ThreatExpert's Statistics for Generic.Win32.Malware [Ikarus]:

Generic.Win32.Malware [Ikarus] is also known as:

Threat Alias	Number of Incidents
Program:Win32/Winwebsec [Microsoft]	279
not-a-virus:FraudTool.Win32.SystemSecurity.ea [Kaspersky Lab]	210
Generic FakeAlert.b [McAfee]	137
Mal/FakeAV-AK [Sophos]	122
Win-Trojan/Fakeav.2206720 [AhnLab]	121
Mal/FakeAV-AD, Mal/FakeAV-AK [Sophos]	69
Generic PUP.x [McAfee]	66
Program:Win32/XLG [Microsoft]	55
Generic.dx [McAfee]	47
Downloader.MisleadApp [Symantec]	46
Mal/FakeAV-Q [Sophos]	43
Adware.CPush [Symantec]	40
Adware.BHO!sd6 [PC Tools]	36
Trojan.Fakeavalert [Symantec]	34
VirusResponseLab [Symantec]	34
Program:Win32/Sogou [Microsoft]	31
not-a-virus:FraudTool.Win32.XLGuarder.bh [Kaspersky Lab]	28
not-a-virus:AdWare.Win32.BHO.fax [Kaspersky Lab]	27
not-a-virus:AdWare.Win32.BHO.etk [Kaspersky Lab]	25
FakeAlert-WinwebSecurity.gen [McAfee]	22
Generic PUP.z [McAfee]	22
not-a-virus:FraudTool.Win32.SystemSecurity.cc [Kaspersky Lab]	21
Mal/FakeAV-AA [Sophos]	20
not-a-virus:FraudTool.Win32.Agent.fl [Kaspersky Lab]	20
not-a-virus:FraudTool.Win32.XLGuarder.w [Kaspersky Lab]	20
not-a-virus:Server-Proxy.Win32.3proxy.bo [Kaspersky Lab]	20
Program:Win32/TinyProxy [Microsoft]	20
FakeAlert-BO.dll [McAfee]	18
XLGuarder [Symantec]	18
Packed.Generic.181 [Symantec]	14
Trojan.Agent!sd6 [PC Tools]	14
Trojan.Win32.Agent.azdd [Kaspersky Lab]	14
Win-Trojan/Xema.variant [AhnLab]	14
not-a-virus:FraudTool.Win32.XLGuarder.y [Kaspersky Lab]	12
Program:Win32/Winfixer [Microsoft]	12
Suspicious.MH690 [Symantec]	12
Trojan.Zlob [Ikarus]	12
Trojan:Win32/Meredrop [Microsoft]	11
PrivacyCommander [Symantec]	10
Mal/FakeAV-AD [Sophos]	9
not-a-virus:FraudTool.Win32.AntivirusTrigger.g [Kaspersky Lab]	9
Program:Win32/SpySheriff [Microsoft]	9
XPAntivirus [Symantec]	9
not-a-virus:AdWare.Win32.BHO.exb [Kaspersky Lab]	8
FakeAlert-WinwebSecurity [McAfee]	7
Mal/FakeAV-AK, Mal/FakeAV-AA [Sophos]	7
Mal/Generic-A [Sophos]	7
SpywareGuard2008 [Symantec]	7
Trojan:Win32/Winwebsec [Microsoft]	7
Generic FakeAlert.a [McAfee]	6
Trojan-Downloader.Win32.FraudLoad.vnqi [Kaspersky Lab]	6
not-a-virus:FraudTool.Win32.VirusRemover.ao [Kaspersky Lab]	5
RogueAntiSpyware.SpywareGuard2008 [PC Tools]	5
Troj/FakeVir-BJ [Sophos]	5
Troj/FakeVir-NL [Sophos]	5
Backdoor.Trojan [Symantec]	4
Generic Downloader.x [McAfee]	4
Hacktool.Proxy [Symantec]	4
Mal/EncPk-FX [Sophos]	4
not-a-virus:AdWare.Win32.BHO.fuw [Kaspersky Lab]	4
not-a-virus:FraudTool.Win32.SpywareGuard2008.x [Kaspersky Lab]	4
not-a-virus:Server-Proxy.Win32.3proxy [Ikarus]	4
Program:Win32/FakeSheld [Microsoft]	4
SecureExpertCleaner [Symantec]	4
Troj/Agent-JNC [Sophos]	4
Troj/BHO-LT [Sophos]	4
Troj/FakeVir-HO [Sophos]	4
Trojan Horse [Symantec]	4
Trojan.Win32.Agent.bpkv [Kaspersky Lab]	4
Trojan.Win32.Agent.bprf [Kaspersky Lab]	4
Trojan-Downloader.Win32.FraudLoad.dzj [Kaspersky Lab]	4
VirusRemover2008 [Symantec]	4
Win-Trojan/Fakealert.1695744 [AhnLab]	4
Adware.Gen [Symantec]	3
AntiVirus2008 [Symantec]	3
FakeAlert-BO [McAfee]	3
Generic FakeAlert.n [McAfee]	3
Mal/FakeAV-X [Sophos]	3
Mal/FakeVir-G [Sophos]	3
not-a-virus:FraudTool.Win32.AntivirusTrigger.e [Kaspersky Lab]	3
not-a-virus:FraudTool.Win32.TotalVirusProtection.a [Kaspersky Lab]	3
Program:Win32/FakeASC [Microsoft]	3
RogueAntiSpyware.AntiVirusTrigger [PC Tools]	3
SystemGuard2009 [Symantec]	3
Trojan.Win32.Agent.bqzm [Kaspersky Lab]	3
Trojan-Downloader.Win32.FraudLoad.dyn [Kaspersky Lab]	3
Win-Trojan/Winwebsec.121897 [AhnLab]	3
Adware.CPush!sd6 [PC Tools]	2
AntiVirus2009 [Symantec]	2
Downloader [Symantec]	2
FakeAlert-CR [McAfee]	2
Generic.dx!ba [McAfee]	2
Generic.dx!y [McAfee]	2
Mal/FakeAV-O [Sophos]	2
Mal/Inet-Fam [Sophos]	2
not-a-virus:FraudTool.Win32.SpywareGuard2008.z [Kaspersky Lab]	2
not-a-virus:FraudTool.Win32.VirusRemover.bn [Kaspersky Lab]	2
not-a-virus:FraudTool.Win32.VirusTrigger.f [Kaspersky Lab]	2
not-a-virus:FraudTool.Win32.XLGuarder.x [Kaspersky Lab]	2
Packed.Generic.187 [Symantec]	2

Generic.Win32.Malware [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	374
	Germany	154
	China	66
	United Kingdom	26
	Netherlands	6
	Ukraine	3

Generic.Win32.Malware [Ikarus] is known to be created as:

%AppData%\psvr32.exe

%CommonAppData%\00303296\00303296.exe

%CommonAppData%\36934646\2063941586.exe

%FontsDir%\svchost.exe

%ProgramFiles%\antimalwarepro\ssengine.dll

%ProgramFiles%\antimalwarepro\startapp.exe

%ProgramFiles%\antimalwaresuite\ams.exe

%ProgramFiles%\antiviruspro\ssengine.dll

%ProgramFiles%\anvtrgrsoftware\anvtrgr.exe

%ProgramFiles%\anvtrgrsoftware\anvtrgrwarning.dll

%ProgramFiles%\astrumsoftware\astrum.exe

%ProgramFiles%\avirtrsoftware\avirtr.exe

%ProgramFiles%\p4p\btclient.exe

%ProgramFiles%\p4p\dlmgr.dll

%ProgramFiles%\p4p\dtctr.dll

%ProgramFiles%\p4p\sodaie.dll

%ProgramFiles%\quickdownloadpack\iercpt.dll

%ProgramFiles%\spyware guard 2008\spywareguard.exe

%ProgramFiles%\spyware guard 2008\uninstall.exe

%ProgramFiles%\total protect 2009\uninstall.exe

%ProgramFiles%\totalvirusprotection\totalvirusprotection.exe

%ProgramFiles%\totalvirusprotection\webmonitor.exe

%ProgramFiles%\virusremover2008\vrm2008.exe

%ProgramFiles%\virusremover2009\vrm2009.exe

%ProgramFiles%\vrl32software\vrl32warning.dll

%ProgramFiles%\xlguarder\gagent.exe

%ProgramFiles%\xlguarder\gmon.exe

%ProgramFiles%\xlguarder\gscanner.exe

%ProgramFiles%\xlguarder\imon.dll

%ProgramFiles%\xpshield\xp-shield.exe

%System%\filekiller.dll

%Temp%\9.exe

%Temp%\ad1243.exe

%Temp%\av.exe

%Temp%\kafan virlist 2009.03.31\090330-2-3.exe

%Temp%\psvr32.exe

%Temp%\systemsecurity.exe

%Temp%\xlguarder\imon.dll

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).