ThreatExpert's Statistics for Trojan.Fakeav [Ikarus]:

Trojan.Fakeav [Ikarus] is also known as:

Threat Alias	Number of Incidents
TROJ_FAKEAV.UF [Trend Micro]	21
VirusResponseLab [Symantec]	21
not-a-virus:FraudTool.Win32.XpPoliceAntivirus.bn [Kaspersky Lab]	20
RogueAntiSpyware.VirusResponseLab [PC Tools]	15
AdwareRemover2007 [Symantec]	13
Trojan.Dropper [Symantec]	13
Win-Trojan/Fakeav.393216 [AhnLab]	13
FakeAlert-BO [McAfee]	12
Generic PUP.z [McAfee]	11
Win32.SuspectCrc [Ikarus]	9
Mal/Generic-A [Sophos]	8
Trojan.FakeAV [Symantec]	8
VirusRemover2008 [Symantec]	8
Generic.dx [McAfee]	7
Generic PUP.x [McAfee]	6
Troj/FakeVir-LF [Sophos]	5
not-a-virus:FraudTool.Win32.SecurityCenter.an [Kaspersky Lab]	4
Trojan:Win32/Winwebsec [Microsoft]	4
Backdoor.Trojan [Symantec]	3
Dropper/Agent.156684 [AhnLab]	3
FraudTool.Win32.SpywareRem2009 [Ikarus]	3
Mal/EncPk-HP [Sophos]	3
Trojan-Downloader.Win32.Agent.bovt [Kaspersky Lab]	3
AntiVirus2009 [Symantec]	2
Downloader [Symantec]	2
Downloader-BON [McAfee]	2
FakeAlert-SpywareProtect [McAfee]	2
Generic FakeAlert.b [McAfee]	2
Infostealer.Banker.C [Symantec]	2
Mal/FakeAV-AD [Sophos]	2
Mal/FakeAV-CO [Sophos]	2
not-a-virus:FraudTool.Win32.Agent.kg [Kaspersky Lab]	2
not-a-virus:FraudTool.Win32.XpPoliceAntivirus.ax [Kaspersky Lab]	2
Packed.Win32.Krap.r [Kaspersky Lab]	2
Program:Win32/Winfixer [Microsoft]	2
Troj/FakeVir-KY [Sophos]	2
Trojan.Fakeavalert [Symantec]	2
Trojan-Downloader.Win32.Agent.bkqx [Kaspersky Lab]	2
Trojan-Dropper.Win32.Agent.aipp [Kaspersky Lab]	2
TrojanDropper:Win32/Insebro.A [Microsoft]	2
Trojan-Spy.Win32.Zbot.src [Kaspersky Lab]	2
WinAntiSpyware [Symantec]	2
Win-Trojan/Agent.71680.CE [AhnLab]	2
Win-Trojan/Fakeav.882688 [AhnLab]	2
Adware.Gen [Symantec]	1
Awola [Symantec]	1
FakeAlert-AG.gen.a [McAfee]	1
FakeAlert-BV [McAfee]	1
FakeAlert-SpywareProtect.b [McAfee]	1
FakeAlert-XPPoliceAnti [McAfee]	1
Generic Downloader.x!bjc [McAfee]	1
Generic Dropper [McAfee]	1
Mal/EncPk-CZ [Sophos]	1
Mal/FakeAV-AG [Sophos]	1
Mal/FakeVirPk-A, Mal/TibsPk-D [Sophos]	1
New Malware.bl [McAfee]	1
not-a-virus:FraudTool.Win32.Agent.gm [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.Agent.kd [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.Agent.kj [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.SpywarePreventer.s [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.SpywareRemover.f [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.VirusIsolator.dx [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.VirusRemover.ay [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.VirusRemover.az [Kaspersky Lab]	1
Packed.Generic.188 [Symantec]	1
RogueAntiSpyware.WinwebSecurity [PC Tools]	1
TotalProtect2009 [Symantec]	1
Troj/BHO-KP [Sophos]	1
Troj/Dloadr-CFZ [Sophos]	1
Troj/FakeAV-JB [Sophos]	1
Troj/Fakevir-IM [Sophos]	1
Troj/FakeVir-LI [Sophos]	1
Trojan.Win32.FraudPack.una [Kaspersky Lab]	1
Trojan:Win32/FakePowav [Microsoft]	1
Trojan:Win32/FakeSecSen [Microsoft]	1
Trojan:Win32/FakeXPA [Microsoft]	1
Trojan-Downloader.FraudLoad!sd6 [PC Tools]	1
Trojan-Downloader.Win32.FraudLoad.dca [Kaspersky Lab]	1
Trojan-Downloader.Win32.FraudLoad.dtv [Kaspersky Lab]	1
Trojan-Downloader.Win32.FraudLoad.few [Kaspersky Lab]	1
Trojan-Downloader.Win32.FraudLoad.vmmt [Kaspersky Lab]	1
Trojan-Downloader.Win32.Genome.rbz [Kaspersky Lab]	1
TrojanDownloader:Win32/Dumcus.A [Microsoft]	1
TrojanDownloader:Win32/Fakeinit [Microsoft]	1
TrojanDownloader:Win32/FakeRean [Microsoft]	1
TrojanDownloader:Win32/Renos.gen!AU [Microsoft]	1
Trojan-Dropper.Win32.Agent.aipn [Kaspersky Lab]	1
Trojan-Dropper.Win32.Agent.aixd [Kaspersky Lab]	1
Trojan-Dropper.Win32.Agent.aixi [Kaspersky Lab]	1
Trojan-Dropper.Win32.Agent.aizt [Kaspersky Lab]	1
WinAntiSpyware!sd6 [PC Tools]	1
Win-Trojan/Fakealert.539977 [AhnLab]	1
Win-Trojan/Fakeav.110080.C [AhnLab]	1
Win-Trojan/Fakeav.45056.B [AhnLab]	1
Win-Trojan/Fakeav.492544 [AhnLab]	1
Win-Trojan/Fraudload.16896.BA [AhnLab]	1
Win-Trojan/Fraudload.81931.E [AhnLab]	1
XPAntivirus [Symantec]	1

Trojan.Fakeav [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Ukraine	69
	Russian Federation	59
	Germany	2
	China	1

Trojan.Fakeav [Ikarus] is known to be created as:

%AppData%\microsoft\windll32.exe

%ProgramFiles%\antimalwaresuite\asagents.dll

%ProgramFiles%\antimalwaresuite\pp.exe

%ProgramFiles%\perfect defender 2009\pd.dll

%ProgramFiles%\pwx\pwx.exe

%ProgramFiles%\realav\realav.exe

%ProgramFiles%\registry easy\regeasycleaner.exe

%ProgramFiles%\spywareremover2009\pp.exe

%ProgramFiles%\total protect 2009\totalprotect2009.exe

%ProgramFiles%\virslab\uninst.exe

%ProgramFiles%\virusremover2008\vrm2008.exe

%ProgramFiles%\virusremover2009\extsecuritycenter.exe

%ProgramFiles%\virusremover2009\pp.exe

%ProgramFiles%\whcc5dj0erc1\uninstall.exe

%System%\lphc35dj0erc1.exe

%System%\sdra64.exe

%System%\winupdate.exe

%Temp%\power115.exe

%Temp%\powerhc_exe.exe

%Windir%\svcho.exe

c:\safetycenter\tst.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.