(imported topic written by user-removed00191)
registry key = enable
type = reg_dword
value = 0x00000001 = enable
value = 0x00000000 = disable
How to create fixlet to detect the reg_dword value then return the enable or disable status
(imported comment written by BenKus)
Hi nazimshah,
This should be simple relevance that looks up the value, it will look like this:
if (value “” of key “” of registry = 1) then “Enabled” else if (value “” of key “” of registry = 0) then “Disabled” else “Unknown”
Ben
(imported comment written by user-removed00191)
Hi Ben,
It work! Thanks
We are currently using Kaspersky Workstation. So far there is no direction to change (due to the fact that tke KAV IPS has been saving us quite a lot of time including from Conficker…!) So I was suddenly in charge of creating a custom analysis to monitor the importance aspect of the AV.
By the way, is it possible to get Kaspersky Workstation inside the Client Manager?
(imported comment written by BenKus)
Hi nazimshah,
I don’t believe we have any immediate plans to support Kapersky in our Client Manager for AntiVirus…
If you guys get a moment, you might want to take a look at our Trend Micro integration with the Core Protection Module, which includes AntiVirus, AntiMalware, AntiRootkit, and other useful technologies fully integrated into BigFix.
Ben
(imported comment written by kevin_tang91)
Hi nazimshah,
An accumulative analysis for Kaspersky…
for your reference
KevinT