ThreatExpert's Statistics for Bloodhound.Unknown [Symantec]:

Bloodhound.Unknown [Symantec] is also known as:

Threat Alias	Number of Incidents
Email-Worm.Zhelatin [PC Tools]	25,875
Packed.Win32.Tibs.ap [Kaspersky Lab]	25,586
Generic.dx [McAfee]	25,074
TROJ_AGENT.ZLH [Trend Micro]	21,484
W32/Almanahe.dll [McAfee]	11,585
PE_CORELINK.C-O [Trend Micro]	11,543
W32.Almanahe.B!inf [Symantec]	8,124
W32/Alman-E [Sophos]	8,025
Trojan.Almanahe [PC Tools]	7,887
Trojan:Win32/Almanahe.B.dll [Microsoft]	7,827
Virus.Win32.Agent.bu [Kaspersky Lab]	7,497
Trojan-Dropper.Agent [Ikarus]	6,348
Win-Trojan/Agent.53248.GU [AhnLab]	5,016
TROJ_PEACOMM.BQ [Trend Micro]	3,537
Trojan-Downloader.Win32.Agent.erl [Kaspersky Lab]	1,857
Win32.Alman.C [PC Tools]	1,800
W32/Virut.gen [McAfee]	1,360
Email-Worm.Win32.Zhelatin.qe [Kaspersky Lab]	1,174
Trojan.Peacomm.D [Symantec]	1,094
Worm.Rungbu.B [PC Tools]	1,075
not-a-virus:FraudTool.Win32.UltimateDefender.v [Kaspersky Lab]	1,052
Virus.Win32.VB.cc [Kaspersky Lab]	1,042
Trojan-Downloader.Agent!sd5 [PC Tools]	1,034
PE_VIRUT.GEN-2 [Trend Micro]	1,030
PE_RUNGBU.C-O [Trend Micro]	976
Win32.Virut.Gen.4 [PC Tools]	904
not-virus:Hoax.Win32.Renos.wx [Kaspersky Lab]	900
Trojan-Downloader.Win32.Agent.bsi [Kaspersky Lab]	876
W32/Nuwar.sys [McAfee]	868
W32/Virut.gen.a [McAfee]	835
Virus.Win32.Virut.q [Kaspersky Lab]	714
TrojanDownloader:Win32/Vxidl [Microsoft]	667
Troj/Tibs-TJ [Sophos]	665
TROJ_ANOMALY.ACD [Trend Micro]	656
Win32.Virut.Gen [PC Tools]	565
W32.Almanahe.B [Symantec]	470
Trojan-Downloader.Win32.Agent.gwh [Kaspersky Lab]	468
PE_VIRUT.AV [Trend Micro]	458
Virus.Win32.Virut.n [Kaspersky Lab]	456
Virus.Win32.Virut.av [Kaspersky Lab]	451
Email-Worm.Zhelatin!sd5 [PC Tools]	444
JS_SMALLTROJ.XSG [Trend Micro]	432
Virus.Win32.AutoHK.a [Kaspersky Lab]	432
W32/AHKHeap [McAfee]	432
Troj/Agent-FUR [Sophos]	429
AHKS.Muha.C [PC Tools]	423
Generic!atr [McAfee]	416
Packed.Win32.Tibs [Ikarus]	405
Trojan:Win32/Almanahe.E.dll [Microsoft]	397
Worm.Win32.Mabezat.b [Kaspersky Lab]	365
W32/Wazner-A [Sophos]	364
W32.Mabezat.B [Symantec]	360
WORM_NUWAR.NA [Trend Micro]	340
Trojan.Farfli [Symantec]	328
PE_TRATS.A [Trend Micro]	277
Worm.Win32.Mabezat [Ikarus]	267
Win-Trojan/Tibs.7712 [AhnLab]	262
Win32.Virut.I.Gen [PC Tools]	217
TROJ_PEACOMM.BJ [Trend Micro]	204
Win32.Virut.G [PC Tools]	200
Win-Trojan/Alman.46592 [AhnLab]	200
TROJ_AGENT.ABRC [Trend Micro]	198
Trojan-Downloader.Win32.VB.bvx [Kaspersky Lab]	196
Worm:Win32/Mabezat.B [Microsoft]	189
Trojan-Dropper.Win32.Agent.dgo [Kaspersky Lab]	171
W32/Dzan.c [McAfee]	171
Win32.Drowor.Gen [PC Tools]	169
Virus.Win32.Dzan.c [Kaspersky Lab]	165
PE_DZAN.C-O [Trend Micro]	162
Generic BackDoor.d [McAfee]	153
PE_KESPO.C-O [Trend Micro]	152
Win32.Virut.J.Gen [PC Tools]	147
Rootkit.Tibs.JE [PC Tools]	140
Win32.Trats.Gen [PC Tools]	137
Rootkit.Tibs.JO [PC Tools]	136
Rootkit.Win32.Agent.sn [Kaspersky Lab]	136
New Malware.n [McAfee]	133
TROJ_PEACOMM.GS [Trend Micro]	130
Trojan.DL.Agent.VRX [PC Tools]	127
Win32.AutoRun.H [PC Tools]	120
Tibs-Packed [McAfee]	109
Win32.Virut.Gen.5 [PC Tools]	108
W32/Nuwar@MM [McAfee]	106
not-a-virus:FraudTool.Win32.SpySheriff.q [Kaspersky Lab]	105
Email-Worm.Win32.Zhelatin.qb [Kaspersky Lab]	104
Rootkit.Agent.XFD [PC Tools]	104
Virus.Win32.Virut.d [Kaspersky Lab]	102
Virus.Win32.Virut.p [Kaspersky Lab]	100
Packed/FSG [PC Tools]	97
Email-Worm.Win32.Zhelatin.qa [Kaspersky Lab]	94
WORM_ZHELATIN.EG [Trend Micro]	92
PE_VIRUT.GEN [Trend Micro]	90
Backdoor.Nakuru.A [PC Tools]	89
Packed/NSPack [PC Tools]	86
PE_VIRUT.YC [Trend Micro]	85
PE_RUNGBU.C [Trend Micro]	83
Backdoor:Win32/Farfli.A!URL [Microsoft]	82
Trojan.Farfli.A [Ikarus]	82
BackDoor-DKA [McAfee]	81
Virus.Win32.Virut.ao [Kaspersky Lab]	81

Bloodhound.Unknown [Symantec] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	328
	United Kingdom	194
	China	166
	Slovenia	130
	Germany	56
	Ukraine	36
	Sweden	34
	Republic of Korea	27
	Taiwan	23
	Iran	22
	Italy	21
	Canada	20
	Thailand	19
	Turkey	17
	Netherlands	16
	Czech Republic	15
	Spain	15
	Belgium	12
	France	11
	Portugal	10
	Greece	9
	Poland	7
	Brazil	5
	Denmark	4
	Finland	4
	Hungary	4
	Indonesia	4
	Slovakia	4
	Australia	3
	Norway	3
	Romania	3
	Viet Nam	3
	Algeria	1
	Israel	1
	Japan	1
	Saudi Arabia	1

Bloodhound.Unknown [Symantec] is known to be created as:

%AppData%\%username%.task\services.exe

%AppData%\br6657on.exe

%AppData%\csrss.exe

%AppData%\explorer.exe

%AppData%\inetinfo.exe

%AppData%\jalak-931738815-bali.com

%AppData%\lsass.exe

%AppData%\printer.exe

%AppData%\services.exe

%AppData%\smss.exe

%AppData%\svchost.exe

%AppData%\winlogon.exe

%CommonAppData%\normal.exe

%CommonPrograms%\startup\autorun.exe

%CommonPrograms%\startup\autos.exe

%CommonPrograms%\startup\lsass.exe

%CommonPrograms%\startup\msconfig.exe

%CommonPrograms%\startup\systemil2.exe

%FontsDir%\00-11-22-33-44\system\wdfmgr.exe

%FontsDir%\internat.exe

%FontsDir%\lsass.exe

%FontsDir%\smss.exe

%FontsDir%\svchost.exe

%FontsDir%\system\ati2evxx.exe

%FontsDir%\system\conime.exe

%FontsDir%\taskmgr.exe

%LocalSettings%\explorer.exe

%LocalSettings%\services.exe

%LocalSettings%\smss.exe

%LocalSettings%\svchost.exe

%LocalSettings%\winlogon.exe

%ProgramFiles%\avp.exe

%ProgramFiles%\common files\fjos0r.dll

%ProgramFiles%\common files\goskdl.dll

%ProgramFiles%\common files\relive.dll

%ProgramFiles%\common files\services\svchost.exe

%ProgramFiles%\common files\sonic\htwef.exe

%ProgramFiles%\common files\system\akpfhtq.exe

%ProgramFiles%\common files\system\bmjtyxh.exe

%ProgramFiles%\common files\system\bqohvbc.exe

%ProgramFiles%\common files\system\bxarjrl.exe

%ProgramFiles%\common files\system\huocbkb.exe

%ProgramFiles%\common files\system\ijtjthd.exe

%ProgramFiles%\common files\system\iwiwoui.exe

%ProgramFiles%\common files\system\jqfonmm.exe

%ProgramFiles%\common files\system\kocljbb.exe

%ProgramFiles%\common files\system\msasp32.exe

%ProgramFiles%\common files\system\msiwa32.exe

%ProgramFiles%\common files\system\mswvr32.exe

%ProgramFiles%\common files\system\prrbneu.exe

%ProgramFiles%\common files\system\rkrjvhl.exe

%ProgramFiles%\common files\system\tnmgncd.exe

%ProgramFiles%\common files\system\touqwcb.exe

%ProgramFiles%\common files\system\tsnqtjn.exe

%ProgramFiles%\common files\system\umgcimd.exe

%ProgramFiles%\common files\system\uvvkpsi.exe

%ProgramFiles%\common files\system\vgguxso.exe

%ProgramFiles%\common files\system\yqbepcu.exe

%ProgramFiles%\internet explorer\msvcrt.dll

%ProgramFiles%\internet explorer\onlo0r.dll

%ProgramFiles%\internet explorer\rksldk.dll

%ProgramFiles%\internet explorer\romdrivers.dll

%ProgramFiles%\meex.exe

%ProgramFiles%\network associates\virusscan\mcaupdate.exe

%ProgramFiles%\ofb1\_install.exe

%ProgramFiles%\outlook\outlook.exe

%ProgramFiles%\sound utility\soundmax.exe

%ProgramFiles%\uninstall information\aagbe.exe

%ProgramFiles%\utorrent\utorrent.exe

%ProgramFiles%\winrar\zip.exe

%ProgramFiles%\xloader10181.exe

%ProgramFiles%\xpcode\sexgame.exe

%ProgramFiles%\xpcode\sexscreensaver.scr

%Programs%\startup\ctfmon.exe

%Programs%\startup\findfast.exe

%Programs%\startup\infos.exe

%System%\_svchost.exe

%System%\0617152d\services.exe

%System%\1021\services.exe

%System%\1025\1025.exe

%System%\1028\1028.exe

%System%\1031\1031.exe

%System%\1033\1033.exe

%System%\1037\1037.exe

%System%\1041\1041.exe

%System%\1042\1042.exe

%System%\1054\1054.exe

%System%\1054\rhhv3\v3nhr.exe

%System%\2052\2052.exe

%System%\213a0440.dll

%System%\253b8780.exe

%System%\2e0ba840.exe

%System%\3076\3076.exe

%System%\3c7780c0.dll

%System%\3com_dmi\3com_dmi.exe

%System%\3fabe9c0.exe

%System%\40790400.dll

%System%\40790400.exe

%System%\440510867285l.exe

%System%\440610867205l.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).