ThreatExpert's Statistics for TrojanDownloader:Win32/Renos.FJ [Microsoft]:

TrojanDownloader:Win32/Renos.FJ [Microsoft] is also known as:

Threat Alias	Number of Incidents
Mal/EncPk-EQ [Sophos]	20
Generic Dropper.bu [McAfee]	17
Trojan-Downloader.Win32.Renos [Ikarus]	14
Mal/FakeVirPk-A [Sophos]	11
Trojan-Clicker.Win32.Klik [Ikarus]	11
Generic Dropper.dn [McAfee]	10
Trojan.Fakeavalert [Symantec]	8
Mal/Fakecor-B, Mal/Behav-314 [Sophos]	7
Trojan Horse [Symantec]	6
Downloader.MisleadApp [Symantec]	5
Mal/Behav-314, Mal/Fakecor-B, Mal/EncPk-IV [Sophos]	5
Mal/EncPk-HH [Sophos]	5
Packed.Generic.233 [Symantec]	5
Backdoor.Win32.UltimateDefender [Ikarus]	4
HeurEngine.MaliciousPacker [PC Tools]	4
Packed.Generic.271 [Symantec]	4
Trojan.Virantix.C [Symantec]	4
Backdoor.Trojan [Symantec]	3
Mal/EncPk-IF [Sophos]	3
Mal/FakeAV-BX, Mal/Fakecor-B, Mal/Behav-314 [Sophos]	3
Mal/Fakecor-B, Mal/FakeAV-BT [Sophos]	3
Trojan.Win32.Pakes [Ikarus]	3
Trojan.Win32.Winwebsec [Ikarus]	3
Backdoor.Win32.UltimateDefender.hzf [Kaspersky Lab]	2
Downloader [Symantec]	2
Downloader-BOI [McAfee]	2
Mal/EncPk-IF, Mal/EncPk-HH [Sophos]	2
Mal/EncPk-KP, Mal/Fakecor-B, Mal/Behav-314 [Sophos]	2
Mal/Fakecor-B [Sophos]	2
Mal/Fakecor-B, Mal/Behav-314, Mal/EncPk-IV, Mal/EncPk-IF [Sophos]	2
Mal/Fakecor-B, Mal/Behav-314, Mal/TibsPk-D [Sophos]	2
Trojan.Generic [PC Tools]	2
Trojan.Win32.Scar.bknj [Kaspersky Lab]	2
Trojan-Clicker.Win32.Delfovo.al [Kaspersky Lab]	2
Virus.Win32.Lighty.C [Ikarus]	2
Win-Trojan/Downloader.281600.F [AhnLab]	2
Win-Trojan/Xema.variant [AhnLab]	2
Backdoor.Tidserv [Symantec]	1
Backdoor.Win32.UltimateDefender.gfn [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.god [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.gsb [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.gsm [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.gtw [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.gvl [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.gvo [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.hdu [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.hsa [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.htd [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.ina [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.qx [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.xv [Kaspersky Lab]	1
FakeAlert-DA [McAfee]	1
Generic BackDoor [McAfee]	1
Generic BackDoor!jk [McAfee]	1
Generic Downloader.x [McAfee]	1
Generic FakeAlert.d [McAfee]	1
Hatigh [McAfee]	1
Mal/Behav-314, Mal/Fakecor-B, Mal/EncPk-IF, Mal/EncPk-HH [Sophos]	1
Mal/Bredo-C, Mal/Fakecor-B, Mal/Behav-314, Mal/EncPk-IF [Sophos]	1
Mal/FakeAV-BX, Mal/EncPk-MC, Mal/Fakecor-B, Mal/Behav-314 [Sophos]	1
Mal/FakeAV-BX, Mal/Fakecor-B, Mal/Behav-314, Mal/TibsPk-D [Sophos]	1
Mal/Fakecor-B, Mal/Behav-314, Mal/EncPk-IF [Sophos]	1
Mal/Fakecor-B, Mal/FakeAV-BT, Mal/EncPk-NP [Sophos]	1
Mal/TibsPk-D [Sophos]	1
New Malware.h [McAfee]	1
Packed.Generic.258 [Symantec]	1
Packed.Win32.Katusha [Ikarus]	1
Packed.Win32.Katusha.c [Kaspersky Lab]	1
Packed.Win32.Krap [Ikarus]	1
Packed.Win32.Krap.ah [Kaspersky Lab]	1
Suspicious.Graybird.1 [Symantec]	1
Suspicious.MH690 [Symantec]	1
TROJ_AGENT.ACAA [Trend Micro]	1
TROJ_DELF.PAV [Trend Micro]	1
Trojan.Win32.Agent.aptd [Kaspersky Lab]	1
Trojan.Win32.Pakes.lxl [Kaspersky Lab]	1
Trojan.Win32.Scar [Ikarus]	1
Trojan.Win32.Swisyn.zce [Kaspersky Lab]	1
Trojan-Clicker.Win32.Delfovo [Ikarus]	1
Trojan-Downloader.Win32.Banload.uyy [Kaspersky Lab]	1
Trojan-Downloader.Win32.Banload.zqn [Kaspersky Lab]	1
Trojan-Dropper [Ikarus]	1
Virus.Win32.Lighty [Ikarus]	1
Win-Trojan/Fakeav.Gen [AhnLab]	1
Win-Trojan/Ultimatedefender.277504.G [AhnLab]	1
Win-Trojan/Ultimatedefender.280576.BM [AhnLab]	1
Win-Trojan/Ultimatedefender.282112.B [AhnLab]	1
Win-Trojan/Ultimatedefender.282624.N [AhnLab]	1

TrojanDownloader:Win32/Renos.FJ [Microsoft] has the following possible country of origin:

Origin		Number of Incidents
	Russian Federation	73

TrojanDownloader:Win32/Renos.FJ [Microsoft] is known to be created as:

%Temp%\teste1_p.exe

%Temp%\teste2_p.exe

%Temp%\teste3_p.exe

%Temp%\teste4_p.exe

%Windir%\amoumain.exe

%Windir%\ctfmon.exe

%Windir%\lsass.exe

%Windir%\runsql.exe

%Windir%\servicelayer.exe

%Windir%\sv.exe

%Windir%\svhoster.exe

%Windir%\svzip.exe

Notes:

%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.