vinifera Posted June 5, 2022 Share Posted June 5, 2022 so recently some browsers and antiviruses started to sniff if user has SHA-2 patch installed but what values and where do they look for this ? is this a specific registry entry or what ? Link to comment Share on other sites More sharing options...
25495k Posted June 5, 2022 Share Posted June 5, 2022 they check if the SHA-2 update is installed on your windows 7 machine Link to comment Share on other sites More sharing options...
vinifera Posted June 5, 2022 Author Share Posted June 5, 2022 (edited) ... thats not what i asked Edited June 5, 2022 by vinifera Link to comment Share on other sites More sharing options...
Tripredacus Posted June 6, 2022 Share Posted June 6, 2022 As in, is it looking for a file, a file attribute (version) or at a registry key? It may be annoying due to how heavy a browser is, but the first thing I would attempt is to run a procmon trace on the browser when it is opened. I am presuming it is when opening the browser that it does the check, but if you know it does it at some other time, you can just limit the trace to that instead. Link to comment Share on other sites More sharing options...
TSNH Posted June 6, 2022 Share Posted June 6, 2022 (edited) I think they may use registry keys in "HKLM\Software\Microsoft\Windows\CurrentVersion\Component Based Servicing", however I've never tested this. Edited June 6, 2022 by TSNH Link to comment Share on other sites More sharing options...
vinifera Posted June 6, 2022 Author Share Posted June 6, 2022 i thought that too but update itself doesn't give you a specific component, it patches alot of things therefore you get ALOT of reg keys Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now