rb.exe - Dangerous


Manual removal instructions:

Antivirus Report of rb.exe:
rb.exe Malware
rb.exeHigh Risk
This is a backdoor server that also creates a SOCKS proxy on the compromised system.
Opens an unauthorized backdoor to the compromised system.
May be installed when you visit a malicious Web site using Internet Explorer. These pages may contain code that exploits the Microsoft Internet Explorer Drag And Drop File Installation Vulnerability.
Creates a SOCKS proxy on TCP port 5555.
This allows the compromised computer to be used to proxy protocols such as HTTP.
Listens on TCP port 4321 for commands from the remote attacker.
The attacker can do any of the following:
- Obtain system information
- Download and execute files on the compromised computer
- Uninstall the back door
- Update the address of the master server

Use RegRun Startup Optimizer to automatically remove it from startup.

Remove rb.exe now!

Dmitry Sokolov:

I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.

Since that time I work every day to fix the issues that antiviruses cannot.

If your antivirus have not helped you solve the problem, you should try UnHackMe.

We are a small company and you can ask me directly, if you have any questions.


You can read UnHackMe testimonials here.