I just noticed something…in defense+/computer security policy/defense+rules cis5 is treating explorer.exe as installer/updater
is that the default setting?
it seems it should be windows system application…
im just wondering if im infected and my settings are getting changed
avira and mbam scans come up clean
Hope i put this in the right place…
If this is a dumb question or misposted will someone please let me know? (noob)
Update: In cis5 help screenshots show explorer.exe treated as windows system app
i never touched any of those settings so…
is it a bug or did malware get through?
Not sure how it happened. But with explorer.exe being either Windows System Application or Installer it is allowed all. If it was restricted by malware it was a dumb malware.
I have never seen reports about malware changing Comodo rules. It is not likely that the rule changed by an infection. May be you changed it and forgot about it.
yeah that’s by default , However , that doesn’t mean comodo will trust any program that you run using explorer.exe , why ? I have no idea , the whole structure got changed and only those who got access to the internal changes can answer such a query . And to be honest with ya , I’ve never touched the computer security policy since V4 thanks to the amazing sandbox that we have >:-D
thanks to the amazing sandbox that we have >:-D