ThreatExpert's Statistics for Backdoor.Win32.Turkojan [Ikarus]:

Backdoor.Win32.Turkojan [Ikarus] is also known as:

Threat Alias	Number of Incidents
BackDoor-CZP [McAfee]	23,883
Troj/Agent-GMF [Sophos]	22,255
Backdoor.Win32.Turkojan.ake [Kaspersky Lab]	21,812
BKDR_TURKOJAN.AT [Trend Micro]	20,976
Backdoor.Turkojan [PC Tools]	20,315
Trojan:Win32/Turkojan.A!dll [Microsoft]	20,216
Trojan Horse [Symantec]	15,736
Win-Trojan/Turkojan.7168.M [AhnLab]	14,516
Backdoor.Turkojan.AO [Ikarus]	10,108
Backdoor.Ciadoor [Symantec]	7,716
TROJ_DELF.EFH [Trend Micro]	2,812
BKDR_TURKOJAN.AG [Trend Micro]	308
Troj/Bckdr-QNL [Sophos]	300
Backdoor.Win32.Turkojan.xe [Kaspersky Lab]	290
Backdoor:Win32/Turkojan.B [Microsoft]	289
Backdoor.Turkojan.I [PC Tools]	263
TROJ_DELF.EMO [Trend Micro]	213
Backdoor.Win32.Turkojan.jv [Kaspersky Lab]	209
Win-Trojan/Turkojan.33792 [AhnLab]	209
TrojanSpy:Win32/Turkahn.A [Microsoft]	180
Backdoor.Turkojan.H [PC Tools]	175
BackDoor-ARL [McAfee]	155
Mal/Generic-A [Sophos]	149
Win-Trojan/Agent.33280.DM [AhnLab]	143
Backdoor.Win32.Turkojan.gr [Kaspersky Lab]	100
Generic.dx [McAfee]	80
IRC Trojan [Symantec]	75
PWS:Win32/Agent.HM [Microsoft]	75
BackDoor-DWS [McAfee]	71
Backdoor.Win32.Turkojan.ant [Kaspersky Lab]	54
Backdoor.Turkojan [Symantec]	53
Win-Trojan/Turkojan.290304 [AhnLab]	45
Win-Trojan/Turkojan.1305600 [AhnLab]	33
Backdoor.Win32.Turkojan.a [Ikarus]	24
Infostealer.Gampass [Symantec]	24
Generic PWS.y [McAfee]	20
Backdoor:Win32/Turkojan [Microsoft]	19
Win-Trojan/Turkojan.1393152 [AhnLab]	19
Mal/Generic-E [Sophos]	17
Backdoor.Turkojan!ct [PC Tools]	16
BKDR_TURKOJAN.AD [Trend Micro]	16
VirTool:Win32/Vbcrypt.AD [Microsoft]	16
Generic VB.i [McAfee]	15
Trojan-PWS.Win32.WOW.aam [Ikarus]	14
Win-Trojan/Xema.variant [AhnLab]	11
Backdoor.Turkojan.AD [PC Tools]	10
not-a-virus:PSWTool.Win32.MPR.015 [Ikarus]	10
Backdoor.Turkojan.AC [PC Tools]	7
Generic BackDoor [McAfee]	6
Backdoor.Win32.Bifrose.brjs [Kaspersky Lab]	5
Backdoor:Win32/Turkojan.gen!A [Microsoft]	5
BKDR_TURKOJAN.K [Trend Micro]	5
W32.Spybot.Worm [Symantec]	5
Win-Trojan/LdPinch.131072.E [AhnLab]	5
Backdoor.Win32.Turkojan.amr [Kaspersky Lab]	4
Backdoor.Win32.Turkojan.fas [Kaspersky Lab]	4
BKDR_TURKOJAN.AL [Trend Micro]	4
PE_PARITE.A [Trend Micro]	4
Suspicious.MH690 [Symantec]	4
Troj/Turkoj-A [Sophos]	4
Backdoor.Bifrose [Symantec]	3
Backdoor.Trojan [Symantec]	3
Backdoor.Turkojan!sd6 [PC Tools]	3
Trojan-PWS.Win32.Kapod [Ikarus]	3
VirTool:Win32/VBInject.gen!BE [Microsoft]	3
Virus.Win32.Parite.b [Kaspersky Lab]	3
Virus:Win32/Parite.B [Microsoft]	3
W32/Parite-B [Sophos]	3
W32/Pate.b [McAfee]	3
Win-Trojan/Turkojan.2805760 [AhnLab]	3
Backdoor.Graybird [Symantec]	2
Backdoor.Win32.Bifrose.bppf [Kaspersky Lab]	2
Backdoor.Win32.SdBot.nqj [Kaspersky Lab]	2
Downloader [Symantec]	2
Trojan:Win32/Meredrop [Microsoft]	2
VirTool:Win32/DelfInject.gen!L [Microsoft]	2
Win32/Parite [AhnLab]	2
Backdoor.Bifrose [PC Tools]	1
Backdoor.Win32.Bifrose.blng [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.ccm [Kaspersky Lab]	1
Backdoor.Win32.Bionet [Ikarus]	1
Backdoor.Win32.Turkojan.amr [Ikarus]	1
Backdoor.Win32.Turkojan.aqq [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.aqr [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.bqp [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.clc [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.cwb [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.cye [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.czk [Kaspersky Lab]	1
Backdoor.Win32.Turkojan.il [Kaspersky Lab]	1
Backdoor:Win32/Bifrose.EF [Microsoft]	1
Backdoor:Win32/Tarnid!rts [Microsoft]	1
BackDoor-DOQ.gen.g [McAfee]	1
Backdoor-DZP [McAfee]	1
Dropper/Malware.3755008 [AhnLab]	1
Generic BackDoor!m [McAfee]	1
Generic BackDoor!mc [McAfee]	1
Generic Dropper [McAfee]	1
Generic Dropper.f [McAfee]	1
Generic PUP.z [McAfee]	1

Backdoor.Win32.Turkojan [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	7
	Saudi Arabia	3
	United Kingdom	3
	Israel	1
	Spain	1
	Sweden	1

Backdoor.Win32.Turkojan [Ikarus] is known to be created as:

%AppData%\bifrost\server.exe

%CommonPrograms%\startup\burnit.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\turkojan\client.exe

%ProgramFiles%\turkojan\twmsico.dll

%System%\bifrost\server.exe

%System%\cmsetac.dll

%System%\firewal.exe

%System%\hggfdf\dfffg.exe

%System%\ntdtcstp.dll

%System%\phqghu.exe

%System%\rst.exe

%System%\stemp_01.exe

%System%\system.exe

%Temp%\1.exe

%Temp%\66353.exe

%Temp%\cmsetac.dll

%Temp%\ixp000.tmp\client.exe

%Temp%\ixp000.tmp\ntdtcstp.dll

%Temp%\ixp000.tmp\q.exe

%Temp%\ixp000.tmp\reptile1.exe

%Temp%\ntdtcstp.dll

%Temp%\turkojan 4.0\twmsico.dll

%Temp%\winpcap_4_0.exe

%Windir%\bifrost\e.exe

%Windir%\cmsetac.dll

%Windir%\iexplore.exe

%Windir%\installed.exe

%Windir%\leseses.exe

%Windir%\mstwain32.exe

%Windir%\mvrsync.exe

%Windir%\ntdtcstp.dll

%Windir%\olecstp.dll

%Windir%\oletac.dll

%Windir%\winmsn2.exe

%Windir%\winudpmgr.exe

c:\client.exe

c:\cmsetac.dll

c:\mkepkf.exe

c:\naufav.exe

c:\ntdtcstp.dll

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.