* Home Help Search Login Register  

Welcome, Guest. Please login or register.
August 30, 2008, 04:37:58 AM

Login with username, password and session length

187261 Posts
21666 Topics
52491 Members
Latest Member: griffitthm

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Desktop Security Products
| |-+  Comodo Firewall
| | |-+  Feedback/Comments/Announcements/News
| | | |-+  Comodo processes not verified in Process Explorer		 « previous next »
Pages: [1] Go Down Print
Author Topic: Comodo processes not verified in Process Explorer  (Read 578 times)
jccm
Newbie
*
Offline Offline

Posts: 13
« on: July 23, 2008, 05:50:51 PM »
Why aren't Comodo processes (cfp.exe and cmdagent.exe) listed as "verified" in sysinternals' Process Explorer?  I have CFP 3.0.25.378 installed.  Thanks.
Logged
J2897
Comodo Family Member
***
Online Online

Posts: 71


Limited User Account Enforcer


WWW
« Reply #1 on: July 23, 2008, 06:27:36 PM »
Its Stealth!  Grin

 Jiggy
Logged
Video Tutorial
Vettetech
Computer Security Testing Group
Comodo's Hero
*****
Offline Offline

Posts: 4509
« Reply #2 on: July 23, 2008, 06:30:22 PM »
I am stumped but does it really matter.
Logged
jccm
Newbie
*
Offline Offline

Posts: 13
« Reply #3 on: July 24, 2008, 02:22:17 AM »
IMO it does matter because I should be able to see that the Comodo I am running (which is a major component of my security) has come from a reliable source and is indeed the real deal.
To give an example, a lot of malware try to disguise themselves as coming from MS, but to know for sure you need a digital signature.

Not trying to assign blame here, I just think that these two excellent pieces of software should be able to work together better.
« Last Edit: July 24, 2008, 02:24:14 AM by jccm » Logged
3xist
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 1769
« Reply #4 on: July 24, 2008, 02:34:32 AM »
Hi,

I have this problem too. Maybe it's worth asking Microsoft about it or the team that develops PE.

Cheers,
Josh
Logged
jccm
Newbie
*
Offline Offline

Posts: 13
« Reply #5 on: July 24, 2008, 02:55:08 AM »
So Comodo is digitally signed, but PE can't see it?  I'll ask on sysinternals.
Logged
3xist
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 1769
« Reply #6 on: July 24, 2008, 04:15:37 AM »
Prob a FP in the prog.

Quote from: jccm on July 24, 2008, 02:55:08 AM
I'll ask on sysinternals.

Good idea...

Cheers,
Josh
Logged
Ragwing
Guardian of the Light Master of the Force Invincible Legend Almighty
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 3038
« Reply #7 on: July 24, 2008, 07:07:08 AM »
Greetings!

CFP 3 is digitally signed. If you want to verify this, open CFP 3 and go to Defense+ -> Common Tasks -> My Trusted Software Vendors. Then click Add -> Read from a running process and choose cfp.exe. You should get an alert that Comodo CA Limited already is added.
I think Process Explorer can't read the digital signature because cfp.exe is compressed by PECompact 2.

Cheers,
Ragwing
Logged
"The closer you get to the light, the greater your shadow becomes"

XP SP3 2 GHz 768 MB RAM
5 services / 12 processes
jccm
Newbie
*
Offline Offline

Posts: 13
« Reply #8 on: July 24, 2008, 09:47:56 AM »
^
Good to know.  I'll bring it up over at their forum.  Thanks!

Wait, would that also explain why cmdagent is unverified?  It isn't packed.
« Last Edit: July 24, 2008, 10:22:04 AM by jccm » Logged
jccm
Newbie
*
Offline Offline

Posts: 13
« Reply #9 on: July 24, 2008, 11:11:43 AM »
Also why does the version tab in cfp.exe properties show 3.0.25.376 and "About" in the firewall shows 3.0.25.378?
Logged
jccm
Newbie
*
Offline Offline

Posts: 13
« Reply #10 on: July 24, 2008, 09:46:52 PM »
Comodo v3.00.0022.0222 is able to be verified by Process Explorer.
Logged
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Firewall
Page created in 0.18 seconds with 19 queries.
Powered by SMF 1.1.5 | SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks 		Design by 7dana.com