Welcome to the Comodo Forum
Welcome,
Guest
. Please
login
or
register
.
December 28, 2009, 07:11:54 AM
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
345662
Posts
38163
Topics
86700
Members
Latest Member:
dannykellyjr
more news...
Search:
Advanced search
|
Tag Cloud
Welcome to the Comodo Forum
Archive Boards
Comodo Firewall
Help for v3
Win32/AdInstaller
« previous
next »
Pages:
[
1
]
2
Author
Topic: Win32/AdInstaller (Read 3743 times)
KorruptedbyKomodo
Newbie
Offline
Posts: 3
Win32/AdInstaller
«
on:
July 19, 2008, 10:53:52 AM »
I've been using comodo since V2 on my old XP machine and I was using V3 on my newer Vista machine, The version I was using was 3.0.13.xxx and every couple of days I run the 'check for updates' function and for a few motnhs its seemed like there were no updates. I decided to visit the site and check for newer versions and have found now that its at version 3.0.25.378 which I decided to download.
I went to run the installer and of course was greeted by a message saying that Comodo firewall pro was already on my system, and did I want to uninstall it first. I uninstalled and resarted my machine and then ran the installer for the new version and was immediately Alerted by NOD32 that the firewall installer had attempted to install a variant of win32/adinstaller.
Here's the actual report from NOD32.......
"Time Module Object Name Threat Action User Information
19/07/2008 16:24:09 AMON file C:\Users\DRUIDS~1\AppData\Local\Temp\s1.tmp a variant of Win32/AdInstaller application quarantined - deleted DruidsSleep-PC\Druids Sleep Event occurred on a new file created by the application: C:\Users\Druids Sleep\Desktop\CFP_Setup_3.0.25.378_XP_Vista_x32.exe. The file was moved to quarantine. You may close this window. "
I deleted the installer and tried downloading it again, this time using the 'DownThemAll" extension in Firefox which has the ability to check the MD5/SHA1 checksums and the file I was downloading is totally genuine but still NOD32 throws up this warning each time I try installing the newer version of the firewall.
I ran full AV and Anti-spyware scans on my machine (with NOD32 and Spyware Doctor) and my machine is clean.
Is this why Comodo is free?? the software attempts to install adware without a user's knowledge or consent??
As I said the checksums match so the file hasn't been compromised, so what's going on?? I'm now forced to use windows firewall for the moment until I can find a decent, malware free, firewall for Vista
Logged
Vettetech
Guest
Re: Win32/AdInstaller
«
Reply #1 on:
July 19, 2008, 10:57:41 AM »
Its a false positive about the new toolbar included in Comodo. Ignore it.
Logged
KorruptedbyKomodo
Newbie
Offline
Posts: 3
Re: Win32/AdInstaller
«
Reply #2 on:
July 19, 2008, 11:04:36 AM »
Problem is I can't ignore it, NOD32 will NOT let me run the installer, it terminates the process as soon as the 'false' positive is thrown up.
Does comodo have an archive of older versions? I'd like the version I just removed back if possible, one without a toolbar.
thanks anyway
Logged
WaterWall
Guest
Re: Win32/AdInstaller
«
Reply #3 on:
July 19, 2008, 11:06:44 AM »
Disable NOD when installing Comodo
And when installing make sure you won't install the toolbar
Otherwise NOD will cry again
«
Last Edit: July 19, 2008, 11:08:22 AM by Commodus
»
Logged
KorruptedbyKomodo
Newbie
Offline
Posts: 3
Re: Win32/AdInstaller
«
Reply #4 on:
July 19, 2008, 11:08:34 AM »
Disable NOD?
not a chance!!
Logged
WaterWall
Guest
Re: Win32/AdInstaller
«
Reply #5 on:
July 19, 2008, 11:09:43 AM »
While installing ! Untick the install toolbar in Comodo and then NOD32 will be happy. Turn it on again after the installation
Logged
doktornotor
Comodo's Hero
Offline
Posts: 218
Re: Win32/AdInstaller
«
Reply #6 on:
July 19, 2008, 11:11:11 AM »
Quote from: KorruptedbyKomodo on July 19, 2008, 11:04:36 AM
Problem is I can't ignore it, NOD32 will NOT let me run the installer, it terminates the process as soon as the 'false' positive is thrown up.
Right-click the NOD32 in system tray, choose Advanced Setup -> Real-time file system protection -> click the Setup button next to ThreatSense engine parameter setup -> go to Options ->
uncheck
Potentially unwanted applications -> OK -> OK.
Logged
gibran
Average User
Comodo's Hero
Offline
Posts: 5063
A bad workman always blames his tools
Re: Win32/AdInstaller
«
Reply #7 on:
July 19, 2008, 11:12:52 AM »
Quote from: KorruptedbyKomodo on July 19, 2008, 10:53:52 AM
Is this why Comodo is free?? the software attempts to install adware without a user's knowledge or consent??
As I said the checksums match so the file hasn't been compromised, so what's going on?? I'm now forced to use windows firewall for the moment until I can find a decent, malware free, firewall for Vista
Please read
Comodo Forum policy
before continuing further.
As for CFP installation read
Analysis of COMODO toolbar by BOClean standards
I would like to suggest to
change your forum display name
as well.
As for Nod32 results like Vettetech said it can be considered a false positive.
Anyway please scan other toolbar installers (google, yahoo, ms live search, alexa) and please report back Nod32 results.
«
Last Edit: July 19, 2008, 11:16:10 AM by gibran
»
Logged
"In the beginning the Universe was created. This has made a lot of people very angry and has been widely regarded as a bad move."-
Douglas Adams
Vettetech
Guest
Re: Win32/AdInstaller
«
Reply #8 on:
July 19, 2008, 11:15:45 AM »
You are only disabling so you can install Comodo. Nothing is going to happen. As in matter of fact when you install things such as games they tell you to shut off any virus scanner. You do not have to install the toolbar. I also use NOD32.
Logged
Vettetech
Guest
Re: Win32/AdInstaller
«
Reply #9 on:
July 19, 2008, 11:19:09 AM »
Odd thing is I have NOD32 3.0.669.0 and it doesn't find Comodo toolbar to be an infecting unless you have Threat Sense set to find Potentially unsafe applications which can also lead to false positives. Uncheck that option if you have it checked off.
Logged
WaterWall
Guest
Re: Win32/AdInstaller
«
Reply #10 on:
July 19, 2008, 11:21:56 AM »
And I say leave the Potentially Unsafe apps ticked. I can save your butt. Just disable NOD while installing Comodo and do not choose to install Comodo Toolbar. After the install - turn NOD back on.
Logged
Matty_R
Global Moderator
Comodo's Hero
Offline
Posts: 1952
Nice to see you,to see you nice!
Re: Win32/AdInstaller
«
Reply #11 on:
July 19, 2008, 11:24:20 AM »
You can get previous versions
HERE
if you wish.
Logged
I HAD A DREAM
----But i can`t remember it......
gibran
Average User
Comodo's Hero
Offline
Posts: 5063
A bad workman always blames his tools
Re: Win32/AdInstaller
«
Reply #12 on:
July 19, 2008, 11:25:37 AM »
Quote from: Vettetech on July 19, 2008, 11:19:09 AM
Odd thing is I have NOD32 3.0.669.0 and it doesn't find Comodo toolbar to be an infecting unless you have Threat Sense set to find Potentially unsafe applications which can also lead to false positives. Uncheck that option if you have it checked off.
Can you check if this happens with other toolbars as well, if this does not happen I guess eset will have to fix this.
Logged
"In the beginning the Universe was created. This has made a lot of people very angry and has been widely regarded as a bad move."-
Douglas Adams
doktornotor
Comodo's Hero
Offline
Posts: 218
Re: Win32/AdInstaller
«
Reply #13 on:
July 19, 2008, 11:30:22 AM »
Quote from: Commodus on July 19, 2008, 11:21:56 AM
And I say leave the Potentially Unsafe apps ticked. I can save your butt. Just disable NOD while installing Comodo and do not choose to install Comodo Toolbar. After the install - turn NOD back on.
It actually detects the Ask.com toolbar and will wipe it... Already
been discussed months ago
. You can only re-enable it once you've uninstaled the toolbar via Add/Remove programs after you are finished w/ CPF install, so that only actually useful components will be left...
You'll get the same "trouble" with ZA Free, Spy Sweeper or whatever else that bundles this thing (even Nero 8.0) - and no, it's not a false positive, the Ask.com thing
IS
a potentially unwanted app.
Lessons learnt:
- Ask.com has been a horrible choice of an engine
- make a separate checkbox for the toolbar if you really insist on having it there, instead of pretending the functionality can't exist without it.
«
Last Edit: July 19, 2008, 11:32:36 AM by doktornotor
»
Logged
Vettetech
Guest
Re: Win32/AdInstaller
«
Reply #14 on:
July 19, 2008, 11:32:58 AM »
Quote from: Commodus on July 19, 2008, 11:21:56 AM
And I say leave the Potentially Unsafe apps ticked. I can save your butt. Just disable NOD while installing Comodo and do not choose to install Comodo Toolbar. After the install - turn NOD back on.
Not true cause its unticked by default. With it ticked it leads to more false positives. You still have plenty of great protection with it unticked. I have come across many false positives with it checked off. Thats why its unchecked by default. I should know cause I have NIOD32 on 2 pc's. Others arent using it. I know first hand.
«
Last Edit: July 19, 2008, 11:34:59 AM by Vettetech
»
Logged
Tags:
Pages:
[
1
]
2
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Want to help Comodo?
-----------------------------
=> Help Spread the Word - Official Comodo banners and logos
=> How can you help Comodo? (Please we do need you!)
===> Help spread the word! (Please read and help)
===> Comodo website issues for submitting website problems only
=> Please tell us your views and Vote here!
-----------------------------
General Category
-----------------------------
=> Melih's Corner - CEO Talk/Discussions/Blog
=> Comodo.TV - Our Internet Video Channel
===> Comodo.TV - News and Announcements
===> Comodo.TV - Program Lineup
===> Audience Feedback and Suggestions
=> Which Product do you want Comodo to develop next?
=> General Discussion (off topic) Anything and everything...
===> Member Confessions :-)
===> Funny Photos :-)
===> Cool Stuff
-----------------------------
Desktop Security Products
-----------------------------
=> Comodo Internet Security - CIS
===> Overview - CIS
===> Help - CIS
=====> Anti Virus Help
=====> Firewall Help
=====> Defense+ Help
=====> Install / Setup / Configuration Help
===> FAQ - CIS
=====> Anti Virus FAQ
=====> Firewall FAQ
=====> Defense+ FAQ
=====> Install / Setup / Configuration FAQ
===> Feedback/Comments/Announcements/News - CIS
===> Guides - CIS
=====> Anti Virus Guides
=====> Firewall Guides
=====> Defense+ Guides
=====> Install / Setup / Configuration Guides
=====> Video Guides
===> Wishlist - CIS
=====> Anti Virus Wishlist
=====> Firewall Wishlist
=====> Defense+ Wishlist
=====> GUI -Graphical User Interface - Wishlist
===> Bug Report - CIS
=====> Anti Virus Bugs
=====> Firewall Bugs
=====> Defense+ Bugs
=====> Other - General - GUI etc Bugs
=====> False Positive/Negative reporting - (Is this a malware that CIS has/not detected?)
===> Virus/Malware Removal Assistance
===> Leak Testing/Attacks/Vulnerability Research
=> Comodo Time Machine - CTM
===> Frequent Asked Questions (FAQ)
=> Comodo Dragon - CD
=> Comodo Instant Malware Analysis Online - CIMA
=> Comodo Disk Encryption - CDE
===> Overview - CDE
===> Help - CDE
===> FAQ - CDE
===> Feedback/Comments/Announcements/News - CDE
===> Wishlist - CDE
===> Beta Corner - CDE
===> BUG Reports - CDE
=> Comodo Secure Email - CSE
===> Frequently Asked Questions (FAQ)
===> Feedback/Comments/Announcements/News about CSE
===> Bug Reports
===> Help for Comodo SecureEmail
=> Comodo TrustConnect - Securing the Wireless world!
=> Comodo EasyVPN - CEVPN
===> Frequently Asked Questions (FAQ)
===> Feedback/Comments/Announcements/News about Comodo EasyVPN
===> Bug reports
===> Help for Comodo EasyVPN
=> HopSurf (Bringing Internet to you)
=> Comodo Online Backup - COB
=> Comodo Backup - CB
===> Comodo Backup - FAQ
===> Comodo Backup - Help
=> Verification Engine - CVE
=> Comodo Vulnerability Analyzer - CVA
=> Comodo AntiSpam - CAS
-----------------------------
Desktop Utilities
-----------------------------
=> Comodo System Cleaner - File/Registry/Privacy Cleaner
=> Live PC Support (geeks ready to help 24/7/365)
-----------------------------
Enterprise Security
-----------------------------
=> Comodo Endpoint Security Manager
-----------------------------
Compliance
-----------------------------
=> PCI DSS Compliance
-----------------------------
Learn about Computer Security and Interact with Security Experts
-----------------------------
=> Computer Firewalls
=> Anti Virus/Malware Products/Other Security products
=> Free Virus/Spyware/Trojan/Malware Removal by Comodo Experts
=> HIPS (Host Intrusion Prevention Systems)
=> Anti Phishing solutions
=> Digital Certificates, Encryption and Digital Signing
=> General Security Questions and Comments (not product related)
-----------------------------
Free Services for End Users
-----------------------------
=> UserTrust - First Independent Website Rating - Empowering our users!
=> Hacker Guardian
=> Trustfax (free Trial) (online faxing)
-----------------------------
Free Products
-----------------------------
=> Link to Free Comodo Products
-----------------------------
International Comodo Forums
-----------------------------
=> International Comodo Forums
===> 汉语语言, 漢語語言 / Chinese Simplified, Traditional
===> Nederlands / Dutch
===> Francais / French
===> Deutsch / German
===> ελληνικά / Greek
===> Magyar / Hungarian
===> Italiano / Italian
===> Nihongo / Japanese
===> Norsk / Norwegian
===> Polski / Polish
===> Português/Portuguese
===> По-русски / Russian
===> Espanol / Spanish
===> Svenska / Swedish
===> Turkce / Turkish
===> Українська / Ukrainian
===> tiếng Việt / Vietnamese
===> Slovenský / Slovak
-----------------------------
Digital Certificates
-----------------------------
=> Code Signing Certificate
=> Content Verification Certificate
=> Email Certificate
=> SSL Certificate
-----------------------------
Web Server Products
-----------------------------
=> Two Factor Authentication for Web Applications
=> Trustlogo
-----------------------------
Other
-----------------------------
=> Forum Policy Violation Board
-----------------------------
Archive Boards
-----------------------------
=> Comodo Diskshield
=> Comodo Firewall
===> Feedback/Comments/Announcements/News
===> Help for v3
===> Help for v2
===> Frequently Asked Questions (FAQ) for Comodo firewall
===> Comodo Firewall Translations
===> Bug Reports
=> Comodo Anti-Viruspyware (CAVS)
===> Help for Comodo AntiVirus
===> FAQ for Comodo Anti-ViruSpyware
===> Feedback/Comments/Announcements/News about CAVS
=> Launch Pad (Discontinued)
=> Trusttoolbar (Discontinued)
=> Comodo Meet (Web Conferencing Product) (Discontinued)
=> User Anywhere (Remote Access product) (Discontinued)
=> Trustix Enterprise Firewall
=> ZTL
=> Comodo BOClean Anti-Malware
===> Announcements
===> Comodo BOClean Anti-Malware FAQ
=> Comodo Memory Firewall(Buffer Overflow Protection)
===> Comodo Memory Firewall Beta Corner
===> Help
===> Frequently Asked Questions (Comodo Memory Firewall)
===> Feedback/Comments/Announcements/News
=> i-Vault
=> Safesurf
Page created in -0 seconds with 18 queries.
Powered by SMF 1.1.11
|
SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks
Design by
7dana.com