Threat Search: 

ThreatExpert's Statistics for Trojan.Win32.Tdss [Ikarus]:

Trojan.Win32.Tdss [Ikarus] is also known as:
Threat AliasNumber of Incidents
Mal/Generic-A [Sophos]86
Trojan Horse [Symantec]43
Trojan.Win32.TDSS.zzu [Kaspersky Lab]36
Win-Trojan/Xema.variant [AhnLab]36
Backdoor.Tidserv [Symantec]35
Trojan.Win32.Tdss.auuk [Kaspersky Lab]29
Backdoor:WinNT/Rustock.gen!B [Microsoft]20
Mal/TDSSPack-Q, Mal/TDSSPack-J [Sophos]19
Trojan.TDSS!sd6 [PC Tools]19
Backdoor.WinNT.Rustock [Ikarus]12
Trojan:Win32/Alureon.BK [Microsoft]12
Trojan:Win32/Meredrop [Microsoft]11
Generic Rootkit.do [McAfee]10
Trojan.Win32.TDSS.amve [Kaspersky Lab]10
Trojan:Win32/Alureon.BH [Microsoft]10
Generic.dx!dct [McAfee]9
Mal/EncPk-KF [Sophos]9
Trojan.Win32.TDSS.anaf [Kaspersky Lab]9
Trojan.Win32.TDSS.apml [Kaspersky Lab]9
Trojan:Win32/Alureon.gen!J [Microsoft]9
Generic.dx!fnj [McAfee]6
Mal/EncPk-KF, Mal/TDSSPack-P [Sophos]6
Trojan:Win32/Alureon.BJ [Microsoft]6
Packed.Generic.233 [Symantec]5
Trojan.Win32.TDSS.appp [Kaspersky Lab]5
Backdoor.Tidserv!sd6 [PC Tools]4
DNSChanger!bj [McAfee]4
DNSChanger.d [McAfee]4
DNSChanger.gen [McAfee]4
DNSChanger.t [McAfee]4
Generic FakeAlert.k [McAfee]4
Mal/EncPk-GU [Sophos]4
Mal/EncPk-IV [Sophos]4
Trojan.Win32.TDSS.afgy [Kaspersky Lab]4
Trojan.Win32.TDSS.alpo [Kaspersky Lab]4
Trojan.Win32.TDSS.aojc [Kaspersky Lab]4
Downloader-BON [McAfee]3
Mal/Alureon-C [Sophos]3
Mal/TDSSPack-U, Mal/EncPk-KF [Sophos]3
Packed.Generic.238 [Symantec]3
Trojan.Generic [PC Tools]3
Trojan.Win32.TDSS.akwl [Kaspersky Lab]3
Trojan:Win32/Alureon.CT [Microsoft]3
Backdoor.Tidserv [PC Tools]2
BackDoor-DVU [McAfee]2
Downloader [Symantec]2
Generic.dx [McAfee]2
Mal/FakeAV-BU [Sophos]2
Mal/Generic-A, Mal/EncPk-KF [Sophos]2
Mal/TDSSPack-G [Sophos]2
Packed.Generic.200 [Symantec]2
Packed.Generic.218 [Symantec]2
Trojan.Vundo [Symantec]2
Trojan.Win32.Tdss.aiac [Kaspersky Lab]2
Trojan.Win32.Tdss.ajmk [Kaspersky Lab]2
Trojan.Win32.TDSS.ampn [Kaspersky Lab]2
Trojan.Win32.Tdss.anus [Kaspersky Lab]2
Trojan.Win32.Tdss.uvr [Kaspersky Lab]2
Trojan.Win32.TDSS.vhl [Kaspersky Lab]2
Trojan:Win32/Alureon.BL [Microsoft]2
Adware.Purityscan [PC Tools]1
Adware.Purityscan [Symantec]1
Backdoor.Small.gon [PC Tools]1
Backdoor:WinNT/Tofsee.A!sys [Microsoft]1
DNSChanger!d [McAfee]1
DNSChanger!o [McAfee]1
DNSChanger!s [McAfee]1
DNSChanger.ak [McAfee]1
DNSChanger.as [McAfee]1
DNSChanger.p [McAfee]1
DNSChanger.r [McAfee]1
FakeAlert-CT [McAfee]1
Generic BackDoor [McAfee]1
Generic Dropper!bbd [McAfee]1
Generic Dropper!mm [McAfee]1
Generic FakeAlert!ci [McAfee]1
Generic.dx!baw [McAfee]1
Generic.dx!bu [McAfee]1
Generic.dx!cnc [McAfee]1
Generic.dx!ctt [McAfee]1
Generic.dx!efb [McAfee]1
Generic.dx!gkj [McAfee]1
Generic.dx!jbc [McAfee]1
Generic.dx!nqa [McAfee]1
Generic.dx!sh [McAfee]1
Generic.dx!w [McAfee]1
Mal/EncPk-HG [Sophos]1
Mal/EncPk-IF [Sophos]1
Mal/RootKit-Fam [Sophos]1
Mal/TDSS-Fam [Sophos]1
Mal/TDSSPack-K [Sophos]1
Mal/TDSSPack-Q [Sophos]1
Mal/TDSSPack-R [Sophos]1
Mal/TDSSPack-U [Sophos]1
Mal/TDSSPk-C [Sophos]1
Mal/TDSSPk-C, Mal/TDSSPack-W, Mal/TDSSPack-U [Sophos]1
Packed.Generic.228 [Symantec]1
Spyware.Keylogger [Symantec]1
TDSS [McAfee]1
Troj/Agent-KYM [Sophos]1

Trojan.Win32.Tdss [Ikarus] has the following possible country of origin:
OriginNumber of Incidents
China1

Trojan.Win32.Tdss [Ikarus] is known to be created as:
%ProgramFiles%\decodinghq\uninstall.exe
%ProgramFiles%\digitalhq\uninstall.exe
%ProgramFiles%\divxaccess\uninstall.exe
%ProgramFiles%\hdextrem\uninstall.exe
%ProgramFiles%\hdplugin\uninstall.exe
%ProgramFiles%\herocodec\uninstall.exe
%ProgramFiles%\playme\uninstall.exe
%ProgramFiles%\quicktiming\uninstall.exe
%ProgramFiles%\quickwatch\uninstall.exe
%ProgramFiles%\quickyplaeyr\uninstall.exe
%ProgramFiles%\uniccodec\uninstall.exe
%ProgramFiles%\watchfree\uninstall.exe
%System%\adimeeaa.dll
%System%\drivers\bsiecvcxdz.sys
%System%\drivers\ejaqytsi.sys
%System%\drivers\h8srteouoerqnwy.sys
%System%\drivers\lifuy.sys
%System%\drivers\mhaqc.sys
%System%\drivers\mqflzab.sys
%System%\drivers\qnqmzgonyv.sys
%System%\drivers\senekabauxnbmu.sys
%System%\drivers\skynetnpevrtki.sys
%System%\drivers\skynetossynquf.sys
%System%\drivers\wjzsaltwnava.sys
%System%\senekaalnostdc.dll
%System%\senekaewhemjle.dll
%System%\senekaff.dll
%System%\senekawi.dll
%System%\senekaymsbfhgg.dll
%System%\senekayphtxuia.dll
%System%\skynetkpdpxbmk.dll
%Temp%\1skynetbqwdftpe.sys
%Temp%\1skynetqbvuhysj.dll
%Temp%\askynetkpyyqpph.sys.sys
%Temp%\kafan virlist 2009.03.23\090323-b-3.exe
%Temp%\omegavid.exe
Notes:
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).