This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
mbaerwolff
Participant
yesterday

Problems after Update to DHS Compliant Version

Since the update of the Anti-Malware Engine, we have had massive problems with various programs. In some cases, .exe files that previously worked without any problems are moved to quarantine. However, this does not affect all clients. The exceptions that we define do not have the desired effect.
Do any of you have the same effects or possible recommended settings?

9 Replies
G_W_Albrecht
Legend Legend
Legend
yesterday

Have you opened an SR# with CP TAC already ? If exceptions do not work this should be the first step.

CCSE / CCTE / CCME / CCSM Elite / SMB Specialist
0 Kudos
mbaerwolff
Participant
4 hours ago
In response to G_W_Albrecht

Yes, I have opened a case, but the first recommandation was to deactivate the security settings at the policy. 

0 Kudos
the_rock
Legend
Legend
yesterday

I saw someone mention they had issue with forensic service confuming high CPU, but yes, I would definitely contact TAC about the issue.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
yesterday
In response to the_rock

Sorry, but this is off topic - the issue is with non-Kaspersky  AV/AM engine, not forensics....

CCSE / CCTE / CCME / CCSM Elite / SMB Specialist
0 Kudos
the_rock
Legend
Legend
yesterday
In response to G_W_Albrecht

Not really off topic, as issue happened AFTER update to DHS compliant version...

0 Kudos
G_W_Albrecht
Legend Legend
Legend
6 hours ago
In response to the_rock

You did not write that...

CCSE / CCTE / CCME / CCSM Elite / SMB Specialist
0 Kudos
the_rock
Legend
Legend
2 hours ago
In response to G_W_Albrecht

Haha...never mind mate, I was more referring to an issue with DHS compliant version.

Cheers,

Andy

0 Kudos
JonnyRabinowitz
Employee
Employee
yesterday

If you look at under "Logs" tab for the forensic log entries for these detections, what is in the "Protection Type" field? 

Want to confirm specifically what is making the detections

0 Kudos
mbaerwolff
Participant
4 hours ago
In response to JonnyRabinowitz

For one application I see URL Reputation - Forensics. However, the log message goes on to say which applications have been moved to quarantine.
No log entries are created for other applications although the program freezes and crashes.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events