Forum
Comments:
-
- on Sat 20 Mar 2010
- 03:12:38 AM UTC
the rabbit hole
I have chosen to rate these as a scam since the product(s) are rogue-like.
My scorecard comments will merely point to this forum topic.
Your rating and or comments may disagree with me as it should be within a Community where everyone doesn't see things the same way.List of domains/hosts:
38.117.8.194
38.117.8.196
38.117.8.91
38.117.8.92
877help.com
877help.net
877lead.net
877leads.net
a-vzilla.net
adwarezilla.net
ahp4u.net
ahserv.net
auctioncommercepro.com
av-zilla.net
avzilla.net
best-popup-blocker-download.net
bigfateasy.net
bigfatez.net
cantbuyforless.net
cleanthatpc.net
clickverify.net
cookiezilla.net
danielocity.net
desktopdefender.net
digitalidvault.net
downloadzilla.net
dr3media.net
fatglobe.net
fatorb.net
fatsea.net
fatsee.net
hijackzilla.net
historyzilla.com
home.is3.com
internetsecurityzone.net
is3.com
is3antifraud.net
is3deal.net
is3deals.net
is3media.com
is3media.net
is3search.net
is3siteguard.net
is3systems.net
is3techsupport.com
isss.com
loan-zone.net
macsecurityzone.net
mail.is3.com
mail2.is3.com
merc10.com
merc10.net
nanniezilla.net
nannyzilla.net
noclickspam.net
ns1.isss.com
ns2.isss.com
ns3.isss.com
ns4.isss.com
parasitesearch.net
pcsecurityshield.com
pcsecurityzone.net
pcss.com
popup-blocker-download.com
popup-blocker-download.net
popup-killer-download.net
popup-stopper-download.net
popupkillersreviewed.net
postzilla.com
postzilla.net
privacyzilla.net
repairzilla.net
rhinodeal.net
rhinodeals.net
rinodeal.net
rinodeals.net
rocketzilla.net
scanzilla.net
searchverify.net
sensory1.com
siteguardsearch.net
spamzilla.net
spywarefreenetwork.net
spywaresquasher.net
spywarezilla.net
squadzilla.net
stopzilla.com
stopzilla.net
stopzillapro.net
threatlevel.com
toolbarzilla.net
tophatloans.net
tophatmortgage.net
tophattax.net
tophattech.net
toptechpicks.net
updatesdomain.com
winshredder.com
zilaclean.net
zilaform.net
zilasquad.net
zilatrain.net
zillabar.net
zillabase.net
zillablog.net
zillabox.net
zillaclaus.com
zillaclean.net
zilladeal.net
zilladeals.net
zilladealz.net
zillafind.com
zillafind.net
zillaform.net
zillasafe.com
zillasafe.net
zillascan.net
zillascanner.net
zillasense.net
zillashare.net
zillashield.net
zillasites.net
zillasmart.com
zillasmart.net
zillasoftware.net
zillasquad.net
zillastore.net
zillastuff.net
zillasuite.net
zillasweep.net
zillatrain.net
zillatune.net
zillatunes.net
zillawall.com
zillawall.net
zillaware.net -
- on Sat 20 Mar 2010
- 02:55:41 PM UTC
Your claims of good reviews
Good reviews are bought all of the time. STOPZilla will have to come with much more evidence than reviews to change my rating. Start with removing the false findings that scare users into buying a license.
Is it showing as a virus at VirusTotal and other file scanners? No. That's because a rouge and a virus are two different things. You should know that! I said your software is a rouge, not a virus.
-
- on Sat 20 Mar 2010
- 03:15:11 PM UTC
re: virustotal
It had positive results in the past, back when the "installer" was around 384kb in size, it has been modified and reduced to approx 64kb and no longer returns positive results from VT.
-
- on Sat 20 Mar 2010
- 03:43:45 AM UTC
I just had the same message
I just had the same message from STOPzilla and I have to say I regarded it as rather threatening considering I was stating my view/option of the product based on my experience and reliable sources. I will not change my rating or comments untill STOPzilla address many issues with the product and their marketing plus get other accreditatiion from companies other than West Coast Labs.
I agree with the above posters especially g7w and WOT users who rated this product poorly. You should seriouisly look at why your product is failing in the eyes of many people.
HpHosts have you listed as FSA (Bogus or fraudulent software) which goes to confirm my own findings and view as it is far too invasive on privacy and fails to give adequate protection compared to many leading brands.
www.issviews.com for views and news of the starte of digital security. Add your comments/.feedback on your existing security software to help others choose what's right for them and what isn't. Read up on the latest rogue software and threats too.
-
- on Sat 20 Mar 2010
- 12:33:06 PM UTC
Thanks g7w,
All sites rated / commented.
-
- on Sat 20 Mar 2010
- 02:14:09 PM UTC
All sites rated
All sites rated appropriately.
Platinum Level Member of the WOT Community.
-
- on Sat 20 Mar 2010
- 05:42:52 PM UTC
Thanks for the info g7w :D
Thanks for the info g7w :D Rated and commented.
I have blogged this, if anyone wants a read. http://issviews.com/blog/?p=352
Having seen exactly what domains STOPzilla is hosting and associated to, I am even more convinced that there are malicious intentions within that company.
www.issviews.com for views and news of the starte of digital security. Add your comments/.feedback on your existing security software to help others choose what's right for them and what isn't. Read up on the latest rogue software and threats too. -
- on Sat 20 Mar 2010
- 06:51:53 PM UTC
Don't forget this when your reminded of FAIL-zilla:
That Rouge Anti-Viruses are evil!
-
- on Sun 21 Mar 2010
- 01:33:30 AM UTC
Awards...
I have talked to IS3 in the past, and have asked them to apply links to those awards on their website of STOPzilla.com. Check out the Award pictures on the front page and the awards page.
Right now, I am neutral about IS3. Although, their products are not rogue.
Current VT url: http://www.virustotal.com/analisis/12cf8f23b0f3d14...
1. It can not be classified as "rogue" because there is no unsolicited intrusion/penetration into the system
2. There is no explicit enforcement to buy a higher/pro version of the same program.
3. Detection of the mentioned program is based on behavior (such as registry changes)
4. Can not find any illegitimate advertisements/offers in program.~DragonMaster Jay - Malware Analyst - admin of Advanced Malware Analysts.
-
- on Sun 21 Mar 2010
- 11:38:14 AM UTC
re: classified as "rogue"
It can not be classified as "rogue" because there is no unsolicited intrusion/penetration into the system
Sure there is, you just never downloaded the installation and checked.First, the download file: STOPzilla_Setup.exe (~385kb) is an installer.
The 14.52MB (real) file is downloaded via the installer, you can not install StopZilla off line, you must have internet access for the basic installation.During the install, chose "Custom - for advanced user" you are presented with 2 prechecked options for "homepage protection" and for "StopZilla Safety Network"
Deselect those options and continue with installation.
In your startups you'll see: sziebho.dll re: file.net
This is an internet Explorer browser helper object, designed to stop websites from changing your homepage settings, and to eliminate popups.This option was deselected during install, and it's a persistent little devil; causes WinPatrol to popup often asking to confirm addition to startups; naturally I said "no"
It's not a malicious file, winpatrol has a page for it:
http://www.winpatrol.com/db/plus2009/sziebho.html?...I don't use IE for one...
IE has a built-in popup blocker since IE7 - IE6 is officially deadSo what do you call adding startup service for BHO's assigned to a browser you do not use when you deselected it's functionality during the install process?
I call that rogueNow, this is not freeware and I have no problems with paid for AV software...
But my problem with this is that you downlaod a 385kb installer file, which downloads a 14 1/2 MB setup file, that installs system processes you elected not to use, then after reboot, you run a system scan and then you are informed of "problems" that do not exist on your machine, and you can only "see" them - you need to pay to unlock, to remove what is not there. That is called scareware BTW.Sorry I did not take screen captures of every event, I didn't feel it was worth my time.
- One other little thing: tpsvc.dll - bleeping startup - bleeping HJT
- O20 Section
AppInit_DLLs
This section corresponds to files being loaded through the AppInit_DLLs Registry value and the Winlogon Notify Subkeys
The AppInit_DLLs registry value contains a list of dlls that will be loaded when user32.dll is loaded. As most Windows executables use the user32.dll, that means that any DLL that is listed in the AppInit_DLLs registry key will be loaded also. This makes it very difficult to remove the DLL as it will be loaded within multiple processes, some of which can not be stopped without causing system instability. The user32.dll file is also used by processes that are automatically started by the system when you log on. This means that the files loaded in the AppInit_DLLs value will be loaded very early in the Windows startup routine allowing the DLL to hide itself or protect itself before we have access to the system.
This method is known to be used by a CoolWebSearch variant and can only be seen in Regedit by right-clicking on the value, and selecting Modify binary data. Registrar Lite, on the other hand, has an easier time seeing this DLL.
Registry Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
-
- on Mon 22 Mar 2010
- 01:46:29 PM UTC
Analysis
Sure there is, you just never downloaded the installation and checked.
Umm, yes I did. I don't make foolish statements like that.
Just like the malware researchers at all the security companies, tested just like I did, and did not find anything wrong.
Security programs are known to hook the system, so it can protect the system. Many security programs do not even protect, some just detect and remove.
The research that you have done, is not enough information to present it as rogue.
Rogues commonly inject itself in to Windows processes, install malware on to the system, perform unsolicited popup advertisements and harsh warnings on the
system to enforce that the program needs to be purchased.STOPzilla posts one advertisement to buy the higher version. There is no penetration in the System, the program only hooks certain Windows areas, just like other anti-spyware programs do.
I did not say I was a fan, but I am neutral about it.
==================================
:::Actual analysis::: 3-19-2010
>-Install process begins... all options checked and ready to go.
---C:\12057665.exe unique file connects to download STOPzilla and install it automatically.---!-Kaspersky Internet Security 9: All protection enabled. Checking all files, !! PROMPT !!: "STOPzilla Setup (iS3, Inc.) wants to connect to the Internet"!
-Action: ALLOW! - STOPzilla has now begun installing. !!! BEGIN CHECK !!!
-> KNOWN PROCESSES BEGIN RUN: C:\12057665.exe (Reason: install), C:\Windows\System32\Services.exe (Reason: software configuration management), C:\Windows\System32\svchost.exe (Reason: DCOM), and C:\Windows\System32\svchost.exe (Reason: SVCHOST).+++++++++++++BEGIN QUESTIONING ACTIONS++++++++++
-Downloads executable files? Verdict: NO! Files required for the program to run were downloaded.
-Downloads to System32 or Windows folders? Verdict: NO!
-Copies to Windows folder? Verdict: NO!
-Creates hidden executable files? Verdict: NO!
-Connects via WinSock? Verdict: YES!
-WinLogon Registry Key set creation? Verdict: NO!
-Creates or starts executable files? Verdict: YES! STOPzilla.exe began, and added a tray icon.
-Deletes files in the System? Verdict: NO!
-Kills security software? Verdict: NO!
-Hooks keyboard or mouse? Verdict: NO!
-Unauthorized change of home page? Verdict: NO!
-Creates mutex object? Verdict: YES!
-Sends data via DNS/IP? Verdict: NO!
-Deletes original sample? Verdict: NO!
-Kills processes? Verdict: NO!
-Injects code in to any file? Verdict: NO!
-Sends email? Verdict: NO!
-Alters Windows Firewall? Verdict: NO!
-Queries driver or service information? Verdict: NO!
-Attempts to autostart at Windows Boot? Verdict: NO!
-Opens or modifies the HOSTS file? Verdict: NO!
-Changes Internet Explorer or other browser proxy? Verdict: NO!
-BHO Installed? Verdict: YES! It is part of the program.
-More than 5 processes? Verdict: NO!
-Checks for debugger? Verdict: NO!
-Loaded or unloaded drivers? Verdict: NO!
-Windows API Calls? Verdict: NO!
-Infected? Verdict: NO!
-MD5 checked against all engines? Verdict: YES! Result: 1/48 ENGINE MCAFEE ARTEMIS
-SHA1 checked against all engines? Verdict: YES! Result: 1/48 ENGINE MCAFEE ARTEMIS==== MALWARE ANALYSIS COMPLETE ====
~DragonMaster Jay - Malware Analyst - admin of Advanced Malware Analysts.
-
- on Thu 22 Apr 2010
- 11:58:32 PM UTC
What analysis tool did you
What analysis tool did you use to obtain such results?
-----
MF IT-UESC - Protecting your Digital Experience. Now. -
- on Fri 23 Apr 2010
- 01:42:31 PM UTC
Yes, but how did you obtain
Yes, but how did you obtain it. I'm asking you because I'm really interested and I would know more about it.
-----
MF IT-UESC - Protecting your Digital Experience. Now. -
- on Fri 23 Apr 2010
- 07:10:12 PM UTC
Tons of tools.
There are a lot of tools used for the analysis, but not just one tool.
Using objects like WireShark, virus scanners (non-mainstream), malware analysis tools (non-reverse), VirusTotal/virScan, Kaspersky file scanner, sandbox, file analysis tools, driver analysis tools, Kaspersky Internet Security, Windows Registry, Windows Task Manager, and several other small tools.
~DragonMaster Jay - Malware Analyst - admin of Advanced Malware Analysts.
-
- on Sun 21 Mar 2010
- 09:49:23 AM UTC
bing it “STOPzilla”. sucks 1,710 results
http://hosts-file.net/?s=download.stopzilla.com (Classification:FSA) "rogue" security
http://www.siteadvisor.com/sites/stopzilla.com/sum...
http://www.antispyware-softwarereviews.com/reviews...
hasn't updated there software in a few years …and it shows.
http://download.cnet.com/Stopzilla/3640-8022_4-106...
http://en.wikipedia.org/wiki/Stopzilla
http://en.wikipedia.org/wiki/Talk:Stopzilla
http://www.crystalidea.com/uninstall-stopzilla
Many users complain of difficult removal process of STOPzilla Anti-Spyware product.
http://www.pcmag.com/article2/0%2C2817%2C2162968%2... (Read the STOPzilla 5.0 full review)
Hiding negative complaints is only a Band-Aid. -
- on Sun 21 Mar 2010
- 11:53:15 PM UTC
stopzilla - usual motley crew of scamware, shamware & scareware
Hi Folks,
Thanks for the rogue documentation g7w.
The programs that are not what they seem are really a problem, be it Regcure, StopZilla or the Uniblue registry and speedup or 100 others. And think of those TV and radio ads too for other bogus "speed up" stuff. Some are worse than others, all are bad news, the semi-legit ones are in a sense MORE of a problem, because of all their efforts to manipulate forums, surveys, awards ... and journalists. They require more due diligence, such as WOT-awareness.
As for StopZilla, the Wilders Security folks are well aware of the worthlessness of the product as well.
STOPzilla as AV?
http://www.wilderssecurity.com/showthread.php?t=21...You can find a number of threads.
Shalom,
Steven Avery -
- on Thu 22 Apr 2010
- 02:37:45 PM UTC
Stopzilla, a scareware and a crapware
You see that Stopzilla says our comments are libelous. It asks to remove or comments, but don't listen!, because our comments are TRUE!
You can mail the Stopzilla team at seo@stopzilla.com . -
- on Thu 22 Apr 2010
- 05:00:30 PM UTC
Thanks but I feel it would
Thanks but I feel it would only fall on deaf ears and subject me to legal threats etc. Will pass on any contact with them other than in this forum and thread.
www.issviews.com for views and news of the starte of digital security. Add your comments/.feedback on your existing security software to help others choose what's right for them and what isn't. Read up on the latest rogue software and threats too.
-
- on Thu 22 Apr 2010
- 10:52:24 PM UTC
StopZilla.
Tried it, & it IS bad news! 3 of my A/V progs pegged it as hi-threat malware during their 1st sweeps thru it & all the other places it plonks a file/dependency outside Prog-Files. Even the install file showed hot!
Managed to rid myself of it in XP safe mode and regedit.
Kill the Zilla!M_W
-
- on Thu 22 Apr 2010
- 11:40:08 PM UTC
Stopzilla
It sounds like bad marketing has made a mediocre product come off as malicious. Our tech support people suggested installing the paid version on a machine at work that had a rootkit. The installed AV program, Avira, wouldn't update and didn't recognize any problem files when it scanned. Malwarebytes Antimalware refused to install at all. Stopzilla was suggested as a program that sometimes succeeded when other failed. In this case, since the problem was the malware was disabling other programs, Stopzilla's obscurity was a plus and it was successful. Did it remove all the malware? No. Once it ran a couple times and was coming up clean, we were able to update Avira, and it found several more files. Then Malwarebytes would finally install, and it found still more. There have been no annoyances since it's been installed, but we purchased the program in the first place rather than using a free trial. I wonder if people's opinions would be different if Stopzilla's marketing practices were different?
-
- on Fri 23 Apr 2010
- 12:01:49 AM UTC
In these case, try an
In these case, try an Emergency Live-CD. It's better.
-----
MF IT-UESC - Protecting your Digital Experience. Now. -
- on Thu 10 Jun 2010
- 03:29:03 PM UTC
stopzilla
I just had a spyware on my home computer and called the tech support. The gentlemen I talked to was alot of help and understanding. He helped me get what I needed and he went beyond what any tech person would have done for me. I will use stopzilla for my computers.
-
- on Thu 18 Nov 2010
- 07:44:52 AM UTC
IGNORE HIM
This guy is trying to boost the rep of Stopzilla. This constant mixing of opinions confuse the person.
Listen to me people!
Stopzilla is a rouge!
It's bogus protection covered in bogus ads!
Don't get it!
You'll REGRET IT! -
- on Sat 07 Aug 2010
- 07:29:04 PM UTC
stopzilla question
ok well im confused about stopzilla, i've read in a few places that its no use, but then i've read several places (including this http://www.computinghelp.info/stopzilla-anti-spyware-review/ ) that's its very effective. If it offers real time protection I figured it must be quite good? but reading through these posts im not sure!
anybody got the real truth behind it?
-
- on Sat 07 Aug 2010
- 08:12:12 PM UTC
Reviews can be bought by
Reviews can be bought by companies so I wouldn't trust them much (I never looked at the review that you have posted). From what I have seen on the Forum users such as G7W and ISSViews, do usually do an indepth review of sites that they are rating, so I am more inclined to trust their reviews knowing that the claims they have made are usually well researched first.
-
- on Sun 08 Aug 2010
- 12:59:33 AM UTC
re: stopzilla question
hxxp://www.computinghelp.info/stopzilla-review/
Naturally this site is going to offer a "good review"
It offers an affiliate link, so you click it, and purchase SZ and they get paid.
Here's the destination link:
hxxp://www.stopzilla.com/products/stopzilla/spywareremover-white.do?aid=10731&cid=43111Thanks for referencing this domain; rated - ethical issues: promotes known rogue software.
computinghelp.info
-------
WOT Services Ltd. - gives us safety through Web of Trust.
WOT Community - gives us security through unity.
Thank you all
- G7W -
- on Mon 18 Oct 2010
- 11:57:07 AM UTC
stopzilla-Rogue not ROUGE!!
Please people learn to spell!!~ Stopzilla claims it is not a ROUGE! Rouge is what your (great) grandma put on her face. I wonder if the scum at stopzilla misspelled it purposely!! "We aren't makeup.. Why do people keep calling us makeup???":
Sarah Palin made the opposite mistake. When she first saw her book that was written for her, she picked it up, and read the title and said, "Going ROUGE... This must be about my beauty queen career!!"..... if you don't get it... don't lose any sleep over it....
-
- on Thu 18 Nov 2010
- 07:41:24 AM UTC
Download.com reviews
GUYS LOOK!
At download.com, there are so many fake reviews that 5 star and glorify Stopzilla like crazy!
I did a 1 star rating and I got 1/29 people agreed with me.Those 28 other people must've been the staff members of the company that make this bogus antivirus. They wanted to make my review look bad.
This is bad, they're deceiving other people! It's not right! They pay to promote a bad product.
http://download.cnet.com/Stopzilla/3000-8022_4-101...
stopzilla.com
We are the owners and operators of STOPzilla & STOPzilla.com. Your posted comments about our product and website are absolutely false, libelous and misleading.
Below are multiple links from reputable sources which prove that our company acts responsibly and does not engage in any of the activities you described. Furthermore, STOPzilla has won numerous awards and has been certified by the well respected West Coast Labs testing organization. STOPzilla is 100% clean of any malicious code or behavior whatsoever. Any comment contrary to this is an absolute fabrication and is considered libel.
We are reaching out to you amicably and we trust that you will act responsibly and remove all these libelous comments immediately.
Regards,
The STOPzilla Team!
seo@stopzilla.com
1-877-877-9944
· Anti-Virus Scan Reports:
http://www.virustotal.com/analisis/e56cffac4ce76c0......
http://virusscan.jotti.org/en/scanresult/5658bf478......
West Coast Labs Certification:
http://www.westcoastlabs.com/about/press/release/?...
STOPzilla Awards:
http://www.is3.com/media/awards.do
How STOPzilla Works:
http://www.stopzilla.com/learning/HowSTOPzillaWorks.do
Finalist in 2008 for “Stevie Award” for excellence in customer:
http://www.stevieawards.com/pubs/awards/403_2436_17725.cfm
I posted the above message to me on the Forums, since it was not a privately sent PM.
When ever anyone claims:
Your posted comments about our product and website are absolutely false, libelous and misleading.
At a glance - reviews by PC Magazine
So-so performance protecting a clean system; allowed several rootkits and Trojan horses to install. Phishing protection is significantly less effective than what's built into IE and Firefox.
PC Magazine's review references (in the "Cons" section) issues with effectiveness and notes that the "Bottom Line" was that "STOPzilla has a cute name, but it costs more than the best standalone antispyware programs and does less. Yes, it does offer some bonus features for Internet Explorer, but they're things that IE already does...and does better."
Forums on the website for competitor Malwarebytes' Anti-Malware contains some criticism of STOPzilla that is even more unenthusiastic, such as "I believe that this one has been classified as scraping the edge of rogue for a while but not quite crossing it . Certainly it is not a recommended antimalware application ." "I know that it turns up" ... "a lot" ... "when I go looking for new rogues."
The iS3 website shows the vendor is aware that their program has been unscrupulously marketed by tactics that include "tampering with searches, adware, hijacking, use of Trojans" by members of their affiliate program.
On the other hand, in September 2008, STOPzilla received antispyware certification from West Coast Labs.
If you examine the Scorecard for stopzilla, you will find good comments posted mostly by users with low involvement in WOT and some of them even rate host-files.net low because it references stopzilla in it's hosts file database.
Is3 / Stopzilla references, "West Coast Labs certification".
Actually West Coast Labs only states that Stopilla "installs" and has the "check mark" to prove it.
You need to ask yourself, just who is West Coast Labs, and who makes them the "authority" of security software review?
Admitedly, West Coast Labs is owned by a media company called:
Haymarket Publishing Limited / haymarket.com
If you visit their website, and scroll to the bottom of the page, it has a copyright notice:
(c) 1957 - 2010
1957? The Internet didn't exist in 1957 and if this media company is so established, why did it not get it's domain name before Aug 14, 2006
You can see by the site's scorecard that though not many have rated it, it doesn't seem to hold a good reputation.
I guess to be "certified" by West Coast Labs, you need to pay them to say your are "legitimate" They have other rogue brand names on their site, but I couldn't fid many reputable names, like any of the AV / anti-malware products I personally use...
------- WOT Services Ltd. - gives us safety through Web of Trust. WOT Community - gives us security through unity. ∞