ThreatExpert's Statistics for Win32.Virut.Gen.4 [PC Tools]:

Win32.Virut.Gen.4 [PC Tools] is also known as:

Threat Alias	Number of Incidents
W32/Virut.gen.a [McAfee]	1,619
PE_VIRUT.AV [Trend Micro]	978
Bloodhound.Unknown [Symantec]	904
Virus.Win32.Virut.av [Kaspersky Lab]	857
W32.Virut.W [Symantec]	570
W32/Virut-W [Sophos]	409
Virus:Win32/Virut.AC [Microsoft]	378
W32/RAHack [McAfee]	362
W32.Rahack.W [Symantec]	359
Worm:Win32/Allaple.A [Microsoft]	359
Win32/Virut.B [AhnLab]	302
Net-Worm.Win32.Allaple.a [Ikarus]	287
W32/Allaple-F [Sophos]	255
Virus.Win32.Virut.n [Kaspersky Lab]	231
WORM_ALLAPLE.IK [Trend Micro]	182
WORM_ALLAPLE.PF [Trend Micro]	177
W32.Virut.A [Symantec]	151
Net-Worm.Win32.Allaple.e [Kaspersky Lab]	142
Win-Trojan/Starman.Gen [AhnLab]	142
PE_VIRUT.A [Trend Micro]	136
W32/Virut.a [McAfee]	135
Virus.Win32.Virut.a [Kaspersky Lab]	130
Virus.Win32.Virut.av [Ikarus]	123
PE_VIRUT.YC [Trend Micro]	112
Virus.Win32.Virut.ao [Kaspersky Lab]	105
W32/Allaple-D [Sophos]	104
PE_VIRUT.XV [Trend Micro]	98
PE_VIRUT.YD [Trend Micro]	87
PE_VIRUT.AT [Trend Micro]	85
PE_VIRUT.JMA [Trend Micro]	82
Virus.Win32.Virut.aq [Kaspersky Lab]	78
Virus.Win32.Virut.ar [Kaspersky Lab]	77
W32/Virut-T [Sophos]	76
Virus.Win32.Sality [Ikarus]	73
Net-Worm.Win32.Allaple.b [Ikarus]	72
Virus.Win32.Virut.at [Kaspersky Lab]	72
W32/Virut [McAfee]	72
PE_VIRUT.YE [Trend Micro]	68
PE_VIRUT.JN [Trend Micro]	67
W32/Virut.g [McAfee]	63
W32/Virut-Gen [Sophos]	62
PE_VIRUT.PAU [Trend Micro]	59
PE_VIRUT.XY [Trend Micro]	55
Virus.Win32.Virut.as [Kaspersky Lab]	55
W32/Virut.d [McAfee]	51
Virus.Win32.Virut.af [Kaspersky Lab]	50
Virus.Win32.Virut.aw [Kaspersky Lab]	50
Virus.Win32.Virut.ak [Kaspersky Lab]	49
PE_VIRUT.XZ [Trend Micro]	48
Virus:Win32/Virut.AA [Microsoft]	47
Win32/Virut [AhnLab]	45
Virus:Win32/Virut.A [Microsoft]	44
PE_VIRUT.BD [Trend Micro]	42
Virus.Win32.Virut.ai [Kaspersky Lab]	42
W32/Virut.h [McAfee]	42
W32/Virut-X [Sophos]	42
Virus.Win32.Virut.ac [Kaspersky Lab]	40
W32/Virut.j [McAfee]	39
PE_VIRUT.B [Trend Micro]	37
Virus.Win32.Virut.b [Kaspersky Lab]	37
W32/Virut.b [McAfee]	37
Packer.RLPack [Ikarus]	36
Virus.Win32.Virut.y [Kaspersky Lab]	34
W32/Vetor-G [Sophos]	33
PE_VIRUT.CEL [Trend Micro]	32
W32.Spybot.Worm [Symantec]	32
W32.IRCBot [Symantec]	31
Virus.Win32.Virut.be [Kaspersky Lab]	30
PE_VIRUT.ART [Trend Micro]	29
Virus.Win32.Virut.n [Ikarus]	29
PE_VIRUT.AE [Trend Micro]	26
Virus.Win32.Virut.x [Kaspersky Lab]	26
Virus.Win32.Virut.r [Kaspersky Lab]	25
W32/Virut.i [McAfee]	25
Virus.Win32.Virut.ae [Kaspersky Lab]	22
PE_VIRUT.GEN-3 [Trend Micro]	21
Virus:Win32/Virut.T [Microsoft]	21
Backdoor.Win32.Nepoe.em [Kaspersky Lab]	20
Virus.Win32.Virut.ab [Kaspersky Lab]	20
Downloader [Symantec]	19
PE_VIRUT.EH [Trend Micro]	19
Virus:Win32/Virut.gen!AI [Microsoft]	19
W32/Virut-R [Sophos]	19
Trojan.Crypt.NSPM [Ikarus]	17
W32/Virut.f [McAfee]	17
Virus.Win32.Virut.t [Kaspersky Lab]	16
Packer.RLPack.D [Ikarus]	15
Spam-Mailbot [McAfee]	15
Virus:Win32/Virut.BA [Microsoft]	15
Virus:Win32/Virut.Q [Microsoft]	15
Virus:Win32/Virut.AB [Microsoft]	14
Virus:Win32/Virut.X [Microsoft]	14
PE_VIRUT.ED [Trend Micro]	13
W32/Sdbot.worm.gen.g [McAfee]	13
PE_VIRUT.XW [Trend Micro]	12
Trojan-Proxy.Win32.Slaper.n [Ikarus]	12
Virus.Win32.Virut.bf [Kaspersky Lab]	12
W32.Randex.gen [Symantec]	12
W32/Virut-V [Sophos]	12
Backdoor:Win32/Poebot.AT [Microsoft]	11

Win32.Virut.Gen.4 [PC Tools] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	56
	China	45
	Germany	41
	Republic of Korea	31
	Sweden	26
	Netherlands	25
	France	15
	Taiwan	14
	Ukraine	12
	United Kingdom	12
	Italy	11
	Portugal	11
	Turkey	11
	Spain	10
	Poland	9
	Czech Republic	7
	Canada	5
	Belgium	4
	Brazil	4
	Finland	4
	Denmark	3
	Greece	3
	Hungary	3
	Israel	3
	Slovenia	3
	Norway	2
	Saudi Arabia	2
	Algeria	1
	Australia	1
	Iran	1
	Japan	1
	Romania	1
	Switzerland	1
	Thailand	1
	Viet Nam	1

Win32.Virut.Gen.4 [PC Tools] is known to be created as:

%AllUsersProfile%\favorites.exe

%AppData%\csrss.exe

%AppData%\inetinfo.exe

%AppData%\lsass.exe

%AppData%\services.exe

%AppData%\smss.exe

%AppData%\winlogon.exe

%CommonAppData%\tmbgvinu\hqfulore.exe

%CommonFavorites%\favorites.exe

%CommonPrograms%\startup\autorun.exe

%CommonPrograms%\startup\lsass.exe

%CommonPrograms%\startup\msconfig.exe

%CommonPrograms%\startup\msconfigg.exe

%DesktopDir%\desktop.exe

%Favorites%\favorites.exe

%FontsDir%\fonts.exe

%FontsDir%\tskmgr.exe

%FontsDir%\unwise_.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\common files\system\ado\tsektjkj.exe

%ProgramFiles%\common files\system\msasp32.exe

%ProgramFiles%\common files\system\msiwa32.exe

%ProgramFiles%\common files\system\serv.exe

%ProgramFiles%\internet explorer\connection wizard\selias.exe

%ProgramFiles%\meex.exe

%ProgramFiles%\msn gaming zone\windows.exe

%ProgramFiles%\msn gaming zone\windows\windows.exe

%ProgramFiles%\netmeeting\rsewzjqn.exe

%ProgramFiles%\outlook\outlook.exe

%ProgramFiles%\solutionksg\sksg.exe

%ProgramFiles%\solutionksg\sksgupt.exe

%ProgramFiles%\solutionksg\uninstall_ksg.exe

%ProgramFiles%\windows nt\pinball.exe

%ProgramFiles%\winhelper\whinstall.exe

%ProgramFiles%\winrar\rar.exe

%ProgramFiles%\winrar\rarextloader.exe

%ProgramFiles%\winrar\uninstall.exe

%ProgramFiles%\winrar\unrar.exe

%ProgramFiles%\winrar\winrar.exe

%ProgramFiles%\xerox.exe

%ProgramFiles%\xerox\nwwia.exe

%ProgramFiles%\xerox\nwwia\nwwia.exe

%ProgramFiles%\xerox\xerox.exe

%Programs%\startup\ctfmon.exe

%Programs%\startup\findfast.exe

%System%\%computername%\svchost.exe

%System%\_svchost.exe

%System%\1025\1025.exe

%System%\1028\1028.exe

%System%\1031\1031.exe

%System%\1033\1033.exe

%System%\1037\1037.exe

%System%\1041\1041.exe

%System%\1042\1042.exe

%System%\1054\1054.exe

%System%\116276867285l.exe

%System%\2052\2052.exe

%System%\253b8780.exe

%System%\3076\3076.exe

%System%\3com_dmi\3com_dmi.exe

%System%\4e17c240.exe

%System%\8040\data.exe

%System%\8040\lsass.exe

%System%\8040\svchost.exe

%System%\aclipsrv.exe

%System%\adoskey.exe

%System%\afcharmap.exe

%System%\afind.exe

%System%\afreecell.exe

%System%\ahr.exe

%System%\ajdcomcnfg.exe

%System%\algs.exe

%System%\amsg.exe

%System%\amshta.exe

%System%\amvo.exe

%System%\antoskrnl.exe

%System%\aqprocess.exe

%System%\ardsaddin.exe

%System%\arjaccwiz.exe

%System%\asnmcalc.exe

%System%\asyncapp.exe

%System%\ataskkill.exe

%System%\atidisplay.exe

%System%\atscon.exe

%System%\autochl.exe

%System%\avmidfrgntfs.exe

%System%\awrmqbkup.exe

%System%\axodbcad32.exe

%System%\axtsshutdn.exe

%System%\bckcnv.exe

%System%\bcmdl32.exe

%System%\bcmstp.exe

%System%\bconime.exe

%System%\bdmadmin.exe

%System%\bdriverquery.exe

%System%\bfasr_pfu.exe

%System%\bhelp.exe

%System%\biecidaemon.exe

%System%\bifrost.exe

%System%\bjforcedos.exe

Notes:

%AllUsersProfile% is a variable that specifies the all users' profile folder. By default, this is C:\Documents and Settings\All Users (Windows NT/2000/XP).
%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonFavorites% is a variable that refers to the file system directory that serves as a common repository for all users' favorite items. A typical path is C:\Documents and Settings\All Users\Favorites (Windows NT/2000/XP).
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%DesktopDir% is a variable that refers to the file system directory used to physically store file objects on the desktop. A typical path is C:\Documents and Settings\[UserName]\Desktop.
%Favorites% is a variable that refers to the file system directory that serves as a common repository for the user's favorite items. A typical path is C:\Documents and Settings\[UserName]\Favorites.
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%ComputerName% is a variable that refers to the current computer name.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).