Recently I downloaded a free software package to convert video formats from one type to another. The software cleared Malware and Anti-Virus scans and was labeled as clean.
The problem with the "clean status" is that the installed included a call off site to another package or included this seemingly benign software called StrongVault, which is supposed to be an off site "secure" storage facility. It also installs something called SOSOnlineBackup. Further investigation of this "StrongVault" found that it is deemed as a malware by Symantec and other companies. It gathers information, keystrokes, print outs, tracks your web search and usage and stores other PII information not related to a "backup" or internet use. It stores it awaiting instructions to upload to one of their servers. There are about 5 to 10 different domains it sends it to, supposedly all related to "strongvault".
The software wraps itself around and injects itself into every software package located on your system. If you open a Word Document, it saves this information. If you print to a printer, it asks for permission to the "StrongVault" cloud service. If you print or save a document in PDF, it again asks for permission to the Cloud to be able to do this. Worst is that it also embeds itself into your browser. So if you try and remove this, it may cause system errors with your browser of choice. What it embeds is a virus or redirect called Delta-Search. This can be a rather vile piece of software aimed at controlling your browser and downloadable content.
Bottom line, it tries to overcome your system and control what you are doing, saving, printing, opening, viewing, etc.
It seems that there are a lot of individuals that incorporate this "StrongVault" software into their free packages, just like many of the "toolbar" packages do.
To remove the software, gets really interesting. You have to uninstall the main components (in Windows) then walk through the registry to get all references to "strongvault" and "sosonlinebackup" removed from the registry. You quickly find out that there are hundreds and hundreds of Registry entries for these packages. Again, it tries to inject itself into EVERYTHING.
So word of caution, if you download a program form the Internet that is "free" or if it is a paid package and it includes this "StrongVault" software, you just got had. Its a real pain to uninstall this. I strongly suggest backing up your registry as well as doing a System restore Point prior to installing any new software.
Many of the Anti-Virus packages do not understand Malware. Malwarebytes Anti-Malware did not see this also because its embedded within the original software. Nice stealthy way to infect a system, eh ?
This is one of a hundred other downsides to "cloud storage". You have no idea what these people are doing with your information stored there. Is it encrypted ? who knows! They say it is, but will never give you the information you need to prove or disprove their encryption.
For more reading I suggest these links:
Additional Information from Tee Support