[Zemana] Not sure where to post this question but...

Discussion in 'other anti-malware software' started by ratchet, Mar 26, 2011.

Thread Status:
Not open for further replies.
  1. ratchet

    ratchet Registered Member

    Joined:
    Feb 20, 2006
    Posts:
    1,908
    Zemana alerted me today about Firefox wanting to write to the registry. I've been using Ff4 all week so I wouldn't think it had anything to particularly do with it. I was sandboxed so I allowed it. Here is the log. Can anyone explain what Ff was up to? By the way, there are no new processes or services running, e.g. Ff process even though the browser is closed so I don't believe it is connected to malware and Malwarebytes found nothing. Also as you'll notice, it was verified from Mozilla. Thank you!
    p.s. Questioning why Ff was suddenly writing to the registry, not questioning anything about Z!

    Permission = 1
    Action = Allowed
    Description = Firefox
    Process Name = firefox.exe
    Process Path = C:\Program Files\Mozilla Firefox\firefox.exe
    Component = firefox.exe
    Company = (Verified) Mozilla Corporation
    Activity = Registry Access (Type: 28 )
    MD5 Hash = 7AAF26E5CEC48A364FAB61A3505668FB
    Date = 26/3/2011 - 5:45:17 PM
     
    Last edited: Mar 26, 2011
  2. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    i stopped using Zemana and other HIPS like products because they are paranoia inducing. ;)

    Zemana, like other HIPS, will something warn about legit processes.
    i am not saying that is what happened in your case.
    so be careful.

    but still, i think some security apps assume we like to see this info and spend hours researching the answers in case we are not IT specialists.:cautious:

    just my 2 cents.
     
  3. 0strodamus

    0strodamus Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    1,047
    Location:
    United Surveillance States
    It sure would help if Zemana showed you the registry key it was protecting. Good luck tracking this one down...
     
Loading...
Thread Status:
Not open for further replies.