SuperCookie or PUP ----possibly malicious.
Hello ,
This is my first time to ask for help or have a question. I have a program that finds Super-Cookies that are not
deleted by normal means. HSTS is another word for them. This one is owner@realserv.com which can redirect your browser and is mainly to spread adds: It can also read info on your computer;however I am having no problems from it that I know of and have discussed it with others that say it is not malicious and is in fact a Microsoft file. In any case I have found a site to offers a way to remove it.
https://sensorstechforum.com/realsrv-virus/#what-is-realsrv-
I only use Firefox but in following the directions given I was unable to remove it. The page was probably written before all the changes to Firefox.
Can you advise on this subject? Firefox is latest version.
Thanks Paul
الحل المُختار
Okay let me ask it another way -- I love Firefox but are you saying that their is noway to remove malicious files from it. The guy who wrote the removal procedures for the file wrote one for all the popular browsers and since I have only use Firefox I figured it was gonna be an easy fix - I guess Edge is installed --but I avoid it and Internet Explorer
I don't use but it's probably installed. Chrome I stay away from. I use Malware bytes and Windows Defender plus a few specialized utilities.
No one is safe is safe no matter what you do --esp not from Google and the NSA - our GOVT. Chrome does at least have a cleanup feature. If I know how to get to the presumed PUP are you telling me that Firefox can't clean up add-ons. I have discussed the realserv.com with Neuber the company producing Security Task Manager that found this file. I have no idea where i picked it up ----Under file properties it says it is a Microsoft file. I only sought help here because it seems a one time a pup could be removed from Firefox - disturbing that this feature is not available.
Thanks For Replying Paul
https://www.neuber.com/taskmanager/reguser.html
excellent software to get rid of your HSTS cookies.Read this answer in context 👍 0
All Replies (5)
الحل المُختار
Okay let me ask it another way -- I love Firefox but are you saying that their is noway to remove malicious files from it. The guy who wrote the removal procedures for the file wrote one for all the popular browsers and since I have only use Firefox I figured it was gonna be an easy fix - I guess Edge is installed --but I avoid it and Internet Explorer
I don't use but it's probably installed. Chrome I stay away from. I use Malware bytes and Windows Defender plus a few specialized utilities.
No one is safe is safe no matter what you do --esp not from Google and the NSA - our GOVT. Chrome does at least have a cleanup feature. If I know how to get to the presumed PUP are you telling me that Firefox can't clean up add-ons. I have discussed the realserv.com with Neuber the company producing Security Task Manager that found this file. I have no idea where i picked it up ----Under file properties it says it is a Microsoft file. I only sought help here because it seems a one time a pup could be removed from Firefox - disturbing that this feature is not available.
Thanks For Replying Paul
https://www.neuber.com/taskmanager/reguser.html
excellent software to get rid of your HSTS cookies.
That are instructions to remove/uninstall an extension in Firefox.
But I'm not seeing such an extension in your System Details you shared with us. Did you check the instructions for Windows as well?
What makes you think that you have this malware ?
I am familiar with the way to remove an add-on and have seen no smptons of having the PUP. I was alerted to it
by the Neuber program and It's the the first one HSTS that it was unable to delete hence my conversation tonite. This has been months ago. For some reason I was tired of looking at the alert tonight so I went to thid remove page and found that it was doing it's dirty work thru browsers --I had manually deleted the file months ago.
Since this guy had gone thru so much trouble to prepare all the specific browser removal procedures I decided to see if I should make sure --then I discovered I needed help and I disagree with the first respnse very much.
I don't have it running under Task Manager Processes so I am sure it is and never was a problem for me. I only wrote the second response because I was schocked by the first response I got from "help".
Thanks For Your Response Paul I checked problem solved but I hope you still get this.
Of course I was under Windows fixes and his diagram were definitely Firefox;however outdated.
Thanks Again and both issues solved.
Paul I think it came over with a Windows update. None of my scanners detected it but the Sper-Cookie one by Neuber.
Modified
Dropa said
Those sites whom wrote and uploaded the instructions is up to them to provide support for how they give the instructions. It's not Firefox to do this as this didn't come from Firefox itself. Also Windows only has Defender there is no Defender Plus AFAIK. As to what site is safe/secure/notracking that isn't something Firefox can do about as that is what the site chooses to do. PUP isn't a Firefox caused and unless those site can provide the support then you need to take it to a computer shop to find what do there. So unless Windows Safe Mode with Netwoking and or Firefox Private Mode Browser can't remove then that is for a professional to look at.
Look I get you. I started by asking for whatever he had on his diagram as I could no longer find it on the latest version of Firefox -then you had to try and school me. No thanks I have the the PUP solved bout sometimes they must be deleted at the core files. The file was under owner. I found it investigated it with all the data available under properties - talked to Neubier himself --a very smart man. I believe all your mubo-jumbo going in circles has made me regret asking for help to make sure no traces remained in Firefox.I got rid of the PUP the same day I got it but sometimes they still have core files to regenerate themselves.In the future please don't respond to me - if I ever venture "here" again. You act like you are teaching a computer class. I am done with this.
Bye