IGMP flood from Kaspersky Security Center Network Agent [MOVED]

[tnoc]

We noticed in our Data Transmission Network, that our B2C and B2B clients are sending "IGMP Join" messages to some of ip adresses from 239.193.0.0/16 network. It looks like flood. This affects  operation of television services in our network, because igmp snooping tables on our switches are overflowing. We have determined that the software using igmp messages is Kaspersky Security Center Network Agent.

Would you be willing to talk to us:
- we noticed this activity about a month ago, did you change something?
- is it a legitimate activity?
- why is your software are sending this messages to multicast ip addresses?

We consider this app activity undesirable and harmful.

[tnoc]

up

[charly17]

Hi,

We notice the same thing since a couple of weeks.

I cannot find where to configure this behavior, either disable it, or configure it.

Any help appreciated.

thank you

[ak01]

maybe they are all acting as a distribution point?