I am new to this forum but recognise the talent in the pool.
I see the Comodo summary showing a number of suspicious attempts blocked by D+ each day and in D+ tab I see a lot of events relating to services.exe modifying registry key, ie…
services.exe …modify key…HKLM\SYSTEM\ControlSet001\services\BITS\start.
My question is… does this represent a security issue? Is D+ acting in a valid / appropriate way or should this action be allowed? If so, how and why?
…D+ logs a number of suspicious attempts blocked by D+ each day and these events relate to services.exe modifying registry key …services.exe trying to modify the key HKLM\SYSTEM\ControlSet001\services\BITS\start.
My question is… does this represent a security issue? Is D+ acting in a valid / appropriate way or should this action be allowed? If so, how and why?
If i’m right BITS is a legitimate system service named Background Intilligent Transfer Service. It should not be blocked by Def+. If You do not trust this system service, it can be switched off with the help of Windows Control panel applet.
To get rid of Def+ block rule for this service:
backup current Comodo config: main program window > Miscellaneous > Managing config > export config which is active;