Troj/Bdoor-ACX is a Trojan for the Windows platform.
When run, Troj/Bdoor-ACX copies itself as <windows>\WinLoaderXP.exe, setting
the following registry entry to hook system startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
GenericHostXP
<Windows>\WinLoaderXP.exe
Once running, Troj/Bdoor-ACX sends notification via email to its author,
reporting the IP of the victim. Troj/Bdoor-ACX contains code to connect to a
remote server and download code, in order to self-update.
Troj/Bdoor-ACX logs to the following file:
<Windows>\troya.log (may be safely deleted)