Running the scanner detected one of KIS8's files as being a very high risk threat currently running. See the screenshot for the details. ;)

EDIT: Overall it's being detected as just that through "ThreatExpert" too. Doesn't look good to me...

Thanks for pointing this out. TEMS has detected the same malware signatures that Kaspersky module uses to detect malware.

Think about it this way: TEMS is a drug-sniffing dog trained to alert in case of presence of illegal drugs. In this case, however, TEMS has drawn your attention to a crime lab of a different police department because it handles the samples of illegal drugs too.

We won't pull the malware signatures from TEMS to "fix" this detection, or otherwise it will stop detecting malware. Instead, we'll train it to distingush the legitimate modules of different AV products.

Meanwhile, please be aware that TEMS may trigger detection of the memory modules of other AV products that load malware signatures in memory and store them in unencrypted form.

I see, thx for the info. and I'm looking forward to this getting fixed. ;)

Meanwhile, please be aware that TEMS may trigger detection of the memory modules of other AV products that load malware signatures in memory and store them in unencrypted form.

I assume this is also what has been happening here in at least one case, when the windows defender and antivir guard processes were reported to contain heap pages with zeus/zbot signatures, I still wonder though why TEMS only reports those signatures specifically, instead of finding way more matches due to the size of antivirus signature db in both services ...

Is the zbot/zeus detection routine in any way significantly different from the other signatures? That would possibly explain those matches.