flaubertlekhem

Got it.

Dear @Porthos, Thank you for the link. It seems to work now. Regards.

Dear MalwaresBytes team, I am unable to use office software. Each time I try to use a functionnality on office, the software crashes and get blocked by MB. I must inform you that I configured MB like describe below: 1. Security => Detection of threats with AI => Activated 2. Security => Identify malwares with powerful algorithm => Activated 3. Security => Advance settings => Intrusion test => block intrusion test => activated 4. Security => Advance settings => Memory protection => 4.1 DEP bypass protection => activated 4.2 Malicious return address detection => activated 4.3 Stack pivoting protection => activated 5. Security => Advance settings => Protection against application behaviour => *only option deactivated 5.1 MessageBox payload protection 5.2 Office VBE7 abuse prevention I hope you can help me understand why it keeps happening. Waiting for your response. Best regards. Malware.Exploit.Agent - Exploit payload process blocked splwow6 exe 20212211.txt

Thanks to you. Regards.

Hello miekiemoes, In response to your previous message You will find attach 3 differents log from MB. Waiting for your expertise. Regards. ConEmu3.txt ConEmu2.txt ConEmu1.txt

Hello, I have an issue. MB has quarantine ConEmu.exe from Git Extension software pointing it as a malware. The identification here is "code injection" which it is kind of normal is some ways because of console injection. But at the same time, since MB blocked ConEmu.exe I was still able to push and pull work to local server. Is it a false positive or behind the scene ConEmu.exe is really a malware injection service? Waiting for you analysis. Thank you in advance. Regards.