my Avast (2015.10.0.2208 with signatures 150216-0) reports suspicious activity (see attachment). There are 2 files mentioned: One is the “object” (ctfxwlauncher) and one the “process” (rundll32). Now which one is the actual virus? Or what is so suspicious about them? Explicit scanning of both files did not find anything.
But if it’s the interaction between rundll32 and ctfxwlauncher that is suspicious, then reporting ctfxwlauncher as FP could be misleading, couldn’t it? I think I’ll rather do some more investigation before.