see the availability of KSC 14.2 for Linux so i decided to make this step and migrate everything on Linux, saving a windows license. Transition was easy and I spent the first week trying to learn how to use the atrocious web console. I was extremely happy when a user on this forum suggest me how to connect windows MMC to Linux KSC and this was my setup for 11 months. Last month, august 2024 I start receiving messages on web console (yeah, sometimes I used it) saying certificate was about to expire. I've searched online for solution and found that was necessary to re-launch the exe on windows, zero Linux instruction on how to solve this. In my mind equation was easy: I will update Linux KSC 14.2 to 15.1 (which was released many months before and I considered mature enough) and the new version will fix the certificate problem. So I did it, update was fast and smooth but here comes the problems. 1- web console was a DISASTER, way worse than the already terrible 14.2, I had errors every page or device I open, console keeps hanging or closing. After hours of reboot and a couple of database fixup and maintenance task it was much better (still far from "OK"). Why the upgrade procedure didn't execute a database fix up by itself as part of the upgrade saving hours of problems?? 2- certificate problem WASN'T fixed. I had the banner at the top of page for some days but I had no time to dive into it, now I can't login anymore and I have no idea how to solve this (check attachment). Easy: I can read the guide, I remember the Kaspersky support page usually are complete and helpful... Bullshit. There are zero support page for linux KSC 15.1 and almost zero linux KSC support page in general, just a few on how to update, how to install. OK and how to solve problem X and Y..? Kaspersky had 12 months to update the articles. This simply means they don't care about their customer. 3- Linux KSC is still missing a ton of functionality compared to windows, many limitations. And now I discovered that windows console MMC, one year after release is still not available and who knows if it ever will be, in future. Source Now: I can't login from browser and there are zero articles online on how to solve this (any help here on forum is appreciated), I can't login from MMC because it simply doesn't work anymore on version 15.1. Antivirus in my office are totally out of control, I can't do anything at the moment. This is a shame and I'm extremely upset.

Gracias, Harlan! Reporto que hice el scan. En adelante voy a hacer el quick scan modificado que recomiendas, pero esta vez le quise hacer el Full Scan para comparar 1:1 los resultados con el scan anterior, que por cierto se tardó dos horas menos ahora y escaneó menos archivos (???)... Me siguen saliendo archivos dañados... No sé qué hacer, si los ignoro o no. (Aunque después del chkdsk de la semana pasada, volvió a suceder el crash de este lunes... entonces no sé si va a volver a pasar) Otras dudas: ¿El chkdsk no debería haber borrado los dañados? Los que pude encontrar parecen ser los mismos detectados la vez pasada. Y eso de C:\Recovery\ es una carpeta que ni habilitando ver objetos escondidos encuentro [quería ver la fecha de modificación de los archivos... los otros que sí encontré tienen fecha de modificación del 25 de nov (antes del Full Scan anterior) o 27 de noviembre (horas después del Full Scan anterior) (ambos casos archivos de Edge) .... y uno tiene fecha del 2018 (un juego preinstalado que nunca usé; la computadora es del 2019)] ¿Le hago un System Restore (que me borraría un mes de actualizaciones, incluyendo Kasp y las de Windows) o mejor no? Ya esta semana tengo que volver a hacer Windows Update (los hago un mes retrasados para evitar los bugs lo más posible) y se me acaba el tiempo y parece que no logro sanear esto...

Hello @i_salazar, Welcome! As a test, with (our) KTS set at Default settings, we ran two Quick scans, one after the other, the KTS Scan report images shows the result; noting, we made no changes between running the two scans . Quick Scan. Scans objects that are loaded when the operating system starts as well as system memory, boot files & temporary Internet files . This scan does not require a lot of time to complete → Some of these are dynamic, e.g. temporary Internet files, i.e. change all the time. Do not be concerned, if the scan result is clean the system is fine. Best practice tips: After installing KTS: Run a manual Database update. Shutdown, power OFF system using Shutdown, not Restart, power on., login. Make sure KTS is running. Check version & patch(x) x = letter - on the Windows Taskbar, or hidden icons, rightclick the Kaspersky icon, select About ? (Always try to have the software on the latest available patch). Check & make sure all Windows updates have a Successfully applied status. Run a Full scan, allow it to complete - do not use the computer while it's running - this is a one time scan - unless, at a later date there's a virus or malware attack that requires a full scan. After the Full scan completes, and assuming no detections, go to Quick scan, if you wish you may run a Quick scan or simply change the following setting: Scan optimization, Scan only new and changed files. We also suggest changing the same setting in the Full scan, but, only after, running the very first Full scan. Enable KSN. (ioo) After the *first* full scan, only run a full scan if a *situation* requires it. Run a Quick scan monthly. Keep KSN running always. 💥Important icons in the Scan Window: Top righthand corner: ? opens Help documentation specific to Scanning the computer, || ? = Help documentation, in all Kaspersky software. Gear⚙ icon: opens Settings Report📄 icon: opens Reports. Reports window: top right hand corner, SAVE function, can save any report as a text file (always a big help if submitting a topic here in the Community) Left hand side column, lists 16 KTS Reports, column can be collapsed. Middle section: Filter by date. Filter by value in any cell. Search by event record text. Sort the list by each report column. Change the order and arrangement of columns that are displayed in the report. Middle section, IF screen printing, & (you) wish to hide sensitive info, rightclick the column heading, uncheck the column that needs to be hidden. Report event importance levels are used in reports: Informational events that generally do not contain important information. Warnings. Events that you need to pay attention to, since they contain information about important situations that KTS encounters when running. Critical events. Critically important events that indicate that KTS has encountered problems affecting its ability to run or vulnerabilities affecting the protection level of the user's computer. Any questions, please post back? Thank you🙏 Flood🐳+🐋

Personalmente, yo no hago Full Scans, son innecesarios en mi opinión, solo corro Quick Scans, añadiendo en el Scope, las carpetas:

Once again I answer my own questions because I am too quick to post. After literally 5 minutes of research, I was able to find out that Kaspersky's drivers are indeed running as ELAM (Early Launch Anti-Malware) drivers: Probably obvious, but I wanted to make sure. And now anyone with the same question knows as well.

I just had an informative chat - transcript below: Just read the hard-to-find support article that US govt. is basically shutting down use of Kaspersky. Basic question - what good is kaspersky in the current moment, especially when certificates can't be checked in safe money? You 19.09.2024 7:25 The Kaspersky product on your computer can still provide some protection on your device through heuristic analysis. Operator 19.09.2024 7:26 what is UltraAV? You 19.09.2024 7:26 UltraAV is a security product of Pango, another security company which we partnered with to ensure that our customer will continue having protection on their devices and will get the services that they paid despite the situation that we are in right now. Operator 19.09.2024 7:28 link to download? You 19.09.2024 7:28 You do not need to download them as the Kaspersky Windows apps will be silently migrated to UltraAV apps without opt-ins/opt-outs, - Kaspersky will silently uninstall itself and install Ultra instead. Exception: Kaspersky 2018 and older cannot be silently updated, instead users will be requested to manually remove Kaspersky and install Ultra AV. Operator 19.09.2024 7:29 Phaseout functions were Sept 10-29. Will UltraAV be silently installed by end of September? You 19.09.2024 7:31 Yes. The timeline started from the 17th of September and targeted to be completed by the 29th. Operator 19.09.2024 7:31 OK lastly please - is there any point in running Safe Money or Launch Financial Web SIte in Protected Browser ... vs. running in a standard browser (non-safe money) window? You 19.09.2024 7:32 Long answer: We apologize to inform you that due to the recent ruling of the US. Dept. of Commerce restricting our products in the USA, Kaspersky updates to U.S. IP addresses will not be available and certain other limitations apply. Limitations will be implemented gradually, starting from September 10 through to September 29. Safe Money feature will stop receiving updates. This may lead to the following errors when entering the Protected Browser mode, even for trusted websites: • “Certificate verification problem” error with an option to continue browsing • “There is a problem checking the certificate for HTTPS connections” • Amber frame will appear around the browser window while using trusted banking websites through Safe Money You can still access your trusted site by clicking I understand the risks and want to continue. Or they can also access the same site outside the Safe Money Protected Browser. All official information regarding solution functionality, subscriptions, and other matters can be found here: https://support.kaspersky.com/us/faq/2024-us-sales-statement Operator 19.09.2024 7:32 Short answer: It is better not to us Safe Money at the moment. Operator 19.09.2024 7:33

Thanks again and here are the screen shots from my kid's PC with his login I have also noticed a glitch of the safe kids, my kid play the minecraft game and what he get away from safe kids is: 1, launch the feather or any other launcher - this cannot 100% stopped because safe kids applies minute allowed time or even I set it as forbidden 2, within 1 minutes, login the game and play 3, after 1 minute limit, the launcher will be stopped but game goes on

• Actually, it was recommended > Speed up your PC > Quick Startup > Disable autorun of rarely used apps to speedup your computer's startup... Encompassing - Wondershare App... • Concerning Internet drop-outs issue, 28 episodes from 01-Oct-24 to 08-Nov-24 were depicted for you on 09-11-24. Such as: Warning 08-Nov-24 15:26:24 Event 27, e1dexpress Intel(R) Ethernet Connection I218-LM Network link is disconnected.

Hi, @Carlos O 71 You should use the EN keyboard layout. Only this keyboard layout is supported in this form. You can use on-screen keyboard if hardware keyboard does not contain EN layout. Thank you for feedback, in upcoming product update we will automatically notify the users about supported keyboard layout. Thanks!