ThreatExpert's Statistics for TrojanDropper:Win32/Dunik!rts [Microsoft]:

TrojanDropper:Win32/Dunik!rts [Microsoft] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	61
Trojan Horse [Symantec]	45
Trojan-Dropper.Agent [Ikarus]	22
Generic Dropper [McAfee]	20
Trojan.Generic [PC Tools]	19
Trojan.Dropper [Symantec]	13
Generic.dx [McAfee]	12
Win-Trojan/Xema.variant [AhnLab]	11
Downloader [Symantec]	10
Trojan.Dropper [PC Tools]	7
Win-Trojan/Agent.10240.XN [AhnLab]	7
Backdoor.Trojan [Symantec]	6
Trojan.Win32.Buzus.bfdd [Kaspersky Lab]	6
Win-Trojan/OnlineGameHack.2550272 [AhnLab]	6
Backdoor.Trojan [PC Tools]	5
Generic Qhost [McAfee]	5
Trojan.SpamThru [Symantec]	5
Trojan.SpamThru!sd6 [PC Tools]	5
Trojan.Win32.Qhost [Ikarus]	5
Trojan.Win32.Qhost.kpt [Kaspersky Lab]	5
Dropper/Agent.41234 [AhnLab]	4
Generic Dropper!bbf [McAfee]	4
Generic Dropper!s [McAfee]	4
Mal/Packer [Sophos]	4
MultiDropper-JD [McAfee]	4
Trojan.Generic [Ikarus]	4
Trojan-Dropper.Win32.Agent.alsw [Kaspersky Lab]	4
Trojan-Dropper.Win32.Agent.aome [Kaspersky Lab]	4
Trojan-Dropper.Win32.Delf.wj [Kaspersky Lab]	4
Troj/Agent-FXF [Sophos]	3
Troj/FRuWL-Gen [Sophos]	3
Trojan-Dropper.Win32.VB [Ikarus]	3
Trojan-Spy.Win32.Agent.afn [Kaspersky Lab]	3
W32.Xema.A!inf [Symantec]	3
W32/Xema [McAfee]	3
Backdoor.Graybird [Symantec]	2
Backdoor.Win32.Poison [Ikarus]	2
BackDoor-CEP.gen.am [McAfee]	2
Dropper/Agent.45056.AA [AhnLab]	2
Dropper/Agent.51200.I [AhnLab]	2
Dropper/Agent.64614 [AhnLab]	2
Dropper/Stabs.65949 [AhnLab]	2
Dropper/Xema.22528.AK [AhnLab]	2
Generic Dropper!dl [McAfee]	2
Generic.dx!igx [McAfee]	2
Hacktool.Exebind [Symantec]	2
Mal/Dropper-AE [Sophos]	2
Mal/Mdrop-Fam [Sophos]	2
Patched-RarSFX [McAfee]	2
Troj/Bifrose-WH [Sophos]	2
Troj/Mdrop-BTL [Sophos]	2
Trojan.Multidropper.JD [Ikarus]	2
Trojan.Win32.Pincav.ljr [Kaspersky Lab]	2
Trojan-Dropper [Ikarus]	2
Trojan-Dropper.Win32.Agent.afvp [Kaspersky Lab]	2
Trojan-Dropper.Win32.Agent.bhfy [Kaspersky Lab]	2
Trojan-Dropper.Win32.Delf.bci [Kaspersky Lab]	2
Trojan-Dropper.Win32.NeodurkJoiner [Ikarus]	2
Trojan-Dropper.Win32.Wlord [Ikarus]	2
Trojan-PWS.OnlineGames.AHRG [PC Tools]	2
Virus.BV.KillAV [Ikarus]	2
Win32/Shlnom [AhnLab]	2
AdWare.SoftLayer [Ikarus]	1
Backdoor.Bifrose [Symantec]	1
Backdoor.Bifrose!sd6 [PC Tools]	1
Backdoor.Graybird [PC Tools]	1
Backdoor.Win32.GrayBird.EJ [Ikarus]	1
Backdoor.Win32.Poison.agsu [Kaspersky Lab]	1
BackDoor-DKI.gen.ak [McAfee]	1
BackDoor-DRV.gen.c [McAfee]	1
Backdoor-DZP [McAfee]	1
BehavesLike.Win32.ProcessHijack [Ikarus]	1
Dropper/Agent.110592.O [AhnLab]	1
Dropper/Agent.1536.F [AhnLab]	1
Dropper/Agent.217088.F [AhnLab]	1
Dropper/Agent.3475968 [AhnLab]	1
Dropper/Agent.381723 [AhnLab]	1
Dropper/Agent.430079 [AhnLab]	1
Dropper/Agent.542761 [AhnLab]	1
Dropper/Agent.54408 [AhnLab]	1
Dropper/Agent.576512.B [AhnLab]	1
Dropper/Agent.60428 [AhnLab]	1
Dropper/Agent.6510.B [AhnLab]	1
Dropper/Batdrop.372736 [AhnLab]	1
Dropper/Binder.17230 [AhnLab]	1
Dropper/Flystud.100864 [AhnLab]	1
Dropper/Kgen.279735 [AhnLab]	1
Dropper/Malware.126464.D [AhnLab]	1
Dropper/Malware.445706 [AhnLab]	1
Dropper/Neodurkjoiner.619520 [AhnLab]	1
Dropper/Smser.2048 [AhnLab]	1
Dropper/Wlord.136192 [AhnLab]	1
Dropper/Wlord.14336.B [AhnLab]	1
Dropper/Xema.104560 [AhnLab]	1
Dropper/Xema.131584.E [AhnLab]	1
Dropper/Xema.158100 [AhnLab]	1
Dropper/Xema.216576.D [AhnLab]	1
Dropper/Xema.234496 [AhnLab]	1
Dropper/Xema.24576.NK [AhnLab]	1
Dropper/Xema.300072 [AhnLab]	1

TrojanDropper:Win32/Dunik!rts [Microsoft] has the following possible countries of origin:

Origin		Number of Incidents
	China	12
	Russian Federation	6
	Spain	4
	United Kingdom	4
	Brazil	2
	Germany	2
	Republic of Korea	2
	Sweden	2
	Austria	1
	Egypt	1
	France	1
	Portugal	1

TrojanDropper:Win32/Dunik!rts [Microsoft] is known to be created as:

%CommonAppData%\driver.exe

%ProgramFiles%\533soft icon changer\changeicon.exe

%ProgramFiles%\pic2ico\pic2ico.exe

%System%\ads\regedit2.dll

%System%\dllcache\feymy.dll

%System%\dllcache\flymain.dll

%System%\f_bmp2jpg.dll

%System%\feymy.dll

%System%\flymain.dll

%System%\packer.dll

%System%\shlmon.exe

%System%\spcfmg.exe

%System%\uninstall.exe

%Temp%\794772.exe

%Temp%\dnsbr.exe

%Temp%\painrat\painrat.exe

%Temp%\stub.exe

%Temp%\x.exe

%UserProfile%\1.exe

%UserProfile%\uninstall.exe

%Windir%\demure.exe

%Windir%\temp\modelvideo.exe

%Windir%\temp\wpv761259003087.exe

c:\drivers\sound\test.exe

c:\wgasetup.exe

Notes:

%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.