Jump to content

All Activity

This stream auto-updates     

  1. Yesterday
  2. Last week
  3. heuristic.backdoor.process

    Hello DxTrEm3Fx, Thank you for mentioning this false detection. I have adjusted the definition database and this file should no longer be detected as of database version 14148 (which will be released in the next few hours). Update to 14148 and scan again (a restart of SAS may be required). Please let me know if this solves your issue, or if you have any other questions or concerns. Gabe Burch Primary Malware Researcher SUPERAntiSpyware
  4. Conflict with Trend Micro

    Hello Savannah Dan, Thank you for contacting us! This is a False Positive by Trend Micro, do not remove that registry entry. That registry entry most likely relates to SUPERAntiSpywares uninstaller.
  5. Conflict with Trend Micro

    I have been running SAS and TM together for a while. Last week TM said it found incompatible Software and wants to uninstall string {CDDCBBF1-2703-46BC-938B-BB81A1EEAAA}. What will happen if I let TM uninstall this SAS string? I am running Windows 7 on this Panasonic CF-30 Toughbook. This is my maintenance laptop that I use to work on my cars and boat.
  6. heuristic.backdoor.process

    I have not thamks for the advise.
  7. heuristic.backdoor.process

    Have you tried uploading it to VirusTotal as it may be a FP?
  8. Superantispyware real-time protection keeps detecting heuristic.backdoor.process. What is this and why is it happing? This just started in the last two weeks. In the years I have been using SAS I have never seen this. How do I get rid of it and how do I make sure I'm protected? I'm currently running SAS, Malwarebytes, Hitmanpro64 and adware cleaner by Malwarebytes. I'm using virus protection from Windows 10.
  9. Scan and delete immediately

    Hello Flamencoguy, Thank you for the suggestions. 1) Users experiencing a slow removing process depends on a few factors, such as the availability of CPU/RAM, if you have other programs and hogging resources, and especially if your removing cookies and a browser is open. 2) This would remove the choice for users to unselect items that were detected but do not want removed. Having a removal process occur while scanning would also slow the whole process down quite a bit. 3) A "bypass" would cause browser instability and cause a crash. SUPERAntiSpyware has an option to close web browsers before a scan. This is located under Scan This Computer -> Recommend Pre-Scan actions section. 4) If you own the Professional Edition, you can set a Scheduled Scan to shutdown the PC after a set scheduled scan.
  10. Scan and delete immediately

    The removal process takes forever but the scan is much quicker. Why is that? Why not do the scan and remove the cookies or tracking objects immediately after detection while detecting the next issue. Perhaps on option to bypass files being held (locked) by the browser. Or to close the browsers before scanning. Or an option to scan and shutdown the PC after the scan. I could leave the computer on when I go to bed and it could work while I am not using it. On next start you can flash the stats if anyone needs to have a look.
  11. Earlier
  12. Only 1 result after a full scan

    Depends on your browser setup and which sites you visit, some sites have no cookies others like the news sites have a ton. Your browser may also be designed to delete cookies automatically or open in private mode, either way the cookies aren't a major problem.
  13. Good Morning New here!...Using Window 10 Pro Version: 1709 (OS build 16299.19). Internet Explorer Version: 11.15.16299.0/Update Versions: 11.0.47 (KB4040685). I run the free version of SUPERAntiSpyware on both. I have updated to version 6.0.1240 a few weeks ago. When I run a full scan, I now get 1 item to delete...Before the update it was sometimes as high as 250 items I had collected over a week to delete. I thought something had changes with the update and continued to do my weekly scans...scoring 1 item to delete at the completion of each scan. A few days ago I installed and just opened a few webpages using google Chrome on 1 laptop. In that short period of time I collected 50 adware items and all(except 1) addressed as Chrome items in the report. The other laptop did not have chrome installed and today reported 1 adware item...So my question is simply. Why do I only see 1 item collected in a week's use of Internet Explorer 11, which is my normal browser on both laptops? Please see attachment and in anticipation of an answer...thank you
  14. False Positives for Renee

    Thank you very much for your reply, but the installer does not bind any unnecessary programs. The installer is only used to download the latest version of the software. Please check again. Thank you!
  15. False Positives for Renee

    Hello Miss Xie, These setup files bundle several unwanted programs along with them. In order for them to not be detected by SUPERAntiSpyware, you will need to use some other installer which does not bundle unwanted programs. Gabe Burch Primary Malware Researcher SUPERAntiSpyware
  16. False Positives for Renee

    I'm sure Gabe could give more details on this but 18 / 65 reputable engines detect it https://www.virustotal.com/#/file/c10cf4f651aa495e7adc05f06dcda84ace01fe5c80d21d2de5afa8ebf59c866b/detection it's not detected as a virus but a PUP (Potentially Unwanted Program).
  17. False Positives for Renee

    https://www.virustotal.com/#/home/upload detects the submitted installers to be the virus. But these are very formal software instead of virus. Could you please add the submitted software to the white list? Or could you please tell us how to add them to the white list of your anti-virus software? Thank you for your assistant. Please download from here PDF-Aide https://www.reneelab.com/download-center/renee-pdf-aide ScreenRecorder https://www.reneelab.com/download-center/renee-screen-recorder VideoEditor https://www.reneelab.com/download-center/renee-video-editor
  18. Question about SAS Popup Notification

    If you need assistance with Opera crashing or questions regarding Opera Web Browser I would contact Opera. The malware that detected by Real-Time Protection and quarantined has probably nothing to do with Operas software since it was found in C:\users\DMP\appdata\local\temp\temp\ which is a temp folder, not an Opera specific folder. If you open Opera, does the issue become detected again by SUPERAntiSpywares real-time protection?
  19. False positive: PCadB2AConverter

    Hello ivan.mataish, I have adjusted the definition database and this file should no longer be detected as of database version 14113, which will be published shortly. Please let me know if this solves your issue, or if you have any other questions or concerns. Gabe Burch Primary Malware Researcher SUPERAntiSpyware
  20. Question about SAS Popup Notification

    Note the sentence I just added...the Opera crash report from this AM @8:15AM is now timed at 1242PM. This must somehow have to do with Opera, I think. Opera doesn't crash on me though. Thanks for your help. Diane P.
  21. Question about SAS Popup Notification

    It was in the quarantine then, it looks like the issues resolved as SUPERAntiSpywares Real-Time Protection grabbed it and dealt with it. No further steps need to be taken
  22. Question about SAS Popup Notification

    This is the actual scan log taken from SAS software itself. I looked in SAS Quarantine and it shows the following: C:\users\DMP\appdata\local\temp\temp\explorer.exe. I do not know how to send a quarantined file. SAS software warns me not to restore it. Interestingly, I looked in the C:\users\DMP\appdata\local\temp\temp\explorer.exe again, and I see another Opera crash report, that was originally timed at 8:15AM, now timed at 12:42 PM, just few minutes ago. SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 11/08/2017 at 08:21 AM Application Version : 6.0.1250 Database Version : 14111 Scan type : Complete Scan Total Scan Time : 00:09:20 Operating System Information Windows 10 Professional 64-bit (Build 10.00.16299) UAC On - Limited User Memory items scanned : 978 Memory items detected : 0 Registry items scanned : 62130 Registry items detected : 0 File items scanned : 32066 File items detected : 14 Adware.Tracking Cookie .doubleclick.net\test_cookie [ C:\USERS\DMP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ] c.speedtest.net\spc1|.doubleclick.net|$|IDE [ C:\USERS\DMP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ] .maxmind.com\__cfduid [ C:\USERS\DMP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ] .iasds01.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .advertising.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .iasds01.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .doubleclick.net [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .doubleclick.net [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .scorecardresearch.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .scorecardresearch.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .agkn.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .adaptv.advertising.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .agkn.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] .spotxchange.com [ C:\USERS\DMP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MV870LVK.DEFAULT\COOKIES.SQLITE ] ============ End of Log ============
  23. Question about SAS Popup Notification

    Unfortunately the scan log you provided just shows cookies, is there another scan log that shows the detection? If not, I would just not worry about it until you see the detection pop-up again. If you can, take a screenshot of the message you see informing you of the attack. ▷ How to take a screenshot
  24. Question about SAS Popup Notification

    It was SAS that alerted me to the issue.....log attached. BTW, I haven't had the message since. The Opera crash was at 815 AM; the log was completed a few minutes after. I can't but help think the two are related. D. SUPERAntiSpyware Scan Log - 11-08-2017 - 08-21-06.log
  25. Question about SAS Popup Notification

    Hello Diane, Thank you for contacting us, what software alerted you to this "heuristic.backdoor.process"? If it was SUPERAntiSpyware, please post the scan log you mentioned that showed the infection. You can find your scan logs in this directory: C:\Users\”USERNAME”\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\Logs You'll need to replace "USERNAME" with your Windows user name.
  26. I use ighome.com as my home page. This AM i received the notice of "heuristic.backdoor.process". As recommended, I ran a complete scan and SAS came up with 14 cookies and nothing else. The browser I was using was Opera, the latest version. So, I opened Firefox to the same homepage and nothing popped up. I tried Google Chrome and nothing popped up either. I looked at the scan log and it showed the heuristic.backdoor. process located at C:\users\....\appdata\local\temp\explorer.exe. I looked in that folder and interestingly enough, I found an "Opera Crash report" for today at the same time I rec'd the SAS popup. I opened the crash report and it was empty. There's nothing else in the users folder with today's date and time. I ran scans with the other security software on my system and found nothing. I am not smart enough to know if this is an anomaly of some sort or should further steps be taken? I would be more concerned if my other browsers behaved the same way, but they didn't. Thanks
  27. False positive: PCadB2AConverter

    Hi, According to virustotal your antivirus detects part of our software as trojan. Could you please add it to harmless files list? Best regards, Ivan PCadB2AConverter.exe
  28. With such a large number I suspect that the detections you are seeing marked for removal are just cookies. Cookies are not blocked by SUPERAntiSpyware because they are required for most web functionality. Cookies will come back every time you surf the web, and can be cleaned by running a Quick or Complete Scan. If you'd like to learn more about cookies, check out this link: http://www.allaboutcookies.org/ Just click reboot later.
  1. Load more activity
×