Solved "iexplore.exe" running in background without IE being open

Status
Not open for further replies.

Ramen

New Member
Thread author
Verified
Aug 17, 2014
30
Through my research I have found mixed results that iexplore.exe can be safe but also could be
a malware/virus/trojan so I wanted your excellent team to scout it out.
 

Attachments

  • Addition.txt
    45.6 KB · Views: 45
  • FRST.txt
    37.2 KB · Views: 197
  • Spybot Log 8th Feb 2015.txt
    23.5 KB · Views: 139
  • AdwCleaner[S3].txt
    1.6 KB · Views: 40

argus

Former MalwareTips Staff
Verified
Apr 24, 2014
3,395
C:\Program Files (x86)\iexplore.exe*32 is legitimate file.
It's part of the tab crash/isolation process. Tabs run in separate instances. Nothing to worry about.

Logs doesn't show active infection.
 

Ramen

New Member
Thread author
Verified
Aug 17, 2014
30
how about the iexplore.exe without the *32? is that also a legitimate internet explorer process? just wanted your clarification
 

Ramen

New Member
Thread author
Verified
Aug 17, 2014
30
Thank you will post again if something looks fishy 、(hopefully not)
 

Ramen

New Member
Thread author
Verified
Aug 17, 2014
30
Hmm I just got back from work and checked the processes by all users and seeing multiple iexplore.exe again (this time only 5) (it was put to sleep when I was working)

the location is once again for ALL the mulitple processes are in C:\Program Files (x86)\iexplore.exe

could you explain
1)why both iexplore.exe and iexplore.exe*32 is run under two different processes when IE browser is open)
2)Why there are mutiples of iexplore.exe even when IE browser is closed?
 

argus

Former MalwareTips Staff
Verified
Apr 24, 2014
3,395
Because the system (X64). System x86 has only iexplore.exe
 

Ramen

New Member
Thread author
Verified
Aug 17, 2014
30
So how about the iexplore.exe running without IE browser? is it as you explained in your previous
post that about multi tabs, it should be running even when IE browser is CLOSED?

C:\Program Files (x86)\iexplore.exe*32 is legitimate file.
It's part of the tab crash/isolation process. Tabs run in separate instances. Nothing to worry about.

Logs doesn't show active infection.
 

Ramen

New Member
Thread author
Verified
Aug 17, 2014
30
Nope not a virus according to VirusTotal.
Thank you Argus once again sorry for being a pesky paranoid client.
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top