smss.exe ( 5.1.2600.1106)

Contained in software
Name:	Windows XP Home Edition, Deutsch
License:	commercial
Information link:	http://www.microsoft.com/windowsxp/
File details
Filepath:	C:\WINDOWS\I386\SYSTEM32 \ smss.exe
Filedate:	2002-08-29 14:00:00
Version:	5.1.2600.1106
Filesize:	508.928 bytes
Checksum and file hashes
CRC32:	259BE1F6
MD5:	1D12 C3AC D995 491D C6BB 8C34 841C 7262
SHA1:	A4B3 F014 62BF 016D C6C8 A1A6 558B 2E90 B34A 8214
Version resource information
CompanyName:	Microsoft Corporation
FileDescription:	Windows NT Setup
FileOS:	Windows NT, Windows 2000, Windows XP, Windows 2003
FileVersion:	5.1.2600.1106
InternalName:	USETUP.EXE
LegalCopyright:	© Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename:	USETUP.EXE
ProductName:	Betriebssystem Microsoft® Windows®
ProductVersion:	5.1.2600.1106

smss.exe was found in the following malware reports:


W32.Dalbug.Worm
Technical details ...and executes these files: %windir%Smss.exe %windir%Csrss.exe... ...This is a non-malicious joke program that is executed by Smss.exe and Csrss.exe once they are running.... ...NOTE: The files Smss.exe and Csrss.exe have the same file names as two system files that reside in the %windir%System32... ...ones in the System32 folder. During execution, the Smss.exe and Csrss.exe files keep the service running, and checking every three seconds to... ...following registry values: Smss.exe %windir%smss.exe... ...process if it is activated. Smss.exe and Csrss.exe also try to create the these registry values, however if they detect... ...(instead of creating them). Finally, Smss.exe and Csrss.exe will also copy the worm to the following files:... Source: http://securityresponse.symantec.com/avcenter/venc/data/w32.dalbug.worm.html
Adware.DreamAd
Technical details ...File names: SMSS.exe When Adware.DreamAd is executed,... ...Copies itself to the %Windir%SMSS.exe folder. Note: %Windir% is a variable.... ..."Debug" = "SMSS.exe" to the registry key:... Removal instructions ..."Debug" = "SMSS.exe" Exit the Registry Editor.... Source: http://securityresponse.symantec.com/avcenter/venc/data/adware.dreamad.html
W32.Resdoc
About W32.Resdoc ...periodically attempts to copy itself to drive A. It also copies itself as %windir%Smss.exe. NOTE: %windir% is a variable.... Source: http://securityresponse.symantec.com/avcenter/venc/data/w32.resdoc.html
Adware.Advision
Technical details ...File names: Smss.exe When this adware component... Source: http://securityresponse.symantec.com/avcenter/venc/data/adware.advision.html
Backdoor.Zombam
Technical details ...Scan32.exe Smss.exe Spider.exe... Source: http://securityresponse.symantec.com/avcenter/venc/data/backdoor.zombam.html
Backdoor.IRC.Flood.F
Technical details ...AntiVirus will not detect it. Smss.exe: This is an IRC client that... ...Adds the value: "SMSS" = "C:Winntsystem32CatRootsmss.exe"... Removal instructions ...right pane, delete the value: SMSS Exit the Registry Editor.... Source: http://securityresponse.symantec.com/avcenter/venc/data/backdoor.irc.flood.f.html
Backdoor.IRC.Aladinz.F
Technical details ...to hide the mIRC client). SMSS.exe: A mIRC client.... ..."<path to lsass.exe>" "smss" = "<path to smss.exe>"... Removal instructions ...Scroll through the list and look for LSASS and SMSS. If you find one or both of... ..."lsass" "smss" Exit the Registry Editor.... Source: http://securityresponse.symantec.com/avcenter/venc/data/backdoor.irc.aladinz.f.html
Backdoor.IRC.Aladinz.O
Technical details ...qfile.dll smss.exe Soundsystem.gfx (detected... ..."UninstallString"=""%System%wbemmofgoodcom1staticsmss.exe" -uninstall" in the registry key:... Removal instructions ..."UninstallString"=""%System%wbemmofgoodcom1staticsmss.exe" -uninstall" back to:... Source: http://securityresponse.symantec.com/avcenter/venc/data/backdoor.irc.aladinz.o.html
Backdoor.Zombam.B
Technical details ...Scan32.exe Smss.exe Spider.exe... ...... Source: http://securityresponse.symantec.com/avcenter/venc/data/backdoor.zombam.b.html

Navigation

Browse files

• by name

smss.exe ( 5.1.2600.1106)

Contained in software

File details

Checksum and file hashes

Version resource information

smss.exe was found in the following malware reports:

W32.Dalbug.Worm

Adware.DreamAd

W32.Resdoc

Adware.Advision

Backdoor.Zombam

Backdoor.IRC.Flood.F

Backdoor.IRC.Aladinz.F

Backdoor.IRC.Aladinz.O

Backdoor.Zombam.B

Navigation