Win32.Koutodoor.C

Win32.Koutodoor.C Description

Win32.Koutodoor.C is a backdoor Trojan. It can surreptitiously enter a system via unsolicited e-mails or internet downloads. Once inside a PC it will give a remote attacker access and control over a system. Win32.Koutodoor.C will also download malware onto the PC and steal private information. The Windows registry and firewall settings may also be modified by Win32.Koutodoor.C. Before Win32.Koutodoor.C causes your system to deteriorate in performance, have it removed with a good security application.

Aliases: Downloader.Generic10.CHSF [AVG], W32/Geral.XG!tr.dldr [Fortinet], Trojan-Downloader.Win32.Geral [Ikarus], Trojan.Win32.Generic.124A18CD, HeurEngine.ZeroDayThreat, Win-Trojan/Downloader.37376.BT [AhnLab-V3], Trojan.Win32.Downloader.37376.DG, Trojan/Win32.Geral.gen [Antiy-AVL], TrojanDropper.Agent.awzx, Win32/Multidropper.RE [eTrust-Vet], Sus/Behav-1005 [Sophos], Trojan.MulDrop1.48636 [DrWeb], Trojan-Downloader.Win32.Geral!IK, Trojan.Generic.4899184 [BitDefender] and Trojan-Downloader.Win32.Geral.xis [Kaspersky].

Technical Information

File System Details

Win32.Koutodoor.C creates the following file(s):
# File Name Size MD5 Detection Count
1 %WINDIR%\system32\439D5CFB.sys 7,888 4d7df3daf2ee2605fc194649c7b9c7ca 42
2 %WINDIR%\System32\DRIVERS\ApsX85.sys 9,216 b30878ab3f7377a7ead679050b00c57a 15
3 %PUBLIC%msnd.exe 147,456 aa607984b34d8a29a245cfe6221f6514 13
4 %WINDIR%\system32\iebho.dll 243,200 ec26a527e28bf9a20706e5e9d3ac448d 7
5 %WINDIR%\System32\drivers\lktmpzlfk.sys 44,544 1f614b62aaba805201ecdc111538c7d7 7
6 %PROGRAMFILES%\messenge\Aswebsrv.exe 391,680 1c38b6efd0b34b9a1036600eb5ecd116 6
7 %WINDIR%\system32\kav.exe 37,376 534698dc6710f58f4bfb62619f63c1e4 3
8 %PROGRAMFILES%\messenge\Asdiph.exe 223,232 f29a8b288c293cc3e729a45f97386d77 3
9 %WINDIR%\system32\drivers\pintinhogrande.sys 4,352 a8431b6bea61e5e910deb3c0d60966b1 1
10 %WINDIR%\system32\drivers\gauchoviado.sys 3,968 3d1e796d947fe453587804506c189a46 1
11 %WINDIR%\system32\msgnlive.exe 995,328 13ee60aa049694217282395e5ee06b2f 1
12 c:\Documents and Settings\SCHOOL GIRL\Local Settings\Temp\ljgdca.dll 95,744 e035722e31f6d408ab1202b225698661 1
More files

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.