ThreatExpert's Statistics for New Win32.g4 [McAfee]:

New Win32.g4 [McAfee] is also known as:

Threat Alias	Number of Incidents
Virus.Win32.Virut.ce [Kaspersky Lab]	178
W32.Virut.CF [Symantec]	172
W32/Scribble-B [Sophos]	147
Win32/Virut.E [AhnLab]	140
Virus:Win32/Virut.BM [Microsoft]	120
Virus:Win32/Virut.gen!E [Microsoft]	33
Virus.Win32.Virut [Ikarus]	32
Virus.Win32.Virut.bo [Ikarus]	26
Virus:Win32/Virut.gen!O [Microsoft]	25
W32/Scribble-A [Sophos]	24
Virus:Win32/Virut.gen!M [Microsoft]	9
Exploit.Win32.IMG-WMF [Ikarus]	8
Virus.Win32.Virut.q [Ikarus]	6
W32.Virut [Ikarus]	6
Virus.Win32.Virtob [Ikarus]	5
Virus:Win32/Virut.gen!G [Microsoft]	5
Win32.Virtob.2 [Ikarus]	5
Mal/Generic-A [Sophos]	4
Trojan.Mebroot [Symantec]	4
Trojan.Peacomm [Symantec]	4
Email-Worm.Win32.Tanatos.B [Ikarus]	3
PWS:Win32/Sinowal.gen!M [Microsoft]	3
Win32/Virut.F [AhnLab]	3
Malware.Virut [PC Tools]	2
not-a-virus:Server-FTP.Win32.Serv-U.50011 [Ikarus]	2
PE_VIRUX.F-2 [Trend Micro]	2
Trojan.Kobcka [Ikarus]	2
Trojan-Spy.Win32.Banker.RM [Ikarus]	2
Win32.Cadoiac.A [Ikarus]	2
Backdoor.Win32.Phdet [Ikarus]	1
Backdoor.Win32.Popwin [Ikarus]	1
Backdoor:Win32/Phdet.gen!A [Microsoft]	1
Backdoor:Win32/Refpron.M [Microsoft]	1
Gen.Malware [Ikarus]	1
Hoax.Win32.Renos.vcgn [Kaspersky Lab]	1
Infostealer.Banker.C [Symantec]	1
Mal/EncPk-GH, W32/Scribble-B [Sophos]	1
Mal/Pushdo-A, W32/Scribble-B [Sophos]	1
Mal/Sality-C [Sophos]	1
PE_VIRUX.D-1 [Trend Micro]	1
PE_VIRUX.D-3 [Trend Micro]	1
PE_VIRUX.E-3 [Trend Micro]	1
Program:Win32/Winfixer [Microsoft]	1
PWS.Win32.Sinowal.M [Ikarus]	1
PWS:Win32/Sinowal.gen!L [Microsoft]	1
Trojan Horse [Symantec]	1
Trojan.Crypt [Ikarus]	1
Trojan.Generic [Ikarus]	1
Trojan.Loader.AK [Ikarus]	1
Trojan.Midgare.EYZ [PC Tools]	1
Trojan.Skintrim [Symantec]	1
Trojan.Win32.Banker [Ikarus]	1
Trojan.Win32.Meredrop [Ikarus]	1
Trojan.Win32.Swisyn.tml [Kaspersky Lab]	1
Trojan:Win32/Obduran.A [Microsoft]	1
Trojan:Win32/Skintrim.B [Microsoft]	1
TrojanDownloader:Win32/Cutwail.gen!C [Microsoft]	1
Trojan-Dropper.Win32.Agent.afvt [Kaspersky Lab]	1
TrojanDropper:Win32/Sinowal.gen [Microsoft]	1
Virus.Win32.Virut.ak [Ikarus]	1
Virus:Win32/Sality.AM [Microsoft]	1
Virus:Win32/Virut.gen!F [Microsoft]	1
Virus:Win32/Wecorl.B [Microsoft]	1
W32.Gobi [Symantec]	1
W32.Grenail.C!inf [Symantec]	1
Win-Trojan/Fraudload.30208.F [AhnLab]	1
WORM_NUWAR.ANA [Trend Micro]	1

New Win32.g4 [McAfee] has the following possible countries of origin:

Origin		Number of Incidents
	Germany	11
	China	10
	Spain	8
	Russian Federation	7
	Poland	5
	Brazil	4
	Czech Republic	3
	France	3
	Greece	3
	Sweden	2
	Taiwan	2
	Turkey	2
	Denmark	1
	Italy	1
	Japan	1
	Netherlands	1
	Portugal	1
	United Kingdom	1

New Win32.g4 [McAfee] is known to be created as:

%CommonAppData%\microsoft\vmonitor.exe

%ProgramFiles%\invisible browsing\servers\http\ibhttp.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\thunmail\testabd.exe

%System%\digiwet.dll

%System%\init32.exe

%System%\kdfrs.exe

%System%\kdptc.exe

%System%\kdvyw.exe

%System%\mssrv32.exe

%System%\reader_s.exe

%System%\rs32net.exe

%Temp%\1.exe

%Temp%\fpr\lt-fpr.exe

%Temp%\fpr\surfload.exe

%Temp%\iexplore.exe

%Temp%\ins.exe

%UserProfile%\reader_s.exe

%Windir%\explorer.exe:userini.exe

%Windir%\isvchost.exe

%Windir%\services.exe

Notes:

%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.