I think this has already been asked, but I couldn’t find the topic / identify an appropriate workaround.
MY SETUP :
Windows XP SP3 32 bit English (installed to C: - FAT32)
CIS 3.5.57173.439 (installed to D: - FAT32)
Avast antivirus 4.8.1296, PeerGuardian2 (Others - but services / monitoring / shield / runtime protection disabled - Spybot S & D, Spywareblaster, Adware, Spware terminator, AVG Anti-Spyware 7.5, SUPERAntiSpyware, Advanced Spyware Remover)
CIS - CAVS3 anti-virus monitoring disabled
Due to slow OS startup times I recently set comodo services to start manually so that only when I click the shortcut will the app initialize and the service also startup in the background.
However am encountering an issue as a result of this.
“Am unable to run certain executables or access certain files (standard data) from executables”,
But once I start Comodo am able to successfully access.
CIS SETTINGS :
Am fairly sure this is because of my Defense settings (and not with the Firewall)
Defense+ Settings → General Settings → Safe
Defense+ Settings → General Settings → Block all the unknown requests if my application is closed - checked
Defense+ Settings → Monitor Settings → All checked.
Image Execution Control Settings → General → Normal (Have also tried this with Disabled)
Image Execution Control Settings → Files to Check → .exe
My Protected Files, Protected Registry Keys, Protected COM Interfaces, Trsusted Software Vendors and My Safe Files are left at default.
I set most of the executable’s which I access to “Custom Policy” and rarely Trusted or Isolated or Windows System Application
You wrote out your problem/question very nicely. It would be much better (and it would probably fix your problems) if you just let the Comodo services start up automatically, and set other programs to start manually.
Comodo’s services are usually very light, and you’d be much safer if you just let them start up automatically.
Thanks Kyle and Jeremy, appreciate your responses.
Only Avast and Comodo (CIS - Firewall & Defense) run real-time and all of the others Have all real-time and any scheduled functions disabled and are set to start up manually or have their service auto-start disabled.
To account for their existence on my system.
I use them mainly for Immunization, addition of hosts, blocking of COM objects (functions if available).
Additionally I execute them as monthly manual scan’s just to be sure.
Acknowledged that the cpu usage, commit and memory charge of CIS is low (one of the compelling reasons why I use it). And indeed I can allow the service to start automatically.
But being a comp. engg. and moreover from the programming background I relish on the fact that am aware of a fair bit of the intricacies of what happens within my system, hence the reason why I would like to get down to the bottom of what is wrong what the way I have setup CIS so that I can help the community have a better CIS experience
Ok finally figured out (I believe) what happens behind the scenes with my manual setup
I Removed CIS HKLM/Run entry
And my service “COMODO Internet Security Helper Service” cmdagent.exe is set to manual.
But even then there are 2 services running in the background (startuptype - system)
COMODO Internet Security Sandbox Driver - System32\Drivers\cmdGuard.sys
COMODO Internet Security Helper Driver - System32\Drivers\cmdHlp.sys
Now for reasons aforementioned, I changed the startuptype for these to manual, then restarted. However this time when I restarted CIS, It came up with the red cross - implying an issue, Ran diagnostics which mentioned its fixed the config, but it didnt do anything other than fixing the startup entry and service status.
Had to revert the change to system again since I couldnt get CIS to turn green.
Had to do a reinstall (Not an issue since I had my config backed up)
Will continue to see which exact services can be set to manual, hopefully someone else has also tried what I am trying and may have inputs.