ThreatExpert's Statistics for VirTool:Win32/Vbinder.gen!G [Microsoft]:

VirTool:Win32/Vbinder.gen!G [Microsoft] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	47
Trojan Horse [Symantec]	38
Generic VB.i [McAfee]	35
Backdoor-DZP [McAfee]	19
Trojan.Generic [PC Tools]	19
VirTool.Win32.Vbinder [Ikarus]	19
W32.Spybot.Worm [Symantec]	18
Backdoor.Win32.IRCBot.lwb [Kaspersky Lab]	16
Backdoor.Win32.Poison [Ikarus]	13
HackTool.Win32.Crypt [Ikarus]	11
Infostealer.Banker.C [Symantec]	11
Mal/VB-Z [Sophos]	10
Generic Dropper!hv.f [McAfee]	9
Mal/Behav-221 [Sophos]	9
Trojan.Buzus.acfn [PC Tools]	9
Trojan.Win32.Agent.ddip [Kaspersky Lab]	9
Backdoor.Win32.IRCBot [Ikarus]	8
Backdoor.Win32.Poison.alat [Kaspersky Lab]	8
BackDoor-DKI.gen.aj [McAfee]	8
VirTool.Win32.VBInject [Ikarus]	8
Backdoor.Trojan [Symantec]	7
Dropper/Xema.362979 [AhnLab]	7
Generic Dropper.gi.gen [McAfee]	7
Trojan-Dropper.Win32.VB.fhm [Ikarus]	7
Trojan-Dropper.Win32.VB.fhm [Kaspersky Lab]	7
Trojan.Win32.VB [Ikarus]	6
W32.SillyFDC [Symantec]	6
W32/Autorun.worm.i.gen [McAfee]	6
Win32/IRCBot.worm.variant [AhnLab]	6
Win-Trojan/Xema.variant [AhnLab]	6
Backdoor.Trojan [PC Tools]	5
Backdoor.Win32.Bifrose [Ikarus]	5
Mal/Behav-789, Mal/VB-Z [Sophos]	5
Trojan.Win32.Refroso.yha [Kaspersky Lab]	5
VirTool.Win32.Cabornypt [Ikarus]	5
Win-Trojan/Vbinder.82795 [AhnLab]	5
Worm.Autorun.VMD [PC Tools]	5
Backdoor.Win32.Bifrose.bkyi [Kaspersky Lab]	4
Mal/Behav-789, Mal/VB-AB, Mal/VB-Z [Sophos]	4
Backdoor.Bifrose [Symantec]	3
Backdoor.Sdbot [Symantec]	3
Backdoor.Win32.Poison.ahnw [Kaspersky Lab]	3
Backdoor.Win32.ProRat.eeh [Kaspersky Lab]	3
Backdoor.Win32.SdBot.nbb [Kaspersky Lab]	3
Mal/Generic-E [Sophos]	3
Mal/Vbinder-A [Sophos]	3
Trojan.Win32.Buzus.bkxc [Kaspersky Lab]	3
Trojan.Win32.Refroso.aqiq [Kaspersky Lab]	3
Trojan-Dropper.Win32.VB [Ikarus]	3
Trojan-PSW.Win32.LdPinch.allb [Kaspersky Lab]	3
W32.IRCBot [Symantec]	3
Win-Trojan/Poison.20480.AX [AhnLab]	3
Win-Trojan/Poison.36864.AZ [AhnLab]	3
Win-Trojan/Prorat.61440.AL [AhnLab]	3
Backdoor.Win32.Bifrose.bzeo [Kaspersky Lab]	2
BackDoor-DZP [McAfee]	2
Gen.Trojan [Ikarus]	2
MultiDropper-SO [McAfee]	2
Spy-Agent.dj [McAfee]	2
Trojan.Win32.Buzus [Ikarus]	2
Trojan-Downloader.Win32.VB.lxu [Kaspersky Lab]	2
Trojan-Dropper.Win32.Clons.dbz [Kaspersky Lab]	2
Trojan-Dropper.Win32.VB.aatz [Kaspersky Lab]	2
Trojan-Spy.Win32.Zbot.aesa [Kaspersky Lab]	2
VirTool:Win32/VBInject.gen!BA [Microsoft]	2
Win-Trojan/Buzus.49047.B [AhnLab]	2
Win-Trojan/Poison.28672.BQ [AhnLab]	2
Win-Trojan/Poison.57344.W [AhnLab]	2
Worm.Win32.AutoRun.vmd [Kaspersky Lab]	2
Adware.Gen [PC Tools]	1
Adware.Gen [Symantec]	1
Backdoor.Bifrose [PC Tools]	1
Backdoor.IRC [PC Tools]	1
Backdoor.IRC.Bot [Symantec]	1
Backdoor.IRCBot!sd6 [PC Tools]	1
Backdoor.Prorat [Symantec]	1
Backdoor.Win32.Bifrose.anzi [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.awyb [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.bcuu [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.bphi [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.byeo [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.cadl [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.caia [Kaspersky Lab]	1
Backdoor.Win32.IRCBot.iky [Kaspersky Lab]	1
Backdoor.Win32.IRCBot.mbn [Kaspersky Lab]	1
Backdoor.Win32.Poison.adgc [Kaspersky Lab]	1
Backdoor.Win32.Poison.akzg [Kaspersky Lab]	1
Backdoor.Win32.Poison.albw [Kaspersky Lab]	1
Backdoor.Win32.Poison.amdy [Kaspersky Lab]	1
Backdoor.Win32.Poison.arkp [Kaspersky Lab]	1
Backdoor.Win32.Poison.arya [Kaspersky Lab]	1
Backdoor.Win32.Poison.baes [Kaspersky Lab]	1
Backdoor.Win32.Poison.bbko [Kaspersky Lab]	1
Backdoor.Win32.Poison.bdag [Kaspersky Lab]	1
Backdoor.Win32.Poison.xhr [Kaspersky Lab]	1
Backdoor.Win32.ProRat.enl [Kaspersky Lab]	1
Backdoor.Win32.SdBot.nin [Kaspersky Lab]	1
Backdoor.Win32.SdBot.rku [Kaspersky Lab]	1
BackDoor-AVW!a [McAfee]	1
Dropper/Xema.47183 [AhnLab]	1

VirTool:Win32/Vbinder.gen!G [Microsoft] has the following possible countries of origin:

Origin		Number of Incidents
	Spain	47
	Germany	31
	Finland	4
	Brazil	2
	Sweden	1
	Switzerland	1

VirTool:Win32/Vbinder.gen!G [Microsoft] is known to be created as:

%AppData%\bifrost\server.exe

%AppData%\microsoft\xcvhost.exe

%AppData%\server.exe

%AppData%\system32\svchost.exe

%AppData%\winregsecs.exe

%CommonPrograms%\startup\java7.exe

%ProgramFiles%\a1a1a-server.exe

%ProgramFiles%\ata3463\ata3463.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\crakall\madness crypter\madness crypter\stub.exe

%ProgramFiles%\msns\msn.exe

%ProgramFiles%\s.exe

%ProgramFiles%\stub.exe

%ProgramFiles%\windll.exe

%Programs%\startup\crypt.exe

%System%\1402\server.exe

%System%\8dxam.exe

%System%\bifrost\server.exe

%System%\bifrost\tool.exe

%System%\clientt.exe

%System%\g\systam.exe

%System%\gbpsv.exe

%System%\igsftors32.exe

%System%\msn.exe

%System%\mssrv32.exe

%System%\ngdfg\dngdfng.exe

%System%\regtray.exe

%System%\runwin32.exe

%System%\sdra64.exe

%System%\server.exe

%System%\system32\system.exe

%System%\system32\system32.exe

%System%\systems.exe

%System%\video.exe

%System%\winapi32.exe

%System%\windowsupdate.exe

%System%\wupdate.exe

%Temp%\- indetectables x crypter by logan - fud\stub.exe

%Temp%\explore.exe

%Temp%\ixp000.tmp\benita.exe

%Temp%\ixp000.tmp\dd.exe

%Temp%\ixp000.tmp\f0t0.exe

%Temp%\ixp000.tmp\reptile1.exe

%Temp%\ixp000.tmp\server1.exe

%Temp%\ixp000.tmp\svchost.exe

%Temp%\server.exe

%Temp%\svchost1.exe

%Windir%\a.exe

%Windir%\alg.exe

%Windir%\einudpmgr.exe

%Windir%\f2r0d3r1.exe

%Windir%\iexplore.exe

%Windir%\installed.exe

%Windir%\madbbcre.exe

%Windir%\msrsc.exe

%Windir%\msrss.exe

%Windir%\svchost.exe.exe

%Windir%\svhost32.exe

%Windir%\winsys.exe

%Windir%\winudpmgr.exe

c:\data\files\beast.exe

c:\manager01.exe

c:\recycler\k-1-3542-4232123213-7676767-8888886\hn.exe

c:\windows:dam.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.