ThreatExpert's Statistics for Trojan.Win32.FakeSpyguard [Ikarus]:

Trojan.Win32.FakeSpyguard [Ikarus] is also known as:

Threat Alias	Number of Incidents
Trojan:Win32/FakeSpyguard [Microsoft]	65
Trojan-Downloader.Win32.Agent.bqxc [Kaspersky Lab]	38
Troj/FakeAV-ABN [Sophos]	36
Trojan.Fakeavalert [Symantec]	31
Packed.Generic.200 [Symantec]	25
Trojan:Win32/Alureon.gen!J [Microsoft]	25
Vundo.gen.bq [McAfee]	21
Mal/FakeAV-S [Sophos]	19
Trojan.Vundo [Ikarus]	15
SpywareGuard2008 [Symantec]	14
Win-Trojan/Xema.variant [AhnLab]	14
Mal/TDSSPack-A [Sophos]	11
Trojan:Win32/Vundo.gen!BN [Microsoft]	11
Mal/TDSSPack-Q, Mal/TDSSPack-A [Sophos]	10
Worm:Win32/Vundo.B [Microsoft]	8
Mal/FakeVirPk-A, Mal/TDSS-A [Sophos]	7
Rootkit.Win32.TDSS [Ikarus]	7
DNSChanger.f.gen.a [McAfee]	6
Mal/TDSS-A, Mal/FakeVirPk-A [Sophos]	6
Packed.Win32.Tdss.a [Kaspersky Lab]	6
Packed.Win32.Tdss.c [Kaspersky Lab]	6
Trojan.Win32.Tdss.arvy [Kaspersky Lab]	6
DNSChanger.r [McAfee]	5
Mal/Generic-A [Sophos]	5
TrojanDownloader:Win32/Rugzip.A [Microsoft]	5
FakeAlert-SpywareGuard.gen.b [McAfee]	4
Mal/Alureon-C, Mal/Alureon-B, Mal/FakeAV-S [Sophos]	4
Mal/EncPk-HT, Mal/FakeVirPk-A, Mal/TDSS-A [Sophos]	4
Mal/TDSSPack-Q [Sophos]	4
Troj/Agent-IPD [Sophos]	4
Mal/Alureon-C, Mal/Alureon-B, Mal/FakeAV-S, Mal/FakeVirPk-A [Sophos]	3
not-a-virus:FraudTool.Win32.SpywareGuard2008.bf [Kaspersky Lab]	3
Generic Downloader.x [McAfee]	2
Generic PWS.y [McAfee]	2
Generic.dx [McAfee]	2
not-a-virus:FraudTool.Win32.SpywareGuard2008.ax [Kaspersky Lab]	2
RogueAntiSpyware.SpywareGuard2008 [PC Tools]	2
Rootkit.Win32.TDSS.eyj [Kaspersky Lab]	2
Trojan.Win32.FraudPack.tee [Kaspersky Lab]	2
Adware.VirtuMonde [Symantec]	1
Dropper/DnsChanger.65536 [AhnLab]	1
Generic FakeAlert.b [McAfee]	1
Generic FakeAlert.c [McAfee]	1
Generic PUP.z [McAfee]	1
Hoax.Win32.XPAntivirus.f [Kaspersky Lab]	1
Mal/Alureon-B, Mal/FakeAV-S [Sophos]	1
Mal/EncPk-HT, Mal/FakeVirPk-A [Sophos]	1
Mal/TDSS-A [Sophos]	1
Mal/TDSSPack-Q, Troj/Virtum-Gen [Sophos]	1
not-a-virus:FraudTool.Win32.SpywareGuard2008.bw [Kaspersky Lab]	1
Rootkit.TDSS!sd6 [PC Tools]	1
Rootkit.Win32.TDSS.cze [Kaspersky Lab]	1
Rootkit.Win32.TDSS.dbo [Kaspersky Lab]	1
Rootkit.Win32.TDSS.dgl [Kaspersky Lab]	1
Suspicious.MH690 [Symantec]	1
Troj/FakeVir-IS [Sophos]	1
Troj/Virtum-Gen [Sophos]	1
Trojan Horse [Symantec]	1
Trojan.Agentb!sd6 [PC Tools]	1
Trojan.Vundo [Symantec]	1
Trojan.Win32.Agentb.ah [Kaspersky Lab]	1
Trojan.Win32.FraudPack.amn [Kaspersky Lab]	1
Trojan.Win32.FraudPack.anb [Kaspersky Lab]	1
Trojan.Win32.FraudPack.ioi [Kaspersky Lab]	1
Trojan.Win32.FraudPack.tcd [Kaspersky Lab]	1
Trojan.Win32.FraudPack.unw [Kaspersky Lab]	1
Trojan.Zlob [Symantec]	1
Trojan:Win32/Alureon.BG [Microsoft]	1
Trojan:Win32/FakeSmoke [Microsoft]	1
Trojan-Downloader.Win32.FraudLoad.cxf [Kaspersky Lab]	1
Trojan-Downloader.Win32.FraudLoad.cxl [Kaspersky Lab]	1
Trojan-Downloader.Win32.FraudLoad.fld [Kaspersky Lab]	1
TrojanDownloader:Win32/FakeIA.A [Microsoft]	1
Trojan-GameThief.Win32.Magania.asvg [Kaspersky Lab]	1
Trojan-PSW.Win32.Agent.lnk [Kaspersky Lab]	1
Win-Trojan/Agentb.33792 [AhnLab]	1
Win-Trojan/Fraudload.67589.B [AhnLab]	1
Win-Trojan/Fraudpack.1135616.B [AhnLab]	1
Win-Trojan/Fraudpack.2685952 [AhnLab]	1
Worm.Win32.AutoTDSS.act [Kaspersky Lab]	1
Worm.Win32.AutoTDSS.bgc [Kaspersky Lab]	1

Trojan.Win32.FakeSpyguard [Ikarus] has the following possible country of origin:

Origin		Number of Incidents
	Russian Federation	46

Trojan.Win32.FakeSpyguard [Ikarus] is known to be created as:

%CommonAppData%\svhost.exe

%ProgramFiles%\personal guard 2009\uninstall.exe

%ProgramFiles%\smart protector\smartprotector.exe

%ProgramFiles%\smart protector\uninstall.exe

%ProgramFiles%\spyware guard 2008\spywareguard.exe

%ProgramFiles%\spyware guard 2008\uninstall.exe

%System%\dabezoda.dll

%System%\fafaropu.dll

%System%\halaneho.dll

%System%\muyolule.dll

%System%\ranolobi.dll

%System%\refodegu.dll

%System%\winscenter.exe

%System%\yibuvido.dll

%System%\yupabeda.dll

%System%\zekagawi.dll

%Temp%\merunime.dll

%Temp%\personalguard.exe

%Temp%\sedehobi.dll

%Temp%\setup.exe

c:\resycled\ntldr.com

Notes:

%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).