Who knows an alternative to replace discontinued COMODO BoClean 4.27?

[polonus]

Hi malware fighters,

Within a day from now COMODO BoClean 4.27 which ran as a resident additional scanner next to avast is going to be discontinued. I do not want to go on using Comodo Anti-Malware combined with their Firewall.
I have MBAM and SAS free editions, that are updated regularly, but are non-resident and not real scanning anti-malware. For the moment RUBotted is still there as a anti-bot realtime scanner. The only realtime protection next to avast I have now is SpywareBlaster. My question is their a free alternative real-time scanning for mainly trojans that I could install to replace the discontinued COMODO BoClean 4.27?

Like to hear your malware fighters' suggestions? OK, and it must be a realtime scanner to be used in combination with avast!

polonus

[DavidR]

Well you can hardly call SpywareBlaster real-time protection as it isn't a scanner of any kind and it wouldn't protect the registry, etc.

[rdmaloyjr]

Spyware Terminator?

[polonus]

Hi rdmaloyjr,

Thanks for that reply. Does not Spyware Terminator conflict with avast resident av? Is this a realtime scanner that sits there next to my clock icon, and can I use it on XP SP3?

Damian

[Omid Farhang]

Hi, Damian

if you are asking about my opinion, in the my opinion, after what I had in paste, I think less "real time services" and more prevention is much better, there are so many antispyware and antivirus and other kind of anti bla bla...!!

I think I've played with malwares more than you, you know what kind of risks I've done, after doing all of them I found that really one "Real time scanner is enough"!! and we should change ourself behavior, not more real time protection tools.

one good antivirus tool and now usually most of them cover spywares too, a firewall is all the real time protection needed.
we protect our system from virus (else than security part) to prevent viruses impact on out system performance, so many real time protection is almost same virus behavior...

ok, now I try to show what I mean:

how a virus come to computer? from an external source.
how many external source a computer have? Internet, LAN, USB things, CD/DVD/Floppy/BlueRay/HDDVD
now if we try to get a protection for each one of those source, don't you think those protection tools would cause we see our computer has been lagged down?!
I think best security suite software configuration is nothing if user himself act risky.

I agree COMODO BoClean had nice features, but my question is "why Allowing virus to come near computer to protect ourself from them with nice programs such as COMODO BoClean?"

is not immunizing external sources enough? why so many protection inside computer?

1. Using a safe browser that DOES NOT support features that let viruses come.
2. decrease chance of virus to load by immunizing HOSTS
3. disabling "Autorun" feature.
4. move all network traffic to antivirus temp/proxy to scan them.
5. scan all new/unknown files using VirusTotal and then run all those programs that can run using Sandbox
6. use trusted sites as much as possible and ignore unknown sites.
7. block all unwanted network traffic using a safe firewall.
8. use so many on-demand scanner such as Different antispyware and different Live Antivirus discs.

with steps above, computer is very protected and safe, why so many more real-time protection?
in above configuration computer is in fastest configuration and also protected.

[polonus]

Hi Omid Farhang,

That is why I am so glad you came to join us here in the avast forums. My experience with virus was only once, and that ruined one OS (the days of good old Win 98) and then I decided that would not happen to me again and I joined the avast community and an anti-spyware offensive in the Netherlands. And now the experience with virus and malcode (yes there is a difference between OS and software dependant virus and OS-independant malcode like on websites) is where I tell victims how to manually delete malware from their OS or analyze the outcome of tools.
I agree with you that SafeHex can help against infection enormously. Do not do things with computers that may infect you (torrents, keygens, which is not illegal but dangerous because riddled with malcode), then I also believe in layered defense: firewall, in-browser security (NoScript, RequestPolicy, CSP, finjan, firekeeper, perspectives), a good solid resident av solution like avast for instance, some additional on-demand free anti-malware solutions like MBAM, SAS and spywareblaster, and keeping third party software updated and fully patched with Secunia SPI.
On a Windows platform it is vital to give malware less manoeverability using just normal user rights and use full admin rights only for updates and new software installs, this will prevent 92% of the known malware from doing extensive harm onto the OS and in the registry.

polonus

[Omid Farhang]

polonus, I really like to speak someone like you who can understand what I say and I think, I like to share my opinion and you correct them and let me learn from you.

you said:

in-browser security (NoScript, RequestPolicy, CSP, finjan, firekeeper, perspectives)

here is what I like to know your opinion, all of these add-ons together make you busy enough that much you forget about visiting sites and keep answering their questions and allowing things and finally not showing the web sites right.

all of those add-ons are good idea, but the problem is that they need come together and join in one as a stand-alone program to don't slow down firefox, make it un-stable and be annoying.

what I want to say is something like Outpost Firewall Pro -> Web Control component that let us Enable/Disable different things for IE (Such as Cookie, Java Script, Referrer URL, Ads and...). I say they should come together with so many many improvement to don't need user configuration for good sites and also work for all browsers in one place. (act like a antivirus that check all the traffics, no matter which browser, using "proxy" feature).

I'm not agree with using them as what they are no (else than NoScript that I use now).
my personal opinion is "over" about those, they hurt more than help, I love security, but I want to enjoy my web surfing too.

[Mike Buxton]

Hi,

If SpywareBlaster provides any protection at all, however limited that may be; is that protection not effectively real-time?

On the other hand, who would suggest "respect" and "fear" are synonymous?

[Tarq57]

You could try Threatfire, a behaviour blocker. The "Defense+" component of CIS is a HIPS, which should intercept new unknown process attempting to run or install. (As should TF)
I know of no application like Boclean, that just runs in memory and stops (known) trojans. On the other hand it might be considered that TF or D+ might be superior in that they don't rely solely on a blacklist.
One of the cool things about Boclean was its low usage footprint - unless it was in the process of stopping a nasty. TF is generally using between 7 and 12 Megs on my system, the times I've looked.