vinifera Posted June 5, 2022 Posted June 5, 2022 so recently some browsers and antiviruses started to sniff if user has SHA-2 patch installed but what values and where do they look for this ? is this a specific registry entry or what ?
Guest Posted June 5, 2022 Posted June 5, 2022 they check if the SHA-2 update is installed on your windows 7 machine
vinifera Posted June 5, 2022 Author Posted June 5, 2022 (edited) ... thats not what i asked Edited June 5, 2022 by vinifera
Tripredacus Posted June 6, 2022 Posted June 6, 2022 As in, is it looking for a file, a file attribute (version) or at a registry key? It may be annoying due to how heavy a browser is, but the first thing I would attempt is to run a procmon trace on the browser when it is opened. I am presuming it is when opening the browser that it does the check, but if you know it does it at some other time, you can just limit the trace to that instead.
TSNH Posted June 6, 2022 Posted June 6, 2022 (edited) I think they may use registry keys in "HKLM\Software\Microsoft\Windows\CurrentVersion\Component Based Servicing", however I've never tested this. Edited June 6, 2022 by TSNH
vinifera Posted June 6, 2022 Author Posted June 6, 2022 i thought that too but update itself doesn't give you a specific component, it patches alot of things therefore you get ALOT of reg keys
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now