AV Test MalwareTips - Kaspersky Report - March 2017

Discussion in 'Kaspersky' started by BoraMurdar, Apr 19, 2017.

  1. Evjl's Rain

    Evjl's Rain Level 29
    Trusted AV Tester

    Apr 18, 2016
    1,802
    13,183
    Vietnam
    Windows 8.1
    Avast
    I think only with TAM disabled, unknown apps will be in low restricted category

    when I enabled TAM for a while, everything I ran was blocked including many safe apps. It simply blocked everything, nothing was put into low restricted. I don't know about your case but because of this, I had to disable TAM
     
  2. XhenEd

    XhenEd Level 27
    Content Creator Trusted

    Mar 1, 2014
    1,607
    8,424
    Philippines
    Windows 10
    Default-Deny
    TAM is "black and white". It doesn't put files into low-restricted, but Untrusted. It is restrictive. Putting files into different categories is what the Application Control does. But TAM is different from, but working closely with, Application Control.
     
    ZeroDay, JB007, shukla44 and 2 others like this.
  3. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,265
    13,565
    Utopia
    I know what you are talking about. Sometimes they are blocked, but are still in a permissive category. All you have to do is open up Application Control, expand the list, and look for the red dots. Slide it back to "allowed", and it will run.
     
    ZeroDay, JB007, shukla44 and 2 others like this.
  4. Evjl's Rain

    Evjl's Rain Level 29
    Trusted AV Tester

    Apr 18, 2016
    1,802
    13,183
    Vietnam
    Windows 8.1
    Avast
    I tried to do this but it took so many clicks to allow 1 app, also the resource usage was noticeable
    I prefer VS in autopilot mode because it just requires 1 or a few clicks to allow 1 app.

    It's suitable for users who want a lockdown PC but not for many users like me :)
     
  5. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,265
    13,565
    Utopia
    I, too, had various problems with TAM. I don't use it anymore. I use NVT ERP. I tried VS again recently, but it still blocks certain files, even if I whitelist them.
     
    JB007, shukla44 and Evjl's Rain like this.
  6. XhenEd

    XhenEd Level 27
    Content Creator Trusted

    Mar 1, 2014
    1,607
    8,424
    Philippines
    Windows 10
    Default-Deny
    You're right. TAM would put files into Low restricted category, instead of Untrusted, which was the case in the past. But it is still very restrictive because the files are blocked, rather than allowed (or asked for permission), which is the default action of Low restricted category.

    I'm using KIS with TAM, again. :D
     
  7. mekelek

    mekelek Level 21

    Feb 24, 2017
    1,012
    4,410
    Hungary
    Windows 10
    Kaspersky
    since i reinstalled Windows and KIS, TAM has been going nuts, blocking dll's of legitimate games already installed on my hard drive that wasn't formatted.
    ran the TAM scan again, lets hope it fixed it.
     
    JB007, shukla44 and frogboy like this.
  8. XhenEd

    XhenEd Level 27
    Content Creator Trusted

    Mar 1, 2014
    1,607
    8,424
    Philippines
    Windows 10
    Default-Deny
    1. Was internet connected, or at least KSN could connect to the internet, when those happened?
    2. How did you enable TAM? By clicking "Enable", or by clicking "Turn on and scan all installed applications"?
     
    JB007, shukla44 and harlan4096 like this.
  9. mekelek

    mekelek Level 21

    Feb 24, 2017
    1,012
    4,410
    Hungary
    Windows 10
    Kaspersky
    yes
    enable then it ran a scan.

    after i disabled it and enabled it again, the scan popped up with more dll's/exe's that i allowed now, so lets hope it will be fine.
     
    JB007, shukla44, shmu26 and 1 other person like this.
  10. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,265
    13,565
    Utopia
    I hate to say it, but this is common behavior for TAM.
    After enabling TAM, you have to go into application control, expand the list, and scroll down it, looking for the red dots. Slide them all back to "allow".

    There will still be some items that didn't make it onto the list, and will only be blocked when you first run them. When that happens, go back to the list, and slide them to "allow". They won't get blocked again.
     
    JB007, shukla44, XhenEd and 1 other person like this.
  11. mekelek

    mekelek Level 21

    Feb 24, 2017
    1,012
    4,410
    Hungary
    Windows 10
    Kaspersky
    I'm aware of this, but I expected only stuff that are newly installed to be marked by TAM like this, not already installed ones.
     
    JB007, shukla44, XhenEd and 1 other person like this.
  12. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,265
    13,565
    Utopia
    Unfortunately, even some of the already installed apps suffer from this issue. The scan misses them, for some reason. That has been my experience.
     
  13. XhenEd

    XhenEd Level 27
    Content Creator Trusted

    Mar 1, 2014
    1,607
    8,424
    Philippines
    Windows 10
    Default-Deny
    #33 XhenEd, Apr 25, 2017
    Last edited: Apr 25, 2017
    Edited... I misread... :D
     
    JB007 and frogboy like this.
  14. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,265
    13,565
    Utopia
    You were right also the first time, to a certain extent. Application Control does not list certain exe files until you actually run them.
     
    JB007, PCGamer and XhenEd like this.
  15. PCGamer

    PCGamer Level 3

    Oct 14, 2015
    104
    257
    Israel
    Windows 10
    ESET
    As Always Kaspersky one of the best If not the best Internet suite out there! :)
    The King Kaspersky.
     
    JB007 likes this.
Loading...
Similar Threads Forum Date
AV Test MalwareTips - Kaspersky Report - November 2016 Kaspersky Dec 15, 2016
Q&A How many MalwareTips members are using Kaspersky 2016? Kaspersky Jul 21, 2016
Expired MalwareTips.com : Kaspersky Internet Security 2014 Giveaway Giveaways Archive Feb 12, 2014