Safe Browsing component logs: Object corrupted . Can you explain to me?

[fabiodanzetta]

I was checking the safe browsing component logs and came across a log as shown in the attached screenshot.

Can you explain what it means and what it refers to?

From what I understand, it seems to be telling me that an object linked to the specified path is damaged.

If what I'm saying is correct, what does it mean?

 

Thank you all.

[Flood and Flood's wife]

12 minutes ago, fabiodanzetta said:

I was checking the safe browsing component logs and came across a log as shown in the attached screenshot.

Can you explain what it means and what it refers to?

From what I understand, it seems to be telling me that an object linked to the specified path is damaged.

If what I'm saying is correct, what does it mean?

 

Hello @fabiodanzetta, 

Welcome back!

We have identical events. 

(ioo) there's an issue on the Kaspersky side, not the users. 
Thank you🙏
Flood🐳+🐋

[fabiodanzetta]

Hi @Flood and Flood's wife 

 

It would be interesting to hear from a Kaspersky employee if they can explain the reason for this.

Thank you for your response.

[Flood and Flood's wife]

3 minutes ago, fabiodanzetta said:

Hi @Flood and Flood's wife 

1. It would be interesting to hear from a Kaspersky employee if they can explain the reason for this.

Thank you for your response.

Hello @fabiodanzetta, 

You're most welcome!

1. The quickest was for that to happen is to submit a case via Kaspersky's Customer Service Team: https://support.kaspersky.com/b2c#contacts -> -> select Email, then fill in the template as shown, select (your) Kaspersky application from the drop-down-list (A); include a *detailed history*: 

***Also - as FYI - don't be surprised - in the first instance - IF Kaspersky approach the issue as IF the problem is on (YOUR) side. 

Please share the outcome, with the Community, when it's available?

Thank you🙏
Flood🐳+🐋

[Berny]

@fabiodanzetta

A SSL server test on https://www.ssllabs.com/ssltest/  is reporting a 'Certificate name mismatch  🤔

Spoiler

 

   

[fabiodanzetta]

@Flood and Flood's wife 

Before writing here in the forum, I had already opened a support ticket and they suggested that I scan my system files with the SFC utility, which did not find any file corruption.

So I decided to write here because I don't think it refers to the damaged svchost file as they indicated, but I think it refers to something in the URL.

@Berny 

Thanks for clarifying. Could this be the reason? Perhaps it could be.

At this point, I think only a direct Kaspersky employee from the technical testing/development group can clarify this .

 

 

[Flood and Flood's wife]

8 minutes ago, fabiodanzetta said:

@Flood and Flood's wife 

Before writing here in the forum, I had already opened a support ticket and they suggested that I scan my system files with the SFC utility, which did not find any file corruption.

So I decided to write here because I don't think it refers to the damaged svchost file as they indicated, but I think it refers to something in the URL.

Hello  @fabiodanzetta, 

Thank you for the information!

It would be useful to include that when you first post - it saves anyone responding to (you) wasting their time. 

The Kaspersky support team are best placed to answer this issue. 

Just as a matter of interest:

Thank you🙏
Flood🐳+🐋

[fabiodanzetta]

Research on Alienvault suggests that this domain has also been used to spread malware in the past, at least until more than two years ago.

At the same time, however, Alienvault has now whitelisted it, as it is believed to be part of Google's CDN infrastructure and therefore used to distribute content, software updates, etc. to its users.

 

55 minutes ago, fabiodanzetta said:

I was checking the safe browsing component logs and came across a log as shown in the attached screenshot.

Can you explain what it means and what it refers to?

From what I understand, it seems to be telling me that an object linked to the specified path is damaged.

If what I'm saying is correct, what does it mean?

 

Thank you all.

Before writing here in the forum, I had already opened a support ticket and they suggested that I scan my system files with the SFC utility, which did not find any file corruption.

So I decided to write here because I don't think it refers to the damaged svchost file as they indicated, but I think it refers to something in the URL

[Berny]

@fabiodanzetta

1 hour ago, fabiodanzetta said:

I think only a direct Kaspersky employee from the technical testing/development group can clarify this .

1) Kaspersky Technical Support is indeed your best choice 👍 ,  for privacy reasons we don't request system logs on this public Forum . If not yet done please submit your Forum Topic URL  in your next INC ticket.
Also Please let us know the verdict ?

2) Anyway a second Qualys SSL Labs Test is on my side still  reporting the same verdict 🤔

Spoiler

2) My Kaspersky report is as well pointing to a certificate issue 🤔

Spoiler

Event: SSL connection with invalid certificate detected
User type: Not defined
Application name: firefox.exe
Application path: C:\Program Files\Mozilla Firefox
Component: Safe Browsing
Result description: Blocked
Object name: edgedl.me.gtv1.com
Reason: Invalid certificate name. The name is not included in the list of allowed names or is explicitly excluded from it.

 

3)  The site information on Firefox is also  notifying  :
"Connection verified by a certificate issuer that is not recognized by Mozilla "  🤔

 

[AlexeyK]

Friends, don't panic - everything is fine. 🙂

[AlexeyK]

@fabiodanzetta  

Some more info.

Цитата

• Owned by Google and used for delivering Chrome updates, extensions, and related content.
• It uses HTTP instead of the more secure HTTPS protocol, raising suspicion.
• Blocking edgedl.me.gvt1.com entirely could disrupt Chrome updates.

"Corrupted" - this happens sometimes (rarely) when scanning archives. Previously, this was the case with the Edge installer archives. It's all right, don't pay attention.

[fabiodanzetta]

@AlexeyK

Thank you very much for the clarification.