Worm.Win32.AutoRun.hnw

This will be damage your Data in your D:/ Or any other Physical Drive not in the C:/ Drive. this virus creates some files such as regsrv, folder.exe. in the located folders. virus sample capacity should be 2MB.

After infected your systems, how do you survive?

Solution:

1. disconnect your network connections
2. disable the system restore points and delete it manually.
3. finally run the Rescue disk or Virus Removing tool in your infected system.

Download Links:

• Kaspersky Rescue Disk 2010

• Kaspersky Virus Removing Tool

Note:
Do Not
           directly open your removable storages.
           exit or disable the AV
           provide full access to other people through the shared folders.

Details: SecureList

Cannot Setup the Server Connection

This can be happened, when you try to activate your Kaspersky product in online.

How do you solve this issue:

• Check the connectivity with the Kaspersky servers [ping Or Browse www.kaspersky.com].
• Run the KIDO tool & install the required security patches
• Login to your "System Administrator" account and try to install the Kaspersky

always consider the above mention areas, problem can be solved in the proper way.

KAV / KIS 2011 Update Issue

If you are try to Update KAV/KIS 2011 by using the Dongle, most of the time terminate the update process after 65 - 69 %. this happens only initial update or more than 3-4 weeks missed the update process.
Find the Solution: recommend to disable the Automatic Proxy settings.
Guide: Settings -> Update -> Update Source -> Proxy -> un-tick the "Use Default Proxy". OR you have to find out the proper update source to update your AV.

**do not configure the Copy to Update folder in initial update. 

Microsoft Windows win32k.sys Driver Multiple Vulnerabilities

Impact: Privilege escalation
This covers vulnerabilities where a user is able to conduct certain tasks with the privileges of other users or administrative users.
This typically includes cases where a local user on a client or server system can gain access to the administrator or root account thus taking full control of the system.

Description
Multiple vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
1) A memory allocation error in the "win32k.sys" driver when copying data from user mode can be exploited to execute code in the kernel.
2) A double-free error in the "win32k.sys" driver when handling PFE objects can be exploited to execute code in the kernel.
3) A second double-free error in the "win32k.sys" driver when running 16-bit programs can be exploited to execute code in the kernel.
4) A memory allocation error in the "win32k.sys" driver when copying data from user mode can be exploited to execute code in the kernel.
5) A logic error in the "win32k.sys" driver when linking driver object may lead to a corrupted linked list.
6) An input validation error in the "win32k.sys" driver when handling user mode data can be exploited to corrupt memory.

Solution: Apply patches.
Windows XP SP3:
http://www.microsoft.com/downloads/details.aspx?familyid=BB9D1657-5BEB-4372-B74C-A612A6FFF5A8

Windows Server 2003 SP2:
http://www.microsoft.com/downloads/details.aspx?familyid=4AA39F59-2177-459F-9B8A-9543330D48EC

Windows 7 for 32-bit Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=AA7DE2E4-BA48-4D58-B034-05349F0EB920

Windows Server 2008 R2 for x64-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=D417EBCE-7841-4BBB-8ABC-B15EF5F4B733

Original Advisory: MS10-098
http://www.microsoft.com/technet/security/bulletin/ms10-098.mspx

AutoPatch "D" Issue

Kaspersky Labs released the Update on 2nd December 2010, it was created some issues in client applications, such as Quarantine the Application exe's. Ex: Developing applications, Outlook plug-in, Lotus Notes, Third party Applications etc.

Problem: clients cannot access their applications.
Solution: Temporarily Disable the "Proactive Defense"
Solution Provide: Not Decided; Temp Solution: 03/12/2010

Priority Value: Very High

Thank You.

Kaspersky Open Space Security

Kaspersky Open Space Security provides your wide corporate infrastructure with world-class anti-malware protection in a single, integrated suite of applications that work seamlessly across all platforms. Every workstation, laptop, file server, mail server, Internet gateway or smartphone is fully protected, giving you complete confidence that the network is secure, whether you are working in the office, remotely or at home. This is the High Value approach from Kaspersky Lab.

Why Kaspersky Open Space Security?

Our new and refreshed business IT security products far exceed industry standards and are suitable for all network nodes, yet make minimal demands on your network’s valuable resources. The optimized security systems are easy to deploy, administer and maintain, increasing your levels of security whilst significantly decreasing your total cost of protection. As a result, your business benefits from:

• Out-of-the box protection against all types of Internet threats
• Rapid response to new malware attacks
• Optimized and cost-effective security, licensing and purchasing that maximizes business productivity for less investment
• Centralized management
• Customer-focused, global and local technical support expertise

Kaspersky Work Space Security

Kaspersky Business Space Security

Kaspersky Enterprise Space Security

Kaspersky Total Space Security

 

 

 

 

Dear Fans

Thank you for Visit to our Kaspersky Blog...


Welcome to Green Zone...

Here we are planning to do something different way to supports to our valued fans by using this blog.Today Onwards, all of you can post own Situational issues to this blog, we always welcome to your suggestions and feedbacks.

Thank you.