Search the Community

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. Problem Environment: Citrix Virtual Apps and Desktops (Citrix XenApp and XenDesktop) with enabled option Citrix UPL (User Personalization Layer) Citrix App Layer Non-English Operation System localization. After installation of KSV LA 5.2, you can face the error "The specified path does not exist" which appears by launching any executable file. Possible root cause Both Citrix technologies use separate vhd files for creating VMs by using Citrix App Layer and for roaming profiles used by Citrix UPL. As the result, the merge of vhd files processes and Citrix driver returns incorrect path of where the executable files are. Workaround Install Kaspersky Light Agent 5.2 and ensure it does not connect to SVM. Disable Self Defense and exit LA. Add registry file from this archive. Launch installation of the latest cumulative patch from the archive (all further released Cumulative PFs will contain the fix as well). As soon as LA informs the restart is needed, restart VMs. Connect LA to SVM. Problem should be solved.

Hello @Boncip, Welcome! No. No. The Subscription *owner* shares the subscription, to allow for the other user to use the subscription; from their MyKaspersky account, on (your) device they will be able to: View the list of computer security problems and fix *some of them* remotely, Scan the computer for viruses and other threats - Full scan & Quick scan, Update databases and application modules, Configure *some* Kaspersky components & Disconnect (your) device. *READ* Remote management of computer protection. They will not be able to see (your) passwords or manage any of (your) data/files etc. *READ* Shared protection & all the sub-articles. Also note, Remote management & remoting to (your) computer are *different*, in (your) Kaspersky application, Self-defense, do not Allow managing Kaspersky settings via remote control applications & do not enable external management of system services, *READ* Self-Defense settings (you) can Password protect (your) installed Kaspersky application, *READ: How to password-protect access to the application management functions - however, this may not prevent the subscriber performing the above actions in point 3. as they *own* the subscription & they have *shared* their subscription with you - so they retain some control: Any questions or problems, please post back? Thank you🙏 Flood🐳+🐋

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. Problem Sometimes it's necessary to check KATA detects, for example IDS, IOA, Sandbox detects. Step-by-step guide IDS detects (SPAN) To check IDS detects (SPAN) you can use tcpreplay utility on server configured to receive SPAN traffic. KATA 4.0/4.1 tcpreplay package for such versions could be found here https://rhel.pkgs.org/7/epel-x86_64/tcpreplay-4.4.4-1.el7.x86_64.rpm.html KATA 5.+/6.+ and tcpreplay tcpreplay package is not installed by default, so you should install it manually, using step-by-step guide below: 1) Download this package from HERE 2) Place downloaded file tcpreplay_4.3.2-1build1_amd64.deb to your KATA node. For example, use scp: [user@host]$ scp <your-path>/tcpreplay_4.3.2-1build1_amd64.deb admin@<kata-ip>:/tmp 3) Run installation on your KATA node with the next command: [admin@katahost]$ sudo dpkg -i /tmp/tcpreplay_4.3.2-1build1_amd64.deb Success! Now you can use tcpreplay on your KATA 5.+ or any other UBUNTU system! Before using tcpreplay you should enable tx capture for span: KATA 3.7.* In technical support mode from user root run following commands : systemctl stop apt-preprocessor.service systemctl stop suricata.service rmmod pf_ring Edit file /etc/modprobe.d/pf_ring.conf: change line: options pf_ring enable_tx_capture=0 min_num_slots=16384 # tx capture is disabled to: options pf_ring enable_tx_capture=1 min_num_slots=16384 # tx capture is enabled save file. Start pfring and related services back: modprobe pf_ring systemctl start suricata.service systemctl start apt-preprocessor.service KATA 4.0/4.1 Edit file /etc/modprobe.d/pf_ring.conf: change line: options pf_ring enable_tx_capture=0 min_num_slots=16384 # tx capture is disabled to: options pf_ring enable_tx_capture=1 min_num_slots=16384 # tx capture is enabled save file. In technical support mode from user root run following commands: systemctl stop docker rmmod pf_ring modprobe pf_ring systemctl start docker tx capture for span is now enabled KATA 5.0/5.1/6.0 - see https://forum.kaspersky.com/topic/how-to-enable-tx-capturing-in-kata-katakedre-37514/ Eicar traffic detect: Upload EICAR-Test-File_TCP.pcap sample to server with SPAN interface, then execute command from root shell: tcpreplay -i ens34 EICAR-Test-File_TCP.pcap # ens34 in this example is SPAN interface Nmap traffic detect: Scenario is the same as for Eicar detect, only .pcap file differs (# tcpreplay HackTool.Nmap.HTTP.C&C.pcap). After testing detects from span we strongly recommend to disable tx capture back again by the same way as described above for enabling. AM Engine Use EICAR's - https://www.eicar.com/ Email - send the EICAR via SMTP to KATA 25 port. (SMTP processing needs to be Enabled of course). ProTip: you may use local swaks mail client on CN to skip elaborate mail setups. swaks examples swaks --server 127.0.0.1 --port 25 --from antony@test.org --to cleopatra@test.org --attach eicar.com swaks --server 127.0.0.1 --port 25 --from antony@test.org --to cleopatra@test.org --body "link_to_EICAR_here" Endpoint - put an EICAR file to the endpoint and fetch it using GetFile task, queue for scanning. YARA detects By default, no YARA rules are supplied with the product. For test purposes one can use a test rule from YARA docs https://yara.readthedocs.io/en/v4.1.0/writingrules.html rule ExampleRule { strings: $my_text_string = "text here" $my_hex_string = { E2 34 A1 C8 23 FB } condition: $my_text_string or $my_hex_string } The rule will mark any analyzed object containing $my_text_string or $my_hex_string. TAA detects To check IoA detect (IoA detects can be checked only if you have KEDR license): Copy .bat file from attached archive Test_IOA.rar(not_infected) to any folder on host with installed EDR and start it. After some time(KATA need several minutes to transmit and process telemetry from EDR) check alerts in KATA. Alert should have type ioa_test_detect. For testing IoA detects on host more than once, .bat file should be placed to different locations on this host. On the host with installed KEA run command below in the cmd.exe shell: wmic.exe sfdguninstallkasperskyblabla There can be something else instead of sdfg and blabla, important part of command is uninstallkaspersky Command execution will fail with error, but it's not important. After some time new IoA detect should appear in KATA web-interface. TAA detects on chain of events (6.1+) To check TAA detections on chain of events, fist ensure the feature is enabled in KATA Web UI (and also, that customer's sizing allows this feature to be enabled). Then, on one of connected EDR hosts, unpack these archives and run .bat scripts: short_term_user_creation_complex.7z multiple_login_attempts_with_the_same_account_complex.7z IoC detects One can use the custom rule for testing - Ioctest.zip (infected123) - it is triggered for "c:\windows\system32\calc.exe" Automatic sandboxing in EDR To check automatic sandboxing: Unpack the archive with sample, use default password for samples: autosbtest.zip NB! Do not change MD5 of the sample. Run the sample on EDR-protected host and wait for automatic SB detect: Sandbox detect To check sandbox detect we can use file SA_sleep.exe from archive no_am_detection sample.rar. Password is inside text document in archive. Go to KATA senior security officer web-interface. Choose Storage → Upload and upload SA_sleep.exe from attached archive for KATA checking. Kata should enqueue it to sandbox , then a bit later verdict from SB should be Suspicious Activity. If SA_sleep.exe produces Not detected verdict then please use test_sb.bat from the test_sb.zip URL reputation Firstly, confirm K(P)SN is configured and works properly. MD5 used in this example should return UnTrusted status: Check KSN on KATA command for KATA 4.+ and 5.0: docker exec -it `docker ps | grep ksn_proxy| awk '{print $1}'` /opt/kaspersky/apt-ksn_proxy/sbin/ksn_client --ip 127.0.0.1 --hash 9C642C5B111EE85A6BCCFFC7AF896A51 for KATA 5.1: docker exec -it $(docker ps | grep ksn_proxy| awk '{print $1}') /opt/kaspersky/apt-ksn-proxy/sbin/ksn_client --ip 127.0.0.1 --hash 9C642C5B111EE85A6BCCFFC7AF896A51 Secondly, For traffic: access http://bug.qainfo.ru/TesT/Aphish_w/index For email (SMTP processing needs to be Enabled), send the link above via e-mail. For quick and dirty test: swaks examples swaks --server 127.0.0.1 --port 25 --from fisherman@test.org --to cleopatra@test.org --body "http://bug.qainfo.ru/TesT/Aphish_w/index"

First quick answer: > Has the *new* Kaspersky *application* been signed into, from the Kaspersky application. > I cannot do anything from the application itself, just see the window stuck with the need for an activation code Not 100% sure if I had shut down the pc completely, doubt that this will change things dramatically but will try a little bit later

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. The article is giving a working configuration instructions for domain authentication by using NTLM and Kerberos protocols. NOTE: Domain authentication in OpenAPI over Kerberos protocol has the following restrictions: Administration Server address must be specified exactly as the address for which the Service Principal Name (SPN) is registered for domain account name. In the domain, you need to set the Service Principal Name (SPN) to publish the OpenAPI service on port 13299 for the machine with the Administration Server, the service of which is running under the name of the domain user <domain-user>. Kaspersky Security Center 13 Web Console user must be authenticated in Active Directory by using Kerberos protocol. Kerberos authentication should be allowed in web-browser. For details, refer to documentation of used web-browser. Details SPN - Service Principal Name Log in Domain Controller as Domain administrator. Open powershell as admin and run the following commands: Powershell setspn.exe -A HTTP/hostname-node-1.domain.local -u domain\user-ksc-service setspn.exe -A HTTP/hostname-node-2.domain.local -u domain\user-ksc-service Example setspn.exe -A HTTP/kscw-node-1.sales.lab -u sales\ksc setspn.exe -A HTTP/kscw-node-2.sales.lab -u sales\ksc setspn.exe -L -u sales\ksc #command for check spn records #Response Registered ServicePrincipalNames for CN=KSC Service,CN=Users,DC=sales,DC=lab: HTTP/kscw-node-1.sales.lab HTTP/kscw-node-2.sales.lab Enable Kerberos/NTLM authentication in web browsers Microsoft Edge \ Internet Explorer win + r => inetcpl.cpl Activate the Security tab. Select Local intranet and click Sites. In the opened dialog box click Advanced. Add the host name of Adaxes Web interface (e.g. host.company.com). Click Close and then click OK. Click Custom level. Navigate to Scripting and enable Active scripting. Navigate to User Authentication \ Logon. Select Automatic logon only in Intranet zone and click OK. Activate the Advanced tab. In the Settings list, navigate to the Security section. Select Enable Integrated Windows Authentication and click OK. Mozilla Firefox - https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication Launch Mozilla Firefox In the URL window, enter about:config and press Enter. In the filter text box, enter network.negotiate. Double-click the network.negotiate-auth.trusted-uris option and enter the host name of Adaxes Web interface (e.g. host.company.com). Repeat previous step for the network.negotiate-auth.delegation-uris option. Google Chrome Add the Software\Policies\Google\Chrome\AuthServerWhitelist key equal to *.<domain-name>.local to the registry Add the Software\Policies\Google\Chrome\AuthNegotiateDelegateWhitelist key equal to *.<domain-name>.local to the registry

I use AOL Desktop Gold for my e-mail. A few days ago the gold app would not launch. After trying many remedies, I turned off the Kaspersky protection and tried again. To my surprise, the Aol Gold app did launch finally so it is obvious that the Kaspersky app is blocking the launch. And after I get the aol gold app running (works fine) I then turn the Kaspersky app back on while using it. To my surprise once again, the text in all my inbox e-mails is blank so once again the Kaspersky is doing this. If I shut the Kaspersky off again, the e-mail text reappears! So please let me know how I can fix this as its very frustrating. KC Baum

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. Description and cautions This article describes how to configure dump for capturing memory dumps, including application memory. To create a memory dump of a virtual machine: HOWTO: Get a memory dump of a virtual machine from its hypervisor. Details The recommended text editor is nano, below is a quick tutorial on how to use it if you are using it for the first time. Quick description of nano's basic functions Configure kdump Altlinux There is no kdump-tools package in the default repository, so it has to be downloaded from the sisyphus repository: Go to https://packages.altlinux.org/en/sisyphus/srpms/kdump-tools/ In List of rpms provided by this srpm select the kdump-tools package for the required architecture (can be checked by running uname -m) Download the package from the Download link Install it by running apt-get update && apt-get install <path to the downloaded rpm> After that, follow the Debian instruction from Edit /etc/default/kdump-tools step Red Hat based distributions (tested on Fedora 38, Rocky Linux 9, Red OS) Install kexec-tools sudo dnf install kexec-tools Edit /etc/kdump.conf. In the configuration file edit the core_collector setting: option -d should be set to 17 instead of 31 Edit /etc/default/grub. Edit GRUB_CMDLINE_LINUX, add crashkernel=256M to reserve enough RAM for the dump kernel to run, and nmi_watchdog=1, to capture a dump in case of a system hang Run sudo grub2-mkconfig -o /boot/grub2/grub.cfg Reboot Enable kdump service sudo systemctl enable --now kdump.service Debian based distributions (tested on Debian, Astra CE, Alt Linux) Install kdump-tools sudo apt update && sudo apt install kdump-tools -y Edit /etc/default/kdump-tools. In the configuration file edit the MAKEDUMP_ARGS variable: option -d should be set to 17 instead of 31 Configure the bootloader In /etc/default/grub edit GRUB_CMDLINE_LINUX_DEFAULT, add nmi_watchdog=1 to capture a dump in case of a system hang In /etc/default/grub.d/kdump-tools.cfg change crashkernel value to 384M-:256M (default is 384M-:128M) Expected result: GRUB_CMDLINE_LINUX_DEFAULT="$GRUB_CMDLINE_LINUX_DEFAULT crashkernel=384M-:256M" Save and run sudo update-grub SUSE Linux Install kdump sudo zypper in kdump kexec-tools Edit /etc/sysconfig/kdump Change KDUMP_DUMPLEVEL variable to 17 Edit /etc/default/grub Edit GRUB_CMDLINE_LINUX_DEFAULT, add crashkernel=256M to reserve enough RAM for the dump kernel to run, and nmi_watchdog=1, to capture a dump in case of a system hang Update the bootloader configuration sudo grub2-mkconfig -o /boot/grub2/grub.cfg Reboot Enable kdump service sudo systemctl enable --now kdump.service Configure SysRq dump trigger To enable SysRq trigger, these key combinations 'kernel.sysrq = 8'(without quotes) has to be added to /etc/sysctl.conf. In SUSE the value of kernel.sysrq has to be changed in /usr/lib/sysctl.d/50-default.conf instead of /etc/sysctl.conf Reboot or run sudo sysctl --system After the set up above is complete, to manually trigger a dump press Alt+SysRq, Alt+C. Alternatively: echo 8 | sudo tee /proc/sys/kernel/sysrq (Command above is only needed if kernel.sysrq is not set in /etc/sysctl.conf) echo c | sudo tee /proc/sysrq-trigger Location of the dump files may vary between different Linux versions, it is configurable in the kdump configuration file. In Debian based distributions it is set by KDUMP_COREDIR variable. In Red Hat based distributions it is set by the path setting, generally the default location is /var/crash. Make sure that the dump folder has enough free space for the dump to be written. You may search by filemask: vmcore.

Laptop Lenovo Legion win11 23H2 Kaspersky Premium. Trouble waking up after sleeping. Sleep state: Standby (S3). Only one power plan that is Balanced (and after powercfg -restoredefaultschemes). Sfc /scannow OK Note: I have an external mouse and keyboard that allow the system to wake up. The strange thing I have noticed. When I put it in sleep mode, it wakes up normally. When I leave it alone without work (Balanced option), and it "sleeps" it does not wake up. Perhaps I notice that this is a different sleep. In force sleep everything turns off and the Power button flashes. In the second case it's like the fans are running and the Power button is solidly on. (Here it does not wake up and is forced to power off). (Hibernate is OFF)

I appreciate your quick response. I think that Linux Machines will be upgraded during KSC 14.2 upgrade. I'm right? or Should I upgrade the Linux machines first and then run KSC 14.2 upgrade? Best regards

During installation, you had to set a password for the admin account, and after the first launch, log in under it and pre-configure the solution (in terms of performance) If this stage is passed, then to enter Administrator mode, enter your credentials login - Administrator password - Administrator Also, don’t forget to check the local login checkbox. After logging in, you can change this password to the one you need https://support.kaspersky.ru/KATA/6.0/en-US/247449.htm

Is this what you wanted to find ? scroll down for release notes for previous versions https://support.kaspersky.com/KESWin/12.4/en-US/127969.htm and also look at the changes in hardware and software compatibility for the latest version 12.4 ... and for 12.2 12.4 - https://support.kaspersky.com/KESWin/12.4/en-US/127972.htm 12.2 - https://support.kaspersky.com/help/KESWin/12.2/en-US/127972.htm you can change the help description to suit the version you are interested in I'm afraid there is no ready-made quick comparison table...

Kaspersky Virus Removal Tool (KVRT) does not have a command line interface that allows fine-grained control over certain scanning components such as system memory, startup items, and boot sectors. However, you can influence the behavior of KVRT by adjusting settings through the interface. If you want to perform a targeted scan of specific folders and exclude other components, try the following steps: 1. Open Kaspersky Virus Removal Tool: – Kaspersky Launch the virus removal tool. Applications on your computer. 2. Configure scan settings:- Look for options that allow you to customize scan settings. This is usually available in the application's settings or preferences section. 3. Exclude system memory, startup items, and boot sectors: - Check your settings to see if there is an option to exclude specific components from scanning. Look for a checkbox or setting to scan system memory, startup items, and boot sector. Disable or disable these options if available. 4. Set scan destination: - Set the scan destination to the specific folder you want to scan. Most antivirus tools allow you to specify a custom scan path. 5. Start scan: - After adjusting settings to exclude unnecessary components and specifying folders to scan, start the scan. Please note that the exact steps and options may vary depending on the version of the Kaspersky Virus Removal Tool you are using. We recommend that you refer to your product documentation or help resources for detailed instructions specific to your version. If you're looking for a lightweight and customizable command-line antivirus tool, consider checking out other antivirus solutions that offer command-line options for targeted scanning. Please note that the specific features and options available may vary depending on your antivirus product.

I have found the bookmarks backups folder which contains KIS and PURE folders but neither contains a backup later than 24 Dec. 2020. I currently have Plus 21.9.6.465. Is this bookmarks backup stored elsewhere? Currently in Program data/kaspersky lab/safe browser file. When I launch Firefox in safe money I get the "Failed to launch..." etc. notice but I have 3 instances of firefox.exe running before I cancel the notice "Firefox is already running..."etc.

Hello @om richard, Welcome! Open the GUI, select Settings⚙, select Privacy settings, select Secure Data Input, uncheck Enable Secure Keyboard Input, select Save, select Confirm. Thank you? Flood?+? Resources: About protection of data entered on the computer keyboard How to configure protection of data entered on the computer keyboard

I recently purchased a Crumar Performer that has some keyboard issues. The bottom C is completely dead and the other 4 C's have a very long sustain, regardless of where the slider is positioned in the Strings section. All the other keys are fine. I've taken it apart and cleaned the contacts but that hasn't helped at all. Any ideas? Thanks!

Hello @jbqld Welcome! So we don't have to guess, please: Read before you create a new topic! by Danila T. & provide the information? In the Kaspersky main window, are there any colours other than *green* & OR are there any *Notifications*? When the 'Windows Security to turn on Virus & Threat Protection' alert happens, in Windows hidden icons, when you look at the Kaspersky icon, what do you see? In Windows Task-manager - when the 'Windows Security to turn on Virus & Threat Protection' alert happens - how many Kaspersky application processes are running? Check & make sure Performance, PC resource consumption -> Launch Kaspersky at computer startup (recommended) is *enabled*? Has the computer been shutdown, using Shutdown, not Restart, then powered on by pressing the Power button & logging in at the login prompt - IF 'NO', please proceed with this *Shutdown* & power on procedure. Please post back? Thank you🙏 Flood🐳+🐋

Ok here are the steps I had to do . 1. removed McAfee from add and remove programs. It appeared to be successful . Started the Kaspersky standard installation , it detected McAfee WebAdvisor was still detected . and incompatable . I was not really surprised about that WebAdvisor was not removed by just deleting from the add and remove 2 So I cancelled installation , and use the McAfee tool and ran. Then went back to install Kaspersky . 3. Installation went well , already ran quick scan all is good , so no more issues Just wanted to update how it went for me on windows 11. Thanks again 😃

Hello mikethebike, Your very welcome. I'm very happy to work with you. (A) Why? Ways to activate SafeMoney Secure Keyboard (other than Shift, Ctrl and Alt keys + P) 1. Thru KIS (application) SafeMoney 2. Thru (browser) KIS Protection extension (B) The issue in not SafeMoney Secure Keyboard (1) The issue is Secure Data Input "popup", in secure fields the Secure Data Input "popup" should be visible (2) The second related issue is, minuscule Keyboard that "sometimes" displays in profile/password fields, the "sometimes" is the problem, in secure fields the mini KB should be visible. (C) (a) Yes (b) No. (D) Popup/mini Keyboard issues have been with the Lab since 2018 - I suggest we (all) don't hold our breath (unfortunately). Hope this helps? Please clarify (A)? Thank you, all the best:pray_tone3: --- The Secure Keyboard Input limitations in Kaspersky Internet Security 20 documentation, remains relevant: KIS Secure Keyboard Input component operates with the following limitations: The feature supports Internet Explorer, Microsoft Edge, Mozilla Firefox, Mozilla Firefox ESR and Google Chrome. To use Secure Keyboard , Kaspersky Protection extension must be installed in the browser. Protection only works for the pages that meet the following requirements: The page is in the list of URLs or category that require input protection. The page is opened in the Protected Browser. The page is not in the exclusions list. The page contains the password entry field, and the Password entry fields on all websites checkbox is selected in the application settings. To check if the checkbox is selected, got to Advanced → Secure Keyboard Input. In the Secure Keyboard Input section, click Edit categories. Protection only works for the fields that meet the following requirements: The field is single-line and corresponds to the HTML tag. The type attribute value is not hidden, the display item does not have the value “none” in CSS styles. The field is not of the submit, radio, checkbox, button, or image type. The field is not read-only. The field can be edited (focused upon). If the field has the maxlength attribute, you must enter at least three characters. Protection does not work under the following conditions: Google Japanese Input or ATOK is installed. Your computer is running Windows 7 and the field is not a password entry field. Browser is open through Sandboxie. Autofill does not work in Internet Explorer. After the installation of Kaspersky Internet Security, until the first computer reboot the application does not intercept the first character entered by the user (in all applications). How to protect data entered from the keyboard with Kaspersky Internet Security 20

Thanks for taking the trouble to try and help me. I am sure it is me who may be slow to comprehend but I had a bit of difficulty following your examples in terms of what this means for my situation. Can I say what I think you mean and ask that you confirm? I use Chrome and Safe Money and as I said I am still on KIS 2019. On my online banking site and other sites such as Amazon and other online retailers where I make payments I enter these in Safe Money. Once in any of my Safe Money sites I use the Secure Keyboard to login in. Currently on KIS 2019 I find that on any Safe Money site I can only get the Secure Keyboard by simultaneously pressing Shift,Ctrl and Alt keys with P to obtain the Secure Keyboard. This is not a problem for me to do this I think that you are saying that currently if my browser is Google Chrome I lose the Secure Keyboard facility and if for example tomorrow the auto update setting were to upgrade me to KIS 2020, I could still get into my Safe Money site but would have to use the actual keyboard and not the Secure Keyboard?. Kaspersky however recognises this as a problem and is working to resolve this issue with Chrome? Have you any idea how long it will take K to resolve this and will K still upgrade me to 2020 even if this problem has not been fixed? Secondly on other sites which I do not have in my Safe Money list but in which I still use the Secure Keyboard to login simply by pressing the green icon which brings up the Secure Keyboard, will the Secure Keyboard not be available if I am upgraded to 2020? If I lose the benefit of the Secure Keyboard on all these sites including those not in Safe Money will this also be resolved by K engineers? Currently it would seem that a switch to 2020 disadvantages me as it presumably does all other KIS users who use Chrome Thanks again for your trouble mikethebike

Hi, @Carlos O 71 You should use the EN keyboard layout. Only this keyboard layout is supported in this form. You can use on-screen keyboard if hardware keyboard does not contain EN layout. Thank you for feedback, in upcoming product update we will automatically notify the users about supported keyboard layout. Thanks!

Hello @emaranhao, Thank you for posting back & the information! So, for clarity, the steps to solve, have now changed from (1) restart Kaspersky to (2) deactivate Secure keyboard input - is that correct? Re Kaspersky Security Cloud (KSC) version 21.3.10.391(x), which patch(x), x = letter, on the Windows Taskbar or hidden icons, rightclick the Kaspersky icon, select About? Is Windows fully updated, with all Updates showing a Successfully applied status? Have the Keyboard drivers been updated / checked / refreshed? In the year the physical keyboard has been intermittently freezing, has KSC been fully uninstalled, saving License information *only*, leaving all other check-boxes unchecked / blank & clean installed? Is KSC Premium or Free? Please post back? Thank you? Flood?+?

In what respect @tunathefish? Most people know not to use anything other than the *recommended* OS. Read: Smart Home Monitor resources. Read: Wi-Fi Analyzer resources. Also, there's many Smart Home Monitor topics in the Forums - you can refine the search according to your requirements: https://forum.kaspersky.com/search/?q=Smart Home Monitor&quick=1 Thank you🙏 Flood🐳+🐋

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. When administrator attempts to establish a connection between KS4O365 workspace and their Exchange online organization by doing the following in the administration console: Office 365 connection → Exchange Online connection → Grant Access → passes the consent validation algorithm but in the end gets the Error processing the request error: This error is usually triggered by the browser settings on the client host that is performing the consent validation. Upon executing consent validation algorithm we get the access token from Microsoft. Then we redirect browser to our web site's URL and attach access token as a cookie. Upon redirecting, cookie with access token is lost/blocked somehow, usually this is caused by one of the following reasons: Browser filters cookies on its own. For instance due to some extensions, browser settings, or due to some beta version of browser with paranoid default security settings. Some 3rd party program, for example a file anti-virus, is blocking access to the file with the browser's cookies on the local hard drive. Thus, the following action plan is suggested. Step-by-step guide Clear all history, cache and cookie in the web-browser, restart it and check the reproduction. If it doesn’t help, then please make sure that the same error occurs if you try to do the same operation in another web-browser supported by the product (https://support.kaspersky.com/KS4MO365/1.2/en-US/141858.htm) or in incognito mode of the browser. Also, temporarily disabling anti-malware solutions or any 3-rd party products that might be blocking/locking/inspecting browser's cookie files is called for. If the issue will persist, then please do the following: 1. Open Google Chrome web-browser. 2. Press F12 keyboard button. 3. Enable Preserve log option in Network tab. 4. Reproduce the whole scenario from the begging (log into business hub account) and the issue itself. 5. Make an error screenshot with time stamp. 6. Export Network debugging results to HAR-file. 7. Provide HAR-file + screenshot to the Kaspersky Support. Also we will be interested in the URL that will be shown when the error will pop-up in the browser.

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. Prerequisetes: Supported vSphere by Kaspersky Agentless solution Usage of NSX version 3.2+ Deployed Kaspersky Agentless 6.1 Antivirus or/and Network Attack Blocker Appliance Problem Anew registration and Kaspersky Agentless 6.1 Antivirus or/and Network Attack Blocker Appliance deployment completes successfully. By attempt to create Service Profile for Kaspersky Agentless 6.1 Antivirus or/and Network Attack Blocker fails with error AntiVirus and Network Attack service registration might fail with the error "Service Definition id <ID> <Kaspersky Component> not found in MP Root cause NSX-T does not delete service references of Kaspersky Agentless 6.1 Antivirus or/and Network Attack Blocker Appliance Solution Through terminal like putty you need access to NSX-T appliacnce and launch the command curl -kG https://admin:<PASSWORD>@<nsx-t address>/policy/api/v1/infra/service-references The path value should be remembered for Kaspersky File Antimalware Protection and for Kaspersky Network Protection Delete service reference by path value by launching the command curl -kX DELETE https://admin:<PASSWORD>@<nsx-t address>/policy/api/v1/<value of path> After it delete previously created profile service for Kaspersky Agentless 6.1 Antivirus or/and Network Attack Blocker and create it anew

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. To achieve this goal for Kaspersky Agentless 6.1 solution you should: Shutdown Kaspersky Agentless Appliance Disable the option "Сonfigure/vApp Options/edit/OVF Details/OVF environment transport/ISO image" for Kaspersky Agentless Appliance Launch Kaspersky Agentless Appliance