I also had the message network firewall or similar (can’t remember exactly) on the bottom of the cfp windows (all tabs).
And there was no popups for any network/Internet connections. I uninstalled reinstalled to no success.
What work for me was to search the reg for references to cfp and comodo and delete them (only delete if you are comfortable with using the registry as it can cause problems if not done right and to back up the registry before doing).
The registry does have a search function to make it easier and you can use the f3 key to continue the search after each item is found just remember to careful if deleting anything.
The install again and hopefully it will work (well it did in my case).
Zos
Oh… sorry, I’ve forgot that the notebook came with NIS. I’ve uninstalled Norton Internet Security (firewall + antivirus) at the first boot. Then used SyNRT tool to remove any remains. Windows Security Center does not detect NIS since that time. My Registry seems to be clean from Symantec entries.
Now, posting again the files in zip format.
Edit: Ok,I read your belarc report. Please try to uninstall Bluecoat from safemode and report any changes.
Please post another gmer repost after that as well.
I note that MalwareBytes’ Anti-Malware is also a Beta product. This isn’t necessarily a problem, but could be, depending on its stability, and how it works. Unfortunately, since their site doesn’t say anything about it publicly, we don’t know how it works…
And after each of these, have you tried to see if the v3 problem persists? Note: You may need to uninstall/reinstall in SafeMode (as per previous discussion) with each step in the event there was an install conflict. But first, try without the reinstall.
Sorry, the conflict (or problem) is there yet…
No inbound/outbound connections are shown in CPF GUI, so it’s not working…
Although, CPF is related as being active by Windows Security Center.
If you look at your running processes, is cmdagent.exe one of them?
Comodo Firewall Pro Helper Service should be started (Automatic) and running normally.
You should have the following drivers installed and running normally:
Comodo Firewall Pro Helper Driver - cmdHlp.sys
Comodo Firewall Pro Firewall Driver - inspect.sys
Comodo Firewall Pro Sandbox Driver - cmdguard.sys
also search for cmdhlp.sys on your hd.
C:\WINDOWS\System32\drivers\cmdhlp.sys
C:\Program Files\Comodo\Firewall\Repair\cmdhlp.sys
Should I uninstall (again)?
It’s there, running from System account.
ok and running.
The first one I can see on the Devices. Both 1st and 3rd are listed by Autoruns drivers.
But not the 2nd… The files exists in:
C:\WINDOWS\System32\drivers\inspect.sys
C:\Program Files\Comodo\Firewall\inspect.sys
C:\Program Files\Comodo\Firewall\Repair\inspect.sys
So, you have the
Helper Driver - cmdHlp.sys
Firewall Driver - inspect.sys
but you don’t have the
Sandbox Driver - cmdguard.sys (which should also be in C:\WINDOWS\System32\drivers.…)
Show Hidden Devices did not reveal all three on my system. I have to use something like ServiWin or Whats Running.
If you don’t have all necessary services and drivers installed & working properly, I’m thinking something is occurring during the installation which is messing everything up.
According to your first gmer report Bluecoat was hooking IP kernel functions, after you removed those software the only one hooking such functions is avast. If you uninstalled CFP and reinstalled after the second gmer report (confirm this) then there is still something interfering.
Also please confirm that the comodo non PNP drivers in device manager are running.
Please look at AVG antirootkit and avg antispyware logs to see if they are blocking something.
Look at teatimer log too.
That seems to be the problem… I never have an installation problem with version 2.4 or older betas on XP. Only in Vista with the latest beta.
I’ve tried an old beta 3.0.7.208. Didn’t work either.
What I can’t understand is what is blocking the installation at Safe Mode (:AGY)
Right now, I’ve tried to bring back the system protection to the old state (K9, SpywareTerminator, MalwareBytes’) and try to keep the Windows Vista firewall.
I’ll test more tomorrow.
It’s a pity that we can’t have an installation log.
Thanks for your help. See you soon.
It is not something interfering in safemode but after.
Spybot SD teatimer for example can work also after a program was installed if I remember correctly.
Anyway there is also AVG antirootkit, we cannot predict all software interactions going on your computer.
V3 can be installed on a vista machine right out of the box so we have to guess and find what makes the difference on your machine.
But that is a long list of softwares
Anyway just for reference please summarize all steps you took after you uninstalled Bluecoat, MalwareBytes’ Anti-Malware and Spyware Terminator.
look at your windows\inf directory for all inf files containig reference to comodo.
look on your hd for all folders named comodo.
look in the registry for HKCU\Software\Local AppWizard-Generated Applications\ and HKLM\SYSTEM\Software\Comodo
You can generate a system log by running the installation through a monitoring software. Not sure what’s compat w/Vista, but things like zsoft, totaluninstall are a good place to look. That will create your before-and-after.
\cmdagent.exe running.
D:\Util\Internet\Comodo\cmdagent.exe (Comodo Firewall Pro Helper Service) is running and automatic starting (can’t be changed).
C:\Windows\system32\DRIVERS\cmdhlp.sys (COMODO Firewall Pro Helper Driver) running.
C:\Windows\system32\DRIVERS\cmdguard.sys (Comodo Firewall Pro Sandbox Driver) running.
Registry keys seems ok at:
HKCU\Software\Local AppWizard-Generated Applications\ and HKLM\SYSTEM\Software\Comodo
at least, they’re there.
Although ZSoft Log relates
FILE ADDED! …\inspect.sys
FILE ADDED! …\Repair\inspect.sys
and the file is on Comodo folder, ServiWin relates that it’s NOT running. It’s not listed by Autoruns in the drivers list. I can’t find ANY registry key related to this inspect.sys file. There isn’t any mention of it into the ZSoft Log either.
Although, it’s not on ZSoft Log, this file IS here: C:\Program Files\Comodo\inspect.sys and here C:\WINDOWS\System32\drivers\inspect.sys
But: C:\Program Files\Comodo\ is NOT where Comodo is installed. Isn’t it missed the variable %PROGRAMFOLDER% or something like that?
As it is the Comodo Firewall Pro Firewall Driver, it seems we narrowed the problem to this driver.
But what can I do?
File is there.
It’s installed.
But it does not automatically starts…
Another thing - could not be related - but if I try to run cfpconfg.exe from the Comodo folder, both with and without admin rights, NOTHING happens.
The inspect.sys file on C:\Program Files\Comodo\ folder has the following properties.
The access rights to that folder seems ok (System and Administrator: full access).
