|
|
Detect and remove hidden rootkits using
UnHackMe
RegRun Security Suite = 24 system utilities for protecting your computer. Try now! |
 rb.exe - Dangerous
This is a backdoor server that also creates a SOCKS proxy on the compromised system. Opens an unauthorized backdoor to the compromised system. May be installed when you visit a malicious Web site using Internet Explorer. These pages may contain code that exploits the Microsoft Internet Explorer Drag And Drop File Installation Vulnerability. Creates a SOCKS proxy on TCP port 5555. This allows the compromised computer to be used to proxy protocols such as HTTP. Listens on TCP port 4321 for commands from the remote attacker. The attacker can do any of the following: - Obtain system information - Download and execute files on the compromised computer - Uninstall the back door - Update the address of the master server Use RegRun Startup Optimizer to automatically remove it from startup. Removal: rb.exe is removed by RegRun.
Read more... Removal instructions...
Recommended software: RegRun Security Suite - removal and protection. http://www.regrun.com RegRun Reanimator - free removal tool. greatis.com/reanimator
What is hidden in MSDN? Why software developers prefer Win32.FreeTechSecrets.com? All Unix Manuals in Alphabetical Order C# controls for .NET in 3 simple steps. Constantly updated. Last update: June 30 2008
Interesting information about Vista programs... Need consultation? Would you like to add your opinion?
|
|
