Dnggt56

CLOSED Emsisoft detected suspicious behavior, asked for action. Also when I booted my pc, i saw two cmd windows flashing on desktop

Recommended Posts

The suspicious behavior was blocked when I tried saving file on Tiled map editor, behavior blocked "code injection" in tiled.exe. I am fairly sure this is false positive but you never know for 100%, also dont know what those cmd windows were. Ive seen such cmd windows on start up before so they may be just windows thing.

Here are farbar logs anyway, i would be glad if you could check them.

 

FRST.txt

Addition.txt

Share this post


Link to post
Share on other sites

I scanned with emsisoft anti malware and no suspicious files were found

 

Btw, Emsisoft always gives warning about conflicting antivirus, malwarebytes. Ive always used malwarebytes alongside emsisoft and this warning is pretty recent thing. Is malwarebytes actually conflicting with emsisoft these days?

Share this post


Link to post
Share on other sites

Your logs show no malware.

Code Injection itself is not malicious.  Many legit applications use Code Injection.  There is no way to differentiate between legit applications using Code Injection and malicious applications using Code Injection.  The Behavior Blocker will alert on all applications making use of Code Injection techniques unless the we have white listed that application.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.