Search the Community

Hello @ahmad98, Welcome! Not enough information, please share with us: OS version & build, refer: https://support.kaspersky.com/common/diagnostics/15026 Kaspersky Free version, refer: on the Windows Taskbar or hidden icons, rightclick the Kaspersky icon, select About? Error or errors when Keyboard does not work - post full-screen screen prints? In Windows Device Manager - what is the Keyboard status? In Windows Device Manager - has Scan for changes been run? Has the Windows Keyboard Troubleshooter been run - what are the results? Which solutions have been tried - provide details of each solution please? Read: keyboard stopped working topics. Please post back? Thank you? Flood?+?

Thank you very much for your quick response

Hello there. I was making a thread to list a few changes and possibly bugs to Kaspersky Standard 21.17 transition to 21.18 and now you've mentioned scan/verify files quick menu using mouse cursor no longer exist have made open my eyes. Going have to edit my thread about this. And thanks for sharing this finding.

Hello @booger, Welcome! (please) Read before you create a new topic! Open KIS, select Settings, select Additional, uncheck Enable Secure Keyboard Input, select Save, select Save (to confirm the action). 💥 However, there’s also a tiny Quick launch keyboard icon that generates a Secure Keyboard Input is enabled popup → image 4, that drives many Kaspersky subscribers nuts, that cannot be disabled or managed in any way, discussed in topic raised by @Killeriguana How do I disable the "Secure Keyboard Input is enabled" pop-up WITHOUT disabling the Secure Input feature itself? Thank you🙏 Flood🐳+🐋 References: Secure Keyboard Input About protection of personal data on the Internet How to configure protection of data entered on the computer keyboard

This is just a REAL shame to broke user's PC like that , never seen this before !!!!!! the up^date of 23/08/2023 just broke my entire computer : no mouse, no keyboard ... and system in hibernate mode !!!!!!!!!!!!!!!!!! What can i do to recover my computer ??????? usb fix : just shit, 1 change and no keyboard or mouse ???? Is there skilled ingeneer at kasper lab ??? You just waste my time, and week end. just a question , did i, or your customer, allow you to modify .sys file in order to put YOUR keyboard or mouse sniffer ????? That just WEIRD. in 30 year of carreer i never seen that sort of bullshit. really. A product aiming to protect you, and we paid fopr that, is just destroying your datas !!! what can i do ? just rescue KS 18 (linux in fact) cd is working !!! ?????????????????? in fact the REAL virus : is virus vendor themself. they create them, in order to survive !!! i the paid release of your malware !

Any news on this issue? I have the same problem after upgrading from KIS to KPlus. Sometimes the desktop icon does not appear in the taskbar and if I launch it manually it goes red and then quits.

I have kaspersky premium given to me but I'm not the account owner. I have read a couple of threads on here and some of the documentation. But it remains a little unclear and vague. What can the account owner specifically access on my device? What can they specifically see? What can they specifically do? Can I please get clear definitive answer please? For example: -can they see file list, names and paths? -can they see other devices and hardware connected? Think a PC running kaspersky with connected external drive, camera, network PC and so forth. -can they see logins and passwords using the password manager? In a thread I saw someone say no, but the official documentation for shared accounts in password manager data sync seems to indicate yes? -can they see what programs or software is installed? -can they see optimization suggestions, PC startup suggestions and so on that premium shows the user? -can they see what identity searches were done or what identities are being protected? A privacy protection function of premium that shows the user if their data has been leaked elsewhere -can they see vault and content? -can they see safe kids users, when accessed and so forth? -can they run quick scan? Full scan? If yes, in the results of these, can they see any of the above? What if the scan shows an issue or infection can they then see any of the above? -can they see what modules are not installed or used? Eg VPN, password manager. And can they enable it remotely anyway? -can they update the signatures DB? -what else can they do? -what else can they see?

Hello @megala, Welcome! It's not necessarily a matter of 'better or worse', it's personal choice. About protection through hardware virtualization in Kaspersky applications. About protection using hardware virtualization. About protection of data entered on the computer keyboard. Thank you? Flood?+?

Sorry for not answering timely. l don't have wifi or permanent internet access. 1. lt's 24.6.0.1874 (64-bit) 2. lt's 1.3.7.1 3. Yes 4. l installed it once upon a time from extension store iirc. l don't remember. lt became problematic recently. lt didn't give warnings before. 5. l can not get it to show me the warning now. lt is undeleteable though. l just deleted another extension and its gone but adlesse comes back. l open extensions folder in AppData\Local\Yandex\YandexBrowser\User Data\Default\Extensions and its folder literally manifest itself right in front of my eyes as i launch the browser.

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. In cases when you need to diagnose an intermittent network issue, or capture an event that occurs only once in a while, you may need to use ring-buffer mode in Wireshark. In this mode, the number and overall size of the capture files will be fixed and when the limit will be reached, the newest data will start continuously overwrite the oldest data in the capture buffer. Below, you will find instructions for how to configure this capture mode: Download and install Wireshark from the official website, if you have not done that already. Launch Wireshark and click Capture options. On the Input tab, uncheck option Enable promiscuous mode on all interfaces and select interfaces from which you want to capture traffic. If you are not sure which ones to select, look at the graphs in the Traffic column to determine which interfaces are active and select all of them. If you are completely lost, you can also select all interfaces. On the Output tab you configure where the resulting files will be saved, the ring buffer capture is also configured here. It's a good idea to create a separate folder to store the capture files. The screenshot below shows optimal configuration for the capture settings. Note that the space occupied by the capture files will be equal to the size of a single capture file multiplied by the number of files in the ring buffer. In our example it's 500 MB * 8 = 4000 MB, which is the optimal size to upload to Company Account portal. You can modify these parameters to allocate more or less space for the capture files, though we don't recommend making it less than 2 GB. Use of compression is optional. With it, more data can be stored within the same file size, but it also can increase load on the CPU. Disable this option in case of performance problems. When everything is configured, click Start to start the capture. Please, pay attention that when capturing traffic in the ring buffer mode, it's very important to monitor for the occurrence of the event that you need to record and disable capture as soon as possible after the event has occurred, otherwise the relevant part of the capture may be overwritten. The timing is especially important, when using smaller sizes of the buffer. When the capture is finished, click Stop capturing packets, then Close this capture file. Pack the resulting files into an archive and upload it to your Company Account.

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. Environment/Preconditions KSC - 12 KSWS - 11.0.1.897 You may find a massive increase in disk usage from the folder report under the Kaspersky folder. The size of the report folder will increase from around 2GB to 12GB, the files in the report folder have random name (like 340a13d9-2a50-4c4e-94d6-82a79d80da4b), which rapidly grows and consumes disk space. The file can be deleted to resolve the disk space full issue, which itself can cause many issues (can't log in to the server, KSWS stop, etc) To delete the file: Stop KSWS. Add permission/owner for the login account. Right-click and delete file. This issue is caused by the Task log setting under Log and Notification tab in the KSWS policy. To avoid the detailed events issue: Ensure that there are no Informational events in the Importance level option in each Component. Remove task logs older than (days) is selected. In case you do the above step and the random file is still keep growing rapidly (100 MB per hour), it may be causes by the flooding event. You can check the event flooding by using "DB Browser for SQLite". For example, the log above is generated by the Application launch control component. You may solve this issue by disabling Application launch control log.

Alright, so I bought Kaspersky total security and Kaspersky VPN about 25 days ago, had no problem but today I noticed something unusual, first my browser, programs and anything that required internet said there was no connection, I disconnected from the vpn, didn't work, I checked my other devices and they still had working internet, then I did a quick scan that lasted about 5-8 seconds which seemed pretty odd since I read that really quick scans are a symptom from an infected anti-virus, I know quick scans are suppost to be quick but I don't remember it that quick. I've also noticed that when I run scans, every time I get different results, a full scan once told me it scanned 1m files and then next day 1.8m files. This is my first time using Kaspersky so yeah.

Hi there, There is a file called d5_launcher.exe in our software, and we used Kaspersky/OpenTip to scan this file, the result is safe and clean. However, sometimes when using our software D5 Render (a 3d rendering program for architecture, based on UE5), Kaspersky will suddenly start warning and deleting our file d5_launcher.exe. It said the file is Trojan.Win32.Generic. ( we did some searches, and maybe it is related to our keyboard shortcuts? The problem is that we cannot let all users to click Trust the file manually, which is inconvenient. So I'd like to ask you guys, is there a way to upload our files before we release our updates? so Kaspersky will trust those files and do not affect our users from using D5 Render. ( Avast and some other AV software provide us an address in FTP to upload files, and we upload files before we release a new version each time) Thanks in advance!

Window 7 X64 build 7600 Version 21.2.16.590© Whenever I went to bank web site, the virtual keyboard show up. I appreciate it and not much problem about it. However, whenever the virtual keyboard show up. My real keyboard are blocked from any character input. I could see ctrl, alt, backspace, tab are working through the virtual keyboard. But my real keyboard cannot use any keys, like 1-0 and a-z, even after closing every program. I had to restart in order to get back my keyboard. Any idea if I can turn on my keyboard after the incident??

Harlan thank you for quick responses, i sent you files, please check your inbox.

Hello @Eastclif, You're most welcome?! Not silly at all! Thank you for the information & image? It never hurts to ask, we're delighted the issue has been clarified; just for your information the Quick launch keyboard icon that generates a Secure Keyboard Input is enabled popup, (that you've shown in the image) & that drives many Kaspersky subscribers nuts, that popup cannot be disabled or managed in any way. It is possible to select Settings, select Additional, uncheck Enable Secure Keyboard Input, select Save, select Save (to confirm the action), but, that will not stop the popup, so, it's best to leave Secure Keyboard Input set at the default setting. Thank you? Flood?+?

I appreciate your quick support and response. Thank you so much

Thank you for quick reply. I am waiting for result from your team

After being intermittently locked, my main keyboard is functioning fine - for now. Thank you again Berny for your help. Now to clarify, I thought I disabled the on-screen keyboard (as advised). Now I am not so sure I did that. Specifically, I have un-ticked the “Enable Secure Keyboard Input” - see attached PrintScr posted on this chat 1 day ago. In fact, On Screen Keyboard still appears selected - see PrintScr below. Just now I tried using Kaspersky On-Screen keyboard on my bank site; it functioned fine and did not lock my main keyboard. To muddy the waters further, late on the night of blocked main keyboard, MS has updated my Win10. I am not sure it had any beneficial effect. Thank you to everyone in this forum. A great help!

Hello @George Whittle, Welcome! Read: Turn off/on automatic display of the onscreen keyboard - it needs to be *unchecked* Thank you? Flood?+?

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. There is an example of a step-by-step instruction to configure Single-Sign-On (SSO) for KATA 4.1/5+/6+ into HOME.LAB domain. Prerequisites Deployed Central Node Server Name should be FQDN. (In current case FQDN name of Central Node - kata-cn.home.lab) It can be checked via Settings/Network Settings of Central Node. A and PTR record should be set for Central Node in DNS. Domain User Account should be created to set up Kerberos authentication by means of keytab file (in current case Domain User Account is kata-sign-on). AES256-SHA1 encryption algorithm should be enabled into created Domain User Account. Step-by-step guide to create keytab file On Domain Controller: Launch CMD As Administrator Execute the following command to create keytab file C:\Windows\system32\ktpass.exe -princ HTTP/kata-cn.home.lab@HOME.LAB -mapuser kata-sing-on@HOME.LAB -crypto AES256-SHA1 -ptype KRB5_NT_PRINCIPAL -pass * +dumpsalt -out C:\TEMP\kata-sgn-on.keytab The utility requests the kata-sign-on user password when executing the command. The SPN of the selected server is added to the created keytab file. The generated salt is displayed on the screen: Hashing password with salt "<hash value>" For multiple Central Node servers you need to save "<hash value>" of hashing password to add an SPN for each subsequent Central Node servers further using ktpass.exe utility. On Central Node Web Interface Move to Settings/Users/Active Directory Integration Add the created keytab file: Keytab file status section contains File which contains SPN for this server The file contains section HTTP/*****@*****.tld Under Users tab click Add and select Domain user account. Set domain user as <username>@<domain> On client machine Host should be joined to the same domain. Domain user should be logged in with account added into the Central Node. Open Control Panel/Internet Options Click on Security and select Local Intranet Click on Sites and then on Advanced Add FQDN of central node - kata-cn.home.lab Close windows: Launch Web Browser and access to Web Interface of the Central Node https://kata-cn.home.lab:8443 and it should be opened without asking any Login/Password.

Simple. In my case, switching between languages is done with Ctrl+Fn+F12 and Ctrl+Fn+F5 when you are on the main screen of Kaspersky Standard. (The official advice from Kaspersky was Ctrl+F12 and Ctrl+F5, but for my keyboard an additional "Fn" press was required). Please try this.

Hello @S.E., Welcome! Uncheck the options (you) require in: Secure Data Input settings - image 1 OR Add an exclusion for specific websites, see image 1 above & image 2 below Result: Any issues or concerns please post back? Thank you? Flood?+? Resource: How to configure protection of data entered on the computer keyboard

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials. This instruction is relevant only in case of troubleshooting incorrect loading or rendering of a web page. In order to troubleshoot issues KES network traffic related issues traffic dump is required. It is easier to analyze and does not require third-party software installation. If reproduction of the issue requires the web browser to open web pages(such as web control non-working as expected, web page not loading, and so on), the tests should be performed in Incognito mode(also known as private browsing). Chrome browser: Ctrl+Shift+N or you can start browser from terminal: & "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -incognito . Starting application from terminal will make launch key visible in traces and make diagnostic easier. Firefox browser: Ctrl+Shift+P or you can start browser from terminal: & "C:\Program Files\Mozilla Firefox\firefox.exe" -private-window . Starting application from terminal will make launch key visible in traces and make diagnostic easier. Microsoft Edge: Ctrl+Shift+P Opera browser: Ctrl+Shift+N KES11/12 Instructions Disable KES11/12 Self-defense Navigate to the following registry key: x86: HKLM\SOFTWARE\KasperskyLab\protected\KES<Build version>\environment\ x64: HKLM\SOFTWARE\Wow6432Node\KasperskyLab\protected\KES<Build version>\environment\ Create a string type value named DumpNetworkTraffic : DumpNetworkTraffic = (REG_SZ)"1" Restart the product or reboot the host Traffic dump files will be saved to %ProgramData%\Kaspersky Lab\KES<Build version>\Data\traffic Once the issue is reproduced compress the whole traffic directory Do not forget to disable traffic dump collection. To do so delete DumpNetworkTraffic value.Then restart the product or reboot the host.

Once again I answer my own questions because I am too quick to post. After literally 5 minutes of research, I was able to find out that Kaspersky's drivers are indeed running as ELAM (Early Launch Anti-Malware) drivers: Probably obvious, but I wanted to make sure. And now anyone with the same question knows as well.