Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

StopZilla reliablity


  • Please log in to reply
1 reply to this topic

#1 lilygirl

lilygirl

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:41 PM

Posted 30 August 2009 - 10:12 PM

I rean StopZilla (did not buy it) and it found the following:

Name Key Type Recommendation

CatchMe Registry Key Trojan High

System Policies: Disable Registry Registry Key Hijacker Moderate

eZula.dashman Registry Key & File Adware Moderate

Vundo.F File Adware Critical

lpv4mons Registry Key Spyware High

What recommendations do you have for removing these items?

I have run Malaware, which found one item not on this list, AdAware, which found nothing, ComboFix, which I have submitted the list, tried to run SpyBot but it would not load, and Norton, which found nothing.

Thanks for the help.

Lilygirl

BC AdBot (Login to Remove)

 


#2 Andrew

Andrew

    Bleepin' Night Watchman


  • Moderator
  • 8,250 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Right behind you
  • Local time:08:41 PM

Posted 31 August 2009 - 12:28 AM

StopZilla is considered by many, myself included, to be a Rogue Antispyware application. While this position may be debatable, I would advise against believing anything it tells you and to immediately uninstall it. Under no circumstances should you pay for it; it's not worth it.

(Disclaimer: These are my personal opinions based on my own research and observations. So if you're going to sue someone, IS3 Inc., sue me not Bleeping Computer :thumbsup: )

My thoughts on StopZilla:

Reviews of the download at CNET give it only two stars (based on 201 votes). Comments there include accusations af being adware, finding "malware" on freshly installed systems and requiring users to buy a license to remove these "threats", being extremely difficult to uninstall, requiring the removal or disabling of other programs (ZoneAlarm Firewall, NOD32) to install, etc.

Malwarebytes.org had a discussion where Stopzilla is "...classified as scraping the edge of rogue for a while but not quite crossing it . Certainly it is not a recommended antimalware application."

Discussions at Betanews' Fileforum and Complaintsboard.com echo the above sentiments.

IS3, the maker of Stopzilla, mentions that it is "Award winning" every chance they can. But looking into the details is revealing. For example, their oft-touted Westcoast Labs Checkmark certification, while valid, only states that the program installed correctly not that it did anything useful afterwards. This is unlike other anti-spyware applications that have received the Checkmark certification like NO32, BitDefender Total Security, or Webroot's Spysweeper. Their CNET Editors' Choice "award" is six years old and still posted on their front page.

Of their other "awards" most came from sites I'd never even heard of, indeed McAfee Site Advisor warned against even visiting some of them (5starfiles, filecart, sharetheware.com [also out of business now]).

Additionally, the Stopzilla changes the user's default search provider and installs a toolbar on install.

The actual installation process is somewhat perplexing. First, you download the file they give you, a small executable (only 68KB). This then connects to download.stopzilla.com and downloads ANOTHER small binary (381KB). This binary then connects to mdjknfjjng.stopzilla.com and downloads the main MSI installer package (13MB). The only reason I can see to do it this way is to obfuscate (poorly, obviously :flowers: ) the actual file being downloaded; the subdomain "mdjknfjjng" is likely randomly generated (either that or someone just hit random keys when creating it.)

Granted, none of the above proves conclusively or concretely that StopZilla is malicious or rogue. But it does make a pretty good circumstantial case that it is shady, ineffective, and best avoided.

***

It is advised that you obtain and use one of the many free and reputable anti-malware applications listed in Bleeping Computer's own List of Freeware Replacements for Common Commercial Apps (they're at the top of the list.) These apps have been vetted for malicious or undisclosed behavior and are in use by many professional anti-malware researchers.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users