WSA Keylogging me attempts, Plus

According to these alerts from Zemana anyway. Yesterday i got this one around the same time WSA asked me to type in my password to allow a "supposed" malware www



Fair enough i thought, but out of curiousity to see what happened, i clicked BLOCK, but did NOT create a Rule. WSA accepted my PW & i perused the www with no ill affects. So i "presumed" the Zemana alert was for "something" else & the timing was "perhaps" a "conincidence!

On booting up this evening, with no internet conection, i received a Different WSA KL attempt from Zemana.



Once again i clicked BLOCK, & did NOT create a Rule. A few seconds later the alert reappeared, & i did the same.

As soon as went online i now got this alert !



WSA updated yesterday to V8.0.2.20, & before this i don't recall having the same issues. Any clues why these should now be occurring ? I'm "presuming" it's related to the update ?

 

Nothing that significant has changed in the last update - these are just FPs from Zemana. WSA has to inject code/monitor keystroke reading to protect the system.

 

@ PrevxHelp

FP's ! i'll keep my eyes on things.

Funny thing though, before the update i didn't get the Inject alert ?

 

It's probably just because the hash changed from it being a new version.

 

Ahh, yes, never thought of that ! I suppose it could be.

Thanks for your quick replies

 

Hi CloneRanger,

FWIW, I am running ZA, but I have WSA allowed, automatically, so I guess that is why I don't get those popups.

 

@ Tarnak

Hi, thanks for your reply

I found that i had allowed CI from an earlier version after all !



So PrevxHelp is correct it's due to a new Hash value

Still watching out for the KL alerts, none today, so far