KAV\KIS\KTS\KFA\KS\KSOS: 20.0.14.1085 RC

Ilya.Zadonsky

<div>
<div>
<div>
<div>
<p data-select-like-a-boss="1">Good news for everyone!</p>
<p>A new version of the beta build is available for download and testing.</p>
<p>You can download the version from the links below</p>
</div>
</div>
<div><a href="https://cloud.qainfo.ru/s/LBJCCxUdsQSIg1j" target="_blank" rel="noopener" data-select-like-a-boss="1">Download from ownCloud</a></div>
<div><a href="https://box.kaspersky.com/d/8f26943eea3c4a65a779/" target="_blank" rel="noopener">Download from Kaspersky Box</a></div>
<div></div>
</div>
</div>
<div>
<p><span> </span>Can be activated only through Internet. Beta-license is valid for 90 days.</p>
<p><span> </span>Before installation of the new build, please uninstall the previous build (sometimes kavremover may be needed) and reboot the system</p>
<hr /></div>
<div>
<h3 data-select-like-a-boss="1">Advices for novice testers</h3>
<ul>
<li>Do not proceed with testing without reading the<span> </span><a href="https://forum.kaspersky.com/index.php?showtopic=161942" target="_blank" rel="noopener">instructions</a>;</li>
<li>All found bugs should be posted in the related topics so it would be wise to read their headers at first. Bug reports should contain all<span> </span>useful<span> </span>info (it will be clear after reading the instruction from p.1);</li>
<li>The most convenient way to upload big files (traces or dumps): in .zip archive on<span> </span><a href="http://cloud.qainfo.ru/" target="_blank" rel="noopener">OwnCloud</a>.;</li>
<li>Traces as well as app and driver verifiers are enable in this build.</li>
<li>This area of forum is not connected to Tech Support (Bugs of Beta-products are collected here)</li>
</ul>
<hr />
<p><span>Additional Information</span></p>
</div>
<div>
<div>
<div>
<p><span> </span>Please don't post on the beta forum if you are not participating in the beta testing.</p>
</div>
</div>
</div>

new kis user 2012

<p>Technical release (TR) <a href="/post/4403" target="_blank" rel="noopener">signed</a>. It was this build <strong>20.0.14.1085</strong>. Congratulations to both testers and KL. :)</p>

harlan4096

<p>Great news! :)</p>

harlan4096

<p>A user has tested KIS2020 TR (Russian), and still Process Hacker can terminate avp services <img src="/plugins/nodebb-plugin-composer-kl/vendor/tinymce/plugins/emoticons/img/smiley-surprised.gif" alt="surprised" /><img src="/plugins/nodebb-plugin-composer-kl/vendor/tinymce/plugins/emoticons/img/smiley-undecided.gif" alt="undecided" /><img src="/plugins/nodebb-plugin-composer-kl/vendor/tinymce/plugins/emoticons/img/smiley-frown.gif" alt="frown" /></p>
<p></p>
<p>https://www.youtube.com/watch?v=r7gXhwSxQGE</p>

Helios_07

<p>@harlan4096</p>
<p>Thats because Process Hacker starts a kernel driver(which requires administrator rights by the way), said driver gives it elevated rights and so makes it possible to terminate avp.exe.</p>
<p>Thats always been possible, you can also use for example gmer anti-rootkit.</p>
<p>If you start Process hacker without Admin rights you wont be able to kill avp.exe.</p>
<p>You cant really protect against that as far as i know because that happens on kernel level.</p>

harlan4096

<p>Yeah, I know that PH for many years was always be able to terminate avp services, but I thought that was hardened in the last years...</p>

Helios_07

<p>@harlan4096</p>
<p>It was hardened alot over the last years and you have to keep in mind that a malicious program still would have to go through most layers of protection from kaspersky before it can start a kernel driver and kill avp.exe.</p>
<p>The point is that you need a kernel driver to bypass selfdefense.</p>
<p>Trusted application mode, using an account with lower rights, User access control from windows or whatever its called, those are all good additional layer of protection against that.</p>

harlan4096

<p>A KL developer comment would be also welcome ;)</p>

stephan1827

<p>What about the MAC version. I dont see any beta testing or RC.</p>