Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
Published May 06, 2010 | Updated Sep 15, 2017

Worm:Win32/Pushbot.QV

Detected by Microsoft Defender Antivirus

Aliases: Win-Trojan/Bypassagent.102934.B (AhnLab) W32/Trojan2.MLXG (Command) Trojan.Win32.Obfuscated.ajsw (Kaspersky) W32/Pushbot.O (Norman) Trojan.Obfuscated.EADF (VirusBuster) Worm/Generic.BBIW (AVG) EXP/Pdfka.5866 (Avira) Trojan.Generic.3976434 (BitDefender) Win32/PripecsC!generic (CA) Trojan.Siggen1.22554 (Dr.Web) Backdoor.Win32.IRCBot (Ikarus) W32/Koobface.KX (Panda) Mal/Rimecud-D (Sophos) Trojan.Win32.Generic.pak!cobra (Sunbelt Software) W32.IRCBot (Symantec)

Summary

Win32/Pushbot.QV is a worm that spreads via Instant Messenger and contains IRC backdoor functionality.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Additional remediation instructions for <malware>
This threat may make lasting changes to a computer’s configuration that are NOT restored by detecting and removing this threat. For more information on returning an infected computer to its pre-infected state, please see the following article/s: 
Follow us