Please i need advice.
I keep getting warnings when using certain things (msn core files…msn6.exe) when i get these warnings how do i know its safe to allow?? as i have no idea if im doing the right thing, is there any help source where i can make an informed decision to allow/not??
many thanks to you all,
soulman.
Plenty of sources, like the almighty FAQ:
[b]Component Monitor[/b] https://forums.comodo.com/index.php/topic,5396.0.html https://forums.comodo.com/index.php/topic,793.0.html https://forums.comodo.com/index.php/topic,4057.0.html https://forums.comodo.com/index.php/topic,6241.0.html https://forums.comodo.com/index.php/topic,7526.0.html
In short, if you trust MSN and its files then you can allow these alerts.
Thanks Soya for the links.
Its just that im not good on firewalls AT ALL and when i keep getting these boxes asking me if i trust something and classed as suspicious plus it says the firewall has logged 1 HIGH SEVERITY event i dont know whats best to do. As i get these warnings can i look up any info straight away and make an informed decision anywhere?
Please when replying remember i am a complete novice.
THANKS for your time on this,
Soulman.
Ps i love comodo and what they are doing in the fight against malware scumbags.
You’ll have to look up the files on google or some malware scanning sites if you’re not sure. That’s what I do. It’s actually in the wishlist: like a google lookup function. For the most part they’re more likely to be legit files. The CFP logs are not meaningful sometimes, like in this case. Once v3 is final, you won’t see OLE alerts anymore (unless maybe if they’re not in the safelist database).
Per the lead developer, the way the system monitors these alerts is such that you will only see them if one or both applications are not on the cryptographic safelist (provided this is enabled at Security/Advanced/Miscellaneous/Do not show alerts for applications certified by Comodo). At the present time, this Safelist is not so large, really; once v3 of the FW comes out, it will be quite large, to say the least. They’re working ■■■■■■■ this so that we shouldn’t see such alerts on a regular basis.
The rule of thumb is that if you recognize the applications, it is safe to Allow (even Allow with Remember, so that you don’t see that exact alert again). The time to be concerned, Deny, then start searching for problems is if you do not recognize the name of the application.
For example, a user recently posted that he kept getting alerts for some application injecting itself into the browser, where the application’s name kept changing by a series of seemingly random letters. It wasn’t anything he knew about… turns out there was a trojan on the system!
Hope this helps,
LM
Thanks Soya,Little Mac.
Thats clear as crystal and you have put me at ease, i look foreward to v3 of the firewall coming out.
No problem, soulman! We’re glad to help.
I believe Soya has already marked the topic as resolved, and closed it. If you need it reopened, simply PM a Moderator (please include a link back here) and we’ll be glad to do so.
LM