Firstly, after a recent update, I now get a rather ugly window titled “BOC 423” which shows various files scanned. I’ve looked at configuration options available but nothing obvious seems to stop this window from appearing! It never happened before.
Also, similar to one of the earlier posts, everytime time my PC boots BOC starts scanning the various files, displays files scanned in the unwanted window and then freezes. BOC then shuts down. It can take at least 2 attemps to get BOC running again. I then access the report, via the menu, and find the following:
07/27/2007 21:17:03: DLDR-BAGLE.B VARIANT STOPPED BY BOCLEAN!
Trojan horse was found in memory.
‡} contained the trojan.
Active trojan horse WAS shut down. System safe.
This has been happening every time I boot the machine and eachtime the line “??? contained the trojan” has a different value like q and . Also HIPS keeps asking me if “c:\windows\fld.exe is allowed to run”. I reckon this is causing part of the problem.
BOC first logged an entry a while ago probably when my son (aged 10) visited some doggy gaming site! Heres the log entry
05/21/2007 22:03:24: G:\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS
Trojan horse was found in above file
DLDR-GAMES.D MALWARE STOPPED by BOCLEAN!
Logged in user: nick
Active trojan horse was shut down. System now safe.
Trojan horse was removed, registry cleaned.
But since then I get the “DLDR-BAGLE.B” problem reoccuring.
I run all the comodo firewall, antivirus & BOC together, largely because I want to reduce the time spent researchng, installing and testing other free security products. All updates have been aplied. I’m very hounored for the fact that BOC sacrifices itself to save my beloved software, though it is annoying havng to bring it back to life and annoying that the culprit file/registry settings havn’t been fixed.
I tried the trojan simulator mentioned in an earlier post. Only the HIPS process was able to identify the exe. When it was allowed nothing else detected the trojan simulator. I can’t guarantee that my son will click the right option (due to his gaming addiction!).
I am on the brink of looking else where and even start paying again for something like NOD32 or BitDefender combined with another anti-malware/spyware program I’ve yet to decide on.
Any advice? Good/Bad/otherwise?