ThreatExpert's Statistics for Downloader.MisleadApp [Symantec]:

Downloader.MisleadApp [Symantec] is also known as:

Threat Alias	Number of Incidents
Trojan-Downloader.MisleadApp!sd6 [PC Tools]	990
Mal/Heuri-E, Mal/Emogen-N [Sophos]	581
New Malware.aj [McAfee]	512
not-a-virus:FraudTool.Win32.XPSecurityCenter.bk [Kaspersky Lab]	441
Generic Downloader.x [McAfee]	352
Trojan:Win32/Tibs.IF [Microsoft]	322
Trojan-Downloader.Win32.Hoaxer.a [Kaspersky Lab]	321
Mal/Dorf-E [Sophos]	252
TROJ_ZLOB.CEA [Trend Micro]	244
TROJ_RENOS.BX [Trend Micro]	219
Trojan.Win32.Qhost.aes [Kaspersky Lab]	204
Trojan.Qhost!sd5 [PC Tools]	199
Trojan.Peed [Ikarus]	177
Trojan.Win32.BHO.eks [Kaspersky Lab]	156
Generic PUP.x [McAfee]	137
Trojan-Downloader.Hoaxer!sd6 [PC Tools]	125
TROJ_FAKEALER.VL [Trend Micro]	116
Downloader.gen.a [McAfee]	114
Program:Win32/Antivirus2008 [Microsoft]	113
not-a-virus:FraudTool.Win32.UltimateAntivirus.cc [Kaspersky Lab]	110
Mal/FakeAV-F [Sophos]	100
not-a-virus:FraudTool.Win32.XPSecurityCenter.ay [Kaspersky Lab]	92
Mal/Generic-A [Sophos]	89
Generic PUP.z [McAfee]	86
Adware.UltimateDefend.C [PC Tools]	79
Trojan-Downloader.FakeAlert.C [PC Tools]	77
Trojan-Downloader.Win32.Adload.ma [Kaspersky Lab]	72
Trojan.FakeAlert [PC Tools]	62
Trojan-Downloader.MisleadApp!sd5 [PC Tools]	53
TROJ_RENOS.ZQ [Trend Micro]	52
Trojan.Win32.Tibs [Ikarus]	50
Mal/TinyDL-T, Mal/Heuri-E, Mal/Emogen-G [Sophos]	46
Generic FakeAlert.d [McAfee]	43
AntiVirus2008 [Symantec]	42
not-a-virus:FraudTool.Win32.MSAntivirus.r [Kaspersky Lab]	40
Mal/EncPk-EQ [Sophos]	38
FakeAlert-AG [McAfee]	36
Trojan-Downloader.Win32.Exchanger.acd [Kaspersky Lab]	36
TrojanDownloader:Win32/Cbeplay.I [Microsoft]	36
Trojan.DL.Winrean.A [PC Tools]	33
TrojanDownloader:Win32/FakeRean.gen!C [Microsoft]	33
Virus.Win32.Sality [Ikarus]	33
Mal/FakeAV-E [Sophos]	32
Trojan.Win32.BHO.fby [Kaspersky Lab]	32
TROJ_ZLOB.EXT [Trend Micro]	31
Generic.dx [McAfee]	30
Mal/EncPk-CZ [Sophos]	30
FakeAlert-XPSecCenter [McAfee]	28
Generic PUP.a [McAfee]	28
Trojan.BHO!sd6 [PC Tools]	28
XPAntivirus [Symantec]	28
FakeAlert-AQ [McAfee]	27
Mal/EncPk-BW [Sophos]	27
not-a-virus:FraudTool.Win32.XPSecurityCenter.p [Kaspersky Lab]	27
Trojan.Fakeavalert [Symantec]	25
Trojan:Win32/FakeSecSen [Microsoft]	25
Mal/Generic-A, Mal/EncPk-DA [Sophos]	24
RogueAntiSpyware.AntivirusXP2008 [PC Tools]	24
Troj/BHO-GI [Sophos]	24
Troj/Zlob-ALO [Sophos]	24
TROJ_BHO.SP [Trend Micro]	24
Trojan:Win32/FakeAlert [Microsoft]	24
Generic FakeAlert.a [McAfee]	22
Mal/EncPk-DA [Sophos]	22
not-a-virus:FraudTool.Win32.MalwareProtector.d [Kaspersky Lab]	22
not-a-virus:FraudTool.Win32.Reanimator.a [Kaspersky Lab]	22
Troj/FakeAV-AQ [Sophos]	22
Trojan:Win32/Renos.BAH [Microsoft]	22
Troj/Virtum-Gen [Sophos]	21
Trojan-Downloader.Win32.FakeRean [Ikarus]	21
Generic.Win32.Malware.Antivirus2008 [Ikarus]	20
not-a-virus:FraudTool.Win32.MSAntivirus.v [Kaspersky Lab]	20
TROJ_FAKEAV.JI [Trend Micro]	20
TrojanDownloader:Win32/Renos [Microsoft]	19
Backdoor.Win32.VB [Ikarus]	18
not-a-virus:AdWare.Win32.CashDeluxe [Ikarus]	18
RogueAntiSpyware.Antivirus 2008 [PC Tools]	18
Trojan-Downloader.Exchanger!sd6 [PC Tools]	18
Adware.Vundo.Gen!Pac.21 [PC Tools]	16
Mal/Heuri-E, Mal/Emogen-G [Sophos]	16
MalwareProtector2008 [Symantec]	16
not-a-virus:AdWare.Win32.BHO.efr [Kaspersky Lab]	16
Troj/Zlob-ALK [Sophos]	16
Trojan.Win32.BHO.dyu [Kaspersky Lab]	16
Virus.Win32.FakeAlert.S [Ikarus]	16
Vundo.gen.c [McAfee]	16
FakeAlert-AB [McAfee]	15
Program:Win32/Antispycheck [Microsoft]	15
Puper [McAfee]	15
RogueAntiSpyware.VirusResponseLab [PC Tools]	15
Troj/FakeAle-JO [Sophos]	15
TROJ_RENOS.YG [Trend Micro]	15
Trojan-Dropper.Agent [Ikarus]	15
TrojanDropper:Win32/Delf.BL [Microsoft]	15
FakeAlert-R.dll [McAfee]	14
Trojan-Downloader.Win32.FraudLoad.vdnu [Kaspersky Lab]	14
Virus.Win32.Virut.au [Ikarus]	14
not-a-virus:AdWare.Win32.AdBand.ac [Kaspersky Lab]	13
Troj/Agent-HDV [Sophos]	13
AdClicker-FC [McAfee]	12

Downloader.MisleadApp [Symantec] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	174
	Ukraine	112
	Australia	17
	Netherlands	10
	Germany	7
	China	4
	Italy	2
	France	1
	Poland	1
	Spain	1

Downloader.MisleadApp [Symantec] is known to be created as:

%AppData%\findfast.exe

%AppData%\printer.exe

%CommonAppData%\bspijwzm\ryxujijy.exe

%CommonAppData%\evexshcr\itwrgtat.exe

%CommonAppData%\fgtcpefi\tkvqdqzg.exe

%CommonAppData%\hyhybuhu\lyjuzcze.exe

%CommonAppData%\inmjsben\kjyxwvqj.exe

%CommonAppData%\zgxmvqhc\zujmjglw.exe

%CommonPrograms%\startup\autorun.exe

%Profiles%\mscrss.exe

%ProgramFiles%\antispywarexp2009\uninstall.exe

%ProgramFiles%\antiviruspro2009\uninstall.exe

%ProgramFiles%\microsoft common\wuauclt.exe

%ProgramFiles%\msa\msa.exe

%ProgramFiles%\netproject\scu.exe

%ProgramFiles%\pchealthcenter\1.exe

%ProgramFiles%\pchealthcenter\2.exe

%ProgramFiles%\pchealthcenter\3.exe

%ProgramFiles%\pchealthcenter\4.exe

%ProgramFiles%\pchealthcenter\5.exe

%ProgramFiles%\pchealthcenter\7.exe

%ProgramFiles%\qdrmodule\qdrmodule16.exe

%ProgramFiles%\rhc75dj0erc1\rhc75dj0erc1.exe

%ProgramFiles%\s2f.exe

%ProgramFiles%\sav\sav.exe

%ProgramFiles%\vav\vav.exe

%ProgramFiles%\virslab\virslab.exe

%ProgramFiles%\xp_antispyware\uninstall.exe

%ProgramFiles%\xpprotectioncenter\uninstall.exe

%Programs%\startup\findfast.exe

%Programs%\startup\svchost.exe

%System%\1033\xyz9\y141.exe

%System%\agin_bho.dll

%System%\agino32.dll

%System%\agintas.dll

%System%\algg.exe

%System%\allmax.dll

%System%\awtqnkhe.dll

%System%\bapdfan.dll

%System%\bapdfo.dll

%System%\baplsan.dll

%System%\bho_e.dll

%System%\bho2_e.dll

%System%\bho2extn.dll

%System%\bhoext.dll

%System%\brastk.exe

%System%\braviax.exe

%System%\bupdfan.dll

%System%\busdgo.dll

%System%\cbevtsvc.exe

%System%\cedifnsa.dll

%System%\cedifnso.dll

%System%\cf10\mdkrove3.exe

%System%\cinmon.exe

%System%\clbdll.dll

%System%\codef.dll

%System%\coni.dll

%System%\copol.dll

%System%\cosyspda.dll

%System%\dadef.dll

%System%\dani.dll

%System%\dapol.dll

%System%\dfxscc.dll

%System%\diga32.dll

%System%\digarox.dll

%System%\digonyx.dll

%System%\dombho.dll

%System%\domie.dll

%System%\domiebho.dll

%System%\domsys.dll

%System%\domview.dll

%System%\domwin.dll

%System%\duzakwq.dll

%System%\explorer32.exe

%System%\export\19yz\11y1.exe

%System%\export\yy11\19yz.exe

%System%\f10\kscomdll3.exe

%System%\getfn32.dll

%System%\getsn32.dll

%System%\getwn32.dll

%System%\guadq.dll

%System%\hombho.dll

%System%\homie.dll

%System%\homiebho.dll

%System%\idef.dll

%System%\ie_e.dll

%System%\ieexplorer32.exe

%System%\ieext.dll

%System%\ieextn.dll

%System%\ieupdates.exe

%System%\iftuyszv.exe

%System%\ini.dll

%System%\ipol.dll

%System%\lphc35dj0erc1.exe

%System%\micro1\win5.exe

%System%\mopona.dll

%System%\mscrss.exe

%System%\msvbcr40.dll

%System%\msxml71.dll

%System%\mui\0407\y9yz\zyy9.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).