The computer and software security thread

Technology, computers, internet, websites, mobiles, cameras, audio and video.
SPONSORS: Hua Hin Web Design
Post Reply
User avatar
Posts: 71
Joined: Sun Oct 26, 2014 5:17 pm

Re: The computer and software security thread

Post by laser » Thu Jan 18, 2018 5:38 pm

Steve's utility is a convenient alternative to a PowerShell script given by Microsoft earlier to the IT crowd.. It is looking for the subkey "FeatureSettingsOverride" under the Registry key
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management].
That key is created by a successful Win update. One also can check its presence 'manually' in Regedit, without any utility and running scripts. If it's not there then the OS is not patched.

The utility provides easy button clicks to enable/disable the 'protections' by changing flag values in that subkey. But only can and will do that if the update was installed, else sensibly disables/greyes the buttons.

Now, why would be an update ineffective? MS made this announcement: ... s-software
Antimalware tend to mess with the kernel, hence any OS update can result in BSOD errors on millions of boxes. To prevent problems, users can try hard but MS only will update Win if found the specific Registry key shown in the article. That key shall be created by antimalware vendors (using an update) confirming that their software can handle the changes. Users also can create the key manually but then should uninstall the antimalware before installing the MS update.

Installing the MS updates only deals with the OS - Windows. The processor microcode fixes will be done via BIOS/UEFI flashing, if and when vendors provide patches.

Posts: 2686
Joined: Sun Mar 21, 2010 3:11 pm

Re: The computer and software security thread

Post by Homer » Thu Jan 18, 2018 7:22 pm

At times like this, it's good to know this guy is on the job:

Post Reply

Who is online

Users browsing this forum: No registered users and 3 guests