We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

kaspersky 'invader' issue

cycledude
cycledude asked
on
Medium Priority
708 Views
Last Modified: 2013-11-22
hi all

My client is using kaspersky (v6? for workstations)

every time he opens ie8 he gets a message telling him the application is showing signs of being a virus of type 'invader' skip, deny or terminate...

started happening this morning..

we have run a kaspersky scan, it picked up a couple of things,... then a malware bytes scan picked up some more, then a 'superantispyware' scan picked up a couple more again....

but still the same message appears...

here is some more detailed description:

Process C:\windows\system32\svchost.exe (PID: 1944) is attempting to invave process C:\program files\internet explorer\iexplre.exe (PID: 6056).  This behaviour is typical of some malware.


Any ideas what to do next?

Comment
Watch Question

CERTIFIED EXPERT
Author of the Year 2011
Top Expert 2006
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
CERTIFIED EXPERT
Top Expert 2007

Commented:
iexplre.exe <<-- is that a typo of iexplore.exe?

Can we also look at the Kaspersky log that the scan generated?
All the generated logs from Mbam, SAS and Kaspersky if possible.

Author

Commented:
Hi thanks for the tips....

yes, iexplre.exe was a typo on my part! lol

it's now a long bank holiday weekend, so it will be thursday before I can come back with any info...
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.