Backdoor:IRC/Rxbot Description

Type: Backdoors

Backdoor:IRC/Rxbot is a Trojan that will open a backdoor into a compromised PC in order to give a remote attacker unauthorized access to the system. Backdoor:IRC/Rxbot can secretly enter a system via security holes or bundled with other malware and internet downloads. Backdoor:IRC/Rxbot will modify the Windows registry and download other malware onto a system putting a compromised system in greater danger.


15 security vendors flagged this file as malicious.

Anti-Virus Software Detection
BitDefender Gen:Variant.Kazy.5565
NOD32 a variant of Win32/Olmarik.AJE
Ikarus Win32.SuspectCrc
Antiy-AVL Trojan/Win32.Agent.gen
AntiVir TR/Spy.Banker.1024512
Kaspersky Trojan-Spy.Win32.Agent.bnhh
K7AntiVirus Virus
McAfee Artemis!082D3E45B82A
Sophos Troj/VBl-Gen
AntiVir TR/Spy.37114
DrWeb Trojan.DownLoad.64258
BitDefender Gen:Trojan.Heur.VP.cm1@aeHo@4hk
NOD32 a variant of Win32/VB.PCE
Panda Adware/DesktopSecurity2010
AVG Downloader.Generic10.LZB

Technical Information

File System Details

Backdoor:IRC/Rxbot creates the following file(s):
# File Name MD5 Detection Count
1 winlogon.exe dcb2496433f3e7f272bfcbaa03e3f9ec 30
2 Explorer.exe 857bf7e41e312756c32b44e8c4446a96 21
3 kksl.exe b26682fc2cdfc536e761c57fad65407a 18
4 dhwexplaffm.exe 89bc95e2dcfe71149b4ed08f341feab2 5
5 defender.exe 69d8183b09f663ae85b0c9b6f97e3b0f 5
6 setup1683212288.exe 6aba773ec13268ea26a9c081574e6677 3
7 svchost.exe a35d5fb644e7da20c4ada09ebd9cf658 2
8 9ABDF135.sys f5fd782e5b0059de564b3bfd2907e593 2
9 IAb7a_289.exe bd557bdc81356b8a109593465bb0ab7f 2
10 uvguw.exe c66250aa8460c46a36b6974dcf9c0880 2
11 WinAvs.exe 14339c6a91957a35358f247e0e5991eb 2
12 packupdate107_302.exe fadb48715b4197eeb8fbc5961ae812e3 1
13 IAeb9_2121.exe a90add7a264d5abbde0aa5fccf61f3bf 1
14 IAd28_231.exe 07d9262439ce16cfc40930c8e6510ade 1
15 IA132_2121.exe 6d56ff7cafb676d4e28428a88742c6b5 1
16 IA516_289.exe 82bbaf77aea8f4c6a609e1cbe98c4b3a 1
More files

Site Disclaimer is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.