BleepingComputer.com: Antivirus, Antimalware, And Antispyware Resources

The MVPS Hosts File is an excellent resource for those who like or want to use custom a HOSTS file.

For those who may not be aware, BC's Mvps Hosts File Update topic is here.

Now eight years on since the start of this thread, I would like to know what the current opinion is regarding SpywareBlaster, what is its purpose, and is it still a useful tool to have on board?
I do have it, but not yet had anything happen to put it to a test of any sort, so any answers will be welcomed.

Nev.

SpywareBlaster is a program that restricts the actions of potentially dangerous sites by adding a list of sites and domains associated with known spyware, advertisers and marketers to the browser's "Restricted Sites Zone". SpywareBlaster prevents the installation of ActiveX-based malware, browser hijackers, dialers, and other potentially unwanted software and blocks tracking cookies.

It can be used with Internet Explorer and any browsers that use the Internet Explorer engine such as AOL web browser, Avant Browser, Slim Browser and Maxthon (formerly MyIE2) and provides protection for Mozilla Firefox, Netscape, Seamonkey, and Flock. For more information, see SpywareBlaster System Requirements & Supported Browsers.

How does SpywareBlaster work? It adds sites to the restricted zones by adding the domain as a subkey under the registry key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains. A dword is then added to that domain named * and given a hex value of 4 to specify that it is part of the Restricted Sites Zone. More specifically, Spywareblaster sets the "killbit" on the CLSID (Class ID) of known spyware. Every program has a CLSID that is unique to the type of program. Once Spywareblaster enables (writes) those killbits they are "locked in" and any identified spyware cannot be opened. Spywareblaster writes these killbits in and then stays off until you need to re-write them again with an update. Why is all this important? Some types of malware are known to alter Trusted Zones, Ranges and ProtocolDefaults set for a browser.

If you have upgraded your browser to Internet Explorer 8 as Microsoft recommends, the SmartScreen Filter provides similar but more comprehensive protection by identifying and blocking sites on the web that are distributing malicious software.

SpywareBlaster also includes the ability to keep encrypted backup copies of the Hosts file so if its altered by malware infection, you can easily restore a good backup copy. Unlike many other security tools, SpywareBlaster does not run in the background. Instead it only requires installation and then enabling of all protection. After that you only have to check periodically for database updates using the built-in "Check for Updates" feature and then enable all protection again.

Javacool's Knowledgebase provides a variety of articles relating to SpywareBlaster, information about AutoUpdate, Troubleshoot and Tools (which explains the HOSTS file). For any issues or information not addressed, users can also check at the Official Javacool Software Forum. Information about updates and news can be found at the Javacool Blog which also provides links to the the online forum and Knowledgebase.

If you are not sure how to use SpywareBlaster, please refer to the How to use SpywareBlaster to protect your computer tutorial. In addition to explaining how to use the tool, the tutorial covers other built-in tools and features to include:

Quote

Quote

I recommend using SpywareBlaster...I have used it since the first release years ago and have continued to install each version update.

Many thanks for that explanation and all the different links provided, it will be of use for many others no doubt. I will certainly be keeping SpywareBlaster on now I know what it is, and how it works.

Nev.

You're welcome.

I am quite disappointed with the absence of Comodo security solutions, it is an award winning firewall and also it has been rewarded as No.1 internet security from Matousec's Proactive Security Challenge.

Does anyone know anything about System Mechanic Pro by iola? Dell sold it to me but I can't seem to find reviews, ratings, or much about it. I do notice they are not a member of the ASC.

http://www.antispywarecoalition.org/about/index.htm.

This post has been edited by stmach: 28 March 2012 - 02:41 PM

System Mechanic Pro
System Mechanic Pro Review

Bleeping Computer DOES NOT recommend the use of registry cleaners/optimizers for several reasons:

Registry cleaners are extremely powerful applications that can damage the registry by using aggressive cleaning routines and cause your computer to become unbootable.

The Windows registry is a central repository (database) for storing configuration data, user settings and machine-dependent settings, and options for the operating system. It contains information and settings for all hardware, software, users, and preferences. Whenever a user makes changes to settings, file associations, system policies, or installed software, the changes are reflected and stored in this repository. The registry is a crucial component because it is where Windows "remembers" all this information, how it works together, how Windows boots the system and what files it uses when it does. The registry is also a vulnerable subsystem, in that relatively small changes done incorrectly can render the system inoperable. For a more detailed explanation, read Understanding The Registry.

Not all registry cleaners are created equal. There are a number of them available but they do not all work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad entry". One cleaner may find entries on your system that will not cause problems when removed, another may not find the same entries, and still another may want to remove entries required for a program to work. Further, some vendors who offer registry cleaners use deceptive advertisements and claims which are borderline scams. They may alert you to finding thousands of registry errors which can only be fixed and improve performance if you use their product.

Not all registry cleaners create a backup of the registry before making changes. If the changes prevent the system from booting up, then there is no backup available to restore it in order to regain functionality. A backup of the registry is essential BEFORE making any changes to the registry.

Improperly removing registry entries can hamper malware disinfection and make the removal process more difficult if your computer becomes infected. For example, removing malware related registry entries before the infection is properly identified can contribute to system instability and even make the malware undetectable to removal tools.

The usefulness of cleaning the registry is highly overrated and can be dangerous. In most cases, using a cleaner to remove obsolete, invalid, and erroneous entries does not affect system performance but it can result in "unpredictable results".

Unless you have a particular problem that requires a specific registry edit to correct it, I would suggest you leave the registry alone. Using registry cleaning tools unnecessarily or incorrectly could lead to disastrous effects on your operating system such as preventing it from ever starting again. For routine use, the benefits to your computer are negligible while the potential risks are great.

• Ed Bott's Webog: Why I don’t use registry cleaners
  
• Do I need a Registry Cleaner?
  
• Registry Cleaners and System Tweaking Tools

I think I saw that one. Do you or anyone have any firsthand knowledge or experience of the product? What does BC think of it? I'm finding multiple recommendations not to rely on McAfee which is what I have so need to change. SMP is what I have on hand now but it did not catch whatever is on my own infected system. ESET has been highly recommended as the best around to catch most things so I'm thinking of using that instead.

Choosing an Anti-Virus Program

Thanks, I will check it out. Whatever I have is elusive. I will be having that system checked at some point. Need to figure out what to install next.

Effectiveness is most important to me!

This post has been edited by stmach: 29 March 2012 - 12:15 AM

You're welcome.