ThreatExpert's Statistics for New Malware.bx [McAfee]:

New Malware.bx [McAfee] is also known as:

Threat Alias	Number of Incidents
Downloader [Symantec]	40,769
TROJ_UPOLYX.BL [Trend Micro]	40,590
Trojan-Downloader.Homles!sd6 [PC Tools]	40,180
Trojan-Downloader.Win32.Homles.br [Kaspersky Lab]	822
Adware.Maxifiles [PC Tools]	744
Trojan-Downloader.Win32.Agent.gwh [Kaspersky Lab]	672
Downloader-BCF [McAfee]	287
Downloader-BDZ [McAfee]	238
Trojan-Downloader.Agent!sd5 [PC Tools]	137
TROJ_AGENT.CZC [Trend Micro]	87
Trojan:Win32/Agent.BE [Microsoft]	46
Packed.Generic.209 [Symantec]	44
TROJ_DLOADER.GFE [Trend Micro]	40
Virus.Win32.Agent.GZY [Ikarus]	39
TROJ_MATCASH.AM [Trend Micro]	31
Trojan-Downloader.Win32.Agent.idv [Kaspersky Lab]	31
Trojan:Win32/Qhost.V [Microsoft]	30
Trojan Horse [Symantec]	29
Mal/EncPk-EG [Sophos]	27
Bloodhound.Morphine [Symantec]	21
Mal/Generic-A [Sophos]	16
Mal/Banker-E [Sophos]	14
Trojan-Spy.Banker [Ikarus]	14
TROJ_DLOADR.CS [Trend Micro]	9
Trojan.Matcash.Gen [PC Tools]	9
Packed.Generic.48 [Symantec]	8
Infostealer [Symantec]	7
Infostealer.Gampass [Symantec]	7
Packed/Morphine.B [PC Tools]	7
Generic Proxy.h [McAfee]	6
Mal/EncPk-EY [Sophos]	6
Packed/Execryptor [PC Tools]	6
Suspicious.MH690 [Symantec]	6
Trojan.Matcash.Gen.2 [PC Tools]	6
WORM_NUCRP.GEN [Trend Micro]	6
MemScanBackdoor.Hupigon.YWT [Ikarus]	5
Trojan:Win32/Anomaly.gen!G [Microsoft]	5
Backdoor.Trojan [Symantec]	4
Mal_Banker [Trend Micro]	4
Trojan-Downloader.Win32.Banload.ageb [Kaspersky Lab]	4
Trojan-Downloader.Win32.VB.ji [Ikarus]	4
Trojan-Proxy.Win32.Agent.mf [Kaspersky Lab]	4
Backdoor.Graybird [Symantec]	3
BKDR_PCCLIEN.AFR [Trend Micro]	3
Generic.dx [McAfee]	3
Infostealer.Bancos [Symantec]	3
Infostealer.Bzup [Symantec]	3
Mal/EncPk-CL [Sophos]	3
Mal/Frethog-B [Sophos]	3
PWS:Win32/Frethog.AJ [Microsoft]	3
TROJ_UPOLYX.AI [Trend Micro]	3
TROJ_UPOLYX.AK [Trend Micro]	3
Trojan.Generic [PC Tools]	3
Trojan.Win32.Agent [Ikarus]	3
Trojan:Win32/Small.CD [Microsoft]	3
VirTool:Win32/Obfuscator.Q [Microsoft]	3
Virus.Win32.Virut.ce [Kaspersky Lab]	3
W32.Virut.CF [Symantec]	3
W32.Whybo.Z [Symantec]	3
Backdoor.Formador [Symantec]	2
Backdoor.Hupigon!sd5 [PC Tools]	2
Backdoor.IRC.Bot [Symantec]	2
Backdoor.Pcclient [Ikarus]	2
Backdoor.Ranky [Symantec]	2
Backdoor.Win32.Hupigon.cxwe [Kaspersky Lab]	2
Backdoor.Win32.PcClient.mzh [Kaspersky Lab]	2
Backdoor:Win32/PcClient.T [Microsoft]	2
Cryp_Xed-3 [Trend Micro]	2
Downloader.Delphi [Ikarus]	2
Gen.Trojan [Ikarus]	2
Mal/Basine-C [Sophos]	2
Mal/Behav-058, Mal/Hupig-D, Mal/Behav-149 [Sophos]	2
Mal/Behav-156 [Sophos]	2
Mal/Behav-191 [Sophos]	2
Mal/Emogen-N, Mal/Behav-149, Mal/Emogen-Y [Sophos]	2
Mal/EncPk-BW [Sophos]	2
Mal/HckPk-A [Sophos]	2
Mal/UnkPack-Fam [Sophos]	2
Mal/WaledPak-A [Sophos]	2
Packed.Win32.Klone.av [Kaspersky Lab]	2
Packed.Win32.NSAnti.r [Kaspersky Lab]	2
Packed.Win32.PePatch.jf [Kaspersky Lab]	2
PWS:Win32/Kotwir.A.dll [Microsoft]	2
TROJ_ZBOT.DW [Trend Micro]	2
Trojan.Dropper [Symantec]	2
Trojan.Win32.Inject.qwd [Kaspersky Lab]	2
Trojan.Zlob [Symantec]	2
Trojan-Banker.Win32.Banz.acx [Kaspersky Lab]	2
Trojan-Downloader.Win32.Homles [Ikarus]	2
Trojan-Downloader.Win32.Small [Ikarus]	2
TrojanDropper:Win32/Delf.CI [Microsoft]	2
Trojan-Proxy.Agent!sd5 [PC Tools]	2
Trojan-PSW.Win32.QQPass.bzg [Kaspersky Lab]	2
Trojan-Spy.Win32.Bancos.aam [Kaspersky Lab]	2
VirTool:Win32/DelfInject.gen!L [Microsoft]	2
Virus.Win32.Sality.aa [Kaspersky Lab]	2
Virus:Win32/Virut.BM [Microsoft]	2
W32.SillyFDC [Symantec]	2
W32.Spybot.Worm [Symantec]	2
Win32/Virut.F [AhnLab]	2

New Malware.bx [McAfee] has the following possible countries of origin:

Origin		Number of Incidents
	Netherlands	43,476
	Slovenia	5,513
	China	105
	Brazil	39
	Russian Federation	34
	Germany	2
	Romania	2
	Sweden	2
	Belgium	1
	France	1
	Italy	1
	Portugal	1
	Republic of Korea	1
	Saudi Arabia	1
	United Kingdom	1

New Malware.bx [McAfee] is known to be created as:

%ProgramFiles%\common files\system\vncadmins.exe

%ProgramFiles%\common files\wqkas.exe

%ProgramFiles%\iedw.exe

%ProgramFiles%\internet explorer\connection wizard\actsl.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\windows media player\oqoig.exe

%System%\360360.exe

%System%\advxjunj.exe

%System%\brc_server.exe

%System%\cellwill.exe

%System%\ckvo.exe

%System%\command.exe

%System%\dicotta.exe

%System%\dllcache\xphdb.exe

%System%\driver.exe

%System%\drivers\driver.exe

%System%\drivers\spoolsv.exe

%System%\drivers\svchost.exe

%System%\drivers\windf.exe

%System%\edconss.exe

%System%\famdiy.exe

%System%\found.exe

%System%\gbuster32.exe

%System%\huaxia.exe

%System%\ime\iqueq.exe

%System%\j3ewro.exe

%System%\kavo.exe

%System%\kvosoft.exe

%System%\kxvo.exe

%System%\magent.exe

%System%\mdmi386.exe

%System%\memexecu.exe

%System%\mmvo.exe

%System%\ntos.exe

%System%\qkbeq\qkbeq.exe

%System%\scvhost.exe

%System%\serial.exe

%System%\servce.exe

%System%\server.exe

%System%\svchosi.exe

%System%\taskmer.exe

%System%\tracertal.exe

%System%\tt.exe

%System%\twext.exe

%System%\web.exe

%System%\winboot.exe

%System%\winbuster.exe

%System%\wuauc1t.exe

%System%\xmloder.exe

%System%\zhuruqi.exe

%System%\zjypp.exe

%Temp%\090615-4-3.exe

%Temp%\abc.exe

%Temp%\backdoor.win32.pcclient.anp\0d9a26ba.exe

%Temp%\fb84fe05.exe

%Temp%\generator.exe

%Temp%\halpnt64\svchost.exe

%Temp%\ixp000.tmp\5.exe

%Temp%\rarsfx0\2.rft.exe

%Temp%\rarsfx0\server.exe

%Temp%\servicer.exe

%Temp%\svchost.exe

%Temp%\wr-1-1672.exe

%Temp%\yk.exe

%UserProfile%\tbfrfc.exe

%Windir%\addins\gmmua.exe

%Windir%\debug\29124d4aa81f.exe

%Windir%\debug\85e94af2bca4.exe

%Windir%\help\b41346efa848.exe

%Windir%\help\eb6c4499b05f.exe

%Windir%\help\f3c74e3fa248.exe

%Windir%\internet.exe

%Windir%\java\4d1b90fddf6b.exe

%Windir%\ld08.exe

%Windir%\live.messenger.com

%Windir%\qq.exe

%Windir%\system\lag.exe

%Windir%\system\siyaq.exe

%Windir%\temp\2008.exe

%Windir%\utility.exe

%Windir%\win32cam.exe

%Windir%\winlogon.exe

%Windir%\winset.exe

%Windir%\wr-1-1406.exe

%Windir%\xpupdate.exe

c:\aimww.exe

c:\cvcmpxm.com

c:\eeqt.exe

c:\ev.com

c:\ewqos.exe

c:\iok.exe

c:\jllwp.com

c:\syssafe.exe

c:\vshost.exe

c:\w.exe

c:\windows:svvchost.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.