Search the Community

Hello @Gigabyte You’re absolutely on the right track by blocking attacker IPs temporarily and focusing on keeping everything up-to-date. The combination of Kaspersky Endpoint Security (KES) and Unifi Network Application running on the same server does introduce unique complexities, especially when managing network security in tandem with endpoint security. Let’s optimize your monitoring and incident response a bit further. Suggested Steps to Streamline Your Approach: 1. Adjust Temporary IP Blocking Policy for KES If you notice multiple repeated attacks from the same IPs, consider increasing the block time from 1 hour to 24 hours or longer to reduce workload. Use Kaspersky's automatic response settings to log attack sources more effectively and identify persistent threats. 2. Check Kaspersky Logs More Thoroughly In KES, look under: Copy code Reports → Intrusion Detection or Network Threat Protection Look for event logs that indicate blocked attacks and cross-reference the exact timestamps with the Unifi Network Application logs. This can help determine whether it’s a real attack or an environmental quirk (e.g., false positives from network probing tools). 3. Enable KES Application Control Policies (if not already active) Set rules that restrict the Unifi Network Application’s communication to trusted IPs only. This reduces the risk of malicious actors exploiting vulnerabilities in either the network or application console. 4. Unifi Controller Logs and Device Segmentation Strategy Even though the Unifi APs remain functional when KES blocks an IP, it’s worth checking: Events and Alerts in the Unifi Network Console: Look for anomalies like multiple disconnections or abnormal bandwidth usage. System logs on the server hosting the Unifi application to confirm there’s no indirect issue. Use device grouping and segmentation to ensure critical infrastructure stays isolated from guest and IoT devices on the same network. This minimizes attack surfaces. 5. Regular Threat Intelligence and Firmware Sync Continue applying the latest firmware and software updates to both KES and Unifi systems. Subscribe to Kaspersky’s Threat Intelligence feeds and Ubiquiti’s community alerts to stay ahead of any vulnerabilities or zero-day issues that may arise in their platforms. 6. Automate Device Blocking via Unifi Policies (Optional) If attacks become more frequent, you can configure Unifi's firewall rules to temporarily block devices at the AP level, rather than relying solely on KES. This will ensure that malicious connections are dropped network-wide without affecting device usability. 7. Conduct a Test Simulation Simulate an intrusion attempt in a test environment to ensure both KES and the Unifi Network Application work harmoniously without introducing conflicts. This will also give insights into which logs to focus on for quick future troubleshooting. In essence, it sounds like KES is doing its job well by blocking suspicious connections without disrupting regular operations. Keep up the monitoring efforts, and cross-check logs regularly to ensure alignment between KES and Unifi security policies. If the issue persists or escalates, a more permanent IP blacklisting strategy or additional network segmentation rules might help eliminate attack vectors more effectively. Thank you

Procedure for Potentially Reconfiguring Linguistic Parameters within the Kaspersky Application Post-OS Transition: Initiate the Kaspersky Interface: Firstly, activate the Kaspersky utility, ensuring it is not impeded by any underlying processes from the prior OS version, now upgraded to Windows 11. Navigate Toward Configuration Modules: Identify and interact with the ⚙️ symbol, generally discernible in the application's inferior-left quadrant. This interface pathway should theoretically transport you to the settings repository. Seek Out Semi-Autonomous Locale Variables: Once within the labyrinthine settings structure, embark on a meticulous search for the subcategory ostensibly titled Interface or, potentially, Appearance, wherein cryptic references to language modulations (commonly known as "Sprache" in German parlance) might be obscured. It’s essential to scrutinize every potential cue indicative of linguistic preference settings. Modify the Linguistic Parameter: From within the probable dropdown schema, initiate the reassignment of the operative language to the desired Deutsch (or Italiano, contingent on previous user configuration). Bear in mind, the exact location of this menu may be obfuscated by other non-linguistic interface variables. Application Reboot Procedure: Upon successful reconfiguration of language parameters, allow the system to prompt a termination and subsequent reinitialization of the Kaspersky application. Failing this, manually initiate a cessation of all processes associated with the application and commence a fresh launch. Optional Reinstallation Protocol: Should the aforementioned methodology prove futile, consider a complete procedural removal of the Kaspersky software package. Subsequently, navigate to the official distribution portal, and during the reinstallation process, exercise extreme vigilance in selecting the appropriate linguistic module—Deutsch (or Italiano)—at the preliminary stages of the installation process. By adhering to these labyrinthine instructions, you may ultimately succeed in reverting the application’s operational language to the initially intended state. If issues persist, further deconstruction of the user environment may be necessary.

Hello @Ray Jax No need to worry! Since Kaspersky blocked the download, it successfully prevented any potential threat from affecting your system. Just a few steps to ensure peace of mind: Delete Any Residual Files: Although Kaspersky blocked the download, checking your downloads folder or temp files for any incomplete or suspicious files is a good habit. Scan for Potential Threats: Running a quick or full system scan with Kaspersky will confirm that no other parts of this download attempt slipped through. Keep Kaspersky Updated: Ensure your antivirus definitions and program are fully updated so it continues catching any future threats. If Kaspersky blocked it right away, your system should be safe, and no further action is needed beyond these checks! Thank you

Hi, I had run a quick scan about two days ago, and I hadn't noticed that the AV had found two (one?) corrupted objects and a missing file. Just wanted to know what I can do about it and what it means. The relevant part of the log: 10/14/2024 6:32:35 AM C:\Program Files (x86)\Windows Kits\10\bin\10.0.22621.0\x86\MsiInfo.exe\Obsidium Corrupted Object corrupted File C:\Program Files (x86)\Windows Kits\10\bin\10.0.22621.0\x86\MsiInfo.exe// Obsidium Corrupted OMNI\[redacted] Initiator 10/14/2024 6:32:35 AM C:\Program Files (x86)\Windows Kits\10\bin\10.0.22621.0\x86\MsiInfo.exe Corrupted Object corrupted File C:\Program Files (x86)\Windows Kits\10\bin\10.0.22621.0\x86 MsiInfo.exe Corrupted OMNI\[redacted] Initiator 10/14/2024 6:34:03 AM C:\Users\[redacted]\AppData\Local\VirtualStore\Program Files (x86) Not processed Object not processed File not found File C:\Users\[redacted]\AppData\Local\VirtualStore\Program Files (x86) Not processed OMNI\[redacted] Active user

@harlan4096 The file (MsiInfo.exe) still shows up as corrupted when I do a quick scan. Also, I hadn't mentioned earlier, but there is also another thing that shows up: Event: Object not processed User: OMNI\[redacted] User type: Active user Component: Virus Scan Result: Not processed Result description: Not processed Object type: File Object path: C:\Users\[redacted]\AppData\Local\VirtualStore\Program Files (x86) Reason: File not found Anything I should do? Should I upload the file here(somehow)?

Hello @blueice It sounds like Kaspersky is flagging your licensed WPS installation as a potential threat, possibly due to a false positive. To resolve this, you can whitelist WPS Office in Kaspersky's settings to prevent it from being removed automatically. Here’s how to do it: Steps to Whitelist WPS Office in Kaspersky: Open Kaspersky: Launch your Kaspersky security software. Go to Settings: In the main interface, click the gear icon (usually in the bottom left) to open Settings. Access Threats and Exclusions: Under Settings, look for the Additional section, and select Threats and Exclusions. Manage Exclusions: Click Configure exclusions under the Exclusions section. Add WPS Office to Exclusions: Click Add to create a new exclusion. Select Browse to locate the installation folder of WPS Office (often found in C:\Program Files or C:\Program Files (x86)). You can add the WPS folder, and make sure to check the option to exclude it from all protection components. Save the Exclusion: Confirm your changes by clicking Add and OK. Save and close the settings menu. Verify: After whitelisting, try reinstalling WPS Office and check if Kaspersky still removes it. If Kaspersky Still Removes WPS: Make sure your Kaspersky software is up-to-date, as outdated virus databases can result in more false positives. You can also contact Kaspersky support to report this issue, so they can review it and possibly remove the false flag in future updates. Let me know if this works or if you need more detailed instructions!

1) I try to use kaspersky protected mode in chrome for all browsing. 2) So when I restart my windows 11 destktop, I launch a normal chrome window. 3) And then I try to load a URL that I earlier chose to use protected view. This starts a new protected chrome window. 4) Then I close '2's wondow and use 3's window by opening other URLs as tabs. And thus then on all my brower tabs will be protected ones. But I often forget to do '2' and end up staying with 2. So after sometime if I start to try '3' to switch all to protected view like 4. step 3 keeps on spawning new tabs in a never ending fashion but never opens the URL. To get rid off this nuisance the only way that works is to restart the desktop and now remember to do 1, 2, 3, 4!!! Can you pl. help cure this disease?

This is more of a rant than a question. I manage Kaspersky since 2012 in my office. Everything was managed by KSC for windows for years and worked fine. Last year, September 2023 I was glad to see the availability of KSC 14.2 for Linux so i decided to make this step and migrate everything on Linux, saving a windows license. Transition was easy and I spent the first week trying to learn how to use the atrocious web console. I was extremely happy when a user on this forum suggest me how to connect windows MMC to Linux KSC and this was my setup for 11 months. Last month, august 2024 I start receiving messages on web console (yeah, sometimes I used it) saying certificate was about to expire. I've searched online for solution and found that was necessary to re-launch the exe on windows, zero Linux instruction on how to solve this. In my mind equation was easy: I will update Linux KSC 14.2 to 15.1 (which was released many months before and I considered mature enough) and the new version will fix the certificate problem. So I did it, update was fast and smooth but here comes the problems. 1- web console was a DISASTER, way worse than the already terrible 14.2, I had errors every page or device I open, console keeps hanging or closing. After hours of reboot and a couple of database fixup and maintenance task it was much better (still far from "OK"). Why the upgrade procedure didn't execute a database fix up by itself as part of the upgrade saving hours of problems?? 2- certificate problem WASN'T fixed. I had the banner at the top of page for some days but I had no time to dive into it, now I can't login anymore and I have no idea how to solve this (check attachment). Easy: I can read the guide, I remember the Kaspersky support page usually are complete and helpful... Bullshit. There are zero support page for linux KSC 15.1 and almost zero linux KSC support page in general, just a few on how to update, how to install. OK and how to solve problem X and Y..? Kaspersky had 12 months to update the articles. This simply means they don't care about their customer. 3- Linux KSC is still missing a ton of functionality compared to windows, many limitations. And now I discovered that windows console MMC, one year after release is still not available and who knows if it ever will be, in future. Source Now: I can't login from browser and there are zero articles online on how to solve this (any help here on forum is appreciated), I can't login from MMC because it simply doesn't work anymore on version 15.1. Antivirus in my office are totally out of control, I can't do anything at the moment. This is a shame and I'm extremely upset.

Hi guys, Thanks for the quick response. #3. Yes, it has been running on my system for almost a year but I always had issue with Gliffy and Draw.io in Confluence. They just did not work. Yesterday, after some months of quiet time, I gave another go to Confluence with Draw.io (a new temporary full license and added Draw.io to my space). I made my first diagram but after saving it, I got the error above, "Diagram Not Found". I tested this issue with Edge, Chrome and Firefox (including private browsing) on Windows 10 and I could not see my diagram in Confluence. Then I read the following case at the Atlassian Community website. So I de-installed Kaspersky Premium and surprisingly I could see my Draw.io diagram in all Internet browser platfroms. Then I re-installed Kaspersky Premium (it was a clear install", and installed/enabled Kaspersky Protection Extension for Firefox. This produced the original problem with reading my Draw.io diagram. I played with Kaspersky Protection Extension for Firefox but nothing worked (even disabling it). So I removed Kaspersky Protection Extension from Firefox, and restarted Firefox. Unfortunately, my Draw.io still did not work and Kaspersky Premium still showed that the Kaspersky Protection Extension for Firefox is ON. Then I stopped and started Kaspersky Premium again and finally it showed that Kaspersky Protection Extension for Firefox was not enabled. And my Draw.io diagram worked again. #2. I will test this and come back #1. I did not enabled Kaspersky Protection Extension, for Private Browsing. But I tested the issue on all the three Internet browser platform in Private (Firefox), Incognito (Chrome) and InPrivate (Edge) modes, none of them worked. The same happend in non private mode of these Internet browsers. I will set this up for Private browsing to see how it works.

Hello DedoP, Welcome! 1. There is no interface language change Setting, (you) need to download & install - Kaspersky Plus - English version - from Kaspersky's Global website, using this link: Kaspersky Plus for Windows® 2. Please follow these images & the read the documentation: Protecting personal data on the Internet About protection of personal data on the Internet About On-Screen Keyboard How to open On-Screen Keyboard How to configure the display of the On-Screen Keyboard icon About protection of data entered on the computer keyboard How to configure protection of data entered on the computer keyboard Any questions or issues, please post back? Thank you? Flood?+?

Hello @ LouisLewis To address the attack and improve your protection, I’ll walk you through several possible solutions to enhance your Kaspersky Endpoint Security (KES) configuration and bolster your network defenses. Since this attack caused a disruption, it indicates either a potential misconfiguration or an area where additional layers of protection are needed. Here’s a step-by-step approach to strengthen your setup: 1. Review Kaspersky Configuration and Policies Application Privilege Control: Ensure Application Control is fully enabled and configured. Set up Network Rules to restrict certain IP addresses or block applications that attempt suspicious outbound or inbound connections. Intrusion Detection and Prevention (IDS/IPS): Enable the Network Attack Blocker feature in KES if it’s not already active. This module can detect and prevent suspicious network behavior. Web Control: Use Web Control policies to block access to malicious sites or IPs flagged during the attack. Cross-check the IP in Kaspersky’s threat intelligence or an external source like VirusTotal to confirm its malicious intent. 2. Block the Attacking IP Address on the Firewall Even though KES offers endpoint protection, it is crucial to complement it with perimeter defenses. Add the IP to your firewall blocklist. Use Geo-blocking if the attack originates from a suspicious or irrelevant region. Implement Rate Limiting or Traffic Shaping on your firewall to mitigate DDoS or flood attacks. 3. Enable Firewall and Host Intrusion Prevention on Endpoints Make sure that KES Firewall is properly configured: Add a custom rule to block the specific IP address involved in the attack. Enable Host Intrusion Prevention (HIPS) to detect and block exploitation attempts on endpoints. 4. Update Threat Feeds and Indicators of Compromise (IoC) Use Kaspersky's Threat Intelligence feeds and any available IoCs to proactively block known bad IPs or domains. If your KES has EDR (Endpoint Detection and Response) or Threat Hunting capabilities, upload any indicators (e.g., the attack method or IP address) to block future attempts. 5. Advanced Logging and Alerts Setup Enable event logging and notifications in Kaspersky Security Center (KSC): Configure alerts for specific events such as repeated failed login attempts, new IP connections, or brute force attacks. Integrate KSC with your SIEM solution to get real-time monitoring and correlate logs for suspicious activity. 6. Check for Configuration Gaps Run a KES Policy Audit: Make sure all machines have the latest KES policies applied. Use Security Profile Reports in KSC to identify any endpoints with incorrect configurations. Install Kaspersky Network Agent (NA) on all endpoints to ensure real-time communication with KSC. This helps with quick policy updates and ensures accurate reporting. 7. Complementary Security Measures Implement Multi-Factor Authentication (MFA): This mitigates risks from unauthorized login attempts. Patch Management: Ensure all software on your endpoints is up-to-date to avoid vulnerabilities. Summary of Actions: KES Configuration: Ensure IDS/IPS and firewall rules are configured correctly. Add IP-specific block rules. Firewall Configuration: Block the attacker’s IP and implement rate limiting. Alerts & Notifications: Enable logging and alerts for suspicious activity in KSC. Threat Intelligence: Regularly update Kaspersky with IoCs and threat feeds to block known malicious IPs proactively. By reinforcing both KES and your network firewall, you’ll minimize the chances of a future attack causing service disruptions. If you need help auditing your Kaspersky setup or configuring any of the above features, let me know! Thank you

Autorenewal failed because my credit card expired. I cannot find anywhere to supply new card details. When I 'retry' card, and enter new details there, I get an error. How do I fix this?

I just had an informative chat - transcript below: Just read the hard-to-find support article that US govt. is basically shutting down use of Kaspersky. Basic question - what good is kaspersky in the current moment, especially when certificates can't be checked in safe money? You 19.09.2024 7:25 The Kaspersky product on your computer can still provide some protection on your device through heuristic analysis. Operator 19.09.2024 7:26 what is UltraAV? You 19.09.2024 7:26 UltraAV is a security product of Pango, another security company which we partnered with to ensure that our customer will continue having protection on their devices and will get the services that they paid despite the situation that we are in right now. Operator 19.09.2024 7:28 link to download? You 19.09.2024 7:28 You do not need to download them as the Kaspersky Windows apps will be silently migrated to UltraAV apps without opt-ins/opt-outs, - Kaspersky will silently uninstall itself and install Ultra instead. Exception: Kaspersky 2018 and older cannot be silently updated, instead users will be requested to manually remove Kaspersky and install Ultra AV. Operator 19.09.2024 7:29 Phaseout functions were Sept 10-29. Will UltraAV be silently installed by end of September? You 19.09.2024 7:31 Yes. The timeline started from the 17th of September and targeted to be completed by the 29th. Operator 19.09.2024 7:31 OK lastly please - is there any point in running Safe Money or Launch Financial Web SIte in Protected Browser ... vs. running in a standard browser (non-safe money) window? You 19.09.2024 7:32 Long answer: We apologize to inform you that due to the recent ruling of the US. Dept. of Commerce restricting our products in the USA, Kaspersky updates to U.S. IP addresses will not be available and certain other limitations apply. Limitations will be implemented gradually, starting from September 10 through to September 29. Safe Money feature will stop receiving updates. This may lead to the following errors when entering the Protected Browser mode, even for trusted websites: • “Certificate verification problem” error with an option to continue browsing • “There is a problem checking the certificate for HTTPS connections” • Amber frame will appear around the browser window while using trusted banking websites through Safe Money You can still access your trusted site by clicking I understand the risks and want to continue. Or they can also access the same site outside the Safe Money Protected Browser. All official information regarding solution functionality, subscriptions, and other matters can be found here: https://support.kaspersky.com/us/faq/2024-us-sales-statement Operator 19.09.2024 7:32 Short answer: It is better not to us Safe Money at the moment. Operator 19.09.2024 7:33

Thanks again and here are the screen shots from my kid's PC with his login I have also noticed a glitch of the safe kids, my kid play the minecraft game and what he get away from safe kids is: 1, launch the feather or any other launcher - this cannot 100% stopped because safe kids applies minute allowed time or even I set it as forbidden 2, within 1 minutes, login the game and play 3, after 1 minute limit, the launcher will be stopped but game goes on

My computer is running Windows 11 23H2 22631.3155 Professional (x64) and has Kaspersky Internet Security 21.3.10.391 (patch k) installed. After a quick scan of kaspersky, I restarted my computer but failed with a bluescreen. It said the OS ran into some problem and the error code was INACCESSIBLE_BOOT_DEVICE. After a forced reboot, the same bluescreen appeared again. I tried Windows boot repaire but it didn't work. I couldn't start the computer until I disabled the Early-Launch-AntiMalware on the boot option menu, which resulted in KIS not loaded. I thought the bluescreen must have something to do with KIS. To prevent rootkits and other unknown drivers from being loaded when the system boots, just after I had installed my OS, I turned on the Boot-Start Driver Initialisation Policy in Group Policy and set the policy to only allow "good" drivers to be initialised. I changed the policy to allow "good and unknown" drivers and restarted the computer, there was no bluescreen and KIS started normally like before. I changed the policy back to only allow "good" drivers and restarted the computer, the bluescreen came again. Just before this bluescreen accident happened, I updated database of KIS, and I ran a quick scan (NOTHING detected). I installed Qt 6.5.3 several days ago, but nothing went wrong these days. Even earlier, I installed a driver for Lenovo Hotkey on Lenovo System Update, which is an official driver updater and the installation was fully monitored by Kaspersky Internet Security. I think the problem may be due to KIS incorrectly classifying some important driver to be unknown during the ELAM stage. But I could not find anything about it: no related event logged, no KIS report and even no dump file for the bluescreen. The compromise in ELAM policy is just a workaround. Could anyone give more help?

Why after installation of a new Kaspersky Premium my PC won't shut down? Takes ages and I switched off by force. With previous Kaspersky Total Security it used to start up and shut down very quick. OS is Windows 10. What is the problem of VPN Kaspersky Secure Connection? When I try to use it almost all websites open blank page with error: 'Anonymous Proxy detected'. As I understand the purpose of VPN Secure Connection is to hide my real IP and to avoid any proxy detection. I tested it with all servers list from countries A to Z.

Hello @Surfrat, Welcome back! Yes, you can choose how to open On-Screen Keyboard: Open On-Screen Keyboard by pressing CTRL+ALT+SHIFT+P. Show On-Screen Keyboard quick launch icon in data entry fields. The On-Screen Keyboard quick launch icon is displayed in the password input fields on web pages.Click the Edit categories link to open the Categories window. In this window, you can specify on which websites the On-Screen Keyboard quick launch icon for On-Screen Keyboard should be displayed. Click the Manage exclusions link in the Categories window to create lists of websites on which you want to enable or disable display of the On-Screen Keyboard quick launch icon irrespective of the selected website categories. You can use masks when adding exclusions. Resources: About protection of data entered on the computer keyboard About On-Screen Keyboard Thank you🙏 Flood🐳+🐋

Hi Flood, I just did some quick research on this UltraAV, I can't trust it. If Kaspersky is out of the queue, I am switching back to bitdefender as my backup plan. Where can I process a partial refund? I am not using this garbage. Or as far as I know, they are banning the US license right? So can I just get a Euro key instead? So I can get my damn database updated?

The answer posted by Ramjam still holds good. I am able to close the keyboard two key lengths to the right of x. Looks like Kaspersky team has been sleeping on this for the last 2 years. Sad state of affairs for a world renowned software

Hello @Psiu47, Welcome back! Do you have an example of how the Report is when the problem does not exist? When this *similar* issue happened - that (you) observed around 12th May 2024, was a topic raised by (you), we cannot find any? OR perhaps (you) escalated it to Kaspersky? *IF* the report was logging *path* for Quick, Full, Background etc - potentially there could be thousands of paths in the report... Our Background & Quick scan from the 11th of June 2024 or the 15th of May 2024: May 2024, Selective scan, shows path, see image Thank you? Flood?+?

I too am being blocked from accessing certain sites that are very important to me. I've tried "pausing protection" but that doesn't resolve the issue. I have to keep changing passwords in order to get access, but the trick to that also is that to actually gain access, I must use the virtual keyboard which I feel is ridiculous. I have reported these difficulties to Kaspersky but unfortunately for me what they ask me to do with beyond my realm. It's far too technical for me!. I'm using Kaspersky Plus. I must say in all honesty that if these issues persist, I shall go to another provider for my laptop's protection. I have removed the program, then reinstalled however; the issue still exists. I would appreciate assistance & thank you in advance.

Hello @Mexican Rose, Welcome back! We agree, using the virtual keyboard *all* the time would drive us batty. Please share the actual error details, what exactly happens when (you're) blocked? Does the issue(s) happen in every browser: Chrome, Edge, FireFox? So we don't waste (your) time asking (you) to do stuff Kaspersky already asked (you) to do, share with us what they asked of (you) please? Are there errors in Kaspersky Reports OR do alerts show in the Kaspersky Plus main window OR in the Windows Notification centre? Please post back? Thank you? Flood?+?

I created a pdf file days ago by combining multiple images and compressing it using adobe acrobat PC ver. It looked fine at the time. Now when I open it, it's a completely different file. It has the content of another pdf file on my pc but has the size of the original one, and yet worse, it has a creepy cyphered message? It freaked the sh*t out of me. I scanned the file using Kaspersky, but the results were negative: "no threats". I ran a quick scan, also turned out negative. I'm currently running the full scan. Could there be a virus on my PC that Kaspersky isn't able to detect? What do I do?

Apologize once again but this report should not be clarified as closed since this abnormal symptom with report window not registering rootkit or quick/complete scans still happening even with Kaspersky Standard 21.18.5.438(a). I can't record properly this bug because there are moments the scan will be registered and displayed and sometimes not. Ever since Kaspersky Standard 21.17.7.539 which I have firstly see happening on May untill September with actual version KS 21.18.5.438(a) this unknown behavior have been going and the company should be aware of it. Whenever I execute these scans if I don't keep report window opened, there is a chance the task is not being saved and registered with full detail on report window so with my last studies about this bug. Having opened and minimzed report window whenever scans are about to finish. The task will display as they are ongoing but at the end when is over. The scan is saved, being registered and display but if I close report window or click to update there is a %60 of chance that task will not be registered or displayed on report window. I'm annoyed to know that I have been facing this bug for a while and I would like revive the situation regarding this unknown bug which started at May 9th accordingly to my first post.

Well I'm going wait till the company update the version and solve as they should because It have been recently I've installed KS onto my PC and I really not in the mood to uninstall or repair while protection gets disabled meanwhile I try to fix this functionality. There alternative method which I never used before is 'Selective/Selected scan' and if I want to verify a single file. All that I need is to copy the destination path and add '\xxx' at the end of destination. So I'm hanging on using this method to run quick scans onto singular files and not a subfolder. I'm going keep waiting till company fix this.