ThreatExpert's Statistics for Downloader.Generic [PC Tools]:

Downloader.Generic [PC Tools] is also known as:

Threat Alias	Number of Incidents
Downloader [Symantec]	2,044
Mal/Generic-A [Sophos]	690
Mal/TinyDL-T [Sophos]	393
Net-Worm.Win32.Koobface.dji [Kaspersky Lab]	289
Trojan.Win32.Koobface [Ikarus]	289
Generic.dx!mbq [McAfee]	221
Win-Trojan/amgfbcin31k.14336 [AhnLab]	221
Trojan.ATRAPS [Ikarus]	144
Trojan-Dropper.Agent [Ikarus]	123
TrojanDownloader:Win32/Tracur.B [Microsoft]	113
Troj/Tracur-Gen [Sophos]	112
TrojanDownloader:Win32/Wintrim.BX [Microsoft]	95
Trojan-Downloader.Win32.Tracur [Ikarus]	90
Trojan-Downloader.Win32.Lipler.iml [Kaspersky Lab]	84
Win-Trojan/Xema.variant [AhnLab]	81
Downloader-BPJ.gen.b [McAfee]	80
TrojanDownloader:Win32/Troxen!rts [Microsoft]	73
Mal/Hrup-B, Mal/Wintrim-E, Mal/Wintrim-D [Sophos]	66
Mal/Dropper-Q [Sophos]	64
Mal/Packer [Sophos]	53
Generic.dx!lec [McAfee]	48
Net-Worm.Win32.Koobface.cvo [Kaspersky Lab]	48
Net-Worm.Win32.Piloyd.bg [Kaspersky Lab]	48
Win32/Koobface.worm.14336.AM [AhnLab]	48
Trojan-Downloader.Win32.Genome [Ikarus]	42
Generic Dropper!bdl [McAfee]	40
Trojan-Downloader.Win32.Small [Ikarus]	40
Trojan-Dropper.Win32.VB.afbw [Kaspersky Lab]	40
Backdoor:Win32/Dedipros.A [Microsoft]	38
Generic Downloader.x!cqd [McAfee]	37
Trojan-Downloader.Win32.Agent.cxke [Kaspersky Lab]	36
Win32/Piloyd.worm.26112.C [AhnLab]	36
Win-Trojan/Tracur.121344 [AhnLab]	33
TrojanDropper:Win32/Puzlice.A [Microsoft]	32
Troj/VB-EJN [Sophos]	31
Worm.Win32.AutoRun [Ikarus]	30
Trojan.Win32.Agent2.cmko [Kaspersky Lab]	27
TrojanDownloader:Win32/Dogrobot.D [Microsoft]	27
Downloader-BPI [McAfee]	25
Downloader-BXO [McAfee]	24
Generic Downloader.x!bus [McAfee]	24
Troj/Domur-Gen [Sophos]	24
Troj/DwnLdr-HWI [Sophos]	24
Trojan-Clicker.Win32.Small.afg [Kaspersky Lab]	24
Trojan-Downloader.Win32.Agent.cvbi [Kaspersky Lab]	24
TrojanDownloader:Win32/Shexie.A [Microsoft]	24
Win-Trojan/Troxen.6144 [AhnLab]	24
Downloader-BPJ.gen.a [McAfee]	21
Mal/Hrup-B, Mal/Wintrim-E [Sophos]	21
Net-Worm.Win32.Koobface.csi [Kaspersky Lab]	21
Trojan-Downloader.Win32.Piker [Ikarus]	19
VirTool:Win32/Injector.gen!AG [Microsoft]	18
Downloader-BVY [McAfee]	17
Troj/DwnLdr-HXP [Sophos]	17
Trojan-Downloader.Win32.Genome.njz [Kaspersky Lab]	17
Trojan-Downloader.Win32.Lipler [Ikarus]	17
Win-Trojan/Downloader.8704.ZV [AhnLab]	17
Dropper/Malware.12288.AI [AhnLab]	16
Troj/Dloadr-CTH [Sophos]	16
Trojan-Downloader.Win32.Piker.qg [Kaspersky Lab]	16
Win-Trojan/Piker.79386 [AhnLab]	16
Trojan-Downloader.Win32.Genome.aabd [Kaspersky Lab]	15
Generic Downloader.x [McAfee]	14
Trojan-Downloader.Win32.Agent.bily [Kaspersky Lab]	14
Trojan-Downloader.Win32.Agent.cvha [Kaspersky Lab]	14
Trojan-Downloader.Win32.Apher.gpd [Kaspersky Lab]	14
Trojan-Downloader.Win32.Lipler.axkd [Kaspersky Lab]	14
BackDoor-EEF [McAfee]	13
Trojan.Win32.Vilsel.trp [Kaspersky Lab]	13
Trojan-Downloader.Win32.Agent.cskc [Kaspersky Lab]	13
Generic Downloader.x!cak [McAfee]	12
Mal/Behav-010, Mal/Behav-063 [Sophos]	12
Mal/Waled-B [Sophos]	12
Net-Worm.Win32.Koobface.cci [Kaspersky Lab]	12
Packed.Win32.Tdss [Ikarus]	12
Packed.Win32.TDSS.aa [Kaspersky Lab]	12
Troj/Capper-Gen [Sophos]	12
Trojan:Win32/Alureon.DA [Microsoft]	12
Trojan-Downloader.Win32.Banload [Ikarus]	12
Trojan-Downloader.Win32.Geral.dfp [Kaspersky Lab]	12
Win32.SuspectCrc [Ikarus]	12
Win32/Koobface.worm.17408.M [AhnLab]	12
Win-Trojan/Agent.344064.AL [AhnLab]	12
Win-Trojan/Downloder.13312 [AhnLab]	12
Win-Trojan/XPack.23040.B [AhnLab]	12
BKDR_KBOT.CT [Trend Micro]	11
FDoS-BEnergy [McAfee]	11
Generic Downloader.x!cnh [McAfee]	11
Generic.dx [McAfee]	11
Generic.ff [McAfee]	11
Troj/Bckdr-QYM [Sophos]	11
Win-Trojan/Downloader.22016.CO [AhnLab]	11
Backdoor:Win32/Phdet.gen!A [Microsoft]	10
Dropper/Malware.12288.AM [AhnLab]	10
Generic Downloader.x!byo [McAfee]	10
Packed.Win32.Krap [Ikarus]	10
Trojan:Win32/Sisproc [Microsoft]	10
Trojan-Downloader.Win32.Adload [Ikarus]	10
TrojanDownloader:Win32/Tearspear [Microsoft]	10
Trojan-Spy.Win32.VB [Ikarus]	10

Downloader.Generic [PC Tools] has the following possible countries of origin:

Origin		Number of Incidents
	China	166
	Republic of Korea	143
	Brazil	78
	Russian Federation	43
	Spain	9
	Germany	7
	Israel	6
	France	5
	Taiwan	5
	Bulgaria	4
	Belgium	3
	Japan	2
	Netherlands	2
	Saudi Arabia	2
	Ukraine	2
	United Kingdom	2
	Argentina	1
	Finland	1
	Italy	1
	Latvia	1
	Slovakia	1
	Sweden	1
	Trinidad and Tobago	1
	United Arab Emirates	1

Downloader.Generic [PC Tools] is known to be created as:

%AllUsersProfile%\fhyakl\win20.exe

%AllUsersProfile%\fhyakl\win21.exe

%AppData%\5.exe

%AppData%\comrepl.exe

%AppData%\df.exe

%AppData%\f508.exe

%AppData%\google\update\googleupdatebeta.exe

%AppData%\lsass.exe

%CommonAppData%\webext\winchk.exe

%CommonAppData%\winmgmt.exe

%Profiles%\sall.exe

%ProgramFiles%\adobe\adobeupdatemanager.exe

%ProgramFiles%\adobe\wsock32.dll

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\captcha.dll

%ProgramFiles%\cashon\bin\cashonupdate12061332.exe

%ProgramFiles%\common files\adobe\color\wsock32.dll

%ProgramFiles%\common files\adobe\typespt\wsock32.dll

%ProgramFiles%\common files\adobe\wsock32.dll

%ProgramFiles%\common files\designer\wsock32.dll

%ProgramFiles%\common files\mssoap\binaries\wsock32.dll

%ProgramFiles%\common files\mssoap\wsock32.dll

%ProgramFiles%\common files\odbc\data sources\wsock32.dll

%ProgramFiles%\common files\odbc\wsock32.dll

%ProgramFiles%\common files\servia.exe

%ProgramFiles%\common files\services\wsock32.dll

%ProgramFiles%\common files\speechengines\microsoft\wsock32.dll

%ProgramFiles%\common files\speechengines\wsock32.dll

%ProgramFiles%\common files\system\60n8i9gg.exe

%ProgramFiles%\common files\system\ado\wsock32.dll

%ProgramFiles%\common files\system\msadc\wsock32.dll

%ProgramFiles%\common files\system\ole db\wsock32.dll

%ProgramFiles%\common files\system\wsock32.dll

%ProgramFiles%\common files\wise installation wizard\wsock32.dll

%ProgramFiles%\common files\wsock32.dll

%ProgramFiles%\complus applications\wsock32.dll

%ProgramFiles%\ecover\it\ecover.resources.dll

%ProgramFiles%\eurogrand casino\setupcasino.exe

%ProgramFiles%\extremeup\extremeupupdate.exe

%ProgramFiles%\free ftp manager\setupcasino.exe

%ProgramFiles%\iecomponent\iecomponentup.exe

%ProgramFiles%\internet explorer\connection wizard\wsock32.dll

%ProgramFiles%\internet explorer\custom\mssec.exe

%ProgramFiles%\internet explorer\ielowutil2.exe

%ProgramFiles%\internet explorer\mui\0409\wsock32.dll

%ProgramFiles%\internet explorer\mui\wsock32.dll

%ProgramFiles%\internet explorer\rasadhlp.dll

%ProgramFiles%\internet explorer\signup\wsock32.dll

%ProgramFiles%\internet explorer\wsock32.dll

%ProgramFiles%\isclient\isclientup.exe

%ProgramFiles%\jclient\jclient.exe

%ProgramFiles%\joy1004\joypopguidedlg.exe

%ProgramFiles%\larudainfo\larudainfo1up.exe

%ProgramFiles%\limewire download speed\setupcasino.exe

%ProgramFiles%\lineguide\lineguideup.exe

%ProgramFiles%\marketfun\famday.exe

%ProgramFiles%\mask surf standard\tor\tor.exe

%ProgramFiles%\messenger\wsock32.dll

%ProgramFiles%\microsoft frontpage\version3.0\bin\wsock32.dll

%ProgramFiles%\microsoft frontpage\version3.0\wsock32.dll

%ProgramFiles%\microsoft frontpage\wsock32.dll

%ProgramFiles%\microsoft office\svchost.exe

%ProgramFiles%\movie maker\wsock32.dll

%ProgramFiles%\msn gaming zone\ozmwjv.dll

%ProgramFiles%\msn gaming zone\windows\wsock32.dll

%ProgramFiles%\msn gaming zone\wsock32.dll

%ProgramFiles%\msn\msncorefiles\install\wsock32.dll

%ProgramFiles%\msn\msncorefiles\oobe\wsock32.dll

%ProgramFiles%\msn\msncorefiles\wsock32.dll

%ProgramFiles%\msn\msnia\wsock32.dll

%ProgramFiles%\msn\msninstaller\wsock32.dll

%ProgramFiles%\msn\wsock32.dll

%ProgramFiles%\nanosearch\hasidup.exe

%ProgramFiles%\netmeeting\wsock32.dll

%ProgramFiles%\nzellencoder\nzellencoderupdater.exe

%ProgramFiles%\online services\wsock32.dll

%ProgramFiles%\outlook express\wsock32.dll

%ProgramFiles%\plmclient\plmclientup.exe

%ProgramFiles%\plussearch\trinatelinkup.exe

%ProgramFiles%\sbrowsplus\sbplusunins.exe

%ProgramFiles%\sbrowsplus\sbplusup.exe

%ProgramFiles%\shareaza download speed\setupcasino.exe

%ProgramFiles%\shelp\initshelp.exe

%ProgramFiles%\shelp\shelp.exe

%ProgramFiles%\shoppingdum\shoppingdum.exe

%ProgramFiles%\snsclient\snsclientup.exe

%ProgramFiles%\strclient\strclient.exe

%ProgramFiles%\svchost.exe

%ProgramFiles%\uninstall information\wsock32.dll

%ProgramFiles%\vaccf\vccfd.exe

%ProgramFiles%\vstart.exe

%ProgramFiles%\web publish\logfiles\wsock32.dll

%ProgramFiles%\web publish\wsock32.dll

%ProgramFiles%\webserver\webserver.exe

%ProgramFiles%\windows media player\icons\wsock32.dll

%ProgramFiles%\windows media player\sample playlists\wsock32.dll

%ProgramFiles%\windows media player\skins\wsock32.dll

%ProgramFiles%\windows media player\visualizations\wsock32.dll

%ProgramFiles%\windows media player\wsock32.dll

%ProgramFiles%\windows nt\accessories\wsock32.dll

Notes:

%AllUsersProfile% is a variable that specifies the all users' profile folder. By default, this is C:\Documents and Settings\All Users (Windows NT/2000/XP).
%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.