ThreatExpert's Statistics for Trojan-Spy.Win32.Banker.anv [Ikarus]:

Trojan-Spy.Win32.Banker.anv [Ikarus] is also known as:

Threat Alias	Number of Incidents
New Malware.n [McAfee]	263
Mal/Packer, Mal/EncPk-BW [Sophos]	159
Trojan.Dropper [Symantec]	99
Suspicious.MH690 [Symantec]	89
Trojan-PWS.OnlineGames.ADRD [PC Tools]	72
Mal/Packer, Mal/EncPk-BW, Mal/Behav-009, Mal/Emogen-Y [Sophos]	66
Mal/Behav-103, Mal/Behav-043 [Sophos]	55
Downloader [Symantec]	52
Mal/Autorun-F, Mal/Packer, Mal/Behav-024, Mal/EncPk-BW, Mal/Behav-009 [Sophos]	45
W32.SillyFDC [Symantec]	41
Win-Trojan/Hupigon.Gen [AhnLab]	37
Mal/Behav-103 [Sophos]	31
W32/Autorun.worm.gen [McAfee]	26
Trojan-Downloader.Agent!sd6 [PC Tools]	20
Trojan.Fakemess [Symantec]	18
Packed/Upack [AhnLab]	17
W32.SillyDC [Symantec]	17
Mal/EncPk-BW [Sophos]	16
Mal/EncPk-BW, Mal/Autorun-C [Sophos]	15
Trojan-Downloader.Win32.Agent.bjty [Kaspersky Lab]	15
Generic BackDoor [McAfee]	13
Generic.dx [McAfee]	13
Infostealer.Bancos [Symantec]	11
Infostealer.Gampass [Symantec]	11
Mal/Behav-024, Mal/EncPk-BW [Sophos]	10
Mal/Packer, Mal/EncPk-BW, Mal/Emogen-Y, Mal/Behav-009 [Sophos]	10
PWS-Banker [McAfee]	10
Trojan-Spy.Win32.Banker [Ikarus]	10
Generic PUP.x [McAfee]	9
Worm.Win32.AutoRun.eyb [Kaspersky Lab]	8
Generic Downloader.x [McAfee]	6
Mal/Behav-103, Mal/Emogen-O [Sophos]	6
Trojan Horse [Symantec]	6
Trojan-Downloader.Win32.Agent.bhao [Kaspersky Lab]	6
Trojan-Spy.Gampass!sd6 [PC Tools]	6
Backdoor.Hupigon!sd6 [PC Tools]	5
Backdoor.Trojan [Symantec]	5
Mal/Packer, Mal/EncPk-BW, Troj/Maran-Gen [Sophos]	5
Trojan.Win32.Agent.bsym [Kaspersky Lab]	5
Trojan-Downloader.Win32.Agent.bias [Kaspersky Lab]	5
Trojan-PWS.Win32.Agent.jp [Ikarus]	5
Backdoor.Win32.Hupigon.epms [Kaspersky Lab]	4
Downloader.Bancos [Symantec]	4
Infostealer.Gamania [Symantec]	4
Mal/Emogen-T [Sophos]	4
Mal/Packer, Mal/Behav-024, Mal/EncPk-BW [Sophos]	4
Mal/VBDloadr-A, Mal/Behav-103 [Sophos]	4
Trojan.Win32.Agent.bsej [Kaspersky Lab]	4
Trojan.Win32.Delf.dal [Kaspersky Lab]	4
Trojan.Win32.Qhost.ary [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.acvi [Kaspersky Lab]	4
Trojan-Downloader.Win32.Agent.bgrj [Kaspersky Lab]	4
Trojan-PSW.Win32.Maran.cs [Kaspersky Lab]	4
TrojanSpy:Win32/Bancos.gen!A [Microsoft]	4
Win32/MalPackedB.suspicious [AhnLab]	4
Backdoor.Win32.Prosti.bn [Kaspersky Lab]	3
Downloader.MisleadApp [Symantec]	3
FakeAlert-XPSecCenter [McAfee]	3
Generic PWS.y [McAfee]	3
Mal/Packer, Mal/EncPk-BW, Mal/Behav-152, Mal/Emogen-S [Sophos]	3
Mal_Banker [Trend Micro]	3
not-a-virus:FraudTool.Win32.XPSecurityCenter.p [Kaspersky Lab]	3
Packed.Generic.138 [Symantec]	3
PE_MUMAWOW.AO-O [Trend Micro]	3
Trojan-Dropper.Win32.Agent.ahgs [Kaspersky Lab]	3
TrojanSpy:Win32/Banker [Microsoft]	3
W32.Stration@mm [Symantec]	3
Backdoor.Graybird [Symantec]	2
Backdoor.Win32.Hupigon.emiv [Kaspersky Lab]	2
Backdoor.Win32.Vipdataend.fv [Kaspersky Lab]	2
Mal/Behav-180, Mal/Behav-103, Mal/Behav-043 [Sophos]	2
Mal/Delf-M, Mal/EncPk-BW [Sophos]	2
Mal/DelpBanc-A, Mal/Behav-103, Mal/Behav-043 [Sophos]	2
Mal/Emogen-N, Mal/Behav-024, Mal/Basine-A, Mal/Heuri-E, Mal/Delf-M, Mal/EncPk-BW, Mal/Behav-027, Mal/Basine-C, Mal/Behav-010 [Sophos]	2
Mal/EncPk-DM, Mal/Behav-103 [Sophos]	2
Mal/EncPk-DM, Mal/Behav-103, Mal/Behav-043 [Sophos]	2
Mal/Packer, Mal/Behav-024, Mal/Delf-M, Mal/EncPk-BW [Sophos]	2
PWS-Banker.gen.bb [McAfee]	2
PWS-Banker.gen.dh.dldr [McAfee]	2
Trojan-Banker.Win32.Banbra.fds [Kaspersky Lab]	2
Trojan-Banker.Win32.Banker [Ikarus]	2
Trojan-Downloader.Win32.Agent.biax [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.bicd [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.bwcr [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.cnmq [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.czx [Kaspersky Lab]	2
Trojan-Downloader.Win32.Delf.fnv [Kaspersky Lab]	2
Trojan-Downloader.Win32.VB.bkp [Kaspersky Lab]	2
TrojanDownloader:Win32/Small [Microsoft]	2
TrojanDownloader:Win32/Small.gen!AP [Microsoft]	2
Trojan-PSW.Win32.QQRob.uz [Kaspersky Lab]	2
Trojan-Spy.Banker!sd5 [PC Tools]	2
W32.Mumawow.F!inf [Symantec]	2
Win-Trojan/Banker.4362752 [AhnLab]	2
Worm.AutoRun!sd6 [PC Tools]	2
Worm.Win32.AutoRun.ewj [Kaspersky Lab]	2
Worm.Win32.AutoRun.qtg [Kaspersky Lab]	2
Adware.Purityscan [Symantec]	1
Adware.Rugo [Symantec]	1
Adware-ValueAd [McAfee]	1

Trojan-Spy.Win32.Banker.anv [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	China	193
	Brazil	95
	Spain	7
	Russian Federation	6
	Israel	4
	Ukraine	3
	Australia	1
	Italy	1
	United Kingdom	1

Trojan-Spy.Win32.Banker.anv [Ikarus] is known to be created as:

%CommonPrograms%\startup\svchost.scr

%CommonPrograms%\startup\sys_aupdate.exe

%CommonPrograms%\startup\system32.exe

%FontsDir%\timpiatform.exe

%ProgramFiles%\common files\safesys.exe

%ProgramFiles%\common files\services\svchost.exe

%ProgramFiles%\common files\xsafe.exe

%System%\1234.exe

%System%\c0nime1.exe

%System%\eagle2.exe

%System%\explora.exe

%System%\explorer.exe

%System%\kb958644.exe

%System%\qqxyd.exe

%System%\real.exe

%System%\rejoice.exe

%System%\rpcs.exe

%System%\rroo.exe

%System%\svc\svchosts.exe

%System%\svchost.scr

%System%\system32.exe

%System%\twain.exe

%System%\twumk.exe

%System%\yt8a.exe

%Temp%\10.exe

%Temp%\weiai.exe

%Temp%\windows200_3\setup5008.exe

%UserProfile%\vlautopro\vlauto.exe

%UserProfile%\vlautopro\vlautopr.exe

%Windir%\aaa.exe

%Windir%\inetinfx.exe

%Windir%\system\36otray.exe

%Windir%\system\boboturbo.exe

%Windir%\system\internat.exe

%Windir%\system\jjxzwzjy081226.exe

%Windir%\system\jjxzwzjy081227.exe

%Windir%\system\jjxzwzjy081229.exe

%Windir%\system\jjxzwzjy081230.exe

%Windir%\system\jjxzwzjy090103.exe

%Windir%\system\jjxzwzjy090106.exe

%Windir%\system\jjxzwzjy090107.exe

%Windir%\system\jjxzwzjy090108.exe

%Windir%\system\jjxzwzjy090109.exe

%Windir%\system\jjxzwzjy090110.exe

%Windir%\system\jjxzwzjy090111.exe

%Windir%\system\jjxzwzjy090112.exe

%Windir%\system\jjxzwzjy090113.exe

%Windir%\system\jjxzwzjy090115.exe

%Windir%\system\jjxzwzjy090120.exe

%Windir%\system\jjxzwzjy090202.exe

%Windir%\system\jjxzwzjy090204.exe

%Windir%\system\jjxzwzjy090206.exe

%Windir%\system\jjxzwzjy090211.exe

%Windir%\system\jjxzwzjy090224.exe

%Windir%\system\jjxzwzjy090226.exe

%Windir%\system\jjxzwzjy090228.exe

%Windir%\system\lljyn081204.exe

%Windir%\system\lljyn081215.exe

%Windir%\system\lljyn081221.exe

%Windir%\system\lljyn081228.exe

%Windir%\system\lljyn090118.exe

%Windir%\system\lljyn090203.exe

%Windir%\system\lljyn090206.exe

%Windir%\system\llwzjy081130.exe

%Windir%\system\llwzjy081206.exe

%Windir%\system\llwzjy081208.exe

%Windir%\system\llwzjy081210.exe

%Windir%\system\llwzjy081215.exe

%Windir%\system\llwzjy081216.exe

%Windir%\system\llwzjy081222.exe

%Windir%\system\llwzjy081225.exe

%Windir%\system\lz090111.exe

%Windir%\system\lz090123.exe

%Windir%\system\lz090211.exe

%Windir%\system\lz090213.exe

%Windir%\system\lz090226.exe

%Windir%\temp\gifja.scr

c:\arquivos windows\rems.exe

c:\ntldr.exe

c:\recycler\dx.exe

c:\safesys.exe

c:\xp.exe

Notes:

%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.