Boclean False Positive !???!

Discussion in 'other anti-trojan software' started by Huupi, May 21, 2007.

Thread Status:
Not open for further replies.
  1. Huupi

    Huupi Registered Member

    Joined:
    Sep 2, 2006
    Posts:
    2,024
    Hi, This is strange,everytime i start, Boclean pops up "trojanhorse found in system 32\drivers\aec.sys, name malware is DLDR-GAMES.D
    BC give me the choice to remove so i did,but after restart the system or shutdown BC and restart same message pops up.Prevx and SAS found nothing.I googled it but nothing returned, maybe a false positive !?!
    Am i the only one with or there more guys out there with same experiences.
     
  2. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
  3. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
  4. Perman

    Perman Registered Member

    Joined:
    Nov 23, 2005
    Posts:
    2,160
    Hi, folks: Yes, indeed, I have sensed a foul smell. In addition to the above, it also flagged YAHOO.COM as a torjan too, perhaps more and more. Their data bases are compromised. Just wonder has this had happened during pre-comodo era? I have no other choice but uninstall IT from my box until further evaluation. Damm, this is a text-book example to ruin a good app.
     
  5. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    Hardly ever, and if it happened it was usually fixed within an hour.

    And what about all those who are responsible for other's computers with BOClean on it.....

    GGGGrrrrrr :mad: :mad: :mad:

    One starts to wonder about the quality control by Comodo....
     
  6. Threedog

    Threedog Registered Member

    Joined:
    Mar 20, 2005
    Posts:
    1,125
    Location:
    Nova Scotia, Canada
    I had the same thing pop up. Said it cleaned it so rebooted it and it was back again. Thinking it was a pesky one, and kinda wanting to do a reformat again, I reformatted and installed it again and the pop up was back. Kinda figured it was a FP and rolled it back to the image before the boclean install. I am using the 4.22 version BTW. I checked out some of the forums around and see lots of others having the same problems.

    As much as I like and have trusted Boclean over the years, I think I will ditch it for now until this Comodo thing gets straightened out.
     
  7. mercurie

    mercurie A Friendly Creature

    Joined:
    Nov 28, 2003
    Posts:
    2,442
    Location:
    Sky over the Wilders Forest
    While I know BOClean has had a few false positives in the past. This is a first for me. I too have suffered the same. I trusted BO and removed the file I did fortunatley have a restore point of just 45 minutes ago. It of course picked it up again and I opted to not remove the file. :p

    Could as some have suggested BOClean be slipping since Comodo :'( o_O
     
  8. Perman

    Perman Registered Member

    Joined:
    Nov 23, 2005
    Posts:
    2,160
    Hi, folks: Strange thing has happened. After BoClean is kicked out of my box, I mean a completely clean job, including drivers etc. I still have AEC.SYS running normally--CD/DVD Drive Acoustic Silencer. Boclean indicated this file has been cleaned so has been the associated registry. Could this be a F.P. of F.P. or a completely melt-down of BoClean's functionality ? A lot strange things do happen during this post-comodo era.:D First, the hot-potato style of v.4.2.3, everyone got a piece of it and everyone's hands got a x-degree burn, and now a noisy F.P. and perhaps a F.P. of F.P. Just curious to know what is NEXT ? Come on, folks at Comodo, pls wake up, honey moon is OVER, get to work HARD. Can you ?, please.
     
  9. Pedro

    Pedro Registered Member

    Joined:
    Nov 2, 2006
    Posts:
    3,502
    Probably related to Vista ready updates. That said, when it failed to update signatures, even after reboot, and reinstall, BOClean is not on my pc.

    I'd wait for further acomodations / update to the program.

    Just don't blame Comodo as your pet scapegoat. It's still Kevin running the show. I think something went wrong with the Vista readiness. That's about the only thing added, besides graphics.

    That's what i think anyway. Give them time. But it sure looks like very bad. I'd hate to be on your shoes..
     
  10. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,827
    Location:
    USA
    I sent the file to virus total: No virus was found, I did not delet the file. I wanted to check it out first.
     
  11. Mongol

    Mongol Registered Member

    Joined:
    Jul 24, 2004
    Posts:
    1,581
    Location:
    Houston, TX
    It's been fixed with the very recent update. In the good old days we would of heard something from Kevin in short order, ahhh the good old days...:rolleyes: :cautious: :)
     
    Last edited: May 22, 2007
  12. argus tuft

    argus tuft Registered Member

    Joined:
    Sep 20, 2006
    Posts:
    280
    Location:
    Australia
    Just happened to me, too.
    BOClean actually just died on me, i noticed that the icon was green for a while, then it just disappeared
    When I restarted boclean, it immediately popped up a message saying "trojan online games has been detected in C:\windows\system32\drivers\aec.sys" blah blah blah. I suspected it wasn't a real trojan, so I told boclean not to delete it. phew!
    However, when I dragged aec.sys into the interface, boclean didn't react at all. o_O
    Furthermore, it wasn't mentioned in bocleans log o_O

    Just grabbed the latest update after reading Mongols' post.
     
  13. mercurie

    mercurie A Friendly Creature

    Joined:
    Nov 28, 2003
    Posts:
    2,442
    Location:
    Sky over the Wilders Forest
    Updated just now don't know if it cures or not.

    Like Kevin use to say, "Come and get it". Or some such thing. :)
     
  14. Joliet Jake

    Joliet Jake Registered Member

    Joined:
    Mar 1, 2005
    Posts:
    911
    Location:
    Scotland
    The update sorted it. As for any security app which flags a potential nasty, I always do a wee bit of research before hitting delete. Can save a lot of time and hassle in the long run. I have unchecked the 'unnattended clean up and removal' option so I can have the final say on file deletion.

    As for the AEC.SYS file returning after re boot, Windows automatically re installs this file.
     
  15. tiptop78

    tiptop78 Registered Member

    Joined:
    Apr 6, 2006
    Posts:
    31
    Have had Boclean for five years, seen nothing but F/P's since the Comodo take over.

    Sadly I have removed my trusty vacume cleaner.
     
  16. CJsDad

    CJsDad Registered Member

    Joined:
    Jan 22, 2006
    Posts:
    618
    I'm sooooooo glad I didn't remove the download for version 4.22 from my PC.
    Something kept telling me to hold on to it for safe keeping, I see why now.
    This isn't nsclean any more but some days I wish it still was.
     
  17. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    Hi,

    Just for your info:
    This FP was also happening with BOClean version 4.22
     
  18. CJsDad

    CJsDad Registered Member

    Joined:
    Jan 22, 2006
    Posts:
    618
    My reason for staying with 4.22 goes beyond this FP, I went back to 4.22 before this FP outbreak.
    Also I never saw anything on my PC from this FP that has been occuring recently so I wonder why I'm not getting it, is there some file or link that I should click on, is it happening only on XP computers?
     
    Last edited: May 22, 2007
  19. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
    Yes, i can confirm this too as upon reboot this morning i got whacked with it before the latest update. :cautious:

    Running XP.



    snowbound
     
  20. CJsDad

    CJsDad Registered Member

    Joined:
    Jan 22, 2006
    Posts:
    618
    Still haven't seen it, but I'm on a Vista PC now, although that shouldnt matter, should it?
     
  21. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,703
    Location:
    Texas
    Hi Guys,

    Perhaps it's involved with Tuesday's M$ patch. If you did not patch XP maybe you don't get the FP.

    Bo has 4 updates today, which seems to have fixed the FP, at least for me.

    Take Care
    Rico
     
  22. Huupi

    Huupi Registered Member

    Joined:
    Sep 2, 2006
    Posts:
    2,024
    Haven't patched yet,i gues not related to M$.
     
  23. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,827
    Location:
    USA
    Last night my sound cards drivers got wiped and the software for my Logitech Bluetooth keyboard. I just looked at the configuration settings for BOClean they were reset by..what?..the bad update maybe? I just reinstalled all the sound cards software, and reconfigured BOClean. I still have to reinstall setpoint on my computer, and it is a two part instilation.
     
  24. extratime

    extratime Registered Member

    Joined:
    Oct 14, 2005
    Posts:
    100
    It's a good thing XP has a system restore option and MS reinstalls system drivers on reboot otherwise Comodo's customers would be far more annoyed today.

    If you look at the Comodo forum this was not the only false positive (though it was the most common) in the last update.

    They need to take to better care with definition updates and respond faster in the future.
     
  25. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,703
    Location:
    Texas
    Hi,

    From this Bo thing, I found SuperAdBlocker, somehow got unticked to start with windows. Bad Bo!

    Take Care
    Rico
     
Thread Status:
Not open for further replies.