ThreatExpert's Statistics for Rootkit.Agent [Ikarus]:

Rootkit.Agent [Ikarus] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	67
Backdoor:Win32/Farfli.I [Microsoft]	58
Backdoor.Trojan [Symantec]	37
Generic BackDoor [McAfee]	37
Hacktool.Rootkit [Symantec]	37
Trojan.Win32.Runner.ck [Kaspersky Lab]	36
Generic.dx [McAfee]	32
Hacktool.Rootkit!sd6 [PC Tools]	28
Rootkit.Win32.Agent.hay [Kaspersky Lab]	28
Trojan.Dropper [Symantec]	28
Win-Trojan/Agent.11136.B [AhnLab]	28
Trojan-Downloader.Win32.Agent.bhmm [Kaspersky Lab]	27
Mal/Behav-024 [Sophos]	26
Trojan.Runner!sd6 [PC Tools]	24
Downloader [Symantec]	22
Rootkit.Win32.Agent [Ikarus]	20
Trojan:Win32/Kerproc!rts [Microsoft]	20
Mal/Packer, Mal/Behav-024 [Sophos]	18
Trojan-Downloader.Agent!sd6 [PC Tools]	16
Trojan-Downloader.Win32.Agent.bgmb [Kaspersky Lab]	10
Generic Downloader.x [McAfee]	9
Trojan.Win32.Agent.bpkn [Kaspersky Lab]	9
Infostealer.Gampass [Symantec]	6
Win-Trojan/Agent.43816.C [AhnLab]	6
Trojan-Downloader.Win32.Murlo.aab [Kaspersky Lab]	5
Mal/RootKit-Fam [Sophos]	4
Trojan-Downloader.Win32.Agent.bgcj [Kaspersky Lab]	4
Backdoor:WinNT/Syzor.A [Microsoft]	2
Mal/Behav-214, Mal/Dropper-AB, Mal/Behav-151 [Sophos]	2
Mal/Packer, Mal/Behav-024, Mal/Behav-009 [Sophos]	2
PWS:Win32/Frethog.BS [Microsoft]	2
Trojan.Monder!sd6 [PC Tools]	2
Trojan.Win32.Monder.ahok [Kaspersky Lab]	2
Trojan.Win32.Runner.ci [Kaspersky Lab]	2
Trojan.Win32.Runner.co [Kaspersky Lab]	2
Trojan-Spy.Gampass!sd6 [PC Tools]	2
Backdoor.Syzoor [Symantec]	1
BackDoor-DTN!sys [McAfee]	1
Downloader-BNO [McAfee]	1
Mal/Behav-009 [Sophos]	1
Mal/Syzor-B [Sophos]	1
PWS-Mmorpg.gen [McAfee]	1
Rootkit.Win32.Agent.gsy [Kaspersky Lab]	1
Rootkit.Win32.Agent.hnk [Kaspersky Lab]	1
Trojan Horse [Symantec]	1
Trojan.Win32.AntiAV.abw [Kaspersky Lab]	1
Trojan.Win32.Monder [Ikarus]	1
Trojan.Win32.Runner.cj [Kaspersky Lab]	1
Trojan-Downloader.Win32.Agent.bhez [Kaspersky Lab]	1
TrojanDownloader:Win32/Perkesh.gen!A [Microsoft]	1
TrojanDownloader:Win32/Small.gen!K [Microsoft]	1
Trojan-Dropper.Win32.Agent.afsw [Kaspersky Lab]	1
Trojan-Dropper.Win32.Agent.agbj [Kaspersky Lab]	1
Trojan-GameThief.Win32.Lmir.hdi [Kaspersky Lab]	1
Win-Trojan/Agent.38912.LY [AhnLab]	1
Win-Trojan/Antiav.34816.T [AhnLab]	1
Win-Trojan/Syzor.79872 [AhnLab]	1

Rootkit.Agent [Ikarus] has the following possible country of origin:

Origin		Number of Incidents
	China	82

Rootkit.Agent [Ikarus] is known to be created as:

%System%\drivers\avgmfx90.sys

%System%\drivers\dkppxrq1mn3.sys

%Windir%\svcpos.exe

c:\psk.dll

Notes:

%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.