Not fix in 21.21.6.288
X
xzz123
@xzz123
Posts
-
SuperMITM feedback -
SuperMITM feedback: not functioning with some website -
SuperMITM feedback -
Please help us test a new feature on the release version of Kaspersky MR20. -
Please help us test a new feature on the release version of Kaspersky MR20.@Dmitriy.Pisarets said in Please help us test a new feature on the release version of Kaspersky MR20.:
or there is question I had missed?
no more problem, sir
except those I already reported in MR21 traffic checking section. -
SuperMITM feedback: not functioning with some websiteit is curious that different users reproduced different problems.
another user says baidu search website works fine.....
and the there are other website faces the problem SuperMtim do not function. -
SuperMITM feedback: not functioning with some websitesometimes this SuperMitm do not work with some websites
whne I reproduce, they are https://www.bing.com/?mkt=zh-CN and https://www.pixiv.net/
please see my taces:
https://cloud.qainfo.ru/index.php/s/B2xjIo10027ztBV
password for the link is 1234Also this time when I reproduce, I enable trace before a restart of kaspersky.
I also reproduced last problem where baidu search will not load properly in this trace.many thanks.
-
SuperMITM feedback@Dmitriy-Pisarets sir,
I would like to report a possible conflict between K and Baidu search website (https://www.baidu.com/).
When I enable SuperMITM, Baidu site can not load properly using chrome. No effect to other unsupport broswer.
the main page and search result page will not open and chrome told me 'error, connection reset.'
please see my traces files with screen record in it.
https://cloud.qainfo.ru/index.php/s/z3AZBo0UdXiBkJN
the password for the link is 1234 -
Please help us test a new feature on the release version of Kaspersky MR20.@Dmitriy-Pisarets sir,
I would like to report a possible conflict between K and Baidu search website (https://www.baidu.com/).
When I enable SuperMITM, Baidu site can not load properly using chrome. No effect to other unsupport broswer.
the main page and search result page will not open and chrome told me 'error, connection reset.'
please see my traces files with screen record in it.
https://cloud.qainfo.ru/index.php/s/z3AZBo0UdXiBkJN
the password for the link is 1234 -
Please help us test a new feature on the release version of Kaspersky MR20.@xzz123 said in Please help us test a new feature on the release version of Kaspersky MR20.:
I have tested this function and it looks alright.
I have run more sofisticated test
which I download malicious file via chrome.
The result is that the original certificate not replaced and the malicious file is blocked by web-av.
"
事件: 检测到恶意对象
用户:????
用户类型: 发起者
应用程序名称: chrome.exe
应用程序路径: C:\Program Files\Google\Chrome\Application
组件: 安全浏览 safe broswering
结果描述: 检测到
类型: 木马
名称: HEUR:Backdoor.MSIL.XWorm.gen
精确度: 启发式分析 Heuristic
威胁级别: 高
对象类型: 文件
对象名称: 2.exe
对象路径: https://bbs.kafan.cn/forum.php?mod=attachment&aid=MzQ0ODEwNnwzZGFmMWNkNXwxNzQwMTI4MjAwfDk3NTc3MnwyMjc5MzY3//
对象的 MD5: D32B2CDCCEACD71FFA5039A0DC8E2D45
原因: 机器学习→reason: machine learnning
数据库发布日期: 今天,2025/2/21 下午3:03:00you can see from the log that https scanning without repalce certificate is accomplished. the malicious file with https was blocked.
-
Please help us test a new feature on the release version of Kaspersky MR20.Hello Dmitriy~~
I have tested this function and it looks alright.
my test machine:
ThinkPad T490 with 64bit windows 10 Pro 22H2 19045.2965 (will test win11 later)
K Standard zh-cnbut why Edge not supported?
and also there are many third party not-well-known chrome-based broswers, K do not support them with MITM and https traffic scanning from the beginnig. I wish all https traffic could be scanned by this technology in the near future. After that there will be no broswer limitations. All broswer and all https traffic will be scanned. -
Please help us test a new feature on the release version of Kaspersky MR20. -
Kaspersky\VPN\KSOS 21.21.1.128 MR21 -
MR20 release has been signed! -
Kaspersky\VPN\KSOS 21.20.8.505 RC -
Kaspersky\VPN\KSOS 21.20.8.484 RC -
Kaspersky\VPN\KSOS 21.20.8.465 RClooks like the 'what's new' section for 21.20 in tech support website is still not prepared yet...
-
kaspersky product's file monitor and scan (OAS and ODS) can not trigger detection for some files which already been blacklisted by KSN. But System Watcher is able to trigger detection correctly once the file is executed. -
kaspersky product's file monitor and scan (OAS and ODS) can not trigger detection for some files which already been blacklisted by KSN. But System Watcher is able to trigger detection correctly once the file is executed.@Dmitriy-Pisarets
hello
I would like to know developers‘ oppion.
a lot of friends are watching my progress. LoL
they are all very concern.... -
kaspersky product's file monitor and scan (OAS and ODS) can not trigger detection for some files which already been blacklisted by KSN. But System Watcher is able to trigger detection correctly once the file is executed.I myself made little investigation of this problem.
I look deeply into traces file which generated while- I right click the file and check reputation.
- I scan the file.
- I run the file and system watcher detect the file.
I can clearly found KSN was used when 1 and 3 were performed. there were logs indicate that http communication with ksn server were made. and a untrust reputation or a PDM. Bazon.a verdict is distribute from KSN to client.
But I cannot found evidence that those ksn communication were made when I do 2. when scan the file, I cannot see traces indicate the product check KSN. looks like no communication with KSN server.
So a file with bad reputation cannot be detected by OAS and ODS.