csrsc exe process is associated with malicious software W32 Spybot CF W32 Spybot CF is a network-aware IRC controlled backdoor or bot that can be used to gain unauthorized access to a victim's machine The worm can connect to an IRC server and receive commands from a remote…

csrsc.exe

W32.Spybot.CF

Warning! Potential Security Hazard!

System process csrsc.exe is reported as a virus and a trojan!

Brief description of process csrsc.exe

Process csrsc.exe named “W32.Spybot.CF” is unsafe executable application of W32.Spybot.CF software. Process csrsc.exe is reported as a virus and trojan horse. Process csrsc.exe is classified as dangerous and is highly recommended to remove it from computer quickly.

csrsc.exe

Additional information about csrsc.exe

csrsc.exe process is associated with malicious software W32.Spybot.CF. W32.Spybot.CF is a network-aware, IRC controlled backdoor or bot that can be used to gain unauthorized access to a victim's machine. The worm can connect to an IRC server and receive commands from a remote computer. Use antivirus software and spyware, adware remover to protect computer against malicious software.

Default file locations

c:\windows\ system32\csrsc.exe

External links

Reported as a virus

Yes, it is a virus!

Reported as a trojan horse

Yes, it is a trojan!

Reported as a spyware

No

Safe to end the process

Yes

Safe to disable the process

Yes

Safe to remove the process

Yes

Developer

Information isn't available

Part of

W32.Spybot.CF

Share |
 

Previous process
csrs.exe

Next process
csrss.exe

 
 
 

Related news

Showing news related to process “csrsc.exe”

December 12, 2009 3:07:04 AM CET

W32/Spybot-OW

 

January 28, 2010 1:59:00 AM CET

Facebook Unnamed App Internal Spybot Warning – Message circulating on Facebook warns that users should delete a Facebook application labelled "Unnamed app" because it is an "internal spybot" that can make Facebook runs more slowly than usual.

 

February 23, 2010 1:00:00 AM CET

W32.Spybot.AVEO – Risk Level: Low. Type: Worm.

 

April 15, 2009 10:17:00 AM CEST

Trojan-Dropper.Win32.Agent.albv – This Trojan has a malicious payload. It is a Windows PE EXE file. It is 23552 bytes in size. Installation The Trojan copies its executable file as follows: %WinDir%\system\svhost.exe In order to...

 

September 25, 2009 1:51:00 PM CEST

Backdoor.Win32.Clampi.a – This Trojan spy program is designed to steal confidential user data and remotely manage the victim machine. It is a Windows PE EXE file. It is 470 bytes in size. Installation When launched, the Trojan creates the following file: %AppData%\.exe

 

April 15, 2009 11:17:00 AM CEST

Trojan-Dropper.Win32.Agent.albv – This Trojan has a malicious payload. It is a Windows PE EXE file. It is 23552 bytes in size. Installation The Trojan copies its executable file as follows: %WinDir%\system\svhost.exe In order to ensure that the Trojan is launched automatically when the system is rebooted, the Trojan adds a link...

 

September 28, 2009 1:21:14 PM CEST

Trojan Downloader.Agent.UZM – A new Trojan Downloader was spammed today. Trojan is attached in zip archive to emails in HTML format with subject "Hot game" and body text that claims some Angelina Jolie or Lara Croft undressing game. xgame.zip attachment contains xgame.exe (20992B) which drops executes and deletes kernel driver C:\WINDOWS\System32\drivers\runtime.sys and downloads another downloader smartdrv.exe. runtime.sys runs injects and hides Iexplore.exe process and downloads another components. xgame.exe is detected as Trojan Downloader.Agent.UZM, smartdrv.exe is detected as Trojan Downloader.Agent.UZN, runtime.sys is detected as Trojan Downloader.Agent.THW and other downloaded components are detected as several variants of Trojan Backdoor.Ntrootkit.

 

October 5, 2009 3:55:41 PM CEST

I-Worm/Nuwar – We have a new wave of spammed mail messages containing link directing users to website where the worm could be downloaded. Emails contains short text and IP address of currently working pages with worm. In this case downloaded filename is withlove.exe and it's about 115kB in size. Websites and worm files changes every few minutes. AVG detects withlove.exe as I-Worm/Nuwar.L.

 

September 28, 2009 1:21:14 PM CEST

I-Worm/Nuwar – Propagation method of new Nuwar variant is still similar to its precedessors. Spammed mails with link in IP format directs users to the worm web pages where the users are prompted to download one of the worm files with the name funny.exe. Names of other downloadable files are kickme.exe and foolsday.exe. AVG detects this threat as I-Worm/Nuwar.R.

 

January 28, 2010 11:28:11 AM CET

Unnamed App: it’s the SEO that matters, not the app – As more information and discussion has come in on this, it now merits an update in its own right. It seems that there is at least one other unnamed app around as well as the Boxes issue, and while I've no reason to assume that it's malicious, I'd hardly advise that you rush into installing [...]

 
 
 

Navigate through library of processes alphabeticaly by first letter: