Home Malware Programs Trojans Trojan.Win32.Autoit.aks

Trojan.Win32.Autoit.aks

Posted: September 12, 2011

Threat Metric

Threat Level: 9/10
Infected PCs: 112
First Seen: September 12, 2011
OS(es) Affected: Windows

According to SpywaRemove.com researchers and analysts, Trojan.Win32.Autoit.aks is considered a nasty Trojan horse that was envisioned and created by criminals, in order to secretly infect and thus enable them to gain effortless remote access to targeted computer systems. The sole motivation driving these evil hackers – to employ such malicious products like Trojan.Win32.Autoit.aks, as well as others of Trojan.Win32.Autoit.aks' kind – is to enable them to utilize their seditious creations against you and your computer system.
 
Trojan.Win32.Autoit.aks is a nasty, secretive and deceptive Trojan that will work to gravely harm and damage any computer system that Trojan.Win32.Autoit.aks is able to breach, successfully infiltrate and infect. Several reports have shown that this particular Trojan certainly possesses an arsenal of malicious abilities, meant to render compromised computer systems unstable and extremely vulnerable to additional seditious attacks.
 

Trojan.Win32.Autoit.aks Functions as a Nasty Remote Administration Tool

As a Trojan known for Trojan.Win32.Autoit.aks' ability to provide remote access to Trojan.Win32.Autoit.aks' malicious hacker creators, Trojan.Win32.Autoit.aks can be classified as a remote administration tool that both critically and ruthlessly compromises the veracity and reliability of any and all infected computer systems' security environments. Any computer security threat that opens up these kinds of security holes or vulnerabilities – the kind classified as critical to easily allow remote access to the infected systems – should be considered severely dangerous; in fact, with any Trojan.Win32.Autoit.aks infection, there is a distinct possibility that, if not taken seriously and immediately treated with a legitimate computer security tool, this nasty Trojan may be able to successfully completely wreck any and all affected computer systems.
 
Trojans like Trojan.Win32.Autoit.aks, which work as remote administration tools are seriously dangerous, because they usually possess the ability to take over and control infected computer systems. This means that, in effect, if your computer has been infected by this nasty virus, Trojan.Win32.Autoit.aks result in your computer becoming absolutely useless to you. This is because your system is being controlled by someone else from some remote locations and is being employed to fulfill various malicious ends; Trojan.Win32.Autoit.aks can cause your computer system to be at this nasty Trojan's evil creators every back and call, function to achieve each and every single one of their corrupt whims.
 
In addition to utilizing various security vulnerabilities and software exploits to allow malevolent remote access to compromised computer systems, Trojan.Win32.Autoit.aks is also quite skilled in evading detection by a wide range of legitimate, well-respected brands of computer security applications. Many Trojan possess the ability to hide their malicious presences on compromised systems, and this is simply just another corrupt behavior exhibited by Trojan.Win32.Autoit.aks.
 
Once allowed to attach itself deep within an infected computer system, Trojan.Win32.Autoit.aks will immediately begin to take a toll on the compromised system. If your computer has been unlucky enough to come into contact with this nasty virus, Trojan.Win32.Autoit.aks will definitely work to slow down dramatically your computer system and seriously affect the overall performance of your PC. SpywaRemove.com analysts have reported that, on many compromised systems, these detrimental properties cause frequent system crashes.
 
If you suspect that Trojan.Win32.Autoit.aks has managed to infiltrate and infect your system successfully, it is advised that you take immediate steps to remove this vicious Trojan from your computer system. Remove Trojan.Win32.Autoit.aks, before Trojan.Win32.Autoit.aks has the time to take over all control of your PC and then employ it in a variety of evil, malicious ways that will definitely cause vast amounts of permanent harm and damage to your system.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\njw0rm.exe File name: njw0rm.exe
Size: 333.09 KB (333095 bytes)
MD5: af4781ad1eecb79534d63a827918646f
Detection count: 87
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: November 12, 2013
2546912.COM File name: 2546912.COM
Size: 1.04 MB (1045992 bytes)
MD5: 3ef3d16188da44af7f43ef63ded33031
Detection count: 44
File type: Command, executable file
Mime Type: unknown/COM
Group: Malware file
Last Updated: October 7, 2011
%APPDATA%\out64.exe File name: out64.exe
Size: 1.06 MB (1062766 bytes)
MD5: c044e15a8d86a150edbe13ef9ec5597c
Detection count: 26
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: May 19, 2014
C:\Documents and Settings\<username>\Local Settings\Temporary Internet Files \[clear all the files inside the folder] File name: C:\Documents and Settings\<username>\Local Settings\Temporary Internet Files \[clear all the files inside the folder]
Group: Malware file
C:\Documents and Settings\<username>\Local Settings\Temp\[clear all the files inside the folder] File name: C:\Documents and Settings\<username>\Local Settings\Temp\[clear all the files inside the folder]
Group: Malware file
C:\Program Files\[RANDOM CHARACTERS] File name: C:\Program Files\[RANDOM CHARACTERS]
Group: Malware file
C:\WINDOWS\system32\[RANDOM CHARACTERS] File name: C:\WINDOWS\system32\[RANDOM CHARACTERS]
Group: Malware file
C:\Documents and Settings\<username>\Application Data\[RANDOM CHARACTERS] File name: C:\Documents and Settings\<username>\Application Data\[RANDOM CHARACTERS]
Group: Malware file

Registry Modifications

The following newly produced Registry Values are:

HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[RANDOM CHARACTERS].exe"
Loading...