CIS stop uploading documents files to cloud

loveboy_lion · August 18, 2011, 6:07am

I recently found that all .txt .doc .pdf etc were being uploaded to cloud and when searched forum found this plz vote so that comodo stops uploading such files which are private and can cause privacy loss if in wrong hands

https://forums.comodo.com/news-announcements-feedback-cis/mergedcis-auto-submitted-confidential-pdf-files-to-comodofixed-in-build-1236-t69076.0.html

wasgij6 · August 18, 2011, 8:11am

if you read through the link you posted it says the problem has been fixed and also read the title [Merged]CIS Auto Submitted Confidential PDF Files to Comodo[Fixed in Build 1236]

loveboy_lion · August 18, 2011, 10:08am

You can clearly see that its not fixed its even uploading
.jpg
.pdf
.doc
in version 5.8 beta
if this is a bug in 5.8 then fix it otherwise its my wishlist
Screenshots below

[attachment deleted by admin]

egemen · August 18, 2011, 1:39pm

Have you submitted them manually? Because CIS was AUTOMATICALLY submitting such files before and it was a bug. However if a user manually submits a file to us, we do not enforce him because sometimes there are false positive reports with scripts etc.

LEt me know which one.

loveboy_lion · August 18, 2011, 2:46pm

No i Did not Submit them manually
I just downloaded and installed CIS updated it and did a full scan and when checked the submitted filelist i found them uploaded

CIS settings were as follows
Antivirus - OnAccess / Heuristics High / All options enabled / Recycle bin (Removed from exclusion)
Firewall - Safe Mode / Default settings
Defence+ - Safe Mode / Default settings
Sandbox - Enabled

Screenshots attached

If I am missing any detail please let me know
Rest all working fine still now

[attachment deleted by admin]

egemen · August 18, 2011, 2:53pm

Thanks. Can you also share the scan results? Is any of these uploaded files detected by AV during the full scan?

loveboy_lion · August 18, 2011, 3:11pm

These are the files detected during full scan (Files have also been submitted to comodo)

Packed.Win32.MPEC.Gen@2oey7k D:\Throttle_6.8.15.2011\Lz0\Keygen.exe

Malware@#26pohaenxs8tk D:\Throttle_6.8.15.2011\Lz0\Patch.exe

Anything else i am missing plz let know

Thanks

:love:

[attachment deleted by admin]

cristy_maxspeed · August 18, 2011, 5:03pm

No document found by the scanner.
So, that’s really bug.
User needs to be asked if to upload or no document files (.doc;.pdf) with yes/no popup message.
Your AV heuristics are set to high. Do you did this change? Lower it. Maybe your documents was only suspicious and was sent to Comodo for testing, because it was set to be aggresive.

loveboy_lion · August 18, 2011, 6:00pm

Yea sure the files which were submitted were not that important so no harm done
But could cause future concerns
I also encrypted and Folder locked my rest of the digital data
So don’t know if other files are still being submitted

these are the virus total links of the 3 files that were submitted

https://www.virustotal.com/file-scan/report.html?id=3719a02af6571d5e059a8cb508ce4f62607ae646b61357ceef55adbeacf71fe2-1313686613

https://www.virustotal.com/file-scan/report.html?id=937581aad7d0dd9793ab13b0772ef3f12061b6522b615a0180e5e09c82e0a85f-1313686756

https://www.virustotal.com/file-scan/report.html?id=c57bdfce1ad67f22234a4b9503d49673318966b3f25c0bfad15edcd4d240305e-1313687579

All the above files seem to be clean
Thanks a lot hope this helps

loveboy_lion · August 18, 2011, 6:28pm

These are the tree files which were sent

REQUEST
Only for use and research to comodo team in order to fix bug if exists in 5.8
other users please don’t download since it may contain malcious code

Note
Virus total verdicts files as clean

Thanks hope this helps

Edit by EricJH: I removed attachment. It is not allowed to post possible malware in the public part of the boards