|
|
#1
February 8th, 2009, 09:13 PM
|
||||
|
||||
another learning thread about Comodo Firewall ver. 3
below pics, what do you mean by percentage of ekrn.exe 71.6%, YahooMessenger 28.1% and svchost.exe 0.3% ? does it mean that my ESET Nod32 AV is accessing the internet?
second question, at Proactive Defense it says "93files are waiting for your review" i review it and purge but still 93 files remain on the list (initially it was 100++ files)....what should i do with this? more to come....thanks in advance and sorry for newbie question!
__________________
KIS2011 | Sandboxie 3.46 | Rollback Rx 9.1 |
|
#2
February 10th, 2009, 12:37 PM
|
||||
|
||||
|
Re: another learning thread about Comodo Firewall ver. 3
Quote:
It means that from all the internet traffic generated, 71,6% was from ekrn.exe (have no idea what it is), 28.1% from Yahoo Msgs, etc. I presume ekrn.exe is a process of ESET NOD32? Then, means that NOD32 was accessing interent. (updating for example?) Quote:
If you "purge" and the files disappear, and later reappear, means the files are re-generated for some reason. Antivirus updates can do that. If you "purge" but the files don't disappear, means the files are present on your hard disk and can't be purged. You need to either send them to "safe files" or "remove". To avoid these "pending files", switch to "safe mode". |
|
#3
February 13th, 2009, 09:40 PM
|
|||
|
|||
|
Re: another learning thread about Comodo Firewall ver. 3
Quote:
 If this firewall permits, then a rule permitting proxy to specific applications (and no others) can be logged and watched. Perhaps then the Traffic picture will reflect the actual applications going out and applications that force themselves into the proxy can be watched/disallowed. |
|
#4
February 13th, 2009, 10:16 PM
|
||||
|
||||
|
Re: another learning thread about Comodo Firewall ver. 3
i used my laptop at the airport. While i'm connected to free wireless internet offer by airport Comodo give me some pop up that a system (with IP number and Port information) want to connect to my PC. I blocked it and it pop up again for the second and i blocked it again.
below picture shows a System with Listening 139 and 145....does it mean that they still access my PC? also if you will check my picture, it shows that NOD32 scanning all my internet (with lots of IP #)? so comodo just "log it" and Nod32 do the security for web access?
__________________
KIS2011 | Sandboxie 3.46 | Rollback Rx 9.1 |
|
#5
February 14th, 2009, 09:11 AM
|
|||
|
|||
|
Re: another learning thread about Comodo Firewall ver. 3
@fce
I suppose that you don't need netbios support, especially in the airport wireless  Go to windows at network connection -> properties -> tcp/ip -> properties -> advanced -> wins, and disable netbios Also go to services and stop & disable the service "TCP/IP Netbios Helper" So your system will not listen to these ports (waitin for connections). 
__________________
Last edited by agagouga : February 14th, 2009 at 09:17 AM. |
|
#6
February 14th, 2009, 10:05 AM
|
||||
|
||||
|
Re: another learning thread about Comodo Firewall ver. 3
Quote:
what is netbios support and why should i disable it?
__________________
KIS2011 | Sandboxie 3.46 | Rollback Rx 9.1 |
|
#7
February 15th, 2009, 09:50 AM
|
||||
|
||||
|
Re: another learning thread about Comodo Firewall ver. 3
Quote:
anybody can explain me the above post please? Also i have rollback rx, whenever i restore my previous snapshot what happen to the new application i blocked before i restore my old snapshot?
__________________
KIS2011 | Sandboxie 3.46 | Rollback Rx 9.1 |
| « Previous Thread | Next Thread » |
| Thread Tools | Search this Thread |
|
|
