Backdoor: Win32/Turkojan.AI

Backdoor: Win32/Turkojan.AI Description

Backdoor: Win32/Turkojan.AI is a mischievous backdoor trojan that runs stealthily and automatically when Windows starts without your consent and awareness. Backdoor: Win32/Turkojan. may be used to install a downloader or dropper trojan infection, which may in turn install a proxy trojan used to relay spam or a keylogger trojan which controls and sends keystrokes to remote criminals. Backdoor: Win32/Turkojan also makes changes to your homepage, captures your screen, shuts down Internet connection , etc. Remove Backdoor: Win32/Turkojan.AI quickly upon detection to protect your computer system.

Aliases: Win32.Troj.DownLoader.(kcloud), Turkojan.gen4, Backdoor.Win32.Turkojan.110592.BJ, Heuristic.BehavesLike.Win32.ModifiedUPX.C [McAfee-GW-Edition], Trojan.Agent/Gen-Backdoor, Turkojan.gen1, Backdoor/W32.Turkojan.110592.BO, Backdoor.Win32.Turkojan.274944.D, Trojan/Win32.Typic.gen [Antiy-AVL], Win32.BDSTurkojan.Im [eSafe], W32/Turkojan.HYG, Backdoor/W32.Turkojan.276480.H, Backdoor.Win32.Turkojan.110592.Y, Win32.Troj.Unknown.(kcloud) and Trojan/Generic.atwur.

Technical Information

File System Details

Backdoor: Win32/Turkojan.AI creates the following file(s):
# File Name Size MD5 Detection Count
1 %WINDIR%WinLogon.exe 110,592 4a08dcc8166ad48f638535b40c9d60f4 168
2 %WINDIR%mstwain32.exe 275,968 75eee7da09a2b2e0270bc47cb762d4d9 21
3 C:078.dll 806,912 3f24b5aad1cd9562fc2c2f78ea49a723 14
4 %WINDIR%ucLoader.exe 393,216 acbf604006ba79a0701ad914cb382dbc 10
5 %APPDATA%\Microsoft\conhost.exe 175,616 3b5b1ccb7e070824e6e760dd6af2c7c6 5
6 %PROGRAMFILES%\Bonjour\mDNSResponder.exe 349,472 296029c85370ee21acf43c4871513f2b 5
7 %WINDIR%\System32\Sodmdxr.dll 215,040 3a702ac93f773477163f33db0d1e936e 4
8 %APPDATA%\AntiVirus_AntiSpyware_2011\AntiVirus AntiSpyware.exe 3,060,736 15d1aa8bb5c6037dbf6ed319bbe9b918 3
9 %WINDIR%Password.exe 110,592 0ac797211df3ee07ee09c4bd2cdf9141 3
10 %WINDIR%\system32\crypt3232.exe 1,379,328 9a2a46532076b3fcd2b53032243b2bb3 1
11 %WINDIR%sysedit.exe 100,252 094f2b3f1addfa179af40ca8038580a5 1
More files

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.