Summary - Give a clear summary in the topic subject, NOT here.
Can U reproduce the problem & if so how reliably?:
Yes, every single time.
If U can, exact steps to reproduce. If not, exactly what U did & what happened: 1:Copy OR paste infected file. 2:Choose “ignore and add to exclusions” from the antivirus alert. 3:Explorer will then hang for a long period of time before the geekbuddy antivirus alert appears AGAIN, followed by the action to take AGAIN, before action is taken and successful.
If not obvious, what U expected to happen:
If a software compatibility problem have U tried the conflict FAQ?:
Should not be software compatibility problem.
Any software except CIS/OS involved? If so - name, & exact version:
No other software.
Exact CIS version & configuration:
CIS 7.0.315459.4132, latest, with geek buddy, but no comodo dragon and privdog.
Modules enabled & level. D+/HIPS, Autosandbox/BBlocker, Firewall, & AV:
HIPS safe mode. Antivirus heuristics set to medium. Sandbox as partially limited. Enabled Viruscope. Firewall safe mode.
Have U made any other changes to the default config? (egs here.):
Yes. Heuristics from low to medium. Unticked “Do not show antivirus alerts”.
Have U updated (without uninstall) from CIS 5 or CIS6?:
No.
[list type=lower-alpha][li]if so, have U tried a a clean reinstall - if not please do?:
Yes.
[/li]- Have U imported a config from a previous version of CIS:
No.
[li]if so, have U tried a standard config - if not please do:
Yes.
[/li]- OS version, SP, 32/64 bit, UAC setting, account type, V.Machine used:
Windows Home Premium 7, SP1, 64-bit. UAC disabled I think.
Other security/s’box software a) currently installed b) installed since OS, including initial trial security software included with system:
a=malwarebytes free version. b=None
[/list]
Okay. In that case please edit your first post so that it is in the format provided here. The one which you have used will not provide enough information for the devs to be able to diagnose, and fix, this issue.
Also, if you have not already tried this, please try reinstalling by following the advice I give in this post. If reinstalling by following those methods does not fix this then you should edit the first post.
It’s possible this could be due to updating. Please try reinstalling by following the methods I suggest here and let me know if the issue continues even after reinstalling that way.
Also, if it does reproduce after reinstalling, also create and attach a diagnostics report to your first post.
I have tried a clean install without privdog and comodo dragon. The problem persists.
An update on the problem: explorer hangs for a long time, then suddenly the geekbuddy notice appears again, and I have to choose the antivirus action again, THEN it works.
Note that the alert appears because in Antivirus settings I unticked the “Do not show antivirus alerts” (the default setting was ticked). I think this is where the bug originates from.
I have updated the first post with my antivirus configurations. Other than that the other configurations are in the bug report
To create a diagnostics report open the main CIS GUI. Then left-click on the question mark icon (near the upper right corner). From here select Support and then Diagnostics. This will run the diagnostics and give you the option to create the diagnostics report. Please do create it, then attach it to your first post.
Also, there is something else I realized is likely very important for this report. Please once again open the main CIS GUI. Then flip the screen to the Tasks side. Go to the Advanced Tasks section and click on Watch Activity. This will download and start Comodo KillSwitch. Once this is open left-click on the KillSwitch menu option. Then, from the drop-down menu, select “Save Current View”. This will create a file with a list of all running processes. Once this is created put it in a zip file and attach it to your first post.
This should be able to provide the devs with enough information to thoroughly investigate this. Let me know if you have any questions.
Thank you very much for your report in standard format, with all information supplied. The care you have taken is much appreciated by Comodo, and will increase the likelihood that this bug can be fixed.
Developers may or may not communicate with you in the forum or by PM/IM, depending on time availability and need. Because you have supplied complete information they may be able to replicate and fix the bug without doing so.
hsienz, have you been able to replicate this with multiple files? If so, please upload them to a file sharing site and send me the download link via PM.
Also, if you can replicate this, even for a false positive, this would be very important. Have you ever seen this same behavior when the detected file was a false positive?
hsienz, please see my previous comment and provide me with any other files which cause this. If I do not receive these by the time version 8 is released I will be forced to move this to Resolved.
I’m sorry, but as there has been no response I have to move this to Resolved. hsienz, if you are still able to replicate this please see my above comments and provide the requested information.
