ThreatExpert's Statistics for New Malware.ix [McAfee]:

New Malware.ix [McAfee] is also known as:

Threat Alias	Number of Incidents
Backdoor.Win32.Hupigon [Ikarus]	35
VirTool:Win32/DelfInject.gen!X [Microsoft]	26
Mal/Generic-A [Sophos]	22
Backdoor.Graybird [Symantec]	16
Suspicious.MH690 [Symantec]	14
Backdoor:Win32/Small.D [Microsoft]	13
Mal/EncPk-CZ [Sophos]	12
Trojan Horse [Symantec]	12
Mal/UnkPack-Fam [Sophos]	11
VirTool.Win32.DelfInject [Ikarus]	11
Backdoor:Win32/Hupigon.gen!B [Microsoft]	10
Trojan-Downloader.Win32.Banload [Ikarus]	10
Win-Trojan/Xema.variant [AhnLab]	10
BKDR_HUPIGON.VEM [Trend Micro]	9
Backdoor.Win32.Hupigon.eqzd [Kaspersky Lab]	8
Trojan-Downloader.Win32.Small [Ikarus]	8
Backdoor.Paproxy [Symantec]	7
Downloader [Symantec]	7
Infostealer.Banker.C [Symantec]	6
Mal/EncPk-HJ [Sophos]	6
PWS:Win32/Zbot.gen!R [Microsoft]	6
Mal/FakeAle-KC [Sophos]	5
Program:Win32/XPAntiVirus [Microsoft]	5
Trojan.Crypt [Ikarus]	5
Backdoor.Graybird.GEN [PC Tools]	4
Backdoor.Hupigon.GTB [PC Tools]	4
Backdoor.Trojan [Symantec]	4
Mal/Behav-043 [Sophos]	4
Mal/Behav-058 [Sophos]	4
not-a-virus:RemoteAdmin.Win32.WinVNC.1370 [Kaspersky Lab]	4
TROJ_RENOS.AIG [Trend Micro]	4
Trojan.Crypt.ULPM [Ikarus]	4
Trojan.Win32.Agent.bqtf [Kaspersky Lab]	4
Trojan:Win32/Zbot.BF [Microsoft]	4
Trojan-Downloader.Win32.Agent.bhrl [Kaspersky Lab]	4
Trojan-Downloader.Win32.Agent.bsdp [Kaspersky Lab]	4
Trojan-Dropper.Delf [Ikarus]	4
Trojan-Spy.Win32.Zbot.edw [Kaspersky Lab]	4
Virus.Win32.IRCBot [Ikarus]	4
Win32/MalPackedB.suspicious [AhnLab]	4
XPAntivirus [Symantec]	4
Backdoor.Hupigon.GEN [PC Tools]	3
Backdoor.PcClient.Gen.3 [PC Tools]	3
Backdoor.Win32.Hupigon.gxpl [Kaspersky Lab]	3
Mal/Inet-Fam [Sophos]	3
PWS:Win32/Hupigon.gen!F [Microsoft]	3
Suspicious.Graybird.1 [Symantec]	3
Trojan:Win32/BHO.F [Microsoft]	3
Trojan-Dropper.Agent [Ikarus]	3
Trojan-Dropper.Win32.VB.hy [Ikarus]	3
Virus.Win32.Small [Ikarus]	3
Backdoor.Ceckno!sd6 [PC Tools]	2
Backdoor.Hupigon!sd6 [PC Tools]	2
Backdoor.Win32.Ceckno.cwr [Kaspersky Lab]	2
Backdoor.Win32.Hupigon.cdnd [Kaspersky Lab]	2
Backdoor.Win32.Hupigon.ffvj [Kaspersky Lab]	2
Backdoor.Win32.Hupigon.fisz [Kaspersky Lab]	2
Backdoor.Win32.Hupigon.goih [Kaspersky Lab]	2
Backdoor:Win32/Blackhole.U [Microsoft]	2
Backdoor:Win32/Hupigon [Microsoft]	2
Backdoor:Win32/Hupigon.gen!F [Microsoft]	2
Backdoor:Win32/PcClient.AI [Microsoft]	2
BackDoor-AWQ.b [McAfee]	2
Gen.Trojan [Ikarus]	2
Generic Downloader.x [McAfee]	2
HTML.Psyme.Gen [PC Tools]	2
Infostealer [Symantec]	2
Mal/Basine-C, Mal/EncPk-CO [Sophos]	2
Mal/Behav-004, Mal/Behav-058 [Sophos]	2
Mal/Behav-156 [Sophos]	2
Mal/Emogen-E [Sophos]	2
Mal/EncPk-FC [Sophos]	2
Mal/Hupig-E [Sophos]	2
Mal/Hupig-E, Mal/Behav-058 [Sophos]	2
Mal/WaledPak-A [Sophos]	2
not-a-virus:Downloader.Win32.FraudLoad.da [Kaspersky Lab]	2
PWS:Win32/Zbot.NY [Microsoft]	2
Troj/Spy-AV [Sophos]	2
Troj/Zbot-AX [Sophos]	2
TROJ_ZBOT.RP [Trend Micro]	2
Trojan.Agent!sd6 [PC Tools]	2
Trojan.Buzus.iij [Ikarus]	2
Trojan.Win32.CDur [Ikarus]	2
Trojan.Win32.Redosdru [Ikarus]	2
Trojan.Wsnpoem [Symantec]	2
Trojan-Downloader.Agent!sd6 [PC Tools]	2
Trojan-Downloader.Win32.FraudLoad.cvm [Kaspersky Lab]	2
Trojan-Spy.Win32.Zbot [Ikarus]	2
Trojan-Spy.Win32.Zbot.dxc [Kaspersky Lab]	2
Trojan-Spy.Win32.Zbot.qtb [Kaspersky Lab]	2
TrojanSpy:Win32/Zbot.gen!C [Microsoft]	2
VirTool:Win32/DelfInject [Microsoft]	2
VirTool:Win32/DelfInject.gen!L [Microsoft]	2
Virus.Win32.Hupigon.AMD [Ikarus]	2
Virus.Win32.Hupigon.EA [Ikarus]	2
Win-Trojan/DelfInject.718848 [AhnLab]	2
Win-Trojan/Downloader.374849 [AhnLab]	2
Win-Trojan/Hupigon.1259288 [AhnLab]	2
Win-Trojan/Hupigon.761344.B [AhnLab]	2
Win-Trojan/Hupigon.Gen [AhnLab]	2

New Malware.ix [McAfee] has the following possible countries of origin:

Origin		Number of Incidents
	China	120
	Russian Federation	39
	Ukraine	4
	Australia	2
	France	2
	Taiwan	2
	Finland	1
	Israel	1
	Netherlands	1
	Saudi Arabia	1
	Spain	1
	Turkey	1

New Malware.ix [McAfee] is known to be created as:

%ProgramFiles%\360safe\360safenew.exe

%ProgramFiles%\acdsee\tips.exe

%ProgramFiles%\ad muncher\admunch.exe

%ProgramFiles%\adobe\kaspersky.exe

%ProgramFiles%\antispywareguard\pp.exe

%ProgramFiles%\antivirusxp\antivirusxp.exe

%ProgramFiles%\avira\avira.exe

%ProgramFiles%\bbs.hksxs.com.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\common files\system\ado\osa.exe

%ProgramFiles%\common files\xiaogang.exe

%ProgramFiles%\deemodte\deemodte.exe

%ProgramFiles%\internet explorer\connection wizard\ereree.exe

%ProgramFiles%\internet explorer\connection wizard\inteesrt.exe

%ProgramFiles%\internet explorer\connection wizard\knfe.exe

%ProgramFiles%\internet explorer\iuc.exe

%ProgramFiles%\internet explorer\upiedz.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\microsoft common\wuauclt.exe

%ProgramFiles%\mpsvcs.exe

%ProgramFiles%\opremovba_chs1.exe

%ProgramFiles%\outlook express\fdfwrrt.exe

%ProgramFiles%\outlook express\fdssfrrt.exe

%ProgramFiles%\outlook express\fnbdrrt.exe

%ProgramFiles%\outlook express\ldings.exe

%ProgramFiles%\pplive\pplives.exe

%ProgramFiles%\r_server\remoteabc.exe

%ProgramFiles%\r_server\slsvc.exe

%ProgramFiles%\registrydoctor2008\pp.exe

%ProgramFiles%\remote\remote.exe

%ProgramFiles%\remotevc\removb.exe

%ProgramFiles%\sandlot games\legend of crystal valley\locv.exe

%ProgramFiles%\server\remote.exe

%ProgramFiles%\tcpmon.exe

%ProgramFiles%\virusremover2008\pp.exe

%ProgramFiles%\windows media player\wmpbands.exe

%ProgramFiles%\winrar\winlosginl.scr

%ProgramFiles%\winrar\winzip.exe

%Programs%\startup\userinit.exe

%System%\0.exe

%System%\a2e5e62.exe

%System%\c2c4b58.exe

%System%\c4c5b21.exe

%System%\c5d0e86.exe

%System%\dns.exe

%System%\drivers\etc\services.exe

%System%\drivers\services.exe

%System%\e4b1c20.exe

%System%\googlepnis.exe

%System%\itzaq.exe

%System%\jdma.exe

%System%\jlqk.exe

%System%\jqka.exe

%System%\jwmk.exe

%System%\nsvcs32.exe

%System%\ntos.exe

%System%\nvsvc32.exe

%System%\rs32net.exe

%System%\twex.exe

%System%\twext.exe

%System%\wdhcps.exe

%System%\wedr.exe

%System%\ziwudc.sys

%Temp%\090521-4-4.exe

%Temp%\090521-7-13.exe

%Temp%\090522-3-0.exe

%Temp%\090523-4-7.exe

%Temp%\090612-6-5.exe

%Temp%\42\42.exe

%Temp%\aion.exe

%Temp%\kafan virlist 2009.03.07\090307-c-34.exe

%Temp%\kafan virlist 2009.03.08\090308-9-6.exe

%Temp%\palyer.exe

%Temp%\rserver.exe

%UserProfile%\svchost.exe

%Windir%\clean.exe

%Windir%\ghfhgjhnssjdw.exe

%Windir%\hacker.com.cn.exe

%Windir%\mediacenter.exe

%Windir%\office.exe

%Windir%\programs\ini.exe

%Windir%\ravmondz.exe

%Windir%\remote.exe

%Windir%\remoteabc.exe

%Windir%\remotesql.exe

%Windir%\restlaer.exe

%Windir%\svchost.exe

%Windir%\systear.exe

%Windir%\tsmhn.exe

%Windir%\twuk_16.exe

%Windir%\win.exe

%Windir%\winword.exe

%Windir%\wodixuf.exe

%Windir%\wpservice.exe

%Windir%\xcds.exe

c:\autorun.exe

c:\temp\immmc41server_setup.exe

c:\temp\zfcdq98setup.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.