Threat Search: 

ThreatExpert's Statistics for Virus.Win32.Virut [Ikarus]:

Virus.Win32.Virut [Ikarus] is also known as:
Threat AliasNumber of Incidents
Trojan-PWS.OnlineGames.ADRD [PC Tools]1,218
Infostealer.Lemir [Symantec]1,084
Trojan.Win32.Agent.binb [Kaspersky Lab]754
Mal/Packer, Mal/Behav-024, Mal/GamePSW-C, Mal/GamePSW-B, Mal/EncPk-BW, Mal/Dloadr-E, Mal/Behav-027, Mal/Emogen-Y, Mal/Behav-010 [Sophos]666
Mal/Behav-010, Mal/Packer, Mal/Behav-024, Mal/GamePSW-C, Mal/GamePSW-B, Mal/EncPk-BW, Mal/Dloadr-E, Mal/Behav-027, Mal/Emogen-Y [Sophos]338
PWS-Mmorpg.gen [McAfee]292
Infostealer.Onlinegame [Symantec]174
Mal/Behav-010, Mal/Packer, Mal/GamePSW-B, Mal/GamePSW-C, Mal/EncPk-BW, Mal/Dloadr-E [Sophos]168
Packed/Upack [AhnLab]166
Virus.Win32.Virut.ce [Kaspersky Lab]136
W32.Virut.CF [Symantec]117
W32/Scribble-B [Sophos]116
Virus:Win32/Virut.BM [Microsoft]107
Trojan-PSW.Win32.OnLineGames.h [Kaspersky Lab]84
Win32/Virut.E [AhnLab]84
W32/Vetor-A [Sophos]82
W32/Virut.gen [McAfee]81
W32/Virut.n.gen [McAfee]78
W32.Virut.U [Symantec]69
Virus.Win32.Virut.q [Kaspersky Lab]64
Trojan-PSW.Win32.OnLineGames.saod [Kaspersky Lab]63
Win32.Virut.Gen.5 [PC Tools]61
Win32/Virut.D [AhnLab]48
Win32/Virut.F [AhnLab]46
PE_VIRUT.XO [Trend Micro]43
Mal/Generic-A [Sophos]38
New Win32.g4 [McAfee]32
Virus:Win32/Virut.L [Microsoft]32
Infostealer [Symantec]30
Trojan.Win32.Agent.bvrn [Kaspersky Lab]30
Mal/Behav-024, Mal/Behav-004, Mal/Behav-027, Mal/Behav-010, Mal/GamePSW-B, Mal/GamePSW-C, Mal/Packer, Mal/Emogen-Y, Mal/EncPk-BW, Mal/Dloadr-E [Sophos]29
Mal_Infostl [Trend Micro]29
Trojan-Downloader.Win32.Delf.dsz [Kaspersky Lab]29
Trojan-PSW.Lemir [PC Tools]29
Trojan.DL.Delf.AQWQ [PC Tools]27
Trojan.Win32.Agent.bszu [Kaspersky Lab]27
Trojan.Win32.Agent.bulk [Kaspersky Lab]26
Virus.Win32.Virut.n [Kaspersky Lab]26
Mal/Behav-010, Mal/Packer, Mal/GamePSW-B, Mal/Behav-024, Mal/GamePSW-C, Mal/EncPk-BW, Mal/Dloadr-E, Mal/Emogen-Y, Mal/Behav-027 [Sophos]20
Win32.Virut.Gen [PC Tools]20
Virus:Win32/Virut.AK [Microsoft]19
W32.Virut.B [Symantec]19
W32/Virut-Gen [Sophos]19
PE_VIRUT.D [Trend Micro]18
Win32/Virut.C [AhnLab]18
PE_VIRUT.XL [Trend Micro]17
PWS-Banker.dldr [McAfee]17
Virus:Win32/Virut.AE [Microsoft]17
W32/Virut.j [McAfee]17
Generic.dx [McAfee]15
Mal/Behav-024, Mal/GamePSW-C, Mal/GamePSW-B, Mal/EncPk-BW, Mal/Dloadr-E, Mal/Behav-027, Mal/Emogen-Y, Mal/Behav-010 [Sophos]14
PE_VIRUT.XP [Trend Micro]13
W32.Virut.W [Symantec]12
PE_VIRUX.H-3 [Trend Micro]11
Generic PWS.y [McAfee]10
Mal/Behav-010, Mal/Packer, Mal/GamePSW-B, Mal/Behav-024, Mal/GamePSW-C, Mal/EncPk-BW, Mal/Dloadr-E, Mal/Behav-027 [Sophos]10
PE_VIRUT.AP [Trend Micro]10
Trojan.Win32.Agent.atcw [Kaspersky Lab]10
Trojan.Win32.Agent.brje [Kaspersky Lab]10
Virus.Win32.Virut.bu [Kaspersky Lab]10
Virus:Win32/Virut.BI [Microsoft]10
Virus:Win32/Virut.gen!O [Microsoft]10
Mal/Packer, Mal/Behav-024, Mal/GamePSW-C, Mal/GamePSW-B, Mal/EncPk-BW, Mal/Behav-027, Mal/Emogen-Y, Mal/Behav-010 [Sophos]9
Trojan-Dropper.Win32.Agent.acfe [Kaspersky Lab]9
Virus:Win32/Virut.AF [Microsoft]9
Virus:Win32/Virut.AP [Microsoft]9
Win32/Virut.Gen [AhnLab]9
Trojan.Win32.Agent.bafj [Kaspersky Lab]7
W32.IRCBot [Symantec]7
W32.Virut!gen [Symantec]7
W32/Virut-L [Sophos]7
PE_VIRUT.BO [Trend Micro]6
Virus.Win32.Virut.cd [Kaspersky Lab]6
Virus:Win32/Sality.AM [Microsoft]6
Virus:Win32/Virut.BL [Microsoft]6
W32/Sality.gen [McAfee]6
W32/Sality-AM [Sophos]6
W32/Virut.gen.a [McAfee]6
Win32/Virut [AhnLab]6
Mal/EncPk-BW [Sophos]5
Mal/EncPk-BW, W32/Vetor-A [Sophos]5
Mal/Packer, Mal/EncPk-BW [Sophos]5
New Malware.n [McAfee]5
Trojan.Win32.Agent.bvyw [Kaspersky Lab]5
Virus.Win32.Sality.aa [Kaspersky Lab]5
Win32/Kashu.B [AhnLab]5
Backdoor.SdBot [PC Tools]4
New Win32 [McAfee]4
PWS-Banker.gen.aa [McAfee]4
Trojan.Win32.Agent.aseg [Kaspersky Lab]4
Virus:Win32/Virut.K [Microsoft]4
W32.Sality.AE [Symantec]4
W32.SillyFDC [Symantec]4
W32/Virut.n [McAfee]4
Win-Trojan/Xema.variant [AhnLab]4
Backdoor.Win32.VanBot.ej [Kaspersky Lab]3
Exploit:Win32/MS08067.gen!A [Microsoft]3
PE_VIRUT.A [Trend Micro]3
PE_VIRUT.AT [Trend Micro]3
PE_VIRUX.F-2 [Trend Micro]3

Virus.Win32.Virut [Ikarus] has the following possible countries of origin:
OriginNumber of Incidents
China23
Russian Federation16
Brazil10
Taiwan7
United Kingdom5
Turkey4
Spain3
Germany2
Israel2
Poland2
Sweden2
Austria1
Czech Republic1
Japan1
Republic of Korea1
Romania1
Saudi Arabia1

Virus.Win32.Virut [Ikarus] is known to be created as:
%AppData%\{187412dd-6f8d-45a5-a1f6-e7b6fe193f5b}\cliconfg.exe
%AppData%\{bfb5f154-9212-46f3-b547-ac6106030a54}\cliconfg.exe
%AppData%\spool.exe
%FontsDir%\fonts.exe
%FontsDir%\tskmgr.exe
%FontsDir%\unwise_.exe
%ProgramFiles%\bvujqguu.exe
%System%\0617152d\services.exe
%System%\3361\svchost.exe
%System%\662832100427l.exe
%System%\ali2dbcf.dll
%System%\ali2dc3d.dll
%System%\ali33eb0.dll
%System%\ali33f4c.dll
%System%\ali340a4.dll
%System%\ali341cd.dll
%System%\ali34883.dll
%System%\ali348d2.dll
%System%\ali34f88.dll
%System%\ali357d5.dll
%System%\ali36061.dll
%System%\ali3a71e.dll
%System%\ali3b027.dll
%System%\ali3be50.dll
%System%\ali3f926.dll
%System%\ali3f9e2.dll
%System%\ali3fbe5.dll
%System%\ali3fbf5.dll
%System%\ali402fa.dll
%System%\ali408b7.dll
%System%\ali40982.dll
%System%\ali470a8.dll
%System%\ali473a6.dll
%System%\ali4bd32.dll
%System%\ali4be3b.dll
%System%\ali4bf16.dll
%System%\ali4c6b7.dll
%System%\ali4cd5e.dll
%System%\ali4d6a5.dll
%System%\ali4d899.dll
%System%\ali4db97.dll
%System%\ali4dc14.dll
%System%\ali4dc81.dll
%System%\ali4dcb0.dll
%System%\ali4dd0e.dll
%System%\ali4dd6c.dll
%System%\ali4de95.dll
%System%\ali4dfbd.dll
%System%\ali4dfec.dll
%System%\ali4e0c7.dll
%System%\ali4e26d.dll
%System%\ali4e2fa.dll
%System%\ali4e82a.dll
%System%\ali4e859.dll
%System%\ali4e8e5.dll
%System%\ali4e914.dll
%System%\ali4e9df.dll
%System%\ali4ea5c.dll
%System%\ali4ecae.dll
%System%\ali4ef0f.dll
%System%\ali4f22c.dll
%System%\ali4f326.dll
%System%\ali4f45f.dll
%System%\ali4f4ad.dll
%System%\ali501ad.dll
%System%\ali5483b.dll
%System%\ali75cc.dll
%System%\ali8712.dll
%System%\alitte32.dll
%System%\aliwe32.dll
%System%\amvo.exe
%System%\anymie360.dll
%System%\anyone360.dll
%System%\atx3a49e.dll
%System%\atx3f0f8.dll
%System%\atx3f686.dll
%System%\avpo.exe
%System%\ckvo.exe
%System%\cliconfg.sys
%System%\csrsc.exe
%System%\dllcache\default.exe
%System%\dllcache\global.exe
%System%\dllcache\svchost.exe
%System%\dllcache\tskmgr.exe
%System%\drivers\ctfmon.exe
%System%\drivers\drivers.cab.exe
%System%\drivers\winmgmt.exe
%System%\explorer.exe
%System%\fastnetsrv.exe
%System%\firewall.exe
%System%\iexplore.exe
%System%\igfsfdfsd32ss.exe
%System%\igfsfdsda32.exe
%System%\kavo.exe
%System%\kcomx32.dll
%System%\lmtlsb.dll
%System%\mmx5387c.dll
%System%\mmx586db.dll
%System%\mmx59e6a.dll
%System%\mmx59e99.dll
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).