I am running Windows 7 home premium 64 bit and used Spybot to immunize.
In my registry I find under "ZoneMap" 2 folders I am worried about because they contain all sorts of bad domain names.
The "Domains" subfolder I understand is placed there by Spybot's immunization tool. But the "EscDomains" is not mentioned in Spybot's documentation and seems to contain the same domains to make them escape the above protection!
Indeed, when I do nslookup for 007Guard.com I get the following results:
C:\Users\JSM>nslookup 007guard.com
Server: UnKnown
Address: 192.168.1.1
Non-authoritative answer:
Name: 007guard.com
Addresses: 208.72.2.179
208.72.2.180
208.72.2.186
208.72.2.187
208.75.252.106
208.75.252.107
208.75.252.108
208.65.130.26
208.65.130.27
208.72.2.18
208.72.2.19
208.72.2.20
208.72.2.178
So even though 007Guard.com is the very first list in both the hosts file and Spybot's registry entries, things seem to be getting through and the hosts file is being bypassed somehow.
Can someone explain please?