Author Topic: Avast Termination (Read 12499 times)

Lisandro · « **Reply #15 on:** June 25, 2008, 02:08:39 AM »

Quote from: AverageJoe on June 24, 2008, 09:55:49 PM

Why is it not possible?

Quote from: igor on June 24, 2008, 04:13:05 PM

the driver can do anything; if it wants to kill Kaspersky, it can.

AverageJoe · « **Reply #16 on:** June 26, 2008, 04:08:55 PM »

Show me a video of a system where Kaspersky is installed before any malware is present on the machine and then show me the driver being able to terminate it...I highly doubt that will happen.

igor · « **Reply #17 on:** June 26, 2008, 05:19:26 PM »

Quote from: AverageJoe on June 24, 2008, 09:55:49 PM

It's not possible to fix now, I suppose that will have to stay vulnerable then...kind of worries me.
Why is it not possible?

Because it's not a "fix" - it means programming quite a lot of new features.
Building a reasonable HIPS is not something doable in a week (or month). So, it will take some time.

Quote from: AverageJoe on June 26, 2008, 04:08:55 PM

Show me a video of a system where Kaspersky is installed before any malware is present on the machine and then show me the driver being able to terminate it...I highly doubt that will happen.

You don't get it.
I am not going to create any videos or program any killing drivers; drivers in Windows run on ring-0 - they have all the access they want, so they can do anything the hardware supports. That's a fact, based on Windows / Intel architecture. So, no matter how much you doubt it, it is possible to do.

Vlk · « **Reply #18 on:** June 26, 2008, 08:20:18 PM »

AverageJoe, I can give you unlimited number of drivers that will kill Kaspersky cold, if you want.
Of course, provided you let the driver load.

Author Topic: Avast Termination (Read 12499 times)

Lisandro

Re: Avast Termination

AverageJoe

Re: Avast Termination

igor

Re: Avast Termination

Vlk

Re: Avast Termination