• Undesirable program

    SBSRTYUS.SYS Information

    This is an undesirable program.

    This file has been identified as a program that is undesirable to have running on your computer. This consists of programs that are misleading, harmful, or undesirable.

    If the description states that it is a piece of malware, you should immediately run an antivirus and antispyware program. If that does not help, feel free to ask us for assistance in the forums.

  • Name
    <unknown>
  • Filename
    sbsrtyus.sys
  • Command
    C:\Windows\System32\Drivers\sbsrtyus.sys
  • Description
    Added by the Trojan.Mdropper.S Trojan.

    Trojan.Mdropper.S is a Trojan horse program that exploits Microsoft Word Malformed Object Pointer Remote Code Execution Vulnerability (as described in Microsoft Security Bulletin MS06-027) to drop Trojan.Agentdoc.

    The Trojan may arrive as an attachment to spammed email or may be downloaded from a URL.
  • File Location
    C:\Windows\System32\Drivers\sbsrtyus.sys
  • Startup Type
    This startup entry is installed as a Windows service.
  • Service Name
    sbsrtyus
  • Display Name
  • HijackThis Category
    O23 Entry
  • This entry has been requested 2,048 times.

Disclaimer

It is assumed that users are familiar with the operating system they are using and comfortable with making the suggested changes. BleepingComputer.com will not be held responsible if changes you make cause a system failure.

This is NOT a list of tasks/processes taken from Task Manager or the Close Program window (CTRL+ALT+DEL) but a list of startup applications, although you will find some of them listed via this method. Pressing CTRL+ALT+DEL identifies programs that are currently running - not necessarily at startup. Therefore, before ending a task/process via CTRL+ALT+DEL just because it has an "X" recommendation, please check whether it's in MSCONFIG or the registry first. An example would be "svchost.exe" - which doesn't appear in either under normal conditions but does via CTRL+ALT+DEL. If in doubt, don't do anything.

Search Startups

Login

Remember Me
Sign in anonymously