When I was updating my Supterantispyware, this popped up. The attached is the 2nd time as I panicked and didn’t screenshot the 1st time. It seems to be reacting to a site/server Superantispyware gets its updates from. It updated just fine though.

Is this a false positive? Or is it legit and Superantispyware connecting to malicious sites for its updates? Since it did update, am I infected?

Currently running scans…

It isn’t unusual that antivirus protection programs can conflict, but this is usually if they are both active.

I have no idea what might be in that .XML file that could trigger this.

Reporting a Possible False Positive File or Website - https://www.avast.com/false-positive-file-form.php.
You should get a response in a day or two.

Blacklisted because of reported originating IP: https://www.abuseipdb.com/check/185.93.1.249
Excessive crawling/scraping

polonus

Seems fixed now; SAS just auto-updated and I got no alert.