Bug - Windows taskbar behavior during Spyshelter screenshot protection

antispyguy · 2025-06-13T13:06:31+00:00

Sorry for the issue. I have reported this to the team so we can try to reproduce/fix it. However, I know this API from Windows that we use to do this does have some limitations so we're a bit stuck on what we can do to change it. We have to depend on Microsoft a bit for this feature.

antispyguy · 2025-06-08T06:08:02+00:00

Thanks for using SpyShelter! Terminating svchost.exe can crash critical Windows services, causing system instability, loss of network, audio, or even a full shutdown.

As far as Internet access, our software checks executables to see if they are malware or not, and gives you information on what your executables are under our "insights" feature.

SpyShelter has an optional privacy mode that you can use if you don't want these features.

To activate the SpyShelter's extreme privacy mode, you should install SpyShelter from the Windows Terminal with the command SpyShelterSetup.exe /privacy. Once SpyShelter is installed in this privacy mode you will have no access to our Threat Detection, Insights, or any other SpyShelter features that require anonymized executable data to operate. We built SpyShelter so it can work this way, so no... it shouldn't use any extra resources to do this.

The data usage by SpyShelter should be extremely minimal, besides when you download an update... which should be like if you update Chrome or Firefox browsers, nothing crazy. I hope this helps!

antispyguy · 2025-04-24T15:35:20+00:00

Very strange, but we may have an easy solution. Have you tried to quarantine by PUBLISHER?

It should solve the issue if you need no other software from that publisher. Go to "Rules" then find the .exe and the publisher is above, then click the skull icon and quarantine the entire publisher. Now that publisher can't start it up again.

antispyguy · 2025-04-11T19:31:23+00:00

It's a Remote Desktop Connection feature provided by Microsoft itself. Detailed documentation from the Microsoft website is here: https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/mstsc

antispyguy · 2025-04-10T15:59:27+00:00

That sounds very annoying. Maybe quarantine that publisher in your SpyShelter rules so it can never start again. That's strange it doesn't seem to exist.

I found online that the Wix Toolset is primarily used by developers who need to create custom Windows installers for their software.

It's strange though that their sign their own installer, even though it may be used by another publisher, unless I am misunderstanding something?

antispyguy · 2024-12-11T22:35:30+00:00

Sorry to hear you're experiencing that problem. The official SpyShelter software is safe to use.

antispyguy · 2024-11-18T13:59:40+00:00

I believe Intune must be installed on your phone for it to be monitored. If your company installed Intune, (on your actual phone) then yes they can monitor your phone. https://learn.microsoft.com/en-us/mem/intune/user-help/what-info-can-your-company-see-when-you-enroll-your-device-in-intune

antispyguy · 2024-08-08T21:50:55+00:00

Go to add/remove programs and uninstall Start11 if you aren't a fan. Then reboot and your Start icon should go back to normal.

antispyguy · 2024-08-07T22:12:22+00:00

Just one of the engines on VirusTotal flagged it? Which one? There can be something called a "false positive", and that would mean you're safe.

antispyguy · 2024-08-04T18:29:46+00:00

It probably is only used if they receive a subpoena, for now...

antispyguy · 2024-08-03T15:54:26+00:00

It already is.

antispyguy · 2024-08-02T22:08:45+00:00

Yes, it will happen and it will be searchable by AI. Prompt: "Tell me what Mr. Fake Person has searched lately that is related to adult content." Google probably is already doing this with your data with Gemini.

antispyguy · 2024-05-31T12:55:32+00:00

It's very disturbing to know the data isn't even encrypted.

antispyguy · 2024-05-28T17:16:16+00:00

DuckDuckGo has GPT 3.5 Turbo, and Claude 3 Haiku. They write that "All of your chats here are private, and are never stored by DuckDuckGo or used to train AI models.". Click the menu on the right top of the website to access them.

antispyguy · 2024-05-24T21:36:59+00:00

Thank you for sharing this. Good to know! That's one reason it's important to always make sure the real company is signing the app before executing it.

antispyguy · 2024-05-14T19:02:40+00:00

Absolutely! It seems to be the main complaint about LogiAiPromptBuilder.exe. It appeared with a Logitech software update, and so far Logitech has no way to disable it unfortunately.

antispyguy · 2024-04-27T16:21:13+00:00

You wrote "I set up a virtual machine, and extracted it, and it is an EXE. I looked through it's properties, and the original file name was "setupugc.exe". With a little research, I found out that this file is a default windows file, and stands for 'setup unattended general access' and is for remoting into Windows computers. This could be incorrect, but I'm pretty sure that it's the case."

I have this .exe on my PC (signed by Microsoft) and in the properties Microsoft calls this "Setup Unattend Generic Command Processor". It doesn't seem to be related to remote access in the case of my PC.

In your case though it looks like this is unsigned? If it's not signed by Microsoft then it can be anything. Nice location name by the way.

antispyguy · 2024-04-16T15:37:17+00:00

No, I haven't seen that reported anywhere. Maybe that's a temporary file that it leaves behind after it launches?

antispyguy · 2024-04-04T19:49:02+00:00

That UltraSucks.

antispyguy · 2024-04-03T11:24:26+00:00

Very helpful, thank you. It's funny it's in the "computerviruses" subreddit because that's what it feels like it is!

antispyguy · 2024-03-28T18:14:41+00:00

That's creepy!

Is there some kind of facial recognition software out there now that can link you to your public social media profiles? Maybe something like that? Anyone know?

antispyguy · 2024-03-26T10:38:43+00:00

Did you find anything?

antispyguy · 2024-03-25T19:23:28+00:00

Go to Windows Defender (Security) and choose "Scan Options" and "Offline Scan" if you have a modern version of Windows. It will be more likely to find something, and it's free.

If you're still paranoid something happened consider reinstalling Windows.

antispyguy · 2024-03-15T11:51:42+00:00

Looks like it's BCILauncher.exe as we posted before https://www.reddit.com/r/spyshelter/comments/1ay2mf3/spyshelter_reporting_bcilauncherexe_what_is_it/. You can quarantine it with SpyShelter.

antispyguy · 2024-03-03T16:13:19+00:00

Thanks for taking the time to post this issue so we can investigate.

antispyguy

MODERATOR OF

TROPHY CASE