Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
| reply to MADx
Re: Latest Comodo BoClean Information
For a refresher course  These links will tell you when and what your memory is used for and why.
When you download a file from the internet it does not load into memory.
.dll do not load into memory. you need an .exe to do it.
»www.easydesksoftware.com/dll.htm
Running a Program
»www.myshoggoth.com/Articles/WhyD···sRe.html
--
Gladiator Security Forum »www.gladiator-antivirus.com/ Missing Kids »www.missingkids.com/ |
|
dadkins
Can you do Blu?
Premium,MVM
join:2003-09-26
Hercules, CA
 ·Comcast
1 edit | 
What is being scanned? Where? |
Thanks Name Game!
EDIT: Well, it's been fun people!
Y'all keep teiing yourselves that BOC is the shiznit!
Some of us know better.  |
|
Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
1 edit | reply to MADx
I understand dadkins apprehension. In the days when only TDS or TH was out there to address trojans and worms since AV's were looking the other way..BOClean was there for many users and did a very good job at stopping the madness. It also was then very good at tackling Malware when even the TDS, TH and those slow to wake up AV vendors were still saying "if it is not a virus " don't call us.
During the Interim Adaware was there for spyware and adware..and then came along Spybot S&D. But still all through that period of time..BOClean was still there..and since it uses a very unconventional method..it was stopping virus..trojans..worms..spyware..adware..and it survived.
I would have never..during all that time..tell anyone to dump all the rest of the stuff..free or paid..but BOClean was still in the background doing it's job and well worth the money then..saved many peoples butts.
Today it is a whole new ballgame..you need something to do it all. The Security Companies are coming out with Suites.
They will struggle..some will go belly up..some AV's and even Antispyware proggies will drop out of sight..just like TDS did one day.
I always suggested most everyone who posted their long list of Security proggies some (active some passive)..all ran TOO many ..especially those who were loading and running multiple real time protection.
This week superantispyware is a good choice if you get whacked by some of the most serious "in tne wild" crap you "have to clean off" and still have some operation left on your PC..tomorrow ??? who knows.
So I suggest you go lean and mean..just watch where you surf.
--
Gladiator Security Forum »www.gladiator-antivirus.com/
Missing Kids
»www.missingkids.com/ |
|
Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
| reply to dadkins
said by dadkins  :Yep! Thanks Name Game! EDIT: Well, it's been fun people! Y'all keep teiing yourselves that BOC is the shiznit! Some of us know better. 
uloggvorbissys.dll
84.0 KB / 2006-12-22 2 / 0 Indefinido Process Monitor / Processes
%program_files%\archivos comunes\ulead systems\mpeg\
7f1d6c01f46ea970312baf1dca08949c ulOggVorbisSys. ulOggVorbisSys.dll
Ulead Systems, Inc.
--
Gladiator Security Forum »www.gladiator-antivirus.com/ Missing Kids »www.missingkids.com/ |
|
dadkins
Can you do Blu?
Premium,MVM
join:2003-09-26
Hercules, CA
1 edit | Yep... no .dlls, huh?
Take care people! |
|
Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
1 edit | Think you better do some more reading on those products you run..and also go back and read the links in the above post..you just ramble..
AVAST
III. Performing the Scan:
Right click on the blue circle with the white "a" inside (Fig 1).
Left click on "Start avast! Antivirus" (Fig 2).
Allow the test of Memory and Startup to run;
a blue rectangular screen will appear as shown in Figure 6.
On the right side of the blue rectangle in Figure 6 are three icons.
The top icon looks like a blue box or hard drive.
Left click on this icon and a box will pop up (Fig 8).
Figure 8
Slide the bar to the right until it says "Thorough Scan".
Also put a check mark in the box beside "Scan archive files".
Left click on the triangle icon on the left (looks like a 'play' button).
The scan will begin and run to completion.
If a virus is detected, a siren will be heard and a woman's voice will announce "A virus has been detected".
Left click on the "Delete" option.
In the next Window, Left click on "Delete permanently".
here are some pretty picture and hint for you
»www.cpals.com/avast_01.html
--
Gladiator Security Forum »www.gladiator-antivirus.com/
Missing Kids
»www.missingkids.com/ |
|
dadkins
Can you do Blu?
Premium,MVM
join:2003-09-26
Hercules, CA
·Comcast
| reply to Name Game
Yes! Exactly!
It's a whole new game, and some things are just tired.
Well, it aint my fault!
Trying to milk a program when it's better days are behind it...
Y'all need to figure that one out for yourselves.
I'm out!
--
Think outside the Fox... Opera |
|
Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
| reply to MADx
uloggvorbissys.dll
don't delete that .dll even if that gal whispers in yer ear.
Have a great evening buddy..
--
Gladiator Security Forum »www.gladiator-antivirus.com/ Missing Kids »www.missingkids.com/ |
|
Iwannabeanerd
@swbell.net
| reply to MADx
This is what I understand boclean does
quote:
"...BOClean will run in the background automatically, monitoring your system for anything which attempts to startup and run which manages to slip past your various "file scanners." The reason why BOClean does not do "file scans" is that most backdoor trojan horses elude file scanning entirely..."
"...If a program or the desktop itself has been infected by a memory "injection" into another program, BOClean may shut down a legitimate program which is infected, or may reset your desktop, causing it to go blank and then reappear..."
"...If a "trojan horse" or other malware is present on your machine, BOClean will shut it down FIRST, then you'll receive a warning box and you will be prompted by BOClean asking if you want to remove the offending file and clean up its remains. If you are running BOClean in regular standalone mode, you will be able to hit YES to perform a safe cleanup, or you can hit the NO button to delay cleanup if there is some valid reason. If you hit the YES button, the trojan horse will be removed from your hard disk and the windows registry. There is NO NEED to disconnect from the internet or your network and a reboot is not necessary either. In the RARE situation where you are using a remote control trojan horse or other known malware and INTEND to be using it, you can use the BOClean EXCLUDE screen as described later to tell BOClean to IGNORE any nasties you INTEND to use for whatever purposes. You can ALSO use the Excluder to tell BOClean to be gentle on any poorly behaved programs from other vendors that make the machine crash. See below..."
»www.nsclean.com/supboc.html
I thought boclean was not able to scan files, yet dadkins manage to get boclean to scan leaktest.exe. I'm confused
quote:
"...The reason why BOClean does not do "file scans" is that most backdoor trojan horses elude file scanning entirely..." »www.nsclean.com/supboc.html
I fail to see the purpose of boclean blocking leaktest? It only sends an outbound connection to grc server and has no malware signatures, that I know of.
What makes it think it's "trojan horse" thats trying to make an outbound connection?
Plus, it fails at stopping it from making an outbound connection because it's a tad slow to take action in my computer. I uploaded an .avi video showing how it's slow to respond in my comp.
Sorry i'm just curious by nature any clarification will be much appreciated |
|
Graycode
join:2006-04-17
 ·net2phone
| reply to MADx
It seems some have a vendetta against the product and its authors. Yet the original topic, Comodo making BoClean available for free, seems like a good thing that should be applauded instead of maligned by repeating rhetoric.
After trying several others I bought a few copies and have been very happy with it. It's done a very good job of protecting my parents and other relatives' machines, having stopped potential problems on several occasions. BoClean has never done any harm to our PC's, only good. That's more than I can say for some other products that we've used.
We're keeping BoClean because my own family has personally benefited from it. I hope more of my friends & co-workers will also get some benefit from this new Comodo version. |
|
norwegian
Premium
join:2005-02-15
Outback
 ·WestNet Broadband
| reply to MADx
I am going to go completely off topic here. Hopefully WCB will allow it.
Dadkins, you rely on Avast right. See this link on detection
»www.virus.gr/english/fullxml/def···2&mnu=82
Here's another
»www.av-comparatives.org/
At the end of the day, IF you don't run limited user accounts, which no doubt will be most out there, you need protection. Nothing is 100%. Relying on Avast alone will not keep you all warm and fuzzy. Neither will Kaspersky, nor Nod, nor Norton as the A/V companies out there don't run the same engines, and share all the malware found.
Boclean is just an extra layer some choose to run. It is small in footprint, and rarely causes any conflicts, and of course you have the service of Kevin and Nancy up until Comodo bought it. Hopefully now Kevin can, and will concentrate on the next version.
No need to be putting people down for wanting the extra layer is there. Personally, we should be pushing LUA in the O/S, but even it has its draw-backs, and it is an extra layer too, but even it gets criticism, hopefully the end-user will make the right choice for them, regardless of all the antics.
--
The only thing necessary for the triumph of evil is for good men to do nothing - Edmund Burke |
|
Alphalutra1
join:2005-10-06
127.0.0.1
clubs:
| Dadkins, it is no wonder that avast is catching everything in your escapades on the internet. Avast has a built-in webscanner, that direclty scans all of the traffic before it gets to your computer: an excellent security feature, but it is bound to beat boclean to every thing since it scans first
As to the Comodo Boclean thing, let's see how it pans out. I may even install it on another pc since I would like to see how it runs and such. The really interesting thing is what will happen once development starts up since Kevin won't have to worry so much about signatures since he will have a team. Then, it will be a very interesting product.
Cheers,
Alphalutra1
--
OpenBSD for all your needs... |
|
Kiwi
Premium
join:2003-05-26
USA
·Comcast
·Aristotle Internet
1 edit | reply to dadkins
David, I'm smiling.
BoClean does have a rather interesting array of protection, left out by AV's. I have owned BC for a rather long time and only noted one hit, though I'm not into deliberate infections on this drive.
Just for *Grins* I don't personally run any AV, I did BC because I got tired of having to deal with too many animals.
I'll say this though
1. I felt a wee bit more comfortable running BoClean.
2. BC does not take care of the on line gaming hacks, that occur with Punkbuster or any other ASPI hook program that the user loads on their system. Meaning the deficiency I see is that provided the user does not install a progo root kit, BC will see it. Otherwise, you are pretty much on your own.
Remember though not even an AV will catch these.
The really sad epitaph to this is those game root kits aimed at protecting the user don't work at all. I was on COD2 a couple of days ago and while *Punkbuster* was enabled (Screen stated) There were two players 'Talking' about how to cheat, while one was doing so! I can't stand cheats anymore than I can these damn fools wasting every ones time with trojans, worms, or a virus. These folks need a life.
The price for a game ASPI root kit is a slower system, until cleaned; until the next time.
So, does BoClean catch everything, no not at all.
[Edit] To be fair though, perhaps the EULA of these progo's prevent a BoClean intervention. If anybody really reads the install EULA, most would take the progo back -Of course the assurance is that one can't, because it was an opened software product. Damn if you do, damn if you don't.
Aside, the net qualms.
Cheers |
|
hayc59
VoodooChild
Premium
join:2001-02-26
David R.I.P. | reply to MADx
Dave...Keep it real[for sho] and livin the dream
you da man!! |
|
Psicop
More human than human
Premium
join:2005-12-21
| reply to MADx
Hi guys,
I am also an Avast user, and using now BoClean. I still keep SpywareBlaster as the only other antispyware program.
My question is:
I tried to install Prevx1 for an additional layer (as I only use Windows XP firewall) but BoClean didn't like it (it didn'tlet me finish the install process) and had to get rid of it.
Is BoClean enough protection?
If not what other progie can I use that doesn't conflict with BC?
I always access the Internet under limited.
Thx. |
|
danny9
Go Ahead, Make My Day
Premium
join:2002-07-14
Clinton Township, MI
clubs: 
·VoicePulse
·Comcast
| I have to wonder if it is BOClean causing the problem. In the years I've used it, never have I had a problem installing anything.
I have used Prevx with BOClean and they have run very well together.
Is BOClean throwing up pop ups?
If so you might want to post this question at the Comodo forums if you need further assistance.
--
I'm an Einstoner and crunch for BBR Team Starfire Einstein @ Home! Join Us! VoicePulse 07/29/04 |
|
Stem Bolt
Premium
join:2002-11-08
Cleveland, OH
1 edit | reply to dadkins
said by dadkins :Yes! Exactly! Well, it aint my fault! Trying to milk a program when it's better days are behind it... How about saving all that venom you have for the new Spiderman movie? It's only a week or so away.
--
Dr. Web, BOCLEAN, Router/Firewall, Firefox, Acronis True Image |
|
Name Game
Premium
join:2002-07-07
North Myrtle Beach, SC
1 edit | said by Stem Bolt :said by dadkins :Yes! Exactly! Well, it aint my fault! Trying to milk a program when it's better days are behind it... How about saving all that venom you have for the new Spiderman movie? It's only a week or so away. He needs all his energy to keep his pirated copy of BOClean updated along with the rest fo the free programs he has download to test and trial..don't confuse the boy.
--
Gladiator Security Forum »www.gladiator-antivirus.com/
Missing Kids
»www.missingkids.com/ |
|
Buddel
If it ain't broke, don't fix it.
Premium
join:2004-03-06
EU
| reply to MADx
YAWN! Where is the padlock? |
|
