Roboform Chrome

[Giordano Thibault]

Ihad been trying to figure out what the issue was, but finally involved the Roboform support team.

They looked at my Procmon log and ran some internal tests - they said that eSet and/or MB were injecting into those processes.

Let's try and get some logs first so the team can review them and see if they can tell what may be causing your issues.... Please use an Administrator account when doing the following,

I was able to replicate this issue. I was getting about 2-3% constant usage which closely matches what you experienced. This is a very low amount of CPU usage but I was able to find a workaround through exclusions. Adding the entire Roboform Chrome folder dropped usage to 0-1%. See screenshot below and give it a try if you'd like:

I already had the rf process excluded, but tested excluding the entire Siber\AI folder.

It doesn't do anything for me - the registry and file hits are non-stop.

The rf process for Firefox doesn't have the constant activity, so this is Chrome specific.

I am doing more testing on this issue and seeing about the same CPU average on a clean machine with RoboForm. This is a test on a clean machine before and after Malwarebytes install. Average CPU usage is 0.25% with and without our software installed. The actual % figure may change based on hardware but should still be in single digits in a modern CPU, which is right about what you were seeing with 2-5% usage you described.

I am currently benchmarking with ESET installed as well just to replicate this environment as much as possible, but I would like more explanation on what kind of spike is being seen as well as if anything changes by after adding exclusions like @Porthos suggested above.

The rf-chrome-nm-host.exe that runs for Firefox has no CPU impact (other than when first run or synching).

If you run both browsers simultaneously with RF enabled, it's only the Chrome instance that has the issue.

I am noticing CPU utilization even with no protection of any kind installed. I also looked into ProcMon and I see that registry is constantly being read by this extension even with no Malwarebytes installed. I left ProcMon to gather while Google Chrome just sat open and registry was being accessed the whole time.

I've been using the same major version of RF for a long time, but this all seemed to converge when I upgraded MB.

I was running v1,x (was never prompted to upgrade) and I found v3.x when on the MB site.

Let me spin up my fresh test machine and give you detailed reports with specific apps enabled and not enabled (alone & in combination).

I'll limit the procmon logs to just the RF process to help minimize them.

I could not get my Roboform extension to work properly - the main issue was the option for showing the lower toolbar did not show up in its options. After process of elimination, I can say that it definitely is the Exploit Protection in MB. When Exploit Protection is off, the Roboform extension in Chrome works fine and all options work. When it is Exploit Protection is on, the Roboform Chrome extension does not work. I tried excluding the whole folder and several files that Roboform support told me could be the problem, but that does not work. Is there something else I can do? Can this be fixed? It must be a pretty new problem, because I did not notice it before today.

Nope. Same result. (It did change a couple of the boxes, but Roboform still does not work properly. If I turn off Google Chrome (and plug-ins) from Protected applications in MB, Roboform works properly. With it on, RF does not.

I have already done this on the advice of RF support. No conflicts between extensions. The only thing that causes the problem to go away/return is enabling MB exploit protection for Google Chrome. I'm not sure what you mean by "looks like your external is having issues as well." I did reboot the machine and ran the log gathering tool again (new results attached) to see if there is any difference. I know that MB and Bitdefender have some issues. But I have been using both for years now. And this problem just developed this week, so I wonder if there was a change in the MB exploit definitions?

It takes Chrome to start RoboForm's process rf-chrome-nm-host.exe (so named native messaging host) to let RoboForm extension work in co-operation with RoboForm for Desktop that makes the lower toolbar available in Chrome.

The problem is that Chrome does not starts rf-chrome-nm-host.exe directly, it starts cmd.exe first, and the Exploit Protection option makes your security software treat cmd.exe started by the browser as a potential threat.

As the result, RoboForm's process cannot start, either, and adding RoboForm files in your security software white list cannot help as your antimalware does not ban RoboForm's process indeed, it bans cmd.exe.

Unlike Chrome, Firefox does not need cmd.exe, it starts RoboForm's process directly (please don't be confused with 'chrome' in the name of rf-chrome-nm-host.exe, this is intended for all browsers with RoboForm extension including Firefox).

This problem is not a RoboForm issue and cannot be fixed in RoboForm, neither we could explain why it takes to start cmd.exe first to run native messaging host for the browser (this would affect any extension that needs native messaging).

I believe this may be an issue we're looking into now. Hopefully, there should be a new BETA version of Malwarebytes out on Thursday that we'd like you to try and see if that helps to correct the issue.

In my RoboForm 101 workshop, you will learn to organize sweepstakes, fill out entry forms, and find local giveaways, take my RoboForm 101 workshop. It is a live, interactive class that allows you to ask questions, and we master each step of the process.

I actually after all these years just learned something! I had thought that roboform was a form of robotic entry but still used it anyway and took my chances. It is fantastic to know that you can still learn a few new things about contesting

I do not recommend using the free version of their software as many of the features you need are shut off. As it costs less than two trips to the coffee shop for a whole year, I highly recommend paying for a subscription. I have used it daily since 2003, so I know it works!

When Roboform is behaving normally and either the rf-chrome-nm-host process or the accompanying cmd process are ended by accident, (I did this when first using Roboform) the only way to get them running again is to click exit on the taskbar icon, then reactivate the taskbar icon by double clicking it in the Roboform folder in the start menu. Which puts everything back to rights.

So I'd at least like to take answers to the above back to them, and if anyone else want to chime in thats fine - I'll read. I'd just assume not hear the (B is better because A didn't work for me but B did). Responses like that rarely come from competent users, and taking advice from incompetent users is foolish.

Vero and I have been long time 1Password users. We have had many hundreds of requests for native 1Password integration into Alfred. With these two things combined, it felt very natural to add native 1Password integration into Alfred. At no point have we ever done any product placement in either Alfred or our website, for 1Password or any other app.

On the flip side, this is the first time both Vero and I have heard of Roboform, and the first time anyone has asked for integration into Alfred. As such, it's extremely unlikely that this will be natively integrated into Alfred. Having said that, you could still create a fantastic workflow which works exactly how the 1Password one works. If you need help with this, you could pop a request in the Workflow help forum.

It's somewhat offtopic to this forum, but i'm also totally puzzled by almost complete ignorance of the Roboform in the apple community. As a password manager it is a very solid solution, and there are areas where it is better than 1password. Myself i've been using 1password once i switched to mac and i can see that 1password is lot more "mac-y" but still i can't understand why roboform is not mentioned at least half as much as 1password.

Got a strange RoboForm look-alike dialog box asking me for my username and password every time I log into my MSN Outlook mail!? I ignore it and populate the name and password fields under Outlook and all is fine but still seems weird. What should I do, reformat the hard drive and start over? Just kidding.

I submitted the screens and text to Roboform but they said the dialogue box wasn't theirs, and to check with you at Mozilla cuz it doesn't happen under Chrome or any other login screen -- It looks like a RoboForm Master Password challenge, and when I searched for a remedy under Firefox describing the anomaly, it returned a weird string with a link to Chrome WTF!

Sorry, My Name. We are not entitled to give any recipes or solutions for other products.We can only account for Roboform and its features.If the window you see comes from Mozilla - you should ask Mozilla's support about it.If some advise comes from official Mozilla's support representative - it should be legitimate, although path chrome://pippki/content/resetpassword.xul looks weird indeed.

You wrote (2016/12/28 03:11 pm EST) Thank you but now I'm really confused.You said "this popup is not from RoboForm, and that it's a Firefox dialog.""It seems you've enabled Master Password in Firefox itself: Tools -> Options -> Security.""Note: This password is not related to RoboForm Master Password"Apparently so but I have no recollection of the password entered and yet when I follow directions for resetting Firefox Master Password (see -US/kb/reset-your-master-password-if-you-forgot-it), it cites a string with reference to CHROME! I don't get it! I'm supposed to be in Firefox to remedy this.

If so, maybe Roboform is in conflict with the Firefox Master Password feature??My guess would be to disable the Master Password feature in Firefox and just use Roboform; but make sure your credentials for that website are in Roboform.

3a8082e126