A. THE BUG/ISSUE (Varies from issue to issue)
Can you reproduce the problem & if so how reliably?:
I don’t tried to reproduce it.
If you can, exact steps to reproduce. If not, exactly what you did & what happened:
1:Opened Google Chrome in SandBox from widget.
2:Opened in Chrome this link (VIRUS)
3:Comodo shows me a popup about launch new untrusted application tbmessaginghost.exe. I can’t remember what module of CIS showed that warning.
4:I was able to find this application files in my real file system and check it hash on a virustotal. Then i deleted all files in malware directory and perform system scan by third party anti-virus tool.
One or two sentences explaining what actually happened:
Application bypassed virtual mode.
One or two sentences explaining what you expected to happen:
Application should stay running in Sandbox.
Any software except CIS/OS involved? If so - name, & exact version:
I guess that link used an exploit for Google Chrome to download and run tbmessaginghost.exe
Any other information, eg your guess at the cause, how you tried to fix it etc:
All this happened yesterday.
I’m newbie in CIS.
I’m sorry for my English (I’m Russian).
B. YOUR SETUP
Exact CIS version & configuration:
18.104.22.16844; Internet Security
Modules enabled & level. D+/HIPS, Autosandbox/BBlocker, Firewall, & AV:
Antivirus: cumulative scanning
HIPS: safe mode
Firewall: safe mode
Have you made any other changes to the default config? (egs here.):
Yes, but I don’t remember all.
Have you updated (without uninstall) from CIS 5, 6 or 7?:
Have you imported a config from a previous version of CIS:
OS version, SP, 32/64 bit, UAC setting, account type, V.Machine used:
Microsoft Windows 7 Ultimate x64 SP1, UAC disabled, Administrator, No.
Other security/s’box software a) currently installed b) installed since OS, including initial trial security software included with system:
a=no b=Agnitum Outpost Firewall.
I cannot make diagnostic file. Diagnostic window freezes at 100%, when I closed it, I cannot open it again.
[attachment deleted by admin]