This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Registry values being detected as viruses??

So just over the weekend, i started getting emails. The group policy that puts this setting has been in place for years. why is it just getting flagged now? These are registry keys that control windows functions, but sophos thinks they are keygens? what??? can you explain at all. thanks

-----

Registry value "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA" belongs to virus/spyware 'Mal/KeyGen-M'.

Registry value "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin" belongs to virus/spyware 'Mal/KeyGen-M'.

Registry value "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA" belongs to virus/spyware 'Mal/KeyGen-M'.

Registry value "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin" belongs to virus/spyware 'Mal/KeyGen-M'.

Virus/spyware 'Mal/KeyGen-M' has been removed.

This thread was automatically locked due to age.

Parents

0 jak over 11 years ago

Hi,
Those are just a result of the setings being restored to system defaults as part of cleanup:
http://www.sophos.com/en-us/support/knowledgebase/118583.aspx
Regards,
Jak
:49432
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 jak over 11 years ago

Hi,
Those are just a result of the setings being restored to system defaults as part of cleanup:
http://www.sophos.com/en-us/support/knowledgebase/118583.aspx
Regards,
Jak
:49432
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data