Why can you end the Nod32 process?

[bbplayer]

Shouldnt this be a no no? I can control alt delete and just end the process for nod32... Shouldnt there be no access to actually closing out the processes? I imagine that might make it easy for a new virus to simply disable Nod32?

Hello !
NOD32 consists of two components -> User Interface and Protection service
User interface is nodkui.exe , the Protection service is nodkrn.exe . The interface is the Control Center which you see on your system tray . From the Control Center you just say what settings NOD to use , the protection is working in the background without you noticing it

NOD32 works as a service in Windows . As soon as a Windows service is disabled , Windows starts it again which means that if you disable NOD32's protection nodkrn.exe , it starts again as soon as possible you remain protected

Quote:

Originally Posted by bbplayer

I imagine that might make it easy for a new virus to simply disable Nod32?

If you disable the real time protection AMON it would be user's fault because of that action . Anyway , if you ask if virus can disable NOD32 ... less malware try to do it , however they wouldn't do it the way you try (via Win Explorer) . There are/were some viruses/malware trying to disable NOD32 however they are all detected proactively so you are protected

[Steph11111]

That's right, I can stop nod32 from the task manager.(if I disable the process guard protection)
Nod do not ask for any password.

EDIT: I did not read your answer HiTech_boy, but

Quote:

they are all detected proactively so you are protected
Reply With Quote

Is it really enough?

[Supersnake]

Quote:

Originally Posted by HiTech_boy

Hello !
NOD32 consists of two components -> User Interface and Protection service
User interface is nodkui.exe , the Protection service is nodkrn.exe .

A most minor correction to HiTech_boy's always invaluable information.
The service is nod32krn.exe

Quote:

Originally Posted by Steph11111

That's right, I can stop nod32 from the task manager.(if I disable the process guard protection)

I don't want to argue ,guys , I have done this numerous times including some minutes ago . It was disabled via the End Taks button and automatically re-enabled (nod32krn.exe started again) after no more than one-two seconds

Quote:

Originally Posted by Steph11111

EDIT: I did not read your answer HiTech_boy, but

Yes , it is . As you may have noticed , NOD32 service starts again if accidentically disabled . If some malware tries to disable it , it will not be able to because NOD32 will detect it and delete it long before it can even try to say "hi" . And yes , it is enough , in my opinion .

Something should be well-understood by people .
The human is the smartes creature on that Planet . If somebody really wants , they can do everything to destroy a program/operating system ,etc... NOD32 is well-protected against incidents (malware or human incidents) but if you try to intentially harm it, of course nothing will be able to stop you , at least you are the admin/Owner/ of that computer

Regards!

Quote:

Originally Posted by Supersnake

A most minor correction to HiTech_boy's always invaluable information.
The service is nod32krn.exe

Thanks !