KES 11 - Task stopped

[itguy]

Hi, I have lot of machine with the following error : The vulnerability and update search task is complete. Event type: Task stopped Application\Name: Kaspersky Endpoint Security for Windows User: NT AUTHORITY\SYSTEM (Initiator) Component: Behavior Detection Result\Description: Task stopped Object: Behavior Detection Event type: Task stopped Application\Name: Kaspersky Endpoint Security for Windows User: NT AUTHORITY\SYSTEM (Initiator) Component: Exploit Prevention Result\Description: Task stopped Object: Exploit Prevention Event type: Task stopped Application\Name: Kaspersky Endpoint Security for Windows User: NT AUTHORITY\SYSTEM (Initiator) Component: Application Control Result\Description: Task stopped Object: Application Control Event type: Task stopped Application\Name: Kaspersky Endpoint Security for Windows User: NT AUTHORITY\SYSTEM (Initiator) Component: Mail Threat Protection Result\Description: Task stopped Object: Mail Threat Protection Event type: Task stopped Application\Name: Kaspersky Endpoint Security for Windows User: NT AUTHORITY\SYSTEM (Initiator) Component: File Threat Protection Result\Description: Task stopped Object: File Threat Protection Event type: Protection components are disabled Application\Name: Kaspersky Endpoint Security for Windows User: NT AUTHORITY\SYSTEM (System user) Component: Protection Result\Description: Some components are disabled Any idea ? what should I Do ? Thanks for your support !

[Nikolay Arinchev]

Hi, Please provide us with GSI report from admin server host.

[itguy]

Please find the GSI Report below Thanks for your help GSI Report

[Nikolay Arinchev]

Thank you for that info! For further investigation please provide us with GSI report from one of affected hosts.

[itguy]

Thank you for that info! For further investigation please provide us with GSI report from one of affected hosts.

Please find the GSI Report below Thanks for your help GSI Report

[itguy]

Hi, Please provide us with GSI report from admin server host.

Please find the GSI Report below Thanks for your help GSI Report

[itguy]

You will find the GSI report on the green link GSI Report

[Nikolay Arinchev]

Hi, The link leads to GSI report from admin server host. Could you please collect GSI report from one of affected local hosts?

[KarDip]

Hi itguy As well as above posts. Please try it this simple way for Kaspersky Experts to read. Follow this tutition below. https://forum.kaspersky.com/index.php?/topic/915-how-to-help-us-help-you-with-a-log-of-your-system/ Then drop Zip in GSI Paser. https://www.getsysteminfo.com/ Now copy and paste the "easy read link url" back here in thread. Thank you.

[itguy]

Hi Guys, Here is the link https://www.getsysteminfo.com/report/c11e45e5c55453357bcc187ca8da0226

[Nikolay Arinchev]

Hi, For some reason that is the same GSI report from the KSC. Please run the utility at one of affected local hosts.

[itguy]

Hi, For some reason that is the same GSI report from the KSC. Please run the utility at one of affected local hosts.

Hosts or clients ? Do you mean from a client were KES is installed ? We only have one KSC Thank you

[Konstantin Antonov]

Hi, We mean that we need GSI report from the affected client with KES. Thank you!

[rodeus]

This is fairely common in the KES11.1.1.126 application. 

We have seen these same events issue on a few laptops.

Did you finally found an explanation / reason why ?

 

[Alex]

I already know this kind of error and this is what I think about it… obviously I can be wrong.

 

The client have installed all the protection modules but these modules are disabled by the policy so at each sync they are automatically disabled and the log contains this event.