ThreatExpert's Statistics for PWS.Win32 [Ikarus]:

PWS.Win32 [Ikarus] is also known as:

Threat Alias	Number of Incidents
Infostealer.Gampass [Symantec]	423
Mal/Generic-A [Sophos]	334
Trojan Horse [Symantec]	275
PWS:Win32/Frethog.AU [Microsoft]	264
PWS-OnlineGames.ek [McAfee]	168
Generic PWS.y [McAfee]	162
Generic PWS.ak [McAfee]	160
Mal/Dloadr-E [Sophos]	144
PWS:Win32/Frethog.gen!B [Microsoft]	144
PWS-Mmorpg.gen [McAfee]	128
Troj/Tidola-Gen, Mal/Dloadr-E [Sophos]	121
Trojan-GameThief.Win32.Magania.cdmz [Kaspersky Lab]	90
Trojan.Packed.NsAnti [Symantec]	86
Infostealer [Symantec]	81
Trojan.Generic [PC Tools]	78
Worm:Win32/Taterf.B [Microsoft]	73
Trojan-GameThief.Win32.Magania.cdrh [Kaspersky Lab]	72
Trojan-GameThief.Win32.OnLineGames.unyo [Kaspersky Lab]	66
Trojan-Spy.Gampass!sd6 [PC Tools]	66
Win-Trojan/MalPacked.Gen [AhnLab]	66
PWS:Win32/Nemqe.B [Microsoft]	65
Mal/Behav-214 [Sophos]	63
Mal/EncPk-IG, Mal/EncPk-HI [Sophos]	60
PWS-Gamania.gen.g [McAfee]	56
PWS:Win32/Lolyda.T [Microsoft]	49
Trojan-GameThief.Win32.MultiFirst.aj [Kaspersky Lab]	49
Trojan-PWS.OnlineGames [PC Tools]	49
Win-Trojan/NsAnti.81920.E [AhnLab]	49
Packed.Win32.Krap.g [Kaspersky Lab]	48
PWS:Win32/Zbot.gen!R [Microsoft]	46
W32.Gammima.AG [Symantec]	45
Trojan-GameThief.Win32.Magania.caqc [Kaspersky Lab]	42
Infostealer.Banker.C [Symantec]	40
Trojan-GameThief.Win32.Magania.axbr [Kaspersky Lab]	40
Infostealer.Dunfyter [Symantec]	38
PWS-Mmorpg!jv [McAfee]	35
Trojan-GameThief.Win32.OnLineGames.bnbz [Kaspersky Lab]	35
PWS:Win32/OnLineGames.AH [Microsoft]	32
PWS:Win32/Extrew.B [Microsoft]	31
Mal/Behav-170 [Sophos]	30
Trojan.Win32.Inject.rec [Kaspersky Lab]	30
Win-Trojan/Xema.variant [AhnLab]	28
Trojan-GameThief.Win32.WOW.tvs [Kaspersky Lab]	25
Troj/Virtum-Gen [Sophos]	23
PWS-OnlineGames.do [McAfee]	22
TrojanDownloader:Win32/Injector.gen!W [Microsoft]	22
PWS-Mmorpg!gb [McAfee]	21
Mal/HckPk-E [Sophos]	19
PWS:Win32/Lolyda.AU [Microsoft]	19
PWS:Win32/Frethog.D [Microsoft]	18
Trojan.Inject!sd6 [PC Tools]	18
Mal/EncPk-HI [Sophos]	17
Mal/Packer, Mal/EncPk-BW [Sophos]	17
TrojanDownloader:Win32/IEInject.gen!A [Microsoft]	17
Trojan-Spy.Dunfyter!sd6 [PC Tools]	17
Win-Trojan/QQPass.Gen [AhnLab]	17
PWS:Win32/OnLineGames.BX [Microsoft]	16
PWS:Win32/Zbot.G [Microsoft]	16
Win32/IRCBot.worm.variant [AhnLab]	16
Mal/Mdrop-B [Sophos]	15
New Malware.jt [McAfee]	15
PWS:Win32/Lineage.gen!A [Microsoft]	14
PWS:Win32/Zbot.J [Microsoft]	14
Trojan.Zbot [Symantec]	14
TrojanDownloader:Win32/Frethog.C [Microsoft]	14
Trojan-PSW.Gampass [PC Tools]	14
Mal/EncPk-IE, Mal/EncPk-IG [Sophos]	13
Mal/EncPk-IG [Sophos]	12
Worm:Win32/Taterf.gen!A [Microsoft]	12
Mal/WaledPak-A [Sophos]	11
Win-Trojan/OnlineGameHack.20992.CF [AhnLab]	11
Generic PWS.y!bxo [McAfee]	10
Mal/EncPk-MX [Sophos]	10
Mal_OLGM-6 [Trend Micro]	10
Packed.Win32.Krap.ar [Kaspersky Lab]	10
Trojan-PSW.Win32.Agent.mge [Kaspersky Lab]	10
Mal/LineDLL-B [Sophos]	9
Mal_Infostl [Trend Micro]	9
Suspicious.MH690 [Symantec]	9
Trojan.Zbot [PC Tools]	9
Trojan-Downloader.FraudLoad!sd6 [PC Tools]	9
Trojan-Downloader.Win32.FraudLoad.ddl [Kaspersky Lab]	9
Trojan-GameThief.Win32.Magania.auvp [Kaspersky Lab]	9
Trojan-GameThief.Win32.Magania.auwm [Kaspersky Lab]	9
Trojan-GameThief.Win32.OnLineGames.urem [Kaspersky Lab]	9
Trojan-PWS.Magania.AHIW [PC Tools]	9
W32/Autorun-WL [Sophos]	9
Win-Trojan/Agent.95744.AV [AhnLab]	9
Win-Trojan/OnlineGameHack.109056.R [AhnLab]	9
Win-Trojan/OnlineGameHack.65024.P [AhnLab]	9
Win-Trojan/Zbot.113152.B [AhnLab]	9
Mal/UnkPack-Fam [Sophos]	8
Packed.Generic.233 [Symantec]	8
PWS:Win32/Yaludle.A [Microsoft]	8
PWS:Win32/Zbot [Microsoft]	8
PWS:Win32/Zbot.gen!W [Microsoft]	8
Packed.Generic.232 [Symantec]	7
PWS-Gamania.gen.n [McAfee]	7
PWS-Nemqe.dll [McAfee]	7
Trojan-Spy.Win32.Zbot.gen [Kaspersky Lab]	7

PWS.Win32 [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	China	148
	Russian Federation	42
	Albania	7
	Spain	4
	Finland	3
	Egypt	1
	Poland	1
	South Africa	1
	Turkey	1
	United Kingdom	1

PWS.Win32 [Ikarus] is known to be created as:

%AppData%\key folder\hy78.dll

%AppData%\key folder\sql2005.dll

%FontsDir%\nvcpl.exe

%ProgramFiles%\internet explorer\d9.dll

%ProgramFiles%\internet explorer\dd.dll

%ProgramFiles%\internet explorer\rasadhlp.dll

%ProgramFiles%\internet explorer\setupapi.dll

%ProgramFiles%\manson\liser.dll

%ProgramFiles%\manson\liser.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\web publish\egfhgjl.exe

%ProgramFiles%\windowsupdate\dfhgil.exe

%Programs%\startup\cvs32.exe

%System%\ahnsbsb.exe

%System%\ahnxsds0.dll

%System%\ahnxsds1.dll

%System%\amvo.exe

%System%\aqoeerw.exe

%System%\ar12b002dll.dll

%System%\asgfdjt.dll

%System%\bigmn0.dll

%System%\bnmkue0.dll

%System%\bnmkue1.dll

%System%\cc80f0b4.dll

%System%\cvsdfw.exe

%System%\d9c002dd.dll

%System%\dndndcxa.dll

%System%\gsfmwdwd3.dll

%System%\hyrteas0.dll

%System%\hyrteas1.dll

%System%\hyrteas2.dll

%System%\ierdfgh.exe

%System%\jwedsfdo0.dll

%System%\jwedsfdo2.dll

%System%\kacsde.exe

%System%\kamsoft.exe

%System%\kav320.dll

%System%\kav321.dll

%System%\kav322.dll

%System%\kavo.exe

%System%\kavo0.dll

%System%\kavo2.dll

%System%\kva8wr.exe

%System%\kxvo.exe

%System%\lhgjyit0.dll

%System%\lhgjyit1.dll

%System%\lhgjyit2.dll

%System%\libuissn.exe

%System%\lmansndmq.dll

%System%\mediaplayer_update.exe

%System%\midddrv.dll

%System%\mkfght0.dll

%System%\mkfght1.dll

%System%\mkfght2.dll

%System%\mnnabb.dll

%System%\msxm192z.dll

%System%\msxslt3.exe

%System%\mzxedae.dll

%System%\nmdfgds0.dll

%System%\nmdfgds1.dll

%System%\nmdfgds2.dll

%System%\ntos.exe

%System%\ntuscrd.dll

%System%\ntuscrx.dll

%System%\olhrwef.exe

%System%\optyhww0.dll

%System%\optyhww1.dll

%System%\optyhww2.dll

%System%\oukdfgr.exe

%System%\processa.dll

%System%\rbwn2dra.dll

%System%\revo.exe

%System%\ro.dll

%System%\rttrwq.exe

%System%\sdra64.exe

%System%\sh07004.dll

%System%\sh07006.dll

%System%\ss12d40003dll.dll

%System%\system.exe

%System%\t311007.dll

%System%\t322025.dll

%System%\t329074.dll

%System%\t329086.dll

%System%\t329130.dll

%System%\t44y9a553nq.dll

%System%\trecied.dll

%System%\ubnams.dll

%System%\uret463.exe

%System%\urretnd.exe

%System%\uweyiwe0.dll

%System%\uweyiwe2.dll

%System%\vbsdfe0.dll

%System%\vbsdfe2.dll

%System%\wbem\proquota.exe

%System%\wedasgads0.dll

%System%\wedasgads2.dll

%System%\weidfsg.exe

%System%\windows64.exe

%System%\xm1985.dll

%System%\xvassdf.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).