DavidR
6
My thinking on the windows update was related to the files being in the temp folder as happens on some updates, whilst files are unpacked and replace the originals. But this doesn’t appear to be the case.
I think it is just the way this program utilises .net; I would have though it would run the .net dlls from their own folder location and not from the temp folder. For me running dlls, executable files from a temp location is a little suspicious. That said avast does that when checking for the presence an emergency update.
I would have thought that true .net dlls are digitally signed and that would probably prevent an alert. I don’t think sending the screepresso stuff to avast, but the dlls created in the temp folder should be sent from the virus chest (if you have the files shield set to send to chest).
Unfortunately I have zero experience of this screenpresso application (I’m not a gamer), so I have no idea how it utilises .net.