csrss.exe, updates.exe
Last Updated on Sunday, 24 June 2012 07:14 Friday, 24 September 2010 10:20
To know more about viruses that create Csrss.exe, please follow this link
To know more about viruses that create Updates.exe, please follow this link
csrss.exe, updates.exe are found in a virus analysis report given below.
- The installer is of about 284 KB. It can be detected by anti-virus programs
- W32.Imsolk is a mass-mailing worm that spreads through removable and mapped drives, and through shared folders and instant messaging.
- The CSRSS.EXE is Client/Server Run-Time Subsystem. CSRSS is responsible for console windows, creating/deleting threads etc. The legitimate CSRSS.EXE file is located in the folder C:\Windows\System32.
C:\Windows\csrss.exe
C:\Windows\system\updates.exe
C:\Windows\ff.exe
C:\Windows\gc.exe
C:\Windows\ie.exe
C:\Windows\im.exe
C:\Windows\m.exe
C:\Windows\op.iq
C:\Windows\tryme1.exe
The removal process may require using the System Restore, enabling to view hidden files and folders, removing entries from the Windows Startup, booting in the Safe Mode, using the System File Checker application etc. These steps vary slightly in different versions of Microsoft Windows.
Some steps are essential
# To remove virus processes from the Task Manager
# To search and delete virus files from the hard disk. Enable to view "hidden files and folders" before you search. Otherwise virus files inside the hidden folders will not be found.
# To remove obsolete registry keys using CCleaner
Detailed instructions and a number of free Tools are listed on this link.
Different ways to prevent malicious files from entering the computer on this link.
Reprinted with permission from Threatexpert.com
Please see the Disclaimer
