Shellcode Injection, services.exe, boot interrupted


First sorry if this post is misplaced, because I do have yet log onto this forum very often,
and do not know all it’s corners’.

I just want to let you know that my last PC boot was interrupted by COMODO Firewall,
and that the boot operation was restarted automatically. All I could see is the word
“buffer overflow” in the displayed Defense + Alert message. By looking at the log provided
by the Defense + Events display, I can see the line :

C:\WINDOWS\SYSTEM32\services.exe Shellcode Injection

The 2nd boot terminated successfully, and my PC is running apparently normally. I did
a full MBAM and Avast antivirus scans, but nothing was found.

What does this message really mean, and how did it come out ? Has this anything to do
with a real “buffer overflow” attack ? Here is anything I can do to let you more deeply
investigate the situation ?

I have Windows XP Pro + SP3, and Comodo 3.8.65951.477. My PC is regurlarly updated.

Thanks in advance for any comments.

As far as I understand a buffer overflow was detected (shell code injection). Since it was flagged I assume you were not compromised.

It seems to me CIS did its job detecting and blocking the BO. So in the event something malicious tried to inject its self it never got the chance.