SUPERAntiSpyware 5.x

Discussion in 'other anti-trojan software' started by Mops21, Oct 29, 2010.

  1. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    The web page is ONLY launched on uninstall, not installation.
  2. m00nbl00d
    Offline

    m00nbl00d Registered Member

    Re: SUPERAntiSpyware 5.0

    OK. So, I confused when it SAS opens IE. Still, the same concern applies, because it opens IE in a non Protected Mode, and with full administrative rights. Someone providing a security application should be aware that huge problems may come from this, would SAS web site ever be hijacked by hackers. (Let's never say no. Others have fallen.)

    P.S: Don't take this as bad criticism; rather as good one.
    Last edited: Dec 22, 2010
  3. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    Uninstallation is not in admin mode, it's in the user context, FYI.
  4. m00nbl00d
    Offline

    m00nbl00d Registered Member

    Re: SUPERAntiSpyware 5.0

    Hmmm...

    In Start Menu there's no option to uninstall SAS. So, at the time, I first uninstalled SAS via Add/Remove Programs, which will start the all process with administrator rights (it asks for permissions).

    Also, the stand alone uninstaller I got from SAS forum, because somehow SAS failed to properly uninstall, does require administrator rights as well.

    Later on, I found there's an uninstaller executable in SAS folder, and this too require administrative rights to be executed.

    How does it require only current user (standard user) rights?
  5. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    It should be launched at the lowest priv level. We will continue to have that uninstallation page as it provides valuable data to improve our product.
  6. m00nbl00d
    Offline

    m00nbl00d Registered Member

    Re: SUPERAntiSpyware 5.0

    And, how exactly would this "should" (I made the emphasis) make it uninstall SAS with lowest rights? A standard user has no permissions to install or uninstall from %ProgramFiles%.

    The only way for SAS not require administrator rights to install or uninstall would be for it to be installed to user space. Which would go against a proper administrative policy.

    So, SAS does uninstall in administrative mode and does open IE in administrative mode as well.
  7. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    I appreciate your concern regarding the browser being launched - it really doesn't represent any issue in real-world situations and hasn't caused any issues in over 35 million installations.
  8. xxJackxx
    Offline

    xxJackxx Registered Member

    Re: SUPERAntiSpyware 5.0

    I did some testing on a Vista virtual machine and it does launch the browser process as admin. I should have known it would but had not really though about it. This is probably low odds of being a problem... unless the user keeps that browser open and continues to go to other sites with it. As I paid customer of SUPERAntiSpyware and an employee of the software industry in general I can appreciate what they are trying to do by launching this page to begin with but I can see the potential problem with this. I am thinking there is a way to launch a child process that does not inherit the admin rights but I can't think of how to do it without some research. It might be well worth looking into.
  9. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    There really is no potential problem - if you are already infected, it can't cause you to get infected - the infection would have to be there already.
  10. Searching_ _ _
    Offline

    Searching_ _ _ Registered Member

    Re: SUPERAntiSpyware 5.0

    Would it be an issue in a hostile network?
  11. nessy90
    Offline

    nessy90 Registered Member

    Re: SUPERAntiSpyware 5.0

    m00nbl00d do you ever give it a break, I dont think you have ever had to many good coments a SAS thru this entire thread, you know what because of you Im going to give SAS a go.

    Nessy:p
  12. m00nbl00d
    Offline

    m00nbl00d Registered Member

    Re: SUPERAntiSpyware 5.0

    OK.

    I guess that volunteering to translate SAS to my language, clearly shows a sign of disdain... or not giving a rest to SAS and SAS team, uh?

    Maybe I'll take my offer back. I don't use and won't be using SAS, though for the extra comfort of some relatives, I have it installed in some relative's systems, for on-demand scans. They do understand English, though. So... this wouldn't be a favor I'd be doing to me or my relatives... but to a general audience.

    Some people simply seem not to deserve the help of others. :)

    I just stated realities over the thread... and more recently one more regarding that it does open IE under FULL rights.
    If I wanted to run IE under FULL rights, I'd be using an Administrator account with UAC disabled. Or, even in standard user account with IE executed with FULL rights.

    The problem... and I had examples in the family, is that most enjoy easy to do stuff. A relative connects to the Internet using a 3G USB device; the ISP application automatically opens IE, when connecting to the Internet (the work around is to close the app after entering credentials and using Windows own connection mechanism). This made things so comfortable to my relative, because didn't have to manually open IE. Hopefully, IE process was started under standard user rights. Can you imagine the problem if it was started under FULL rights? Well... you know what people use to say: crap and accidents do happen...

    So, I just express a concern... because when I see security companies like Kaspersky having their main website hacked... it makes me wonder if the same couldn't happen with such SAS page. (Maybe not... maybe some divine protection is out there.)

    Anyway, it's my last post here.
  13. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    So you won't translate SUPERAntiSpyware because your point was rebutted? Yes IE opens as the same priv as the current process - in reality that doesn't do anything harmful. There is ALWAYS away to come up with a "possible" situation, but you have to look at probability, not just possibility.
  14. nessy90
    Offline

    nessy90 Registered Member

    Re: SUPERAntiSpyware 5.0

    Purchased SAS.
    Nessy
  15. m00nbl00d
    Offline

    m00nbl00d Registered Member

    Re: SUPERAntiSpyware 5.0

    I guess no one wondered about the probability of security vendors like Kaspersky seeing their website being hacked; nor the possibility of such ever happen, I guess. ;)

    And, I actually believe such situation happened more than once. I guess no one ever thought about the probability of a second possibility just around the corner. :D
  16. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    Glad you can now see the humor in it :) All the vendors do their best - nothing is perfect.
  17. m00nbl00d
    Offline

    m00nbl00d Registered Member

  18. iFront
    Offline

    iFront Registered Member

    Re: SUPERAntiSpyware 5.0

    @SUPERAntiSpy

    If you don't mind can I know when will the SAS 5.0 will be released officially?
  19. twl845
    Online

    twl845 Registered Member

    Re: SUPERAntiSpyware 5.0

    You know they're going to say "when it's ready". :D
  20. firzen771
    Offline

    firzen771 Registered Member

    Re: SUPERAntiSpyware 5.0

    i wonder if its gunna be the same as SuperAdBlocker in that sense lol:D
  21. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    That's exactly right, but it's close to public pre-release!
  22. iFront
    Offline

    iFront Registered Member

    Re: SUPERAntiSpyware 5.0

    Thank you for the news,I'm quite excited how the new version will perform. :)
  23. Raven_X
    Offline

    Raven_X Registered Member

    Re: SUPERAntiSpyware 5.0

    still to have for an normal PC with 2GB Ram and 2Ghz,
  24. SUPERAntiSpy
    Offline

    SUPERAntiSpy Developer

    Re: SUPERAntiSpyware 5.0

    What are you asking here?
  25. Jadda
    Offline

    Jadda Registered Member

    Re: SUPERAntiSpyware 5.0

    Guess he is trying to say it's too heavy. Looking forward to pre-release, I'm sure it'll be great. Good luck!