Dear EricJH - every mortal can do mistakes - even people from “Commodo” - “human factor”. I’m just trying to understand - which way be better - ignore the warnings and proceed with installation, or take care ? By the way - the installlation process looks strange itself - very suspicious that installation program choose directory such as “windows\temp”; directory like “C:\Users%user%\AppData\Temp” looks more common. So which I can do ?
First, make sure you download the installer directly from the Comodo website (or this forum). Do not download it from any other site.
Second, I am using Avast and SuperAntiSpyware, none of them flag the installer as suspicious, that is why I have switched from AVG 3 years ago (I just installed a portable version of CD 18.3 to test how it prevents theme changing).
Automatic updated automatically UNINSTALLED Dragon 18.2 18.1 while I was out at lunch, but did not reinstall anything.
Came back to a PC with no default browser set. Posting from Firefox.
Dragon desktop icon removed, nothing left in Program Files/Comodo/Dragon except:
avcodec-53.dll 05/05/2012 4:28am 1,075KB
dragon_updater.exe 04/13/2012 6:59am 400KB
restart_helper.exe 05/04/2012 4:28am 134KB
wow_helper.exe 05/05/2012 4:28am 72KB
system time is US MDT (UTC-0600)
Nice job, Comodo. NOT. A failed install should never delete the previous version.
PC did not reboot, no dragon_updater process running, no dragon_exe process running. I had left Dragon open when I went out to lunch.
Secure private residence, nobody was in here. Automatically updated CIS too, so nobody got in that way unless you let them in.
Don’t ask me to post more details on a bug report; you’ve inconvenienced me enough today by destroying my browser setup.
Windows 7 Professional 32bit
ok why is it dragon 18.3 instead of .2 which was in beta and is comodo cloud in .3 as it was in .2 beta
I just ran the installer and did not see reported it was using c:\windows\temp folder.
Can you check the digital signature of the installer and if it is intact? In case you want to do a hash check with the installer here is th SHA-1 hash: 99BE59C36DD055C66F3C95CCC3F4FBBFC5D83B1C .
At MarkXS. Usually when uninstalling the profile information does not get deleted. Try installing Dragon and it will pick up the profile information. This is only true if you did not do an installation for a portable version because then you would have had the profile information in the installation folder.
From the logs of Defense+, the dragon updater created the following file: C:\WINDOWS\Temp\ComodoLogsFolders\dragon_updater.exe.log
I’m not 100% sure, but I think it is usual when installing/updating Dragon.
At first - many thanks to all of yours, who trying to help me.
I was download the installer twice - first time from www.comodo.com and second using the built-into browser updater - it was created file in the “%user%\AppData\temp” directory. And, like Boris 3 wrote, installer make such log file and subdirectory in “windows\temp” directory.
Digital signatures in both files are:
<<serial number : 00 8c fa 72 2d 49 d8 e5 4e cc 8d 5f 5a 04 ac e9 a1
dave.barton@comodo.com
date : 4 мая 2012 г. 14:44:06
CN = COMODO Code Signing CA 2
O = COMODO CA Limited
L = Salford
S = Greater Manchester
C = GB
Open key:
30 82 01 0a 02 82 01 01 00 9e 94 68 97 85 b8 0e 68 34 7c 33 d4 5a 4f 56 e8 11 40 a6 42 10 15 61 3c 8a cf 0d 4b b3 5b 9a a0 fc 0c 90 61 35 6a d0 2b 59 a7 53 b0 49 a2 79 81 06 ef 4e 59 a2 e5 6f 64 d5 31 39 74 54 8d c5 13 a2 20 f3 47 63 cc fd 07 c8 04 e8 43 6e dc a7 b0 ae 6b a1 25 01 59 03 4c c1 84 6b d7 8a d7 0b d9 9b 8a 94 98 41 de d0 b0 7a 59 e7 02 a8 5b 6e be 54 c7 3c 6f 61 22 e2 3a 9c b0 cc 60 d0 84 d5 b8 3c 52 15 bb 70 e7 3f af 24 ed 2d bc 28 8e f2 6e 05 10 c1 95 02 62 39 81 6a e0 46 1a 39 da 45 e6 f8 02 ff 21 c0 9b 51 51 15 1c 80 02 0a 38 52 a5 6e 4a 5f 16 80 ca 5d 35 84 ff 0d 1b 99 d0 48 9c 3d ff 75 10 df 00 bc 85 96 9d e4 96 6f df 0d 03 41 07 ad aa d2 1d 09 f8 8c 4a d3 09 b4 a3 30 30 a5 5c 04 e0 0d a3 92 fa 43 77 38 5b ef 0a f8 77 65 a6 1e 96 ce 79 46 5a ce 67 8a f4 f2 cf 5c d1 02 03 01 00 01>>
and so on, many digits and keys.
So - what I can do the next ? Any suggestions ?
Did the signature check the signature is OK? See attached image for reference.
At Boris. I only did a superficial check of what the installer. That means I may have missed it when it only showed briefly.
At Dunstan. In case the installer was compromised then CIS would have alerted you with a D+ alert asking for Unlimited Access to your system. If you have not received such alert it was an uncompromised installer.
[attachment deleted by admin]
Theme should be changed 
i like the default theme but user should be able to change theme if they desire
Why make the user forbidden to change the theme? For marketing purposes?
Also I don’t like that Dragon is resetting the automatic update service even if I’ve turned it off. It should honor my choice to keep it off.
+1
Sloppy release implying sloppy software engineering practices, of the level zero “chaotic” non-replicable manner. . Auto-destroying install ;D in my case.
Theme change forbidden even though the Boss wants it left in - does Dragon not have a Product Manager or a Program Manager? Some middle-manager functionary can just say “lock in the them for branding awareness” without clearing it? It creates a negative brand awareness.
I’ve been recommending Dragon over Chrome and certainly over sketchy overhyped Iron, all over the web. Not any more. You blew a huge chunk of web cred today.
Yes a reinstall picked it all back up, and for that matter Google Sync would have recovered most everything for me. But it’s not my default browser anymore thanks to today’s debacle…
Fixed quote.Eric
Dear EricJH - signature check window from my files looks slight another, than yours - please take a look at the attachment.
[attachment deleted by admin]
1 step forward, 7 steps back Comodo. Sometimes it’s better not to change things, especially if those changes are just for the sake of saying “we made changes”… Dear old friend firefox, I’m back!
The image I attached is an older one which I have used on other occasion to help clarify.
If it says the signature is ok and the hash code is the same as the one I provided you then you can be sure you had the original installer. And as Boris stated that the Dragon installer uses the windows\temp folder.
Read what Melih said:
I am confident that means it will return.
Thanks for all.
The most differencies between our pictures is a fact, than last release was signed by a live man - Dave Barton.
And the last thing is - how to check the SHA-1 hash ? I was looking to any combinations of digits and keys in the file information - and did not find anything looking like “99BE59C36DD055C66F3C95CCC3F4FBBFC5D83B1C” ; so then - which string into digital signature information I must check ?
The picture I provided is older and was only for instruction. Dave Barton is a Comodo employee and the email address is at the Comodo domain. Only employees have an email address at the Comodo domain.
I use Hashtab to determine hash codes of files. With Hashtab you can also easily compare two hashcodes to see if files are the same or not.