Reply to thread

Message

<blockquote data-quote="AtlBo" data-source="post: 716096" data-attributes="member: 32547">I don&#039;t see why NVT should be concerned about agendas with this.&nbsp; I mean devs have already made their claim with OS Armor in the most important senses.&nbsp; Looks to me like NVT can do as they wish with the concept at this point.&nbsp; Also, with the software already on client machines, why would anyone want to get in the way of a good thing?&nbsp; That wouldn&#039;t make sense.&nbsp; Plenty of excellent ideas to go around <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile&nbsp; &nbsp; :)" loading="lazy" data-shortname=":)" />...Questions for @NVT.&nbsp; What about Dismhost.exe and Dism generally?&nbsp; I watched a video on how Dismhost is used to create and actually deploy images.&nbsp; It can also create and grab images, so that&#039;s why I ask if it&#039;s a security risk on any level.&nbsp; It runs every time Comodo Programs Manager runs, I know that much and I believe it&#039;s associated with sfc.&nbsp; Here is the video:[MEDIA=youtube]gI6qa-LIOTk[/MEDIA]<a href="https://www.youtube.com/watch?v=gI6qa-LIOTk" target="_blank">https://www.youtube.com/watch?v=gI6qa-LIOTk</a>Also, noticed a process called UIODetect.exe when I installed a GitHub app called IP Monitor that can monitor the actual IP for the machine registered with the ISP/globally.&nbsp; It can detect a change.&nbsp; The Windows UIODetect.exe process is called Interactive services detection.&nbsp; Don&#039;t know if it could be abused, but in 17 years since starting with XP, I don&#039;t recall seeing this before.&nbsp; I think also associated with this same app I installed is mqsvc.exe (message queuing service).&nbsp; Stupid javascript IP app I wanted to take a look at lol and Java gets blamed for all its net activities.There sure are alot of tools in Windows with the potential to be used via c-l or powershell.&nbsp; Seems like a new one comes along for me more and more oftenly these days.</blockquote>

[QUOTE="AtlBo, post: 716096, member: 32547"] I don't see why NVT should be concerned about agendas with this. I mean devs have already made their claim with OS Armor in the most important senses. Looks to me like NVT can do as they wish with the concept at this point. Also, with the software already on client machines, why would anyone want to get in the way of a good thing? That wouldn't make sense. Plenty of excellent ideas to go around :)... Questions for @NVT. What about Dismhost.exe and Dism generally? I watched a video on how Dismhost is used to create and actually deploy images. It can also create and grab images, so that's why I ask if it's a security risk on any level. It runs every time Comodo Programs Manager runs, I know that much and I believe it's associated with sfc. Here is the video: [MEDIA=youtube]gI6qa-LIOTk[/MEDIA] [URL='https://www.youtube.com/watch?v=gI6qa-LIOTk'][/URL] Also, noticed a process called UIODetect.exe when I installed a GitHub app called IP Monitor that can monitor the actual IP for the machine registered with the ISP/globally. It can detect a change. The Windows UIODetect.exe process is called Interactive services detection. Don't know if it could be abused, but in 17 years since starting with XP, I don't recall seeing this before. I think also associated with this same app I installed is mqsvc.exe (message queuing service). Stupid javascript IP app I wanted to take a look at lol and Java gets blamed for all its net activities. There sure are alot of tools in Windows with the potential to be used via c-l or powershell. Seems like a new one comes along for me more and more oftenly these days. [/QUOTE]

Verification