Re: Antivirus override
From: MowGreen (mowgreen_at_nowandzen.com)
Date: 09/26/05
- Next message: David H. Lipman: "Re: Antivirus override"
- Previous message: Chris Cowles: "Re: control program access by schedule"
- In reply to: David H. Lipman: "Re: Antivirus override"
- Next in thread: David H. Lipman: "Re: Antivirus override"
- Reply: David H. Lipman: "Re: Antivirus override"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 25 Sep 2005 18:38:28 -0700
David H. Lipman wrote:
> From: "MowGreen" <mowgreen@nowandzen.com>
>
> | David,
> |
> | Are you certain that's not a malware value ? AntiVirusOverride!=dword:0
> | with the exclamation point isn't in any DWord names on any of my XP
> | systems.
> | Without the exclamation point, it is.
> |
> | MowGreen [MVP 2003-2005]
> | ===============
> | * 343 * FDNY
> | Never Forgotten
> | ===============
> |
>
> Interesting point.
>
> However if if the OS does not read the "AntiVirusOverride!" but reads "AntiVirusOverride"
> then it would be ignored by the OS and I can't see how malware could use this altered value
> to change the Security Center.
>
> Am I certain ? -- No.
>
> Nor could I find further info in the Knowledge Base or TechNet.
>
Perhaps someone from MS will see this thread and give us privy to such
knowledge ?
I'll ask around in the meantime, David.
MowGreen [MVP 2003-2005]
===============
*-343-* FDNY
Never Forgotten
===============
- Next message: David H. Lipman: "Re: Antivirus override"
- Previous message: Chris Cowles: "Re: control program access by schedule"
- In reply to: David H. Lipman: "Re: Antivirus override"
- Next in thread: David H. Lipman: "Re: Antivirus override"
- Reply: David H. Lipman: "Re: Antivirus override"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
