Support

Support for business applications

Kaspersky Endpoint Security 11 for Windows
Kaspersky Endpoint Security 11 for Windows
Knowledge Base Online Help
FAQ System requirements Download Buy Renew Forum Contact support Recovery tools Product videos
Нет результатов
Нет результатов
 
 

Why Kaspersky Endpoint Security for Windows detects a PortScan attack despite blocking all network activity

Latest update: October 17, 2023 ID: 15857
 
 
 
 
Show applications and versions that this article concerns
  • Kaspersky Endpoint Security 12.0.0 for Windows (version 12.0.0.465)
  • Kaspersky Endpoint Security 11.11.0 for Windows (version 11.11.0.452)
  • Kaspersky Endpoint Security 11.10.0 for Windows (version 11.10.0.399)
  • Kaspersky Endpoint Security 11.9.0 for Windows (version 11.9.0.351)
  • Kaspersky Endpoint Security 11.8.0 for Windows (version 11.8.0.384)
  • Kaspersky Endpoint Security 11.7.0 for Windows (version 11.7.0.669)
  • Kaspersky Endpoint Security 11.6.0 for Windows (version 11.6.0.394)
 
 
 
 

After applying the Firewall rule in Kaspersky Endpoint Security for Windows that blocks all network activity, the Network Threat Protection component may still detect a PortScan attack.

This can happen because Network Threat Protection reacts before the Firewall component, so the Administrator can find out about suspicious activity on the network anyway.

 
 
 
 
 
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Kaspersky Endpoint Security for Windows: Detection of advanced threats
Control systems which prevent damage from the sensitive data theft. Management from a single console. Buy as part of Endpoint Security for Business Advanced.
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.