Comodo Memory Guardian Beta v1.0.1.5 Bug Reports [Closed]

JamesFrance · September 4, 2007, 1:56pm

Hi Tyler, thanks for the reply, but I have had the BOClean crash again so I will uninstall CMG now.

weaker · September 4, 2007, 2:44pm

@Tyler: I didn’t have the BOClean crash since I installed your modified version.

Tyler_Durden · September 4, 2007, 3:07pm

Ok so the only problem is BOClean. You can uninstall that modified version. Thanks for your help and feedback mates.

Buggy · September 4, 2007, 3:56pm

I just discovered that CMG prevents MSSYS (http://www.mingw.org/msys.shtml) from starting. I have to stop the CMG service to get it working.

Tyler_Durden · September 4, 2007, 5:50pm

Downloadin’ MiniGW Please, explain the problems more clearly, 'cause CMG can’t “prevent anything from start”, if there’s a false alert (but I’m pretty doubt in it), you can add this program into exclusion list.

Tyler_Durden · September 4, 2007, 6:25pm

The bug is actually not in CMG. Problem is with loading ws2_32.dll into rxvt.exe. This issue will be fixed with easy in the next version of CMG, w8 pls for 1-2 days. Thanks for your feedback and bugs

stevenjb · September 5, 2007, 4:00am

Seems like a fix

the new Beta of MemGuard and BOC are playing well together.

Regards,

Steve.

Tyler_Durden · September 5, 2007, 6:31am

again:

Seems like a fix
the new Beta of MemGuard and BOC are playing well together.

Regards,

Steve.

Sry

But I have nothing to fix. As soon as this is a bug in BOC

weaker · September 5, 2007, 11:06am

So I keep your modified version until BOClean is fixed? Will that be announced here too?

panic · September 5, 2007, 12:34pm

I imagine it will get at least a mention here, but the release announcement and download will still be posted on the BOClean forum.

Ewen

Rednose · September 5, 2007, 4:29pm

Cool

I see that Tyler found out what is wrong, and it is realy a CBOClean problem. Well done m8 ;D

Greetz, Red.

Tyler_Durden · September 5, 2007, 6:54pm

Thanks mate I have to dig this, 'cause I want to make CMG better and suitable for users

nubiatech · September 8, 2007, 10:17pm

CMG identifies Bit Defender’s “BitDefender Scan Server” as an attacker.
I added it to the allowed list.
Is this false positive?

More info:
WinXP SP2
Bit Defender 10 Free Edition
“BitDefender Scan Server” running as a service.

CMG log:
[08-09-2007 04:52:13 PM]
process: C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
attack type: buffer overflow
address: 0x03938A21
memory type: heap
action: allow

MorphOS_REBOL · September 8, 2007, 11:41pm

Oh man, I am sure (and in hope) this is a false positive, cause 400 people at Softwin will be fired if it is not.

LOL

Tyler_Durden · September 9, 2007, 7:57am

Installed BitDefender Free 10. I’ve not noticed any alerts. I’m afraid about all that people, but the memory address looks like heap for me, and it has flink/blink in it’s header, so most likely this is not a false alert at all, they just execute code from the heap.

Tyler_Durden · September 9, 2007, 1:41pm

I’ve got this alert. This is not a false positive ! They’re executin’ code from the heap ! Though it has an EXECUTE_READ attribute. This alert will be removed in the next version of CMG though it’s completly wrong to execute anything from the heap ! This can be exploited to avoid DEP protection ! That’s a great programmers mistake of BitDefender.
Generated with Microsoft Display Heap:


*********** Heap 00B50000 Information ********************

    Flags: 00001002
    Number Of Entries: 19611
    Number Of Tags: 0
    Bytes Allocated: 00b66f78
    Bytes Committed: 00bff000
    Total FreeSpace: 00098088
    Number of Virtual Address chunks used: 11
        Chunk[  1 ]: [00b50000 .. 00b60000) 00010000 committed
        Chunk[  2 ]: [00b80000 .. 00c80000) 00100000 committed
        Chunk[  3 ]: [00d80000 .. 00f80000) 00200000 committed
        Chunk[  4 ]: [01140000 .. 01540000) 00335000 committed
        Chunk[  5 ]: [02e50000 .. 03650000) 0052b000 committed
->    Chunk[  6 ]: [03b30000 .. 04b30000) 0008f000 committed
        Chunk[  7 ]: [00f80000 .. 0100c000) 0008c000 committed
        Chunk[  8 ]: [01600000 .. 02b97000) 01597000 committed
        Chunk[  9 ]: [02ba0000 .. 02c54000) 000b4000 committed
        Chunk[ 10 ]: [02d50000 .. 02e45000) 000f5000 committed
        Chunk[ 11 ]: [02c60000 .. 02d32000) 000d2000 committed
    Address Space Used: 037ae000
    Entry Overhead: 8
    Creator:  (Backtrace00000)

 ...

-> 03F88428: 000020D8 - BUSY [01]

In2it · September 18, 2007, 2:45am

I try to install CMG on a vlite Vista Business x64. Get “error starting CMG” Error code: Can not start service 1869771333. Then get new window, Program Compatibilty Assistant, Windows requires a digitally signed driver…program will not work. CPU goes to 100%, task manager shows explorer.exe as the culprit. CMG icon appears.
Services shows both 32 and 64 bit CMG started.
If i reboot CMG icon appears but CPU is 100% with explorer so i remove. Tried twice.
Main progs: Boclean, CFP beta, Eset NOD32 3.0.290.0, O&O Defrag, O&O Clevercache, Daemon4.10, Roboform
Maybe i have removed something i need with vlite?

Tyler_Durden · September 18, 2007, 6:22am

CMG driver is not signed, so it’s normal, though I’ve never noticed 100% CPU usage.

Hendrik · September 18, 2007, 10:30pm

Why remove the alert if it is a correct alert?

Melih · September 19, 2007, 2:57am

we have now decided that it won’t be removed.
thanks
Melih