Welcome to Process-info.org library
Process-info.org is an online library of Computer Operating System's Processes, which helps you to identify processes running at background of computer operating system or at remote computers on your network.
Process-info.org contains a growing database of executable processes (mostly with .EXE extension) and DLL libraries. You can search for processes through search box or navigate alphabeticaly by starting letter of process name.
It is assumed that users are familiar with computer operating system they're using and agree with suggested changes. Process-info.org will not be held responsible, if changes you make cause a system failure.
csrss.exe
Trojan.W32.Rontokbro
Warning! Potential Security Hazard!
System process “csrss.exe” is reported as a Virus and Trojan!
There are 6 processes with name “csrss.exe”
• csrss.exe – Microsoft Client/Server Runtime Server Subsystem
• csrss.exe – Trojan.W32.Beagle
• csrss.exe – Trojan.W32.Dropper
• csrss.exe – Trojan.W32.Rontokbro
• csrss.exe – Trojan.W32.VIRKEL
• csrss.exe – winsystem.sys
Brief description of process
What to do with this process?
csrss.exe
Reported as Virus
Yes!
Reported as Trojan Horse
Yes!
Reported as Spyware, Adware
No
Developer
Part of
Trojan.W32.Rontokbro
Related news
Showing news related to process “csrss.exe”
April 15, 2009 11:17:00 AM CEST
Trojan-Dropper.Win32.Agent.albv – This Trojan has a malicious payload. It is a Windows PE EXE file. It is 23552 bytes in size. Installation The Trojan copies its executable file as follows: %WinDir%\system\svhost.exe In order to ensure that the Trojan is launched automatically when the system is rebooted, the Trojan adds a link...
April 10, 2007 2:00:00 AM CEST
Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability – Type: Vulnerability. Microsoft Windows CSRSS is prone to a local privilege-escalation vulnerability; fixes are available.
April 10, 2007 2:00:00 AM CEST
Microsoft Windows CSRSS MSGBox Remote Code Execution Vulnerability – Type: Vulnerability. Microsoft Windows CSRSS MsgBox is prone to a remote code-execution vulnerability; fixes are available.
September 28, 2009 1:21:14 PM CEST
Trojan Downloader.Agent.UZM – A new Trojan Downloader was spammed today. Trojan is attached in zip archive to emails in HTML format with subject "Hot game" and body text that claims some Angelina Jolie or Lara Croft undressing game. xgame.zip attachment contains xgame.exe (20992B) which drops executes and deletes kernel driver C:\WINDOWS\System32\drivers\runtime.sys and downloads another downloader smartdrv.exe. runtime.sys runs injects and hides Iexplore.exe process and downloads another components. xgame.exe is detected as Trojan Downloader.Agent.UZM, smartdrv.exe is detected as Trojan Downloader.Agent.UZN, runtime.sys is detected as Trojan Downloader.Agent.THW and other downloaded components are detected as several variants of Trojan Backdoor.Ntrootkit.
September 25, 2009 1:51:00 PM CEST
Backdoor.Win32.Clampi.a – This Trojan spy program is designed to steal confidential user data and remotely manage the victim machine. It is a Windows PE EXE file. It is 470 bytes in size. Installation When launched, the Trojan creates the following file: %AppData%\.exe
