Threat Search: 

ThreatExpert's Statistics for Generic.yy [McAfee]:

Generic.yy [McAfee] is also known as:
Threat AliasNumber of Incidents
Email-Worm.Mydoom!sd5 [PC Tools]2,183
Email-Worm.Win32.Mydoom.bj [Kaspersky Lab]2,183
TROJ_MYDOOM.CV [Trend Micro]1,628
W32.Mytob@mm [Symantec]1,369
Generic.dx [McAfee]629
Troj/SpamToo-AX [Sophos]481
Email-Worm.Win32.Mydoom.bj [Ikarus]407
W32/Mydoom.gen@MM [McAfee]148
Win32/Mydoom.worm.46080 [AhnLab]148
WORM_MYDOOM.CT [Trend Micro]111
TROJ_DLOADER.QKL [Trend Micro]70
Trojan-Downloader.Win32.IstBar.qj [Kaspersky Lab]42
Email-Worm.Win32.Mydoom [Ikarus]37
Trojan.DL.IstBar.KR [PC Tools]28
Trojan Horse [Symantec]15
Downloader [Symantec]12
W32.SillyDC [Symantec]9
TROJ_AGENT.YTL [Trend Micro]6
W32/AutoRun-AC [Sophos]6
Worm.Win32.AutoRun.acm [Kaspersky Lab]6
Mal/Generic-A [Sophos]5
TROJ_AGENT.ADDY [Trend Micro]5
Backdoor.Trojan [Symantec]4
TROJ_SHEUR.TTV [Trend Micro]4
Trojan.Agent.WPS [PC Tools]4
Trojan.DL.Banload.GBT [PC Tools]4
Trojan.Duntek [Symantec]4
Trojan.Win32.Agent.bea [Kaspersky Lab]4
Trojan-Clicker.Agent.LU [PC Tools]4
Trojan-Clicker.Win32.Agent.lu [Kaspersky Lab]4
Trojan-Clicker.Win32.Small.iz [Kaspersky Lab]4
Virus.Win32.AutoRun.ns [Ikarus]3
Virus.Win32.AutoRun.ns [Kaspersky Lab]3
WORM_AUTORUN.LE [Trend Micro]3
Mal/Heuri-E [Sophos]2
TROJ_AGENT.YUI [Trend Micro]2
Trojan.Flush.G [Symantec]2
Trojan.Win32.Agent.bwn [Kaspersky Lab]2
Trojan.Zlob [Symantec]2
Trojan:Win32/Adclicker [Microsoft]2
Backdoor.Agent.LIC [PC Tools]1
Backdoor.Delf.CES [PC Tools]1
Backdoor.Rima.C [PC Tools]1
Backdoor.VB.AAXC [PC Tools]1
Backdoor.Win32.Agent.axn [Kaspersky Lab]1
Backdoor.Win32.Agent.ccr [Kaspersky Lab]1
Backdoor.Win32.Delf.avc [Kaspersky Lab]1
Backdoor.Win32.Delf.ayf [Kaspersky Lab]1
Backdoor.Win32.Delf.chr [Kaspersky Lab]1
Backdoor.Win32.GrayBird.cq [Kaspersky Lab]1
Backdoor.Win32.Hupigon.ah [Kaspersky Lab]1
Backdoor.Win32.Lecna.ac [Kaspersky Lab]1
Backdoor.Win32.Rima.a [Kaspersky Lab]1
Backdoor.Win32.Small.cjx [Kaspersky Lab]1
Backdoor.Win32.VB.bco [Kaspersky Lab]1
Backdoor:Win32/Agent.AFM [Microsoft]1
BKDR_AGENT.ADZT [Trend Micro]1
BKDR_AGENT.LRN [Trend Micro]1
BKDR_HUPIGON.GEN [Trend Micro]1
Email-Worm.Win32.Agent.c [Kaspersky Lab]1
Email-Worm.Win32.Agent.t [Kaspersky Lab]1
Hacktool.Spammer [Symantec]1
IM-Worm.Win32.Sohanad.as [Kaspersky Lab]1
Mal/Heuri-D, Mal/Behav-160 [Sophos]1
Net-Worm.Win32.Mofeir.o [Kaspersky Lab]1
not-a-virus:AdWare.Win32.TrafficSol.l [Kaspersky Lab]1
not-a-virus:FraudTool.Win32.UltimateDefender.g [Kaspersky Lab]1
Possible_Strat-6 [Trend Micro]1
SpamTool.Win32.Agent.af [Kaspersky Lab]1
TROJ_ADLOAD.VS [Trend Micro]1
TROJ_AGENT.AAYL [Trend Micro]1
TROJ_AGENT.ADVC [Trend Micro]1
TROJ_AGENT.ADWF [Trend Micro]1
TROJ_AGENT.ZEQ [Trend Micro]1
TROJ_AGENT.ZRZ [Trend Micro]1
TROJ_CAPROBAD.OF [Trend Micro]1
TROJ_DELF.FFG [Trend Micro]1
TROJ_DLOADER.QNN [Trend Micro]1
TROJ_DLOADER.SAR [Trend Micro]1
TROJ_DLOADER.SXF [Trend Micro]1
TROJ_DROPPER.JXZ [Trend Micro]1
TROJ_OBFUSCA.CN [Trend Micro]1
TROJ_SMALL.IFU [Trend Micro]1
TROJ_VB.DWE [Trend Micro]1
TROJ_VB.FTX [Trend Micro]1
TROJ_ZLOB.DVX [Trend Micro]1
Trojan.Adclicker [Symantec]1
Trojan.Agent!sd5 [PC Tools]1
Trojan.Agent.B!ct [PC Tools]1
Trojan.Agent.BOW [PC Tools]1
Trojan.Agent.LST [PC Tools]1
Trojan.Agent.XIT [PC Tools]1
Trojan.Chost [Symantec]1
Trojan.DL.Agent.WQO [PC Tools]1
Trojan.DL.Banload.GEJ [PC Tools]1
Trojan.DL.Delf.ZHB [PC Tools]1
Trojan.DL.VB.GND [PC Tools]1
Trojan.DL.Zlob.CXU [PC Tools]1
Trojan.Drivus [Symantec]1
Trojan.Dropper [Symantec]1

Generic.yy [McAfee] has the following possible countries of origin:
OriginNumber of Incidents
Republic of Korea10
Russian Federation9
China6
Brazil3
Germany2
France1
United Kingdom1

Generic.yy [McAfee] is known to be created as:
%AppData%\my_server.exe
%ProgramFiles%\bho\uninstall.exe
%ProgramFiles%\internet exp1orer\iexplore.exe
%ProgramFiles%\internet explorer\spoole.exe
%System%\7z.exe
%System%\actcontroller.exe
%System%\ati2krtg.dll
%System%\blastclnnn.exe
%System%\codeblocks.exe
%System%\deviceemulator.exe
%System%\gangsta.exe
%System%\gcc.exe
%System%\gdiplus.exe
%System%\gzmrotate.dll
%System%\hhupd.exe
%System%\i386kd.exe
%System%\icpxel.exe
%System%\idaw64.exe
%System%\makehm.exe
%System%\mihqvt.exe
%System%\mon.dll
%System%\msidli.exe
%System%\msiexee.exe
%System%\ndetect.exe
%System%\oeminf.exe
%System%\pdbcopy.exe
%System%\poison.sys
%System%\regedif32.exe
%System%\rxpmon.exe
%System%\scconfig.exe
%System%\scvvhsot.exe
%System%\sipov.dll
%System%\sp00lsv.exe
%System%\svcshost.exe
%System%\svschost.sys
%System%\swqs.dll
%System%\taskmger.com
%System%\undname.exe
%System%\vmware-ufad.exe
%System%\windowsprotection.exe
%System%\windres.exe
%System%\winlocon.exe
%Temp%\svchost.exe
%Temp%\tempfile.exe
%Temp%\wmiprwsu.exe
%Windir%\errorreport.exe
%Windir%\monitorsetup.exe
%Windir%\regedif.exe
%Windir%\scvvhsot.exe
%Windir%\system\mscomfig.exe
%Windir%\system\msiexece.exe
%Windir%\system\rundli.exe
%Windir%\system\windowsupadate.exe
%Windir%\systemmonitor.exe
%Windir%\twain.exe
%Windir%\twain_32.exe
%Windir%\windows.exe
%Windir%\winsystem.exe
%Windir%\winsystem32.exe
c:\bootex.exe
c:\foto_celular.scr
c:\log.exe
c:\recycler\systems.com
c:\sos.exe
c:\winupdate.exe
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.