Posted 27 August 2012 - 02:00 PM
What point is there using a problem that appears to report itself as a threat?
Posted 27 August 2012 - 02:14 PM
Posted 27 August 2012 - 02:18 PM
4 different computers this morning report infestations of this trojan, even in SAS operating files, in OpenOffice install files (which I haven't used in months), even in install files of old programs lke Corel Ventura (now that's old!) I run the PRO versions of these softwares and I run a FULL SAS scan every night at 2am. Last night's scans ran entirely clean.
I noticed you pushed through an update around 6am this morning with inclusion of detection info for this particular Trojan and a bunch of others.
Either we've all been infected for a long long time and never knew it, despite diligently using your software (and others) regularly, OR... something is wrong with the signature info you've assigned to these viruses and your engine is picking up entirely safe files as infected.
I'm a cautious guy, I don't want to assume the first is impossible. But we do all need some of your expert guidance here, SAS!
Posted 27 August 2012 - 02:20 PM
Posted 27 August 2012 - 02:24 PM
Posted 27 August 2012 - 02:26 PM
Posted 27 August 2012 - 02:27 PM
I'm no expert, you guys are, but I'm gonna suggest something is out-of-whack with the virus definitions released this morning. It's very hard for an unpowered computer to pick up an infection.
Posted 27 August 2012 - 02:27 PM
I took the real time detection out of quarantine and shut down SAS. I ran Malwarebytes and MSE with no detections. UGH!
Posted 27 August 2012 - 02:56 PM
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10005.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10006.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10007.DLL
They get picked up by REAL-TIME PROTECTION, which is nice to see, but the scan reports them, purports to remove them, but they come right back even after a reboot. This is even using safe mode to run the scan.
Are these legit SAS files and/or has this virus infected your own program?
On a Vista-32 bit system, also never used since being shut down for a week until now scanned. These persist through multiple attempts to remove as well:
Posted 27 August 2012 - 03:00 PM
Correction, I can restore them, but I think I will wait for an update to SAS definitions so that I don't have to go through this whole thing again.
Added: Full scan for both partitions on my hard drive just completed using Malwarebytes Pro found no infections. I'm still going to wait for an update to the definitions for SAS before restoring the quarantined files, but I have disabled real-time protection for now. I may also exit the program, especially if no new definitions show up today.
Finally, you can all come out of your storm cellars. The sky is clear and all is well. Core: 9127 Trace: 6939 fixes the problem. Get the update if you have not already done so.
Posted 27 August 2012 - 03:06 PM
Updates are a joke today I got to 366 Critical threats before I cancelled the scan after checking the files they were seriously over sensitive findings - MBAM, Defraggler, SAS, CCleaner many more which I know are safe.
To name but a couple.
Using No Way - As Way, Having No Limitation - As Limitation.
Posted 27 August 2012 - 03:22 PM
Posted 27 August 2012 - 03:27 PM
I also applied the update today and suddenly I am finding these infections in SAS files, AVG files and CC cleaner files to name a few. Quite worried so disconnected my internet and in the process of running a full scan (131 detections of this trojan so far) and now my netbook is beginning to detect the same trojan!
Surely this cannot be right when I just ran a scan last night?!
Not sure what to do now! Glad others are in the same situation I guess...
Posted 27 August 2012 - 03:41 PM
Just to be safe I did 3 online scans and nothing was flagged as infected. I hope they get this sorted out soon, because until it is, SuperAntiSpyware is pretty much useless.
Posted 27 August 2012 - 03:58 PM
c'mon SAS give us a message!!!
Posted 27 August 2012 - 04:06 PM
Posted 27 August 2012 - 04:15 PM
Posted 27 August 2012 - 04:17 PM
Off for a little R and R and hope when I get back this will old and in the way... ...
Edit; FIXED, with I guess new update ~ 12:06pm CDT (us)
Now on to R and R 2 hrs late !!
Posted 27 August 2012 - 04:19 PM
I didn't delete those 'critical' files and made a copy which I'll post here. I updated SuperSpyware and hope the next scan doesn't show all those what I believe are false positives.
I tried to upload that LOG file but had no luck. I'll assume the server here is being flooded with this issue.
Posted 27 August 2012 - 04:25 PM
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users