Hello. I have a new problem in my computer. Everytime I turn on the computer on the startup pops up a defense + alert that says “Ctfmon.exe wants to modify interface of cfp.exe”. Once this alert popped up, and i just allowed this request. This time I feel less safe to allow this request, but the fact is that it pops up at every startup. What should i do? (I also ran sigverif that didn’t include between the files without signature Ctfmon.exe)
Thank you for your help.
Same problem here.
I always blocked it. I would be very glad if someone could tell what it is…
up
Hm, never heard of this.
ctfmon.exe is a safe Microsoft .exe file in Windows\system32. You can read about it in this FAQ. But it doesn’t explain why it “wants to modify interface of cfp.exe” (cfp.exe is the CIS user interface). ???
Normally you shouldn’t have to bother about ctfmon.exe, but I can’t see why it would have to do anything to cfp.exe. I’d block it and make sure everything ctfmon.exe related works anyway.
I can get this if I want Paranoid Mode all boxes ticked, and remove ctfmon.exe from the all application rule.
Dennis
What do you think of the alert? I can’t see why ctfmon needs to access cfp somehow, unless the user actually needs alternative text input in CIS.
It comes up when you close the CIS gui if I remember correctly the default must be allow with the All application rule.
Dennis
Edit Does not matter if you block or allow nothing happens
Ever heard of google ? 88)
take a look at this site http://support.microsoft.com/kb/282599/en-us
What Does the Ctfmon.exe File Do? Ctfmon.exe monitors the active windows and provides text input service support for speech recognition, handwriting recognition, keyboard, translation, and other alternative user input technologies.
So it’s just scanning the GUI for alternative inpu/output 
AFAIK, it’s safe to allow if it’s in this folder : C:\Windows\System32 if not, you’re probably infected…
Xan
Ever read earlier posts? 88)
Yes probably, thus I was about to post “you can add it as a safe file”, but I didn’t. Reason: this ctfmon.exe is probably (99%?) the original Microsoft file, but can we really trust that, as it’s not digitally signed…
I would still block it since cfp works just fine without ctfmon interfering. If a user don’t need ctfmon I’d say better disable it from startup with Windows.
:-[ :-[ :-[
Yes probably, thus I was about to post "you can add it as a safe file", but I didn't. Reason: this ctfmon.exe is probably (99%?) the original Microsoft file, but can we really trust that, as it's not digitally signed...I would still block it since cfp works just fine without ctfmon interfering. If a user don’t need ctfmon I’d say better disable it from startup with Windows.
As long as you’re not using any other ways of input, you should be fine …
Xan
Dont no if this helps Gabbo but i got rid of Ctfmon.exe alerts by turning off "advanced text services" and havent had any problems.
Look under Control Panel/Regional and Language options/Highlight languages and click “Details”/Tick the box for system configuration,turn off advanced text services/Apply
Here’s the pop up for your knowledge…
http://img230.imageshack.us/img230/526/comodoctfmonxz0.jpg
P.S.: I use safe mode. Maybe it’s only a thing for who uses this mode…