I use CIS 3.14 as my major internet security protection. Yesterday I install Geswall 2.9 to see if it can ehnace the defense of my laptop. So far the isolated mode for brsowers is OK and it work along with CIS 3.14. However, I still have some doubt if it really can stop keylogging and cross site scripting. However, I found that Gswerv.exe changed a few system program such as msdtc, explorer, spoolsv, userinit, mmc, regedit, regedt32, taskmgr, wmiprvse, dfrgntfs, alg, rundll32, hh, svhost, services, lsass, winlogon.
After I reboot my laptop I learned that Geswall seems started up before CIS 3.14. I setup the firewall security level to “Custom Policy Mode”. When I update the application database of Geswall, the CIS did not detected the conection established by Gswerv.exe.
Did anyone come accross the same situation? Can anyone comment on that the Gswerv.exe is a secure program ?