ThreatExpert's Statistics for Downloader.MisleadApp [Symantec]:

Downloader.MisleadApp [Symantec] is also known as:

Threat Alias	Number of Incidents
Trojan-Downloader.MisleadApp!sd6 [PC Tools]	1,184
Generic Downloader.x [McAfee]	514
Mal/Heuri-E, Mal/Emogen-N [Sophos]	350
Trojan:Win32/Tibs.IF [Microsoft]	340
New Malware.aj [McAfee]	338
Trojan-Downloader.Win32.Hoaxer.a [Kaspersky Lab]	336
Mal/Dorf-E [Sophos]	295
not-a-virus:FraudTool.Win32.XPSecurityCenter.bk [Kaspersky Lab]	256
TROJ_ZLOB.CEA [Trend Micro]	244
TROJ_RENOS.BX [Trend Micro]	219
Mal/Generic-A [Sophos]	212
Trojan.Win32.Qhost.aes [Kaspersky Lab]	204
Trojan.Qhost!sd5 [PC Tools]	199
Trojan.Peed [Ikarus]	194
Trojan.Win32.BHO.eks [Kaspersky Lab]	156
not-a-virus:FraudTool.Win32.WinSpywareProtect.dw [Kaspersky Lab]	144
Generic PUP.x [McAfee]	142
Trojan-Downloader.Hoaxer!sd6 [PC Tools]	136
Downloader.gen.a [McAfee]	125
Generic.dx [McAfee]	125
Mal/EncPk-HL [Sophos]	120
TROJ_FAKEALER.VL [Trend Micro]	116
Program:Win32/Antivirus2008 [Microsoft]	113
Mal/EncPk-EQ [Sophos]	112
not-a-virus:FraudTool.Win32.UltimateAntivirus.cc [Kaspersky Lab]	110
Mal/FakeAV-F [Sophos]	100
Trojan.Win32.FakeSpypro [Ikarus]	80
Trojan:Win32/FakeSpypro [Microsoft]	80
Adware.UltimateDefend.C [PC Tools]	79
Troj/FakeVir-JX [Sophos]	78
Generic Dropper.bu [McAfee]	77
Trojan-Clicker.Win32.Klik [Ikarus]	77
Generic PUP.z [McAfee]	75
Trojan-Downloader.Win32.Small [Ikarus]	75
TrojanDownloader:Win32/Renos [Microsoft]	75
Trojan:Win32/Tibs.JB [Microsoft]	72
Trojan-Downloader.Win32.Adload.ma [Kaspersky Lab]	72
TrojanDownloader:Win32/Renos.DU [Microsoft]	71
Trojan.FakeAlert [PC Tools]	70
Adware.Agent.ZO [PC Tools]	68
not-a-virus:FraudTool.Win32.XPSecurityCenter.ay [Kaspersky Lab]	67
Adware-BHO.gen.f [McAfee]	65
Trojan-Dropper.Agent [Ikarus]	63
Trojan.Win32.Tibs [Ikarus]	61
Mal/EncPk-HL, Mal/FakeVirPk-A [Sophos]	60
Trojan:Win32/Ertfor.A [Microsoft]	60
Mal/EncPk-CZ [Sophos]	57
Trojan:Win32/FakeXPA [Microsoft]	56
Trojan-Downloader.FakeAlert.C [PC Tools]	54
Trojan-Downloader.MisleadApp!sd5 [PC Tools]	54
Mal/FakeAV-Y [Sophos]	53
TROJ_RENOS.ZQ [Trend Micro]	52
Trojan-Downloader.Win32.FakeRean [Ikarus]	51
Generic.dx!re [McAfee]	48
Trojan-Downloader.Win32.BHO.nby [Kaspersky Lab]	48
Win-Trojan/Zpack.15000.F [AhnLab]	48
not-a-virus:FraudTool.Win32.SystemSecurity.cc [Kaspersky Lab]	47
Mal/TinyDL-T, Mal/Heuri-E, Mal/Emogen-G [Sophos]	46
Generic.Win32.Malware [Ikarus]	45
Trojan.BHO!sd6 [PC Tools]	44
Mal/FakeAV-AA [Sophos]	43
TrojanDownloader:Win32/FakeRean.gen!C [Microsoft]	43
Virus.Win32.SdBot [Ikarus]	43
AntiVirus2008 [Symantec]	42
not-a-virus:AdWare.Win32.CashDeluxe [Ikarus]	40
not-a-virus:FraudTool.Win32.MSAntivirus.r [Kaspersky Lab]	40
FakeAlert-WinwebSecurity.gen [McAfee]	39
Trojan-Downloader.Win32.Renos.DU [Ikarus]	39
Win-Trojan/Xema.variant [AhnLab]	39
TROJ_ZLOB.EXT [Trend Micro]	38
Trojan-Downloader.Win32.Small.agdo [Kaspersky Lab]	38
FakeAlert-AG [McAfee]	36
not-a-virus:AdWare.Win32.BHO.efr [Kaspersky Lab]	36
Trojan.Crypt [Ikarus]	36
Trojan.Dropper [Symantec]	36
Trojan.Win32.BHO.fby [Kaspersky Lab]	36
Trojan.Win32.BHO.hcd [Kaspersky Lab]	36
Trojan-Clicker.Win32.Small.xj [Kaspersky Lab]	36
Trojan-Downloader.Win32.Exchanger.acd [Kaspersky Lab]	36
TrojanDownloader:Win32/Cbeplay.I [Microsoft]	36
Program:Win32/Antispycheck [Microsoft]	35
RogueAntiSpyware.VirusResponseLab [PC Tools]	35
Troj/FakeAle-JO [Sophos]	35
TrojanDownloader:Win32/FakeRean [Microsoft]	34
Generic PUP.a [McAfee]	33
Mal/FakeAV-E [Sophos]	33
Trojan.DL.Winrean.A [PC Tools]	33
Virus.Win32.Sality [Ikarus]	33
Win32.SuspectCrc [Ikarus]	33
FakeAlert-XPSecCenter [McAfee]	32
Mal/TinyDL-T [Sophos]	32
Mal/FakeAV-AD [Sophos]	31
Trojan:Win32/FakeSecSen [Microsoft]	31
FakeAlert-AQ [McAfee]	30
Generic FakeAlert.d [McAfee]	30
Generic.Win32.Malware.Antispycheck [Ikarus]	30
Trojan.Win32.BHO.hpd [Kaspersky Lab]	30
Win-Trojan/Clicker.45056.D [AhnLab]	30
Mal/FakeVirPk-A [Sophos]	29
not-a-virus:FraudTool.Win32.XPSecurityCenter.p [Kaspersky Lab]	29

Downloader.MisleadApp [Symantec] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	325
	Ukraine	175
	Australia	17
	Germany	12
	Netherlands	10
	China	7
	Republic of Korea	6
	Switzerland	3
	Italy	2
	United Kingdom	2
	Austria	1
	France	1
	Poland	1
	Spain	1
	Thailand	1

Downloader.MisleadApp [Symantec] is known to be created as:

%AppData%\adobe\manager.exe

%AppData%\findfast.exe

%AppData%\printer.exe

%CommonAppData%\12911254\12911254.exe

%CommonAppData%\13116404\13116404.exe

%CommonAppData%\13147814\13147814.exe

%CommonAppData%\13160004\13160004.exe

%CommonAppData%\2deb8\wp064.exe

%CommonAppData%\93157806\93157806.exe

%CommonAppData%\bspijwzm\ryxujijy.exe

%CommonAppData%\e4a12b7\wpe4a1.exe

%CommonAppData%\evexshcr\itwrgtat.exe

%CommonAppData%\fgtcpefi\tkvqdqzg.exe

%CommonAppData%\fgxynoty\zkxwtgns.exe

%CommonAppData%\hyhybuhu\lyjuzcze.exe

%CommonAppData%\ifuxonqd\wxejspqf.exe

%CommonAppData%\inmjsben\kjyxwvqj.exe

%CommonAppData%\odmfidez\atkjanyv.exe

%CommonAppData%\svhost.exe

%CommonAppData%\vknyjqxy\nklenazq.exe

%CommonAppData%\wvezalwf\grwtqpyt.exe

%CommonAppData%\zapiryny\rwbojytw.exe

%CommonAppData%\zgxmvqhc\zujmjglw.exe

%CommonPrograms%\startup\autorun.exe

%Profiles%\mscrss.exe

%ProgramFiles%\antispywarexp2009\uninstall.exe

%ProgramFiles%\antiviruspro2009\uninstall.exe

%ProgramFiles%\antivirusxp\antivirusxp.exe

%ProgramFiles%\applications\wcs.exe

%ProgramFiles%\cmvideoplugin\setup.exe

%ProgramFiles%\dot1xcfg\dot1xcfg.exe

%ProgramFiles%\microsoft common\wuauclt.exe

%ProgramFiles%\msa\msa.exe

%ProgramFiles%\netproject\scu.exe

%ProgramFiles%\pchealthcenter\1.exe

%ProgramFiles%\pchealthcenter\2.exe

%ProgramFiles%\pchealthcenter\3.exe

%ProgramFiles%\pchealthcenter\4.exe

%ProgramFiles%\pchealthcenter\5.exe

%ProgramFiles%\pchealthcenter\7.exe

%ProgramFiles%\qdrmodule\qdrmodule16.exe

%ProgramFiles%\rhc75dj0erc1\rhc75dj0erc1.exe

%ProgramFiles%\richvideocodec\escan.exe

%ProgramFiles%\s2f.exe

%ProgramFiles%\sav\sav.exe

%ProgramFiles%\total protect 2009\uninstall.exe

%ProgramFiles%\vav\vav.exe

%ProgramFiles%\virslab\virslab.exe

%ProgramFiles%\xp_antispyware\uninstall.exe

%ProgramFiles%\xpprotectioncenter\uninstall.exe

%Programs%\startup\findfast.exe

%Programs%\startup\svchost.exe

%System%\1033\xyz9\y141.exe

%System%\adsndsn.exe

%System%\agin_bho.dll

%System%\agino32.dll

%System%\agintas.dll

%System%\algg.exe

%System%\allmax.dll

%System%\awtqnkhe.dll

%System%\bapdfan.dll

%System%\bapdfo.dll

%System%\baplsan.dll

%System%\bekbn.dll

%System%\bho_e.dll

%System%\bho2_e.dll

%System%\bho2extn.dll

%System%\bhoext.dll

%System%\brastk.exe

%System%\braviax.exe

%System%\bupdfan.dll

%System%\busdgo.dll

%System%\cbevtsvc.exe

%System%\cbxpphfd.dll

%System%\cedifnsa.dll

%System%\cedifnso.dll

%System%\censhel.dll

%System%\cf10\mdkrove3.exe

%System%\cinmon.exe

%System%\clbdll.dll

%System%\codef.dll

%System%\coni.dll

%System%\copol.dll

%System%\cosyspda.dll

%System%\cssrss.exe

%System%\ctfmona.exe

%System%\dadef.dll

%System%\dani.dll

%System%\dapol.dll

%System%\dfxscc.dll

%System%\diga32.dll

%System%\digarox.dll

%System%\digiwet.dll

%System%\digonyx.dll

%System%\dllcache\userinit.exe

%System%\dombho.dll

%System%\domie.dll

%System%\domiebho.dll

%System%\domsys.dll

%System%\domview.dll

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).