Poll: Did you use Registry Protection in SpyShelter?

Please vote so we can see the results. Thanks for your feedback.

Please vote if you haven’t already. Thanks!!!

I don’t use registry protection, but I think this feature should be available.

@Olobambolo Thanks for your feedback!

Please vote! We appreciate feedback. Thanks!

I use Registry Protection in Spyshelter, I was never turn off the Registry Protection because of RP I bought it otherwise I will never think about to use Spyshelter. Hitmanpro.Alert has anti keylogger feature.

@canopus

Thanks for your feedback.

Everyone, please vote and give feedback if you have not already. Thanks!

By the way, you still didn’t explain what feature exactly was removed. At first, you said that the whole ‘‘registry protection’’ module was removed, but later you said that only part of it was removed?

Under “Protection” it was the Registry Protection section that was removed. Sorry for the confusion!

No, you’re misunderstanding. In some other topic you mentioned that SpyShelter actually still monitors the registry, but you can’t configure it yourself anymore, is this correct?

Kind of…

A lot of things in SpyShelter rely on registry monitoring (drivers, service alerts, mic/cam detection etc) so the registry module in the driver keeps running still, but we found there were so many different registry changes happening all the time that this feature made it difficult to use your PC without getting an alert.

Does that make sense?

Yes, that does make sense, you wouldn’t want to get too many alerts. And as mentioned before, I did disable the registry monitor in SS 12, because of this reason.

That’s why it would be nice, if users could at least could select which regkeys should be monitored. For example, monitoring the autostart and task scheduler regkeys would make sense to me.

You could also autoblock modification of regkeys that are not often modified by legitimate apps, which are not part of Windows. You guys should check out AutoRuns (as mentioned before), to see which regkeys should be protected.

Thank you for your feedback on this issue. I will check out the Microsoft link and share it with our team.

To give some more information, if you look at all the things that AutoRuns is monitoring, I know from experience that apps (legitimate or not) are often modifying the Logon, Services, Drivers and Scheduled Tasks keys. Obviously you want to be alerted about this, and SS already has a separate module for service/drivers.

Apps may also modify Explorer keys. All other keys should normally only be modified by system processes related to Windows obviously. So modification by third party apps should be autoblocked, without showing any alerts. This way the registry monitor should not generate many pointless alerts.

ScreenShot8381180×118 11 KB

Good idea, will share with the team!

From my post in the “15.3.0.898 now available” topic:
“In my custom protection mode, I have it set at moderate. So, in a strict sense, I am using it…” [And in a collective past tense, did use it]. “…SpyShelter is a critical component in my protection strategy and will become even more so when Win10 goes EOL later this year.”

I’m still running 15.1.0.567 on my Win10 systems and have no problems dealing with the alerts, though I have not experienced the too-many registry changes. I wonder what it is that some users are doing that would evoke that scenario, and if they are running apps that do that, they should be smart enough to turn off the protection. Why do I have to give up registry protection?

Carl, It is my observation in reading an overwhelming, repetitive discussion, some posters, particularly the non-users, will never be satisfied. It has to be everything from a firewall to a HIPS to an anti-virus to an anti-malware. All fully automatic and unalert except for the ones that shouldn’t be. In fact, SS15 can be practically automatic if configured so. But the ad nauseum request is being made because non-user.

It’ll be an endless nit-picking here and the source of misinformation in another forum.

As one of your beta testers, SS15 has been and is as it should be, where the user can select from off to paranoid for levels of protection not available in other products. SpyShelter stands alone. Bring back registry protection.

Keep up the great work.

Thank you for your feedback on returning Registry Protection in SpyShelter.