What does this warning mean?

Date/Time :2006-12-04 13:28:11
Severity :High
Reporter :Application Behavior Analysis
Description: Suspicious Behaviour (iexplore.exe)
Application: C:\Program Files\Internet Explorer\iexplore.exe
Parent: C:\WINDOWS\explorer.exe
Protocol: TCP OutDestination:
Details: C:\Program Files\Spyware Doctor\swdoctor.exe has modified the the User interface of C:\Program Files\Internet Explorer\iexplore.exe by sending special Window messages

I am certain that my antipsyare program Spyware Doctor is not doing anything malicious. But what does it mean that Spywae Doctor has modified iexplore.exe and is sending out special windows messages?

Spyware Doctor does install a BHO upon installation. Is Comodo pointing to that?

CPF is letting you know that an application has, well, “messed” with Internet Explorer; CPF is not making a judgment about whether it’s good or bad, whether you should stop it or not, etc. It’s merely informing you that something has occurred. If you don’t trust it, or weren’t expecting it, then you can stop it. Since it’s spyware doctor, it may be making some changes to IE to reduce its vulnerability levels.

CPF will let you know about things like this occurring, which are potentially, or possibly security issues. Then you get to decide whether or not to allow them. If you go to Security/Advanced/Application Behavior Analysis, you will see a list of these types of activities that CPF monitors (provided the boxes are checked, of course); yours is the third on the list. All these are ways that viruses/spyware/trojans/etc can use your computer to try to connect outward - and CPF watches; giving you the opportunity to stop it!

Hope that helps,


Just a note: the IP address appears to be part of Monster.com.