Author Topic: csrss.exe  (Read 4837 times)

0 Members and 1 Guest are viewing this topic.

Yinyang4evry1

  • Guest
csrss.exe
« on: November 06, 2005, 05:10:44 AM »
first read this page:http://www.securityelf.org/html/software_misuse/index.html
then on the left side go down the list and click: "legal" keyloggers

i did a search on my computer on csrss.exe but it found it and said the producer is microsoft corporation and it was client runtime thingy

is it a keylogger or not?

thanks,
tim =)

galooma

  • Guest
Re: csrss.exe
« Reply #1 on: November 06, 2005, 06:41:36 AM »
I think only if you have a 2nd copy is it a problem
see http://www.lurkhere.com/forum768.html

Yinyang4evry1

  • Guest
Re: csrss.exe
« Reply #2 on: November 06, 2005, 05:43:51 PM »
thnks

tim ;D

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33897
  • malware fighter
Re: csrss.exe
« Reply #3 on: November 06, 2005, 05:57:07 PM »
Hi Yinyang4evry1,

Well if you yourself and not your boss installed it, there is no problem for you. It is like with everything you can use a poker to stir the fire or clubber someone over the head with. If someone uses it for malicious purposes inside malware it is an extra complication for AV products. The same if other legit programs are used for malicious purposes (legit obfuscater, legit protection software. For instance if a malware artist uses a legit Symantic program as part of his malware or for the wrong purpose, no AV program is going to cry wolf. There could be a solution to this problem by validation and certification.

greets,

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Yinyang4evry1

  • Guest
Re: csrss.exe
« Reply #4 on: November 07, 2005, 07:42:03 PM »
i understand about having it in system32 folder but its in two other folders of mine:
all three are:
C:\WINDOWS\I386
C:\WINDOWS\system32
C:\WINDOWS\ServicePackFiles\i386

are they all safe?

thanks,
tim =)