im running comodo firewall 4.1.150349.920 on a win7 ult 64bit machine with 4gb of memory. everything has been runnign great for awhile. i run bitdefender AV 2010 with superantispyware. firewall, defense+, and sandbox modes are on. i’ve always been fuzzy about defense+ and i know it is great to have but it seems to block a number of things i do want to run, but usually i can add the folder/files to “my own safe files” and be ok.
i bought transformers: war for cybertron for pc yesterday and for some reason it will not run at all. i can install the game fine, but when i launch the game, i see the “loading” splash screen and twfc.exe in task manager, then they will both disappear. seems like something is killing the exe or preventing it from running. look at my two attachments:
i also add “activision publishing” to “my trusted software vendors” by finding the signed twfc.exe file.
i think its defense +, so i goto defense+, advanced, defense+ settings and drop the bar to “disabled” then click ok. i then goto sandbox and disable it as well. i try to run the game again and it does the SAME thing. grr…
so this time i goto defense+, advanced, defense+ settings, and ENABLE the “Deactivate the Defense+ permanently(requires a system restart)” option. after a reboot, i try to run the game and it works fine.
so it seems like defense+ has to be completely disabled for me to run this game, which is odd to me. i never got any popups from defense+ about twfc.exe. i installed the game on my winxp computer and when i launch it, defense+ gives me a popup about shellcode injection, which i didn’t get on my win7 laptop. i can “terminate” or “skip” and it will NOT work on my desktop. the only way to get this game to work on either PC is to completely disable and turn off defense+. im not sure why tho.
on my win7 64bit laptop, i tried to add twfc.exe to “my own safe files” but the file listing is missing my “Program Files (x86)” folder completely. i know the folder exists, there are tons of folders/files in “C:\Program Files (x86).” i looked at the ntfs permissions to “C:\Program Files (x86)” and users have READ permissions. there are a few other accounts in there but everyone should be at least to read in “C:\Program Files (x86)”
twfc.exe is located in ““C:\Program Files (x86)\Transformers\Binaries””
see attachment: missingfolder.jpg
so here are my questions:
why does the “disable” setting with the slide bar in defense+ act different from the “Deactivate the Defense+ permanently(requires a system restart)”? are they supposed to act differently? or what exactly is the difference?
under what security context/account does defense+ use to enumerate the list of folders/files on my computer? why can’t i even SEE the “C:\Program Files (x86)” folder?
[attachment deleted by admin]