I have a Vista Ultimate x64 with SP2 (SP2 installed when it was first released (post RTM) on Technet).
Clean install of CIS v3.9 Build 508 updated to build 509. CIS in proactive mode. Defense+ and AV in Safe mode.
Other security software installed: Avira Free v9 in On-Demand scan only mode (Guard disabled).
Ever since I installed CIS, the GUI (cfp.exe) needs to be restarted twice a day - not sure if both occurrences coincide with av updates. Also, not sure if it needs to be restarted any more frequently than twice - I happen to notice it and restart it twice a day. The symptoms are one of the two below:
1. On the Help → About page, the Virus Signature Database Version = 0.
2. The tray icon and the summary page say that Defense+ is not active.
In both cases, running “Diagnostics” says everything is OK.
In both cases any action that requires a Defense+ training or prompt (if I run an app that I have never run before, or, attempt to install some software) silently fails. This, I think, is because I have checked/enabled the “Block all unknown requests if the application is closed” checkbox on the Defense+ Advanced Settings page.
Virus Signature database updates just fine. Once I restart cfp.exe, it shows the correct version and Defense+ runs and works like it should.
No errors logged in Windows even logs or the CIS logs (the only CIS logs that I know of are the event viewers in each module - firewall, av and d+).
Any ideas on why this is happening, or, where I can look for more diagnostic help? Should I log this as a bug?