Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

8.20.0015.00 16.67%
7.00.0052.00 83.33%

Relationships

Parent process
Related files

PE structurePE file structure

Show functions
Import table
advapi32.dll
GetAce, CryptImportKey, CryptDestroyKey, CryptExportKey, CryptGetUserKey, CryptGetKeyParam, RegOpenKeyExW, RegCloseKey, RegQueryValueExW, RevertToSelf, CopySid, RegCreateKeyW, RegSetValueW, RegQueryValueW, RegOpenKeyW, RegEnumKeyW, RegNotifyChangeKeyValue, RegisterEventSourceW, ReportEventW, DeregisterEventSource, LogonUserW, CryptEnumProvidersW, CryptDecrypt, CryptEncrypt, CryptGetProvParam, CryptGenKey, RegDeleteValueW, RegSetValueExW, LookupAccountNameW, IsValidSid, RegQueryMultipleValuesW, RegEnumValueW, RegEnumKeyExW, RegRestoreKeyW, RegQueryInfoKeyW, RegSaveKeyW, RegDeleteKeyW, RegCreateKeyExW, RegOpenCurrentUser, GetFileSecurityW, GetSecurityDescriptorDacl, GetAclInformation, AddAce, CryptReleaseContext, EqualSid, GetSecurityDescriptorControl, SetSecurityDescriptorControl, SetFileSecurityW, SetNamedSecurityInfoW, LookupPrivilegeValueW, AdjustTokenPrivileges, CryptAcquireContextW, CryptGenRandom, ConvertSidToStringSidW, GetTokenInformation, LookupAccountSidW, OpenSCManagerW, OpenServiceW, QueryServiceStatus, CloseServiceHandle, ImpersonateLoggedOnUser, GetUserNameW, ImpersonateSelf, OpenThreadToken, OpenProcessToken, AllocateAndInitializeSid, InitializeSecurityDescriptor, InitializeAcl, AddAccessAllowedAce, SetSecurityDescriptorDacl, SetSecurityDescriptorGroup, SetSecurityDescriptorOwner, IsValidSecurityDescriptor, AccessCheck, FreeSid, GetLengthSid, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegisterEventSourceA, ReportEventA, InitiateSystemShutdownW, ChangeServiceConfigW, CreateServiceW, DeleteService, ControlService, QueryServiceConfigW, StartServiceW, ChangeServiceConfig2W
comctl32.dll
ImageList_Draw, ImageList_GetImageInfo, ImageList_Read, ImageList_Write, ImageList_Destroy, ImageList_Create, ImageList_LoadImageW, ImageList_Merge
comdlg32.dll
ReplaceTextW, GetFileTitleW, FindTextW, PrintDlgW, CommDlgExtendedError, GetSaveFileNameW, GetOpenFileNameW, PageSetupDlgW
crypt32.dll
CryptQueryObject, CertEnumCertificatesInStore, CryptAcquireCertificatePrivateKey, CertDeleteCertificateFromStore, CertFreeCertificateContext, CertGetPublicKeyLength, CertGetCertificateContextProperty, CertGetEnhancedKeyUsage, CertDuplicateCertificateContext, CertGetNameStringW, CertSetCertificateContextProperty, CryptFindOIDInfo, CertCloseStore, CryptMsgClose, CertFindCertificateInStore, CertOpenStore
gdi32.dll
SetAbortProc, AbortDoc, EndDoc, CreateDCW, CopyMetaFileW, CreateHatchBrush, ExtCreatePen, CreatePen, PlayMetaFile, EnumMetaFile, GetObjectType, PlayMetaFileRecord, SelectPalette, CreateCompatibleDC, CreatePatternBrush, CreateDIBPatternBrushPt, DeleteDC, ExtSelectClipRgn, PolyBezierTo, PolylineTo, PolyDraw, ArcTo, GetCurrentPositionEx, ScaleWindowExtEx, SetWindowExtEx, EndPage, SetWindowOrgEx, ScaleViewportExtEx, SetViewportExtEx, OffsetViewportOrgEx, SetViewportOrgEx, Escape, ExtTextOutW, TextOutW, StartPage, RectVisible, GetBkColor, GetTextMetricsW, CreateFontW, GetCharWidthW, PtVisible, StartDocW, GetPixel, BitBlt, GetWindowExtEx, GetViewportExtEx, GetObjectW, SelectClipPath, CreateRectRgn, GetClipRgn, SelectClipRgn, SetColorAdjustment, SetArcDirection, SetMapperFlags, SetTextCharacterExtra, SetTextJustification, StretchDIBits, GetDCOrgEx, PatBlt, GetMapMode, CombineRgn, SetRectRgn, CreateFontIndirectW, CreateCompatibleBitmap, GetRgnBox, CreateRectRgnIndirect, GetTextColor, OffsetWindowOrgEx, SetTextAlign, MoveToEx, LineTo, OffsetClipRgn, IntersectClipRect, ExcludeClipRect, GetClipBox, SetMapMode, GetStockObject, SelectObject, DeleteObject, CreateSolidBrush, GetDeviceCaps, GetTextExtentPoint32W, CreateBitmap, SaveDC, RestoreDC, SetBkColor, SetBkMode, SetPolyFillMode, SetROP2, SetStretchBltMode, DPtoLP, SetTextColor, GetBitmapBits, GetObjectA, CreateDCA, ModifyWorldTransform, SetWorldTransform, SetGraphicsMode
kernel32.dll
DllMain
netapi32.dll
NetApiBufferFree, NetWkstaUserGetInfo, NetQueryDisplayInformation, NetGetDCName, NetGroupEnum, NetUserEnum, NetUserChangePassword
ole32.dll
CoRevokeClassObject, CoRegisterClassObject, OleInitialize, CoFreeUnusedLibraries, OleUninitialize, OleRun, StringFromGUID2, CLSIDFromProgID, CoDisconnectObject, OleSetClipboard, CoInitialize, CoUninitialize, CoCreateInstance, CLSIDFromString, StgOpenStorageOnILockBytes, OleFlushClipboard, CoTaskMemFree, CoGetClassObject, CoTreatAsClass, OleIsCurrentClipboard, CreateILockBytesOnHGlobal, StringFromCLSID, OleDuplicateData, ReleaseStgMedium, CoTaskMemAlloc, CreateBindCtx, ReadClassStg, ReadFmtUserTypeStg, OleRegGetUserType, WriteClassStg, WriteFmtUserTypeStg, CreateStreamOnHGlobal, StgCreateDocfileOnILockBytes, SetConvertStg, CoRegisterMessageFilter, CoInitializeSecurity, CoSetProxyBlanket
oledlg.dll
OleUIBusyW
psapi.dll
EnumProcessModules, EnumProcesses, GetModuleBaseNameW
shell32.dll
SHGetFolderPathW, DragFinish, DragQueryFileW, ExtractIconW, SHGetFileInfoW, ShellExecuteExW
shlwapi.dll
PathFindExtensionW, PathRemoveExtensionW, PathFindFileNameW, PathStripToRootW, PathIsUNCW, SHDeleteKeyW, SHCopyKeyW
tvttsp.dll
Tspi_Context_FreeMemory, Tspi_TPM_GetRandom, Tspi_Key_GetPubKey, Tspi_Policy_SetSecret, Tspi_GetPolicyObject, Tspi_Context_CreateObject, Tspi_Context_GetTpmObject, Tspi_Context_Connect, Tspi_Context_Create, Tspi_Key_LoadKey, Tspi_Key_WrapKey, Tspi_SetAttribData, Tspi_TPM_GetCapability, Tspi_TPM_GetPubEndorsementKey, Tspi_Context_Close, Tspi_TPM_NSC_AbortLockout, Tspi_TPM_Atmel_OwnerSetState, Tspi_ChangeAuth, Tspi_TPM_TakeOwnership, Tspi_SetAttribUint32, Tspi_Key_CreateKey, Tspi_Context_CloseObject, Tspi_Hash_VerifySignature, Tspi_Hash_SetHashValue, Tspi_GetAttribData, Tspi_Data_Bind, Tspi_Hash_Sign, Tspi_Data_Unbind, Tspi_TPM_NSC_A1_2CommandThatShouldBeDeletedWhen1_2StackIsWritten
user32.dll
DllMain
userenv.dll
GetProfilesDirectoryW
version.dll
GetFileVersionInfoW, VerQueryValueW, GetFileVersionInfoSizeW
winspool.drv
GetJobW, OpenPrinterW, DocumentPropertiesW, ClosePrinter
wintrust.dll
WinVerifyTrust
wtsapi32.dll
WTSFreeMemory, WTSQuerySessionInformationW

cssauth.exe

Client Security Solution by Lenovo (United States) Inc. (Signed)

Remove cssauth.exe
Version:   8.20.0015.00
MD5:   d41a93ac67954ab5fd82fd782a15eef6
SHA1:   06a53fb2db439653012b8cf94f1c20d3fdf31d61
SHA256:   684254221dc9be50aecc05e8334aaab84baadb182daa1d05145a0d851fe8baf3

What is cssauth.exe?

cssauth is part of Client Security Solution is designed to help you protect PC-based computing assets. These assets include the PC itself, confidential data on the PC and the company network. Client Security Solution s only compatible with Lenovo Rescue and Recovery.

Overview

cssauth.exe executes as a process with the local user's privileges usually within the context of Windows Explorer. It is set to be start when the PC boots and any user logs into Windows (added to the Run registry key for the all users under the local machine). This is typically installed with the program Client Security - Password Manager published by Lenovo. The file is digitally signed by Lenovo (United States) Inc. which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:cssauth.exe
Publisher:Lenovo Group Limited
Product name:Client Security Solution
Description:cssauth
Typical file path:C:\Program Files\lenovo\client security solution\cssauth.exe
File version:8.20.0015.00
Size:2.93 MB (3,077,432 bytes)
Certificate
Issued to:Lenovo (United States) Inc.
Authority (CA):VeriSign
Effective date:Sunday, April 16, 2006
Expiration date:Thursday, April 16, 2009
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
Lenovo
21% remove
ThinkVantage Password Manager allows users to save passwords for Web sites and Windows applications, and subsequently auto-fills those passwords when the user visits those Web sites or logs on to the application. Password Manager provides a user interface that allows the user to review and modify entries stored in the password database. The user interface also allows the user to configure the application's settings.

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'cssauth' → "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00052375%
0.028634%
Kernel CPU:0.00020147%
0.013761%
User CPU:0.00032228%
0.014873%
Kernel CPU time:1,498 ms/min
100,923,805ms/min
CPU cycles:1,487,542/sec
17,470,203/sec
Memory
Private memory:10.14 MB
21.59 MB
Private (maximum):12.27 MB
Private (minimum):2.63 MB
Non-paged memory:10.14 MB
21.59 MB
Virtual memory:88.09 MB
140.96 MB
Virtual memory (peak):89.09 MB
169.69 MB
Working set:2.75 MB
18.61 MB
Working set (peak):14.67 MB
37.95 MB
Page faults:4,092/min
2,039/min
I/O
I/O read transfer:2 Bytes/sec
1.02 MB/min
I/O read operations:1/sec
343/min
I/O write transfer:0 Bytes/sec
274.99 KB/min
I/O write operations:1/sec
227/min
I/O other transfer:12 Bytes/sec
448.09 KB/min
I/O other operations:5,971/sec
1,671/min
Resource allocations
Threads:2
12
Handles:261
600
GUI GDI count:15
103
GUI USER count:5
49

BehaviorsProcess properties

Integrety level:Medium
Platform:32-bit
Command line:"C:\Program Files\lenovo\client security solution\cssauth.exe" silent
Owner:User
Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Microsoft Windows XP 83.33%
Windows Vista Business 16.67%

Distribution by countryDistribution by country

BG installs about 83.33% of Client Security Solution.
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE