HIPS & BOClean

Reading from Comodo: “HIPS can prevent spy ware and malware from ever being installed on a user’s PC. With HIPS activated, the user is warned EVERY time an unknown executable (.exe) attempts to run. If the application is not in Comodo’s safe list database, the user is alerted and asked to allow or block the application from running. This type of approach is effective with a highly extensive “white list” database.”
“BOClean is designed to complement traditional anti-virus solutions by checking executable files just before they run. BOClean consults its database of 278,000 malware signatures (which equates to nearly 2 million malware variants) and instantly kills the process if malware is detected.”

If HIPS consults a white list for every executable, doesn’t that render BOClean unnecessary?
Correct me if I am wrong, but from what I understand it does.

Please note that I am no expert :slight_smile:

But do you think the HIPS White List would be ever complete ? So if it is not on the HIPS White List the User should decide, and if he decides wrong it would be better that the CBOClean’s Black List jumps in to tell him that he made the wrong decision :slight_smile:

Greetz, Red.

Nice point, Red. Neither list (black/white) will ever be complete because just as legit programs are created every day, so are bad programs.

I think BOClean will still be needed. Even with HIPS, malware can run if you allow the .exe file to run.