I downloaded it and it seems confusing, but I can tell it's some powerful software! Also does this work well with prevx1? Good job Comodo for this fine product!;D

Gotta link?

http://forums.comodo.com/index.php/topic,7641.150.html

Thanks. Have to take it out for a spin.

{QUOTE-> I downloaded it and it seems confusing, but I can tell it's some powerful software! Also does this work well with prevx1? Good job Comodo for this fine product!;D <-QUOTE}

I have been using comodo BOClean for a couple of hours...looking good. I have it running alongside Prevx1, Spywareterminator, Online Armor v2 beta, DefenseWall v2 beta and NOD32 with no problems.....so far.

Thanks Comodo for a nice free product!:thumb:

My first impression of this much raved over security app is that it is a "live" memory scanner that sweeps memory to identify traces of any malware logged in the BoClean database and proceeds to disable it while asking the user if you want it also to remove/terminate? the file.

It coughed up a couple times when i tried to bring the Excluder window up and had to terminate it then restart

SSM reports that BoClean's BOC423 constantly "wants to modify the memory of...." smss.exe
{QUOTE-> The call to API function "ProtectVirtualMemory" was successfully intercepted.
This function is used to modify the virtual memory of other program and thereby may alter its behaviour. <-QUOTE}

When i allow it BoClean keeps repeating over & over again trojan horse program was found blah, blah, blah which is my own keylogger and an antique one at that if any of you guys remember tiKl. I place both the exe and dll in the Excluder but i keep getting annoying reminders like that.

If this keeps up i'll have to ditch it because it's beginning to get on my nerves, not only that but i run a .swf at system start-up and each time i get that alert to my keylogger (IN BOCLEAN EXCLUDER :dry: ), SSM pops up that something is trying to remove the flash file. Wonder what that could be since i just installed ComodoBoClean. :-\

I think maybe they geared this thing a little more favorably toward Vista? Dunno, any thoughts, opinions?

My first impression is that it seems to work with a blacklist. :(
My second impression : I uninstalled it because it doesn't fit in my plans, but I couldn't do it via Windows Add/Remove Programs.

{QUOTE-> My first impression is that it seems to work with a blacklist. :( <-QUOTE}

Indeed! And strickly from.......................nothing else? In other words a simple signature/name matcher sort? I also get somewhat frequent firewall OUTGOING alerts
'COMODO BOClean - Anti-Malware' from your computer wants to connect to 92.c8.344a.static.theplanet.com [174.352.200.146], port 51746
Program Requesting...........
c:\program files\comodo\cboclean\boc423.exe

About the same time SSM again pops up with smss.exe attempt to modify memory.
If i remember correctly the vanquish rootkit used to "modify memory" of not just one system process but the entire list of running processes in order to hide itself from Windows API and virtually disappear any folders/files under this sort of stealth.
My guess is COMODO BoClean works in a manner that takes advantage of smss.exe in helping it fish thru memory for malwares.

At any rate it's off-balance on my set-up right now and probably something i should bring up to the COMODO sections if i don't completely lose interest in it altogether. And to think all the HYPE thats been revolving around it for so long. I'm sort of disappointed and expected better even of this free release.

What hype?- zillions of borgs are satisfied with it... your resistance is futile...

I am mainly testing it to see if it could be useful to my friends computer, she gets infected all the time. But I guess I will keep it along side with Prevx1, it doesnt affect system performance a bit and is not intrusive at all (even less intrusive than Prevx1, but then again I dont know if they do the same thing) but I´ll keep it as an extra layer just for the sake of it. I have all this free RAM doing nothing, and it´s free, so what the heck. :)

{QUOTE-> I also get somewhat frequent firewall OUTGOING alerts
'COMODO BOClean - Anti-Malware' from your computer wants to connect to 92.c8.344a.static.theplanet.com [174.352.200.146], port 51746
Program Requesting...........
c:\program files\comodo\cboclean\boc423.exe <-QUOTE}

you dont think that BC is checking for updates?

{QUOTE-> Indeed! And strickly from.......................nothing else? In other words a simple signature/name matcher sort? I also get somewhat frequent firewall OUTGOING alerts
'COMODO BOClean - Anti-Malware' from your computer wants to connect to 92.c8.344a.static.theplanet.com [174.352.200.146], port 51746
Program Requesting...........
c:\program files\comodo\cboclean\boc423.exe

About the same time SSM again pops up with smss.exe attempt to modify memory.
If i remember correctly the vanquish rootkit used to "modify memory" of not just one system process but the entire list of running processes in order to hide itself from Windows API and virtually disappear any folders/files under this sort of stealth.
My guess is COMODO BoClean works in a manner that takes advantage of smss.exe in helping it fish thru memory for malwares.

At any rate it's off-balance on my set-up right now and probably something i should bring up to the COMODO sections if i don't completely lose interest in it altogether. And to think all the HYPE thats been revolving around it for so long. I'm sort of disappointed and expected better even of this free release. <-QUOTE}
You may as well give up.............it's free now and that alone will make some hype it, prepare for the floods in the coming weeks/months! ;D

To the OP, it is BOClean 4.22 with a slightly different GUI, otherwise the good & the bad is still the same.

{QUOTE-> What hype?- zillions of borgs are satisfied with it... your resistance is futile... <-QUOTE}
LOL. It's only software man, let these zillions of borgs be satisfied, I don't care. I'm satisfied with not using BOClean (who cares), that's one security software less on my computer and one more post added to my post counter. :)

{QUOTE->
SSM reports that BoClean's BOC423 constantly "wants to modify the memory of...." smss.exe

<-QUOTE}

Hi EASTER.2010,
I wonder if your problem does not come because you install BoClean "AFTER" SSM. Because I have no problem at all running them together.
BoClean has been on my computer for the last three years but I installed SSM only three or four month ago.

Maybe others could confirm this I don't know.

Its got a couple of bugs in the new version, one of them has already been reported on the Comodo forum.
As for the icon in the tray, it SUCKS, no way is it better than the little gray box with the vaccum.

Quick question. I'm behind a Router FW and use Prevx1 and Avira PP with Windows Firewall. I have been thinking about replacing the Windows FW with either PC Tools or Comodo Pro FW. However would I just be better off keeping Windows FW and adding BOclean instead for some added protection?

{QUOTE-> Quick question. I'm behind a Router FW and use Prevx1 and Avira PP with Windows Firewall. I have been thinking about replacing the Windows FW with either PC Tools or Comodo Pro FW. However would I just be better off keeping Windows FW and adding BOclean instead for some added protection? <-QUOTE}
I would say stick with WinFW and add BoClean. Comodo FW is a good choice, but I think there's a bit of overlap using it with Prevx1. In the end it depends on how much layering you want and how much ram you have to spare. Router, WinFW, Avira & BoClean may be all you need...

It's basically the same as the former version of BOClean.Looks like the configuration options are the same.Just a different look/logo.

{QUOTE-> My first impression is that it seems to work with a blacklist. :(
My second impression : I uninstalled it because it doesn't fit in my plans, but I couldn't do it via Windows Add/Remove Programs. <-QUOTE}
It,s sure not for u Eric. I wonder what u were expecting from it? It has always been
a signature based ( black list) memory scanner and it is! It should have been clear to u from all.

Ok, I always wished to give it a trial that was not possible. Now it,s free and I have added it on my system as I like to try these scanners although I believe that security is more than scanners, one scannner is quite enough and that is ofcourse a good AV.

I am realy a bit dissapointed, GUI is not not so nice( very small and rather cluttered window or right click), popups are rather not so clear and uniform in size, they are of different sizes but GUI is not a problem in reality. Also I think as they were having troubles so ofcourse they don,t had time for GUI, they were concerned with actual malware detection and removal than a fancy GUI.

BOC423.exe crashed multiple times while trying to delete malware files. Otherwise it is not taking much resources except CPU cycles on starat up, it is probably scanning OS memory at
that time.

BTW how can I disable this popup while still having popups if it detects a malware. I get it when I am offline. Any BOClean user?

{QUOTE-> It,s sure not for u Eric. I wonder what u were expecting from it? It has always been
a signature based ( black list) memory scanner and it is! It should have been clear to u from all. <-QUOTE}
I couldn't try it, because I had to buy it. It's free now, but I can't use it, because of the blacklist principle.

{QUOTE-> Hi EASTER.2010,
I wonder if your problem does not come because you install BoClean "AFTER" SSM. Because I have no problem at all running them together.
BoClean has been on my computer for the last three years but I installed SSM only three or four month ago.

Maybe others could confirm this I don't know. <-QUOTE}

Thats a valid possibility and thanks for offering it. In cases including my own, i suppose some of us are already adapted to HIPS/Behavioral Blockers as well as other AS's that perform basic memory scans from a blacklist/sig database. They work, make no bones about it, so it just comes down to what is most preferred by the user and the results they are provided.



{QUOTE-> It,s sure not for u Eric. I wonder what u were expecting from it? It has always been
a signature based ( black list) memory scanner and it is! It should have been clear to u from all. <-QUOTE}

Thanks for the confirmation. Like mentioned in other previous posts of mine regarding BoClean, not untill only now have i ever even tried this one, and just as suggested it's mostly a memory scanner that i have no doubts is a very beneficial one for most where it is fully compatible.

{QUOTE-> Router, WinFW, Avira & BoClean may be all you need... <-QUOTE}

Can BOClean detect and block something that Avira (or Kaspersky, NOD32 etc.) can not and, if can, what it is exactly? It looks like that BOClean only occupays space in system tray and bits my pc resources doing nothing that my antivirus can not do. ???

{QUOTE-> Hi EASTER.2010,
I wonder if your problem does not come because you install BoClean "AFTER" SSM. Because I have no problem at all running them together.
BoClean has been on my computer for the last three years but I installed SSM only three or four month ago.

Maybe others could confirm this I don't know. <-QUOTE}
SSM, KIS, Neoava, PS, who knows??

{QUOTE-> Hi EASTER.2010,
I wonder if your problem does not come because you install BoClean "AFTER" SSM. Because I have no problem at all running them together.
BoClean has been on my computer for the last three years but I installed SSM only three or four month ago.

Maybe others could confirm this I don't know. <-QUOTE}
I has SSM before, tried BOclean with it and no problems.
Even with NeovaGuard( instead of SSM) no problems.

Hello,

I don't know about the old BOClean, but I can comment on the few hours I have been testing it. Too early for any solid conclusions but:

- Install did not go smoothly the first time alongside Ashampoo firewall. The updater got stuck (without any wording on it, just an approx. 300x100px window stuck...).

- Install went ok the second time with Comodo firewall, but again, the updater could not complete (although it had the full logo). Requesting update manually got it stuck again... Seems like the updater does not work.

- GUI is a bit archaic and a bit broken; the configurations actually pop off screen! to the right! Looks like an 98 app... well ...

- Effectiveness? I don't except to see anything as FF / Opera will never result in such ... But I'll give it a few more spins.

- Memory / CPU print lower than what some reported, all together around 9MB.

Mrk

{QUOTE-> - GUI is a bit archaic and a bit broken; the configurations actually pop off screen! to the right! Looks like an 98 app... well ... <-QUOTE}

Yeah, noticed that too right off the bat plus it was a struggled to keep the Exclusions box from hanging up when browsing to files i needed to place in it, they did finally take however. Since so many users were bombarding the forums with wanting this free version as soon as they could, i summise COMODO gave them their wish. I'm sure the GUI will eventually get a new look (archaic, yes), the upper scan screen definitely is reminisence of 98 days without a doubt but then it's the function not the looks most depend on. Expect bug fixes and facelifts since COMODO surely will act on concerns IMO.

{QUOTE-> Quick question. I'm behind a Router FW and use Prevx1 and Avira PP with Windows Firewall. I have been thinking about replacing the Windows FW with either PC Tools or Comodo Pro FW. However would I just be better off keeping Windows FW and adding BOclean instead for some added protection? <-QUOTE}I don't use Prevx1 but the rest of it I have used for months. No problem what so ever. Switched around with the FW you have spoken of no problems. I agree with monty64 :thumb:

{QUOTE-> It,s sure not for u Eric. I wonder what u were expecting from it? It has always been
a signature based ( black list) memory scanner and it is! It should have been clear to u from all. <-QUOTE}He knows that...don't understand his post. Also all versions that I know of come with their own uninstaller. Never ever had a problem with that. :P

{QUOTE-> Quick question. I'm behind a Router FW and use Prevx1 and Avira PP with Windows Firewall. I have been thinking about replacing the Windows FW with either PC Tools or Comodo Pro FW. However would I just be better off keeping Windows FW and adding BOclean instead for some added protection? <-QUOTE}

Keep Windows built-in FW.

I think you should read this interesting thread on this over at DSLReports:

http://www.dslreports.com/forum/remark,14671194~days=9999~start=340

Read LinkLogger and B's comments right in the middle of that page.


BoClean is a very nice addition and the best anti-trojan of the market.

{QUOTE-> Its got a couple of bugs in the new version, one of them has already been reported on the Comodo forum.
As for the icon in the tray, it SUCKS, no way is it better than the little gray box with the vaccum. <-QUOTE}Wow, is it that bad. I suggested a dragon to replace the vaccum. I will reserve judgement on that aspect. :(

EDIT: In the other thread I see where BLUE posted screen shot...I now see the icon in the tray in that screen shot :P :P :thumbd: Not as good as the old. I agree.

Thanks 19monty64, Sehisin, and mercurie, I'll stay with Windows XP FW and give CBOClean a spin. It may be overkill, but if it runs as light as people are saying then what the heck. Thanks again to everyone that answered me and take care.

{QUOTE-> Hi EASTER.2010,
I wonder if your problem does not come because you install BoClean "AFTER" SSM. Because I have no problem at all running them together.
BoClean has been on my computer for the last three years but I installed SSM only three or four month ago.

Maybe others could confirm this I don't know. <-QUOTE}

I installed BoClean after SSM. Both working fine here.

Mine keeps closing down and I don't know why. Posted the problem in Comodo's BOclean forum and am awaiting an official response.

Working great here.Along with Dr web ,regdefend and regrun gold

Hi why RD and RR together?

{QUOTE->
BTW how can I disable this popup while still having popups if it detects a malware. I get it when I am offline. <-QUOTE}

For any of these type of message popups that you could do without,

http://johanneshuebner.com/en/clickoff.shtml

I have used this App. for a couple of years, clean and free,

in my case I use it daily to avoid seeing any of those PITA Windows popup reminder messages such as,

" If you don't have Active X on, the page may not display correctly".

" Are you sure you want to exit."

It only stops you seeing individual messages that you decide you don't want to see.

thanks for the tip.
But I think it,s the job of a software to control its own behaviour via its settings. I will not like another software just to control the bahaviour of the previous one.

I installed the pre-release boclean at Comodo, and it seemed OK with a few things missing like the support link. Then after a day or two I was exploring the Boclean menu bar, and shortly after I got a message that Boclean had to shut down. This happened a few times, so I uninstalled and re-installed it, and it's been good since. I have noticed a few wierd things like losing my internet connection momentarily a few times. This hasn't happened to me in ages, so for it to happen after I installed Boclean is suspicious. I'm letting Boclean soak for a while to see if it has to settle in. :)

It seems to me people are reporting more problems with BOC as a free version compared to when it was a paid program.
Could be because more people are now using BOC because it is free but on the other hand 10 years in the business and BOC was practically a quiet program.

{QUOTE-> I installed the pre-release boclean at Comodo, and it seemed OK with a few things missing like the support link. Then after a day or two I was exploring the Boclean menu bar, and shortly after I got a message that Boclean had to shut down. This happened a few times, so I uninstalled and re-installed it, and it's been good since. I have noticed a few wierd things like losing my internet connection momentarily a few times. This hasn't happened to me in ages, so for it to happen after I installed Boclean is suspicious. I'm letting Boclean soak for a while to see if it has to settle in. :) <-QUOTE}

Regarding your dropped Internet connection problem, on the Comodo support forum at least three users of BOClean has reported that under certain circumstances BOClean totally trashes your Winsock. There´s obviously an option that allows BOClean to clear out some kind of Winsock data or sumthing and that seems to cause problems for some users. Maybe that could be a part of your problem?

Installed Comodo BOClean on a Win XP SP2 machine that had never had BOClean. Found that BOClean misidentifies most compiled AutoIt scripts as malware and shuts them down. The "excluder" failed to retain its settings, hence BOClean had to be uninstalled. The uninstaller could not be activated via Add/Remove. A fairly shabby performance, IMHO.

E-Buzz, Thanks for that info :)

I have never had boclean on my machine ever....until it was released at comodo
I guess I'm one of the lucky ones because I have'nt had any problems.

I have un installed it twice, and all is working fine, but, I'm still playing with it.

I have XP Home SP2, running Avira, Spyware Terminator, Comodo FW Windows defender, Spyware Blaster startup programs.

Have used SAS free, AVG AS, a-squared, and Bitdefender8 all on demand


These programs seem to work just fine with Boclean, at least on my machine.

{QUOTE-> Regarding your dropped Internet connection problem, on the Comodo support forum at least three users of BOClean has reported that under certain circumstances BOClean totally trashes your Winsock. There´s obviously an option that allows BOClean to clear out some kind of Winsock data or sumthing and that seems to cause problems for some users. Maybe that could be a part of your problem? <-QUOTE}

That has already happened to me.I could not even repair my winsock.At the time i did not know Boclean may have caused it.Happened several days ago.I now see the it under configure Boclean -- uncheck Automatic cleanup of winsock connectivity.Wish i had noticed that before

I like running Boclean,but that caused me a headache.Glad i had my system backed up:)

I bought the paid version of BoClean last year, but had to uninstall it and apply for a refund (promptly given) because it repeatedly froze my system (Windows XP), which normally is not prone to locking. This week I put the free version on, and within 24 hours my system froze again - which it has not done since the last time BoClean was on it.

As I mentioned earlier, I had briefly lost my connection a few times after installing the new free version, and lost a sys tray icon, which came back after re-booting. They say you can uncheck the wynsock, but then it will be something else. The system seemed a little unstable for brief periods, but nothing too noticable. I figured I would let BOClean soak for a week or two to see if it would mellow out, but later decided I really don't need it.

Works like a charm here. No problems whatsoever. Btw I unticked all the "Automatic blabla.."-options.

A lovely program - no sign of trouble here.
On the basis of my experience I would recommend that everyone should consider it

Works well for me. No problems. Had to uninstall it at the weekend because of a problem un related to BOClean; it's back on now and working well.

I had some probs with it remembering the EXCLUSIONS among other things. Anyway is not for me but i am glad to see those who favor it find it does what they expect from it.

I found out what my problem was (post 33).

Ati's Catalyst Control Centre was causing BOclean to shut down. I just disabled CCC from autostarting and all has been well since.

It's messed up my internet connection in the beginning until I unchecked 'automaticall clean up of winsock connectivity' and since then I've had no problems.

I came across the same ATI CCC problem Jake was having, but it only seems to be with the latest version of CCC in my case, went back to the previous version and all is well.

Working sweet in here after a issue I had with the update issue because of running ULA. What I did was access the BoClean folder, right-click on every single item contained within, click on the security tab and grant full rights to the item ULA (If you're a XP Home user then you need to reboot in SAFE MODE to view the security tab):

189597

From that moment the annoying update pop-up is gone and Comodo BOClean updates normally ULA.

Note: The Comodo BoClean FAQ says to give permission to BOC422.EXE (423 today as it was referring to the previous version), but it my case didn't work so I granted full rights to all of them. Later on, I noticed that ST asked me if I wanted to give BoClean.DLL permission to call home, then I figured out why giving full rights only to BOC423.EXE wasn't good enough.

Hi there,

I still use my good old paid BOClean version and will stick with it for a while. No need to try the new free ComodoBOClean yet.

true north

Some of the pop-up notification windows could be reworded. Comodo is a professional enough company that I would not expect all-caps in a notification window. "This program DOES NOT need to be updated!" Come on... How about "There are no available updates" instead?

You ALREADY HAVE the latest updates nothing to download....

BOClean was doing it this way before it became a part of Comodo.

I've had the paid version of BoClean for about six months. It has never alerted me to anything. It's hard to determine its effectiveness.

{QUOTE-> I've had the paid version of BoClean for about six months. It has never alerted me to anything. It's hard to determine its effectiveness. <-QUOTE}
Head on over to MySpace and download some of the fake video codecs that will unleash trojans.

{QUOTE-> Head on over to MySpace and download some of the fake video codecs that will unleash trojans. <-QUOTE}

Very wise advice (NOT!), as new variants of this malware are hitting the scene on a daily basis...

NO AV or AT is 100% certain to get them all, so I suggest you do NOT experiment!

Yes indeed.
That's the curse of all blacklist softwares : no signature = no detection = no removal and you are infected and give the infection more than enough time to do its evil job.
Meanwhile your daily IMAGES are also infected and those infections will be re-installed again, once you use these images for restoration. :(

{QUOTE-> Yes indeed.
That's the curse of all blacklist softwares : no signature = no detection = no removal and you are infected and give the infection more than enough time to do its evil job.
Meanwhile your daily IMAGES are also infected and those infections will be re-installed again, once you use these images for restoration. :( <-QUOTE}

Hi Erik you are very against blacklisting,for you what are the advantages with whitelists,more controll etc ?don't trusting Vendors blacklist ?