ThreatExpert's Statistics for VirTool:Win32/DelfInject.gen!X [Microsoft]:

VirTool:Win32/DelfInject.gen!X [Microsoft] is also known as:

Threat Alias	Number of Incidents
VirTool.Win32.DelfInject [Ikarus]	158
Trojan Horse [Symantec]	116
Generic.dx [McAfee]	56
Trojan.Win32.AntiAV.sa [Kaspersky Lab]	45
Trojan.AntiAV!sd6 [PC Tools]	40
Mal/Delf-R [Sophos]	39
Virus.Win32.Delf [Ikarus]	36
Mal/Dropper-G [Sophos]	35
IRC Trojan [Symantec]	33
Backdoor.Trojan [Symantec]	27
Mal/Generic-A [Sophos]	26
New Malware.ix [McAfee]	26
Generic PUP.x [McAfee]	25
Backdoor.Graybird [Symantec]	22
Trojan.Win32.AntiAV.ql [Kaspersky Lab]	20
Backdoor.Win32.Hupigon [Ikarus]	19
Win-Trojan/Backdoor.88576.B [AhnLab]	18
Mal/Delf-Z, Mal/Delf-R [Sophos]	17
TROJ_KILLAV.ABX [Trend Micro]	17
Win-Trojan/Antiav.68989.B [AhnLab]	17
Win-Trojan/Xema.variant [AhnLab]	17
BackDoor-AWQ.b [McAfee]	15
BackDoor-CEP.gen.x [McAfee]	15
VirTool:Win32/DelfInject.gen!AC [Microsoft]	15
Mal/FakeVirPk-A [Sophos]	14
Backdoor.Win32.Agent.wci [Kaspersky Lab]	13
Backdoor.Win32.Hupigon.eqlo [Kaspersky Lab]	13
Mal/Behav-328, Mal/Behav-009 [Sophos]	13
Trojan.Dropper [Symantec]	13
Mal/Behav-058 [Sophos]	12
Mal/Dropper-W, Mal/Dropper-G [Sophos]	12
Suspicious.MH690 [Symantec]	12
Trojan.Win32.Buzus [Ikarus]	12
Trojan-Dropper.Win32.Malf [Ikarus]	12
Backdoor.Win32.Hupigon.eqzd [Kaspersky Lab]	11
Generic Dropper [McAfee]	11
Backdoor.Win32.HacDef.fh [Ikarus]	10
Downloader-ZL [McAfee]	10
Mal/Behav-024, Mal/Emogen-U, Mal/Behav-053 [Sophos]	10
Virus.Win32.Delf.m [Ikarus]	10
Backdoor.Win32.IRCBot.dhr [Kaspersky Lab]	9
BackDoor-DVF [McAfee]	9
Downloader.gen.a [McAfee]	9
Troj/IRCBot-ABP [Sophos]	9
Backdoor.Bifrose [Symantec]	8
BackDoor-DOQ.gen.w [McAfee]	8
Mal/Behav-024 [Sophos]	8
Trojan.Win32.Agent.dlo [Kaspersky Lab]	8
Virus.Win32.Delf.BQR [Ikarus]	8
W32/Generic.Delphi.b [McAfee]	8
Infostealer.Gampass [Symantec]	7
Trojan.Delf.Inject [Ikarus]	7
Trojan.Win32.Delf.epk [Kaspersky Lab]	7
Virus.Win32.Agent.SNT [Ikarus]	7
W32.Spybot.Worm [Symantec]	7
Win-Trojan/Poison.46592.E [AhnLab]	7
Backdoor.Hupigon.EQZD [PC Tools]	6
Dropper.Agent.yqh [PC Tools]	6
Troj/Buzus-Gen [Sophos]	6
Trojan.Midgare.EYZ [PC Tools]	6
Trojan.Win32.Pakes.mmh [Kaspersky Lab]	6
Trojan-PWS.Win32.OnLineGames [Ikarus]	6
Trojan-Spy.Win32.BZub.brl [Kaspersky Lab]	6
Win32/MalPackedB.suspicious [AhnLab]	6
Win-Trojan/Buzus.165888.D [AhnLab]	6
WORM_XIAOHO.C [Trend Micro]	6
Backdoor.Hupigon.GEN [PC Tools]	5
Constructor.Win32.SlhBack.aj [Kaspersky Lab]	5
Downloader [Symantec]	5
Downloader.Delphi [Ikarus]	5
Downloader.Generic [PC Tools]	5
Infostealer [Symantec]	5
Mal/Behav-103, Mal/Behav-043, Mal/Dropper-G [Sophos]	5
Spyware.Perfect [Symantec]	5
Troj/Bckdr-QXQ [Sophos]	5
Trojan.Agent.DOWD [PC Tools]	5
Trojan.Buzus!sd6 [PC Tools]	5
Trojan.Win32.Buzus.cgms [Kaspersky Lab]	5
Trojan.Win32.LogonInvader.a [Kaspersky Lab]	5
Virus.Win32.Atraps [Ikarus]	5
Win-Trojan/Agent.61440.CR [AhnLab]	5
Adware.Rugo [Symantec]	4
Backdoor.Graybird [PC Tools]	4
Backdoor.Hupigon!sd6 [PC Tools]	4
Backdoor.Win32.Hupigon.ewvu [Kaspersky Lab]	4
Backdoor.Win32.Hupigon.goih [Kaspersky Lab]	4
BehavesLike.Win32.ExplorerHijack [Ikarus]	4
BKDR_HUPIGON.VEM [Trend Micro]	4
Generic BackDoor [McAfee]	4
Generic Dropper!qp [McAfee]	4
Generic PWS.y [McAfee]	4
Mal/Emogen-I, Mal/Emogen-Z, Mal/Dropper-W [Sophos]	4
P2P-Worm.Win32.Delf [Ikarus]	4
Packer.Pohernah.E [Ikarus]	4
Spyware.Perfect [PC Tools]	4
Trojan.Buzus.iij [Ikarus]	4
Trojan.Win32.Agent.aqoq [Kaspersky Lab]	4
Trojan.Win32.Agent.bwpj [Kaspersky Lab]	4
Trojan.Win32.Buzus.aaqy [Kaspersky Lab]	4
Trojan.Win32.Buzus.adao [Kaspersky Lab]	4

VirTool:Win32/DelfInject.gen!X [Microsoft] has the following possible countries of origin:

Origin		Number of Incidents
	China	79
	United Kingdom	53
	Sweden	49
	Brazil	33
	Switzerland	24
	Belgium	8
	Russian Federation	6
	Spain	5
	Egypt	4
	Taiwan	4
	Canada	3
	Turkey	2
	Algeria	1
	Republic of Korea	1
	Saudi Arabia	1
	Ukraine	1

VirTool:Win32/DelfInject.gen!X [Microsoft] is known to be created as:

%AppData%\boot.exe

%AppData%\kaspersky.exe

%AppData%\msnser.exe

%AppData%\server.exe

%AppData%\shieldmanager.exe

%AppData%\tn_hacker.exe

%AppData%\viruse-scane.exe

%AppData%\win_holper\win_holper.exe

%DesktopDir%\3asfh.exe

%ProgramFiles%\360saofe.exe

%ProgramFiles%\b\w.exe

%ProgramFiles%\bbs.hksxs.com.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\boot.exe

%ProgramFiles%\dbs.exe

%ProgramFiles%\hacker.com.cn.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\microsoft common\wuauclt.exe

%ProgramFiles%\netmeeting\wirwre.exe

%ProgramFiles%\no-ip\duc20.exe

%ProgramFiles%\no-ip\startup.exe

%ProgramFiles%\opremovba_chs1.exe

%ProgramFiles%\r_server\remoteabc.exe

%ProgramFiles%\r_server\wmiapsrv.exe

%ProgramFiles%\remote\remote.exe

%ProgramFiles%\remotevc\removb.exe

%ProgramFiles%\server.exe

%ProgramFiles%\server\remote.exe

%ProgramFiles%\services\mservice.exe

%ProgramFiles%\spy-net\server.exe

%ProgramFiles%\svchost\svchost.exe

%ProgramFiles%\svhost.exe

%ProgramFiles%\ttplay\ttplay.exe

%ProgramFiles%\windir\host.exe

%Programs%\startup\lostvolume.exe

%System%\0.exe

%System%\1\1.exe

%System%\bifrost\server.exe

%System%\dsauth.exe

%System%\dsdmo.exe

%System%\eqa.exe

%System%\icwdial.exe

%System%\icwphbk.exe

%System%\kaspersky.exe

%System%\kentut.exe

%System%\login.exe

%System%\love.exe

%System%\mote.exe

%System%\msn.exe

%System%\msxmlr.exe

%System%\msyuv.exe

%System%\nsvcs32.exe

%System%\ntos.exe

%System%\oread.exe

%System%\renged.exe

%System%\scvhost.exe

%System%\server.exe

%System%\spy-net\server1.exe

%System%\startup.exe

%System%\svchost\sys32.exe

%System%\system\system.exe

%System%\system63.exe

%System%\system64.exe

%System%\tskmngr.exe

%System%\updater.exe

%System%\vmware.exe

%System%\waysver.exe

%System%\win560.exe

%System%\windows32\system32.exe

%System%\windows7.exe

%System%\windowsupdat.exe

%System%\windowsupdate\winupd.exe.exe

%System%\yji.exe

%System%\zwq.exe

%Temp%\090523-1-13.exe

%Temp%\1.exe

%Temp%\120.exe

%Temp%\251614.exe

%Temp%\6134750.exe

%Temp%\631115.exe

%Temp%\904433.exe

%Temp%\ddoser-3.4_cracked\ddoser.exe

%Temp%\first.k.exe

%Temp%\ixp000.tmp\setting.exe

%Temp%\ixp000.tmp\svchost.exe

%Temp%\ixp000.tmp\ud.exe

%Temp%\kafan virlist 2009.03.07\090307-c-34.exe

%Temp%\kafan virlist 2009.03.08\090308-2-0.exe

%Temp%\kafan virlist 2009.03.08\090308-9-6.exe

%Temp%\kafan virlist 2009.03.23\090323-1-8.exe

%Temp%\lsstm.exe

%Temp%\mount.exe

%Temp%\not_detect-200902\system.exe

%Temp%\output.exe

%Temp%\patsh.exe

%Temp%\proexa1.exe

%Temp%\sent2pct\not_detect-200902\system.exe

%Temp%\simplestealer.exe

%Temp%\spynet-server.exe

%Temp%\svchost.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%DesktopDir% is a variable that refers to the file system directory used to physically store file objects on the desktop. A typical path is C:\Documents and Settings\[UserName]\Desktop.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).