ThreatExpert's Statistics for Trojan.Win32.Ertfor [Ikarus]:

Trojan.Win32.Ertfor [Ikarus] is also known as:

Threat Alias	Number of Incidents
Packed.Generic.233 [Symantec]	493
Trojan:Win32/Ertfor.A [Microsoft]	314
Trojan:Win32/Ertfor.B [Microsoft]	296
Win-Trojan/Xema.variant [AhnLab]	169
Mal/Generic-A [Sophos]	159
QHosts-126 [McAfee]	138
Downloader [Symantec]	91
Mal/EncPk-IF [Sophos]	88
Mal/TibsPk-A, Mal/TibsPk-D [Sophos]	83
Mal/Ertfor-A [Sophos]	82
Mal/EncPk-IV [Sophos]	73
Generic.dx!fes [McAfee]	64
Troj/AgtJPP-Gen, Mal/TibsPk-A [Sophos]	64
Trojan-Downloader.Win32.Wzhyk.dg [Kaspersky Lab]	64
Win-Trojan/Zpack.24576.J [AhnLab]	63
TROJ_FAKEALE.SMB [Trend Micro]	54
Trojan Horse [Symantec]	50
Generic.dx!sz [McAfee]	45
Mal/EncPk-KP [Sophos]	41
Generic FakeAlert.d!gen [McAfee]	40
Mal/FakeAV-BX [Sophos]	38
Trojan.Generic [PC Tools]	38
Trojan-Downloader.Win32.Wzhyk.ec [Kaspersky Lab]	32
Win-Trojan/Downlader.15001 [AhnLab]	32
Win-Trojan/CryptRedol.20480 [AhnLab]	25
Win-Trojan/Downloader.15000.BL [AhnLab]	25
Mal/FakeVirPk-A, Mal/TibsPk-A [Sophos]	23
Packed.Win32.Krap.ah [Kaspersky Lab]	20
Troj/Dloadr-COQ [Sophos]	18
Win-Trojan/Agent.15001.F [AhnLab]	18
Trojan.Win32.Agent.cxts [Kaspersky Lab]	16
Win-Trojan/Ertfor.15000.H [AhnLab]	12
Generic.dx!cju [McAfee]	10
Trojan-Downloader.Win32.Agent.clni [Kaspersky Lab]	10
Trojan-Downloader.Win32.Small [Ikarus]	10
Trojan-Dropper.Win32.Agent.avsd [Kaspersky Lab]	10
Win-Trojan/Ertfor.15000.I [AhnLab]	10
Generic Dropper.p [McAfee]	9
Generic FakeAlert!ee [McAfee]	9
Generic.dx!ffd [McAfee]	9
Generic.dx!ffh [McAfee]	9
Trojan.Win32.Agent.cwlb [Kaspersky Lab]	9
Trojan-Downloader.Win32.Delf.swp [Kaspersky Lab]	9
Trojan-Downloader.Win32.Wzhyk.cy [Kaspersky Lab]	9
Downloader-BON [McAfee]	8
Mal/Generic-A, Mal/EncPk-MP, Mal/EncPk-KP [Sophos]	8
Trojan.DL.Small.Gen.27 [PC Tools]	8
Trojan.Dropper [Symantec]	8
Trojan.FakeAlert [PC Tools]	8
Trojan-Downloader.Agent [PC Tools]	8
Trojan-Downloader.Win32.Small.ante [Kaspersky Lab]	8
W32/Ertfor.gen [McAfee]	8
Win-Trojan/CryptRedol.19456.B [AhnLab]	8
Win-Trojan/Downloader.15000.BP [AhnLab]	8
Win-Trojan/Xema.15001 [AhnLab]	8
Generic.dx [McAfee]	7
Generic Downloader.x [McAfee]	6
Generic.dx!ezc [McAfee]	6
Trojan.Win32.Agent.cwri [Kaspersky Lab]	6
Generic.dx!gkj [McAfee]	5
Mal/TibsPk-A [Sophos]	5
Trojan-Downloader.Win32.Small.aizu [Kaspersky Lab]	5
Win-Trojan/Fakeav.Gen [AhnLab]	5
Generic Packed [McAfee]	4
Mal/BenDl-A [Sophos]	4
Mal/EncPk-HH [Sophos]	4
Mal/FakeAV-BT [Sophos]	4
Mal/FakeAV-BT, Mal/EncPk-NP [Sophos]	4
Trojan-Clicker.Win32.Vesloruki.der [Kaspersky Lab]	4
Trojan-Downloader.Win32.Agent.bien [Kaspersky Lab]	4
Trojan-Downloader.Win32.Small.aoyu [Kaspersky Lab]	4
Trojan-Downloader.Win32.Small.joz [Kaspersky Lab]	4
Trojan-Downloader.Win32.Wzhyk.ea [Kaspersky Lab]	4
Trojan-Dropper.Win32.Agent.aumt [Kaspersky Lab]	4
Win-Trojan/Agent.15001.J [AhnLab]	4
Win-Trojan/Agent.23552.SZ [AhnLab]	4
Generic Downloader.x!ge [McAfee]	3
Generic Dropper.bu [McAfee]	3
Troj/AgtJPP-Gen [Sophos]	3
Trojan.Fakeavalert [Symantec]	3
Trojan.Win32.Agent.cycb [Kaspersky Lab]	3
Generic Downloader.x!g [McAfee]	2
Generic Dropper.ke [McAfee]	2
Mal/EncPk-NP, Mal/FakeAV-BT [Sophos]	2
Packed.Win32.Krap.ae [Kaspersky Lab]	2
Packed.Win32.Krap.x [Kaspersky Lab]	2
PWS:Win32/Ldpinch.BO [Microsoft]	2
Trojan.Delf [PC Tools]	2
Trojan.Win32.FraudPack.uod [Kaspersky Lab]	2
Trojan-Downloader.Agent!sd6 [PC Tools]	2
Trojan-Downloader.Small.GEN [PC Tools]	2
Trojan-Downloader.Win32.Agent.bqxc [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.cnhi [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.cpil [Kaspersky Lab]	2
Trojan-Dropper.Win32.Agent.bdfq [Kaspersky Lab]	2
Trojan-Dropper.Win32.Agent.bedh [Kaspersky Lab]	2
Win-Trojan/Downloader.15001.B [AhnLab]	2
Backdoor.Win32.KeyStart.cb [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.ike [Kaspersky Lab]	1
Downloader.MisleadApp [Symantec]	1

Trojan.Win32.Ertfor [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	56
	China	6
	Japan	1

Trojan.Win32.Ertfor [Ikarus] is known to be created as:

%AppData%\seres.exe

%AppData%\svcst.exe

%System%\asvfc.dll

%System%\braviax.exe

%System%\ds43g4nfjkn93.dll

%System%\er9kop338.dll

%System%\gvui0e6g86.dll

%System%\gyuvgfytre56yftyd.dll

%System%\hgdfeeeh4fdg.dll

%System%\hgdfhsiueme.dll

%System%\hs78344kjkfd.dll

%System%\hs7f3uhduhfukde.dll

%System%\lx4m0j.dll

%System%\sdfadccddkn93.dll

%System%\sxrvo9.dll

%System%\t1x21e2y.dll

%System%\tajf83ikdmf.dll

%System%\uisd33faj387dd.dll

%System%\v7xy3pcb.dll

%System%\wg45n.dll

%System%\ygsuhdf83id.dll

%System%\zfgh83jg3.dll

%Temp%\a0csv.exe

%Temp%\a0jc5.exe

%Temp%\a0jypdx.exe

%Temp%\a18g6.exe

%Temp%\a2crwpc4.exe

%Temp%\a2mnq2qcz.exe

%Temp%\a2my1xzs70.exe

%Temp%\a2q9abq0t6.exe

%Temp%\a3gaq7.exe

%Temp%\a420rzr.exe

%Temp%\a4i2g1l.exe

%Temp%\a65llfb.exe

%Temp%\a6l4thm.exe

%Temp%\a6x1yag.exe

%Temp%\a7kgka.exe

%Temp%\a7orcoo.exe

%Temp%\a87x3g.exe

%Temp%\a9dzc.exe

%Temp%\aa8fklx.exe

%Temp%\aahsy.exe

%Temp%\addzvv1.exe

%Temp%\adq6o.exe

%Temp%\aebdq0ujb.exe

%Temp%\aeljcd.exe

%Temp%\aeqocncdpn.exe

%Temp%\agraj1j.exe

%Temp%\ah5t4i8b.exe

%Temp%\ahac3.exe

%Temp%\ahohoft88.exe

%Temp%\aif6slyt.exe

%Temp%\aiuys3oyl.exe

%Temp%\aiwjlc.exe

%Temp%\aj0zeknd.exe

%Temp%\ak5nr.exe

%Temp%\ake2a5u.exe

%Temp%\alau9i.exe

%Temp%\am2we3n3eo.exe

%Temp%\am8bmx2.exe

%Temp%\amw1od02mk.exe

%Temp%\ansanbk3q.exe

%Temp%\ao6wjb1jx.exe

%Temp%\aoc9mjb2.exe

%Temp%\aokex.exe

%Temp%\aopzidk9sw.exe

%Temp%\aottxn.exe

%Temp%\aoxo8.exe

%Temp%\ap64y6.exe

%Temp%\apyyaned.exe

%Temp%\aq5c3q.exe

%Temp%\ar50g.exe

%Temp%\ar8d1.exe

%Temp%\arc39.exe

%Temp%\arqlnu3.exe

%Temp%\arw11.exe

%Temp%\as81kge72z.exe

%Temp%\at0zis.exe

%Temp%\at3h6v3tdr.exe

%Temp%\at4m2g.exe

%Temp%\atar7dk1.exe

%Temp%\atcwn.exe

%Temp%\auayqmq.exe

%Temp%\aunzal47b.exe

%Temp%\av2wav.exe

%Temp%\av36f.exe

%Temp%\aveatrao.exe

%Temp%\avq3a.exe

%Temp%\avy62u.exe

%Temp%\aw9u86.exe

%Temp%\awpwg8.exe

%Temp%\awriwzbdh.exe

%Temp%\axdpbbn.exe

%Temp%\axm2be6.exe

%Temp%\axta7.exe

%Temp%\ay9xxj7r.exe

%Temp%\ayhixtc.exe

%Temp%\ayibs15m4.exe

%Temp%\azdgbny11.dll

%Temp%\azq0b0fz.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).