ThreatExpert's Statistics for Generic PWS [McAfee]:

Generic PWS [McAfee] is also known as:

Threat Alias	Number of Incidents
Trojan-Spy.Win32.Agent.qj [Kaspersky Lab]	390
Trojan.Progent [Symantec]	313
Trojan-Spy.Win32.ProAgent.20 [Kaspersky Lab]	238
TSPY_PROAGENT.V [Trend Micro]	235
Troj/Agent-FXF [Sophos]	210
W32.Xema.A [Symantec]	210
Trojan-Spy.Win32.Agent.qj [Ikarus]	150
Trojan-Spy.ProAgent!sd5 [PC Tools]	144
TROJ_MNLESS.AH [Trend Micro]	120
TSPY_AGENT.AAIJ [Trend Micro]	120
Trojan-Spy.Agent!sd5 [PC Tools]	106
TrojanSpy.Agent.JMM [PC Tools]	105
TrojanSpy:Win32/Agent [Microsoft]	105
Win-Trojan/Xema.variant [AhnLab]	101
TrojanSpy.ProAgent.DR [PC Tools]	91
Packed.Win32.CPEX-based.bt [Kaspersky Lab]	75
TrojanSpy.Agent.DGZS [PC Tools]	75
Trojan-Spy.Win32.ProAgent.20 [Ikarus]	75
Bloodhound.Unknown [Symantec]	61
Mal/Behav-009 [Sophos]	60
Mal/Generic-A [Sophos]	54
Trojan-Spy.Agent!sd6 [PC Tools]	30
Trojan:Win32/Jenix!rts [Microsoft]	15
Mal/ProcInj-Fam [Sophos]	13
Trojan Horse [Symantec]	13
Trojan-PSW.Win32.QQPass.hs [Kaspersky Lab]	13
Infostealer [Symantec]	12
Infostealer.Lemir.Gen [Symantec]	10
Trojan-PSW.QQPass!sd5 [PC Tools]	9
Application.APlus_Keylogger [PC Tools]	4
Trojan.Goldun [Symantec]	4
Trojan.PWS.Delf.YOK [PC Tools]	4
Trojan-Spy.Delf.MQ [PC Tools]	4
Trojan-Spy.Win32.VB.ck [Kaspersky Lab]	4
Mal/Behav-152 [Sophos]	3
Mal/Packer [Sophos]	3
TROJ_Generic [Trend Micro]	3
Trojan-Spy.Win32.Banker.cmx [Kaspersky Lab]	3
Trojan-Spy.Win32.Delf.dq [Kaspersky Lab]	3
Trojan-Spy.Win32.Goldun [Ikarus]	3
Trojan-Spy.Win32.Goldun.io [Kaspersky Lab]	3
Downloader [Symantec]	2
Infostealer.Lineage [Symantec]	2
TROJ_DELF.KKF [Trend Micro]	2
TROJ_INFOSTL.A [Trend Micro]	2
Trojan.Adclicker [Symantec]	2
Trojan.PWS.Delf.XVI [PC Tools]	2
Trojan.PWS.QQPass [Symantec]	2
Trojan-Spy.Delf!sd5 [PC Tools]	2
TSPY_DELF.HUP [Trend Micro]	2
Virus.Win32.Delf.CSK [Ikarus]	2
Application.Keyboard_Collector [PC Tools]	1
Backdoor.Ghost [PC Tools]	1
Backdoor.Graybird [Symantec]	1
Backdoor.Trojan [Symantec]	1
Backdoor.Win32.Hupigon.anv [Kaspersky Lab]	1
Bloodhound.Morphine [Symantec]	1
Bloodhound.W32.EP [Symantec]	1
Infostealer.Gampass [Symantec]	1
Mal/Banspy-F, Mal/Bank-A [Sophos]	1
Mal/Behav-152, Mal/Behav-158 [Sophos]	1
Mal/Emogen-R, Troj/Maran-Gen [Sophos]	1
Mal/Packer, Mal/Behav-205, Troj/Haxdor-Gen [Sophos]	1
Mal_Infostl [Trend Micro]	1
not-a-virus:Monitor.Win32.KeyLogger.p [Kaspersky Lab]	1
not-a-virus:Monitor.Win32.Perflogger [Ikarus]	1
not-a-virus:Monitor.Win32.Perflogger.ad [Kaspersky Lab]	1
not-a-virus:Monitor.Win32.Perflogger.ae [Kaspersky Lab]	1
not-a-virus:Monitor.Win32.Perflogger.ca [Kaspersky Lab]	1
not-a-virus:Monitor.Win32.Perflogger.cb [Kaspersky Lab]	1
not-a-virus:Monitor.Win32.Perflogger.ck [Kaspersky Lab]	1
Packed/FSG [PC Tools]	1
Packed/NSPack [PC Tools]	1
Possible_Virus [Trend Micro]	1
Spyware.DoglaKeylogger [Symantec]	1
Spyware.KeyCollect [Symantec]	1
Spyware.KeyLogger!sd5 [PC Tools]	1
Spyware.Keyspy [Symantec]	1
Spyware.Stealth_Web_Page_Recorder [PC Tools]	1
Troj/Haxdor-Fam [Sophos]	1
Troj/Haxdor-Gen [Sophos]	1
Troj/Maha-P [Sophos]	1
TROJ_AGENT.BLZ [Trend Micro]	1
TROJ_AGENT.PUD [Trend Micro]	1
TROJ_PROXY.NU [Trend Micro]	1
TROJ_PSW.HOOK.A [Trend Micro]	1
Trojan.Dropper [Symantec]	1
Trojan.Goldun [PC Tools]	1
Trojan.Goldun!sd6 [PC Tools]	1
Trojan.Maocal [Symantec]	1
Trojan.PWS.Agent.BUPM [PC Tools]	1
Trojan.PWS.Delf.BOF [PC Tools]	1
Trojan.PWS.OnLineGames.ICR [PC Tools]	1
Trojan.PWS.OnLineGames.SR [PC Tools]	1
Trojan.PWS.WOW.JY [PC Tools]	1
Trojan.QQPass.Gen.7 [PC Tools]	1
Trojan:Win32/Malagent [Microsoft]	1
Trojan-Downloader.Win32.Banload.fls [Kaspersky Lab]	1
Trojan-Dropper.Agent [Ikarus]	1
Trojan-GameThief.Win32.OnLineGames.ob [Kaspersky Lab]	1

Generic PWS [McAfee] has the following possible countries of origin:

Origin		Number of Incidents
	China	27
	Brazil	5
	Italy	1
	Poland	1
	Republic of Korea	1
	Russian Federation	1

Generic PWS [McAfee] is known to be created as:

%ProgramFiles%\internet explorer\iexplore.com

%ProgramFiles%\vanquish media inc\win32k.exe

%System%\agnt_fps.exe

%System%\agnt_msn.exe

%System%\cnnscqq.exe

%System%\dllhost.dll

%System%\dxdiag.com

%System%\finder.com

%System%\gdiout.dll

%System%\gdixin.sys

%System%\helpersyssvcc.exe

%System%\inter32.dll

%System%\msconfig.com

%System%\mshelp.dll

%System%\regedit.com

%System%\rpccwddmh.exe

%System%\rundll32.com

%System%\shell64.dll

%System%\xktxx.exe

%Temp%\mayaremoute.exe

%Temp%\rarsfx0\i_bpk2007.exe

%Temp%\serv.exe

%UserProfile%\sendto\winhy.exe

%UserProfile%\xxy_utvj.exe

%Windir%\1.com

%Windir%\alerter.exe

%Windir%\debug\debugprogram.exe

%Windir%\exeroute.exe

%Windir%\explorer.com

%Windir%\finder.com

%Windir%\help\8ed74b367405.exe

%Windir%\svchost.exe

%Windir%\system\scvhost.exe

%Windir%\winlogon.exe

%Windir%\winrv3e.exe

%Windir%\winsapi.dll

c:\recycler\recycler.com

c:\shell.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.