Blocking certain urls for all programs using Kaspersky premium？

lightof7ustice · May 15

Hi all.

I don't know why, but recently Adobe Acrobat Reader (probably, according to the file and link) has been trying to download 2 demo PDFs from its website through the links below. Since I have Internet Download Manager, the links always toggle the IDM, then it pops out the download task window. This happens almost once every day, so quite annoying. Is there a way to block those links for all the programs with Kaspersky's firewall or Intrusion prevention, so that Acrobat will not try to download those files and IDM will not jump out to help with that? I tried to use the Packet rules of the firewall but it was not quite intuitive.

P.S. I thought Acrobat was not supposed to behave like this.

The links:

https://acrobat.adobe.com/dc-home2-dropin/demo-files/en-US/demo.pdf
https://acrobat.adobe.com/dc-home2-dropin/demo-files/en-US/demo/verb-compress-pdf/demo-compressed-high.pdf

harlan4096 · May 15

Welcome to Kasperskyt Community.

You can try to block URLs access using Windows file host:

https://medium.com/@prcooltechzone/a-guide-to-hosts-file-and-using-it-to-block-websites-on-windows-linux-and-mac-os-4edc44fbd915

Edit host file as explained in the previous link, added en entry:

127.0.0.1 <here the URL to bloc>

lightof7ustice · May 16

Thank you @harlan4096 for the reply,

May I ask one more question about the hosts approach？

So basically,

If I use

127.0.0.1 acrobat.adobe.com

it could block the files but it also blocks the official website for Acrobat.

If I use

127.0.0.1 acrobat.adobe.com/*
127.0.0.1 acrobat.adobe.com/dc-home2-dropin/demo-files/en-US/demo.pdf
0.0.0.0 https://acrobat.adobe.com/dc-home2-dropin/demo-files/en-US/demo.pdf
127.0.0.1 acrobat.adobe.com/dc-home2-dropin/demo-files/en-US/demo/verb-compress-pdf/demo-compressed-high.pdf
0.0.0.0 https://acrobat.adobe.com/dc-home2-dropin/demo-files/en-US/demo/verb-compress-pdf/demo-compressed-high.pdf

it's not blocking anything.

Is it possible to block the 2 files or download attempts but not Acrobat official website?

harlan4096 · May 16

Try removing the 1st line:

127.0.0.1 acrobat.adobe.com

Also, You may add a packet rule in Kaspersky FireWall:

Here "harswaretimes.in" it's the URL example... but not sure if it can block only specific levels of a dominion, as You are requesting, in Your case: adobe.com, just try...

harlan4096 · May 16

I forgot to mention that You have to move to the top of the list, the new custom packet rules.

lightof7ustice · May 16

6 hours ago, harlan4096 said:
Try removing the 1st line:
127.0.0.1 acrobat.adobe.com
Also, You may add a packet rule in Kaspersky FireWall:

Here "harswaretimes.in" it's the URL example... but not sure if it can block only specific levels of a dominion, as You are requesting, in Your case: adobe.com, just try...

Thank you for the answer.

I tried both "*.adobe.com" and "adobe.com", but the rule is not working, I can still visit adobe.com, the same after reboot. Did I do something wrong?

Edited May 16 by lightof7ustice

harlan4096 · May 16

Did You move the packet to the top of the list?

lightof7ustice · May 16

23 minutes ago, harlan4096 said:

Did You move the packet to the top of the list?

Yes. If I understand correctly, that refers to this? (For the Block URL rule)

harlan4096 · May 16

My rule:

And my results:

lightof7ustice · May 16

17 minutes ago, harlan4096 said:

My rule:

And my results:

I change to www.adobe.com. The outcome is as followed:

The block history is logged in the Reports-Firewall now, which is different from the previous time (I suppose the Packet rule probably only records the exact URL matching the rule, just my guess though). But I can still visit the website www.adobe.com, maybe it's designed like this?

harlan4096 · May 16

Clean up browser adobe cookies/history/cache, close and open the browser and try again...

User @Flood and Flood's wifetried it, and it seems blocking is working after doing so...

Flood and Flood's wife · May 16

8 minutes ago, harlan4096 said:

Clean up browser adobe cookies/history/cache and try again...

User @Flood and Flood's wifetried it, and it seems blocking is working after doing so...

Hi @harlan4096 & @lightof7ustice,

Confirming!

But it was very stubborn, it took many tries, we also exited the browser & tried again & then it worked:

Thank you🙏
Flood🐳+🐋

lightof7ustice · May 16

Thank you for the help @harlan4096 & @Flood and Flood's wife,

Well, I must say it's very strange that after I clear not only Adobe but the whole cache/cookie/history, it's still not blocked.

But anyway, I'm still very grateful for the assistance of both of you. Maybe it's due to other programs like Adguard or the DNS. As long as it's not a big problem for the firewall itself or other functions, I guess I can stop trying for now.

Shall I report this bug to the developers, and how if possible?

Flood and Flood's wife · May 16

15 minutes ago, lightof7ustice said:

Shall I report this bug to the developers, and how if possible?

Hello @lightof7ustice,

There's something very odd about it - for the last 20 minutes - the block stopped working & now it's working again

Please do as @harlan4096 guides you, if you do need to escalate, follow on below:

Kaspersky Customer Service, https://support.kaspersky.com/b2c#contacts - select Chat or Email, then fill in the template as shown:

Thank you🙏
Flood🐳+🐋

Blocking certain urls for all programs using Kaspersky premium？

Recommended Posts

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Please sign in to comment