Kaspersky blocks all browsers with a certificate. Your connection is not secure - how to fix the error

To protect your Internet connection, use Kaspersky Secure Connection. Kaspersky Secure Connection is installed automatically along with Kaspersky Internet Security 2017.

When you connect to Wi-Fi, Kaspersky Secure Connection checks the network, and if the network is unsecure, it prompts you to enable a secure connection. Click Enable protection For safe work online.


Kaspersky Secure Connection will establish a secure connection and display a notification.


Kaspersky Secure Connection hides your IP address and location, and transmits all data over an encrypted channel. Use Kaspersky Secure Connection when shopping online or chatting on social networks to keep your personal and payment information safe.

How to activate Secure Connection

Default Secure connection operates in limited mode. In limited mode, you have access to 200 MB of protected traffic per day. When the limit is reached, a message indicating that the limit has been exceeded appears in the Kaspersky Secure Connection program window.

To remove the restriction, purchase a Kaspersky Secure Connection license through the online store in My Kaspersky and activate the program.

Why Secure Connection doesn't work

If Secure connection does not work, the message “Internet connection protection is not available” appears in the Kaspersky Secure Connection program window.


Kaspersky Secure Connection may not work for the following reasons:

  • There is no internet connection.
  • The firewall is enabled on the computer.
  • A third party program has already established a VPN connection.
  • The proxy server settings do not allow you to establish a secure connection.
  • The Internet provider has prohibited the establishment of a secure connection.
  • Failed to retrieve data from infrastructure.

Limitations of using Secure Connection

Secure connection automatically starts when the setting is enabled when switching to HTTP versions of dating sites, social networks, email, financial and booking sites.

To make sure that https traffic is not re-encrypted antivirus programs or proxy, use one of the methods below:

1. Go to the diagnostics portal, to the “Connection check” section (https://help.kontur.ru/check). If there is no checkmark in one of the lines, and the value in the “Certificate” column is highlighted in red, then the certificate has been replaced. The name of the program replacing the certificate is indicated in the “Publisher” column.

2. Go to the website https://auth.kontur.ru, left-click on the “lock” icon (near the address bar) or right click Click on the page > Properties > Certificates and check which server certificate is offered. The certificate should be like this:

  • Issued to: *.kontur.ru
  • Issued by: RapidSSL SHA256 CA
  • Serial number: 48 61 59 21 53 c2 cf cd e2 0c f8 ec 70 a1 9d 67

or like this:

  • Issued to: *.kontur.ru
  • Issued by: GlobalSign Domain Validation CA – SHA256 – G2
  • Serial number: 13 0b ab d5 ec ff a6 f0 71 ae 5a 36

If the certificate is different, then https traffic is re-encrypted. The name of the program replacing the certificate is indicated in the “Issued by” line.

Determine which program issued the certificate and configure it so that it does not interfere with the operation of our services. Instructions for setting up programs that can affect certificate substitution are presented below.

Avast Antivirus

Disable active protection for https sites. To do this, right-click on the Avast icon, which is located in the notification area, and select “Open Avast user interface.”

Go to Menu > Settings.

Select Protection > Core Protection > Web Protection.

Uncheck the following items:

  • Enable HTTPS scanning;
  • Enable script scanning.

Antivirus ESET Internet Security

Disable https protocol filtering in ESET Internet Security. To do this, open ESET > Settings > Advanced options.

Go to the Internet section and Email> Internet access protection > Web protocols > Module settings > uncheck the “Enable HTTPS protocol checking” checkbox.

Antivirus Kaspersky Internet Security

Depending on the version of Kaspersky, some interface elements may differ.

1. Disable add-ons Kaspersky Internet Security. To do this in Internet Explorer Select the Tools tab > Configure Add-ons.

In the Display section, select All Add-ons. Find the Kaspersky Protection and Kaspersky Protection Toolbar add-ons in the list, right-click on the line and select “Disable”.

2. Disable the injection of Kaspersky scripts and scanning of secure connections. To do this, open Kaspersky Internet Security > Settings > Advanced > Network > Inject script into traffic to interact with web pages.

3. Open Kaspersky Internet Security > Settings > Protection > Web Anti-Virus (or Web Protection).

Open Advanced settings and disable “Automatically activate the Kaspersky Protection extension in browsers.”

4. Disable HTTPS connection checking. For this Open Kaspersky Internet Security > Settings > Extra options> Network. In the block " Checking secure connections » disable the option " Check secure connections » .

Dr.Web Antivirus

Disable HTTPS connection checking. To do this, open Dr.Web > Settings > General > Network > Secure connections. Set the switch " Scan encrypted traffic" to the "Off" position. » .

AdGuard program

Disable HTTPS connection checking. If you have the AdGuard add-on installed in your browser, you do not need to disable anything for it. If it is not installed, then open the AdGuard program » > Settings > General settings> uncheck the box "Filter HTTPS protocol».

AVG Antivirus

Disable HTTPS connection checking. ​To do this, open AVG Antivirus > Settings > Components > Web protection or Online Shield > Settings > Uncheck the “Enable HTTPS scanning” checkbox.

360 Total Security

Click Protect On. > Settings.

Nowadays it is quite difficult to find a person who does not use the Internet.

Many users spend quite a lot of time in its open spaces. a large number of time. Therefore, it is in demand more than ever.

But what to do if all plans are disrupted by a suddenly appearing warning? your connection is not secure.

In this article we will look at why this error in different browsers and what to do if it appears.

Contents:

First of all, let's look at the occurrence of this problem when using.

The meaning of such a message

Often this message occurs when visiting secure sites. Such sites, when interacting with FireFox browser use a special encryption method - #encryption. This is done in order to prevent attackers from viewing the transmitted information.

To understand that you are visiting exactly such a site, pay attention to the line displaying the address of the page you are visiting. In the status line ( #status_Bar) secure site will display a closed padlock icon. It will also be displayed in address bar (#location_bar).

In addition, the browser will display and Domain name site in the status bar, highlighted in yellow. This is necessary to ensure that the user cannot be misled for the purpose.

Such sites can contain not only protected information, but also unprotected information, to which everyone has free access.

If the site's information is unprotected, FireFox will display a padlock icon with a slash through it in the status bar. There will also be no domain name in the address bar and status bar. If you pay attention to such information, you will immediately be able to understand that the site you are visiting is partially protected.

To solve this problem, you will need to reinstall the antivirus or disable the interception of secure connections in its settings.

For example, if you use system protection, open “Settings” and go to the tab "Active protection".

There you will need to click on the “Configure” button located next to the web shield.

In the window that opens, uncheck the selection box from the line "Enable HTTPS scanning". Finally, you need to confirm the changes made in the settings by clicking on the “Ok” button.

If you are using a product such as - you will need to do the following:

  • open a window with antivirus settings;
  • in the lower left part of this window, click on the “Settings” button;
  • use the point "Additionally" to go to the “Network” tab;
  • deselect menu bar "Scan encrypted connections";
  • check the box next to the parameter "Do not scan encrypted connections";
  • Confirm the changes by clicking the “Ok” button.

It is not difficult to find the necessary information for other antivirus products on the Internet.

Your browser may display a lack of trust in the certificate not only on little-known sites, but also on such giants as Google. Most often, owners may encounter this. This is due to the fact that Microsoft Family Settings, located in user accounts, are activated.

The next step is to remove all existing family members using the function "Remove from family" on the advanced options tab.

Finally, you should leave the family yourself, using the option of the same name.

Fourth mistake

It consists in the lack of trust in the certificate, since the latter is self-signed.

These types of certificates are designed to protect against eavesdropping, but do not provide any information about the recipient.

Most often, non-public sites use this, so you can easily bypass this warning.

Fifth mistake

The problem is that the certificate provided to you belongs to a completely different Internet resource.

This problem occurs quite often and primarily due to the fact that the issued certificate is valid for one part of the site being visited.

For example, you visited https://example.com and received a warning about a similar error, and a certificate was issued for https:/www example.com. If you go to the latter, no warnings will appear.

Certificate store

Such messages may also occur due to file corruption. cert9.db, which stores all your certificates.

In this case, without opening FireFox, delete the above file so that it can be restored the next time you start it.

To do this, follow these steps:

  • open the menu and select “Help”;
  • go to the tab "Information for problem solving";
  • open the profile folder located in the section "Application Details";
  • open the menu again and select “Exit”;
  • select the file db and remove it;
  • restart your browser.

When is it possible to ignore warnings?

This option is suitable if you are confident in the reliability of the resource.

However, even in this case, you are not immune from eavesdropping and interception of confidential data by third parties.

If you still decide to ignore the warning that appears, follow a few simple steps.

On a page with a similar warning, use the button "Additionally".

If your browser connects to a site with weak encryption, load it using an outdated security system. You will be given the opportunity to download this. In the case of a resource whose certificate is unverified, add it to the exceptions.

Possibility of error reporting

There are quite a large number of sites on the Internet that make it possible to report an error to your center.

To do this, check the box on the issue page at the bottom, opposite the line “Report errors like this to help Mozilla and block malicious sites.”

A warning about an unsecured connection appears in the browserChrome

Problems with certificates of certain sites opened by the Chrome browser are identical to those with FireFox and can be solved using similar methods.

The reasons for their occurrence also include:

In the first case, to resolve the error, you will need to adjust the system date and time so that they match those installed on the server. To do this, open the time and date settings tab and adjust them.

Warnings due to an unverified or outdated certificate most often occur when you try to log into your personal account on a particular resource.

To get around this, click on the tab in the error display window "Additionally", and then use the button "Go to site".

Blocking extensions are largely related to the antivirus program installed on the computer.

In order to correct this situation you will need to open Chrome browser and go to the installed extensions tab.

From the list of available ones, select your modules and uncheck them.

After that, re-open your browser and try to access the site.

A similar error may also occur due to a malfunction in Chrome. A simple reinstallation of the browser can correct the situation.

To remove the faulty version, open the window "Programs and Features", select a name installed browser and click the "Delete" button.

After the application is removed, reboot your computer and install it again Google Chrome.

In most cases, the warning about an unsecured connection stops bothering you.

Conclusion

This article has come to an end, in which we examined options for the appearance of a warning about the presence of an unsecured connection.

We hope that the available information will be useful to you and will help you solve this error.

Your connection is not secure, how to fix it:

Kaspersky PURE 3.0 verifies data transmitted over the SSL protocol.
To authenticate web servers and secure the SSL communication channel between the web server and the user's computer Kaspersky PURE 3.0 uses self-signed electronic certificate. If, when visiting a possibly infected web resource, its certificate is identified by the program as untrusted, then Kaspersky PURE 3.0 will either close the connection or offer to accept/reject the certificate.
Certificate Kaspersky PURE 3.0 automatically installed in browsers Internet Explorer, Mozilla Firefox And Google Chrome. For browser Opera The certificate must be installed manually.

1. How to enable/disable scanning of secure connections

By default, secure connections are checked in Kaspersky PURE 3.0 included. You can enable/disable scanning by following these steps:

  1. Settings.
  1. In the upper right part of the window Settings go to the tab Additionally.
  2. On the left side of the window Settings select item Net.
  3. On the right side of the window Settings in the block do the following:
    • To enable scanning of secure connections, select the checkbox.
    • To disable scanning of secure connections, clear the checkbox Check secure connections.
  4. In the window Settings click on the button OK.

2. How to configure settings for checking secure connections

To configure settings for checking secure connections, follow these steps:

  1. In the upper right part of the main window, click on the link Settings.

  1. In the upper right part of the window Settings go to the tab Additionally.
  2. On the left side of the window Settings select item Net.
  3. On the right side of the window Settings in the block Checking secure connections select the action that will be performed when checking a secure connection:
    • Always check secure connections– when connecting your computer to the web server, the program, depending on the installed protection mode, will do the following:
      • When working in interactive mode, protection will notify you that an untrusted certificate has been detected and will offer to accept/reject the certificate.
      • When working in automatic mode the connection will be terminated without notice.
    • Check secure connections if enabled Parental control – when connecting your computer to a web server, the program will check for secure connections if Parental Control is enabled.

  1. To quickly load web pages and transfer data over a secure connection, some web servers (for example, Google) use the SPDY protocol instead of the HTTP protocol. If a secure connection is established using the SPDY protocol, then the data transmitted from the web server is not checked using heuristic analysis. In this case, it is likely that possibly infected programs will be downloaded.
    To have the program check the data transmitted from the web server using heuristic analysis and control it, select the checkbox Use HTTP protocol instead of SPDY protocol.
  2. In the window Settings click on the button OK.

  1. Close the main program window.

3. How to install a certificate to verify secure connections in the Opera browser

To install a certificate Kaspersky Lab in the browser Opera, follow these steps:

Step 1. Save the certificate on your computer

  1. Close all browser windows.
  2. In the upper right part of the main window, click on the link Settings.

  1. In the upper right part of the window Settings go to the tab Additionally.
  2. On the left side of the window Settings select item Net.
  3. On the right side of the window Settings in the block Checking secure connections click on the button Install certificate.

  1. In the window Installing a certificate click on the button Further.

  1. In the window Installing a certificate select item Install certificate manually, following the instructions.
  2. Click on the button Further.

  1. In the window Installing a certificate click on the button Save certificate.

  1. In the window Save certificate save the certificate to Desktop.

  1. In the window Installing a certificate click on the button Cancel.

  1. In the window Settings click on the button OK.
  2. Close the main program window.

Step 2. Install the certificate in the browser Opera

  1. Open your browser Opera.
  2. In the left top corner browser window click on the button Opera and select from the drop-down menu Settings –> General Settings.

  1. In the window Settings go to the tab Advanced.
  2. On the left side of the window, select Safety.
  3. Certificate management.

  1. In the window Certificate management go to the tab Publishers.
  2. On the right side of the window Certificate management click on the button Import.

  1. In the window Importing a certificate Locate the previously saved certificate.
  2. Click on the button Open.

  1. In the window Installing a certificate click on the button Install.

  1. In the window Installing a certificate click on the button OK.

  1. If you don't want the program to notify you when you use a certificate when you visit a website Kaspersky Lab, then do the following:
    • In the window Certificate management go to the tab Publishers.
    • On the left side of the window, select Kaspersky Anti-Virus Personal Root Certificate.
    • On the right side of the window, click the button View.

  • In the window Certificate uncheck the box Warn before using this certificate.
  • In the window Certificate click on the button OK.

  1. In the window Certificate management click on the button OK.
  2. In the window Settings click on the button OK.

If, when trying to establish a secure connection to a website via https protocol:// (for example, https://security.webmoney.ru) in the window Google browser Chrome you see the following picture, then you need to install root certificate Kaspersky Anti-Virus Personal Root Certificate.

To do this, find the certificate on your computer along the path * r, and then in the menu Settings -> Additional settings , In chapter HTTPS/SSL click on the button "Configure certificates" .
If you don’t see such a folder, turn on its display by following instructions.
* Note! The path may differ depending on the version of Kaspersky Lab antivirus installed on you.
If the path is different, it is better to install the latest version of the antivirus. There is a high probability that after this the problem will disappear on its own, and all subsequent actions will not need to be performed.
Download links latest versions Kaspersky Lab products:

** If you can’t get to the certificate through Explorer, turn on the display hidden files and folders according to instructions from articles.

To install the certificate, go to the tab and press the button "Import…",


To select a certificate file, click the button "Review..".

Locate the certificate file on your hard drive along the path c:\ProgramData\Kaspersky Lab\AVP17.0.0\Data\Cert\(fake)Kaspersky Anti-Virus Personal Root Certificate.ce r and press the button "Open" and then the button "Next >".

Please note that the default certificate store suggested must be the same as where the root certificate should be placed. If the import was initiated from another section of the certificate store, then you need to select the store using the “Browse…” button "Trusted Root Certification Authorities" and press the button "Next >".

Then you should confirm the completion of the wizard by clicking the button "Ready",

next button "Yes", and finally the button "OK".


To control the correctness of the operations performed in the window Certificates open the tab Trusted Root Certification Authorities and at the end of the list, find the root certificate you installed and open the certificate information window by clicking the button "View". Make sure the certificate is valid.

Close all windows, restart your browser and check the validity of the certificate by establishing a secure connection.