ThreatExpert's Statistics for Trojan.Buzus!sd6 [PC Tools]:

Trojan.Buzus!sd6 [PC Tools] is also known as:

Threat Alias	Number of Incidents
Generic.dx [McAfee]	59
Trojan Horse [Symantec]	48
Trojan.Win32.Buzus [Ikarus]	28
Downloader [Symantec]	15
Mal/Generic-A [Sophos]	15
TrojanDownloader:Win32/Rudeflate.gen!A [Microsoft]	9
Trojan.Win32.Buzus.zgm [Kaspersky Lab]	8
Generic PUP.x [McAfee]	7
Troj/Agent-HTK [Sophos]	6
Trojan:Win32/VB.ZO [Microsoft]	6
VirTool.Win32.CeeInject [Ikarus]	6
VirTool:Win32/DelfInject.gen!AA [Microsoft]	6
Virus.Trojan.Win32.Buzus.zgm [Ikarus]	6
Troj/Dload-DS [Sophos]	5
Trojan.Win32.Buzus.adbl [Kaspersky Lab]	5
Trojan.Win32.Buzus.ztk [Kaspersky Lab]	5
VirTool:Win32/DelfInject.gen!X [Microsoft]	5
VirTool:Win32/VBInject.gen!M [Microsoft]	5
Mal/Basine-C [Sophos]	4
PWS:Win32/Cimuz.D [Microsoft]	4
Troj/DwnLdr-HLG [Sophos]	4
Troj/DwnLdr-HLT [Sophos]	4
Trojan.Buzus.abpl [Ikarus]	4
Trojan.Crypt [Ikarus]	4
Trojan.Win32.Buzus.abpl [Kaspersky Lab]	4
Trojan.Win32.Buzus.aebw [Kaspersky Lab]	4
Trojan.Win32.Buzus.wpy [Kaspersky Lab]	4
VirTool:Win32/CeeInject.gen!A [Microsoft]	4
VirTool:Win32/DelfInject.gen!AC [Microsoft]	4
Virus.Win32.Downloader.BVK [Ikarus]	4
Win-Trojan/Buzus.19456.O [AhnLab]	4
Backdoor:Win32/Buzus.C [Microsoft]	3
Generic PWS.y [McAfee]	3
Mal/Generic-E [Sophos]	3
PWS:Win32/Gamania.gen!B [Microsoft]	3
Troj/PWS-ASW [Sophos]	3
TROJ_BUZUS.TCC [Trend Micro]	3
Trojan.Hijacker [Ikarus]	3
Trojan.Win32.Buzus.amfz [Kaspersky Lab]	3
Trojan.Win32.Buzus.sgc [Kaspersky Lab]	3
Trojan-Dropper.Delf [Ikarus]	3
VirTool:Win32/CeeInject.gen!J [Microsoft]	3
W32.Ackantta@mm [Symantec]	3
Worm:Win32/Prolaco.gen!C [Microsoft]	3
Backdoor.Bifrose [Symantec]	2
BKDR_IRCBOT.GO [Trend Micro]	2
Generic BackDoor [McAfee]	2
Generic Dropper [McAfee]	2
Mal/Behav-103 [Sophos]	2
Mal/Behav-109 [Sophos]	2
Mal/Behav-227 [Sophos]	2
Mal/Dropper-W, Mal/Dropper-G [Sophos]	2
Mal/VB-Z, Mal/Behav-211, Mal/Behav-009 [Sophos]	2
MultiDropper-RY [McAfee]	2
Troj/Buzus-V [Sophos]	2
Troj/Buzus-W [Sophos]	2
Trojan.Donbot [Symantec]	2
Trojan.Win32.Buzus.acpc [Kaspersky Lab]	2
Trojan.Win32.Buzus.acwu [Kaspersky Lab]	2
Trojan.Win32.Buzus.adao [Kaspersky Lab]	2
Trojan.Win32.Buzus.agqz [Kaspersky Lab]	2
Trojan.Win32.Buzus.akzo [Kaspersky Lab]	2
Trojan.Win32.Buzus.angb [Kaspersky Lab]	2
Trojan.Win32.Buzus.aqvr [Kaspersky Lab]	2
Trojan.Win32.Buzus.asuu [Kaspersky Lab]	2
Trojan.Win32.Buzus.hts [Kaspersky Lab]	2
Trojan.Win32.Buzus.oid [Kaspersky Lab]	2
Trojan.Win32.Buzus.qig [Kaspersky Lab]	2
Trojan.Win32.Buzus.ucn [Kaspersky Lab]	2
Trojan.Win32.Buzus.zrq [Kaspersky Lab]	2
Trojan:Win32/Sisproc [Microsoft]	2
Trojan-Proxy.Win32.Agent [Ikarus]	2
TrojanProxy:Win32/Agent.HZ [Microsoft]	2
VirTool.Win32.DelfInject [Ikarus]	2
VirTool:Win32/DelfInject.gen!AM [Microsoft]	2
Virus.Trojan.Win32.Buzus.ztk [Ikarus]	2
Virus.Win32.VB.FEW [Ikarus]	2
W32.IRCBot [Symantec]	2
W32.Spybot.Worm [Symantec]	2
W32/Xirtem@MM [McAfee]	2
Win-Trojan/Buzus.21504.H [AhnLab]	2
Win-Trojan/Buzus.254464.B [AhnLab]	2
Win-Trojan/Buzus.48128.G [AhnLab]	2
Worm:Win32/Prolaco.gen!B [Microsoft]	2
Backdoor.Trojan [Symantec]	1
Backdoor.Win32.Ceckno [Ikarus]	1
Backdoor:Win32/Mydoom.gen [Microsoft]	1
Backdoor:WinNT/Farfli.E!sys [Microsoft]	1
BackDoor-DOQ.gen.e [McAfee]	1
Dropper/Buzus.61440 [AhnLab]	1
Dropper/Rootkit.101376 [AhnLab]	1
Generic Dropper.gi.gen [McAfee]	1
Generic Proxy [McAfee]	1
Generic PUP.z [McAfee]	1
Infostealer [Symantec]	1
Infostealer.Notos!gen [Symantec]	1
IRC Trojan [Symantec]	1
IRC.Backdoor.Trojan [Symantec]	1
Mal/Behav-154 [Sophos]	1
Mal/Behav-179, Mal/Dropper-G [Sophos]	1

Trojan.Buzus!sd6 [PC Tools] has the following possible countries of origin:

Origin		Number of Incidents
	Germany	2
	Italy	2
	Slovenia	2
	Switzerland	2
	Belgium	1
	Brazil	1
	Canada	1
	China	1
	Israel	1
	Russian Federation	1
	Sweden	1

Trojan.Buzus!sd6 [PC Tools] is known to be created as:

%AppData%\microsoft\windows\lsass.exe

%DesktopDir%\setup_ver1.1585.2.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\frost\ver.exe

%ProgramFiles%\ganeralos\kiral.exe

%System%\ciscv.exe

%System%\dllcache\aic77uz.sys

%System%\inf\xccefb090131.scr

%System%\javacypt.exe

%System%\javarun.exe

%System%\jshed.exe

%System%\jushed.exe

%System%\liar5.exe

%System%\pkguard32.exe

%System%\splm\ncsjapi32.exe

%System%\taskmon.exe

%System%\wf.exe

%Temp%\251614.exe

%Temp%\631115.exe

%Temp%\904433.exe

%Temp%\crack.exe

%Temp%\ixp000.tmp\crypted.exe

%Temp%\ixp000.tmp\server.exe

%Temp%\ixp000.tmp\sound_mp3.1488.0.exe

%Temp%\ixp000.tmp\start.exe

%Temp%\liar5.exe

%Temp%\mount.exe

%Temp%\temp2.exe

%Windir%\auth.exe

%Windir%\bifrost\server.exe

%Windir%\fxstaller.exe

%Windir%\help\f3c74e3fa248.exe

%Windir%\nvtuploader.exe

%Windir%\svhoste.exe

%Windir%\sys32.exe

%Windir%\system\xccef090131.exe

%Windir%\temps.exe

c:\12.exe

c:\restore\k-1-3542-4232123213-7676767-8888886\devrgm.exe

c:\techload.dll

c:\vshost.exe

c:\x0ne.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%DesktopDir% is a variable that refers to the file system directory used to physically store file objects on the desktop. A typical path is C:\Documents and Settings\[UserName]\Desktop.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.