ThreatExpert's Statistics for Program:Win32/Antivirus2008 [Microsoft]:

Program:Win32/Antivirus2008 [Microsoft] is also known as:

Threat Alias	Number of Incidents
Generic PUP.x [McAfee]	2,044
RogueAntiSpyware.AntivirusXP2008 [PC Tools]	1,939
Program:Win32/FakeSecSen [Microsoft]	1,802
TROJ_RENOS.ACG [Trend Micro]	1,782
Trojan.Fakealert.ACZ [Ikarus]	1,594
AntiVirus2008 [Symantec]	1,244
Trojan:Win32/FakeSecSen [Microsoft]	1,154
Troj/FakeVir-DE [Sophos]	1,122
not-a-virus:FraudTool.Win32.XPAntivirus.ld [Kaspersky Lab]	1,078
Downloader.MisleadApp [Symantec]	113
not-a-virus:FraudTool.Win32.UltimateAntivirus.cc [Kaspersky Lab]	110
Mal/FakeAV-F [Sophos]	103
TROJ_FAKEALER.VL [Trend Micro]	100
Trojan-Downloader.MisleadApp!sd6 [PC Tools]	70
Mal/EncPk-CZ [Sophos]	40
Generic.Win32.Malware.Antivirus2008 [Ikarus]	23
Trojan.Renos.NDB [Ikarus]	22
Trojan:Win32/FakeXPA [Microsoft]	22
not-a-virus:FraudTool.Win32.MSAntivirus.r [Kaspersky Lab]	20
Packed.Generic.177 [Symantec]	20
Trojan.Win32.FraudPack.gen [Kaspersky Lab]	15
Mal/EncPk-EI, Mal/EncPk-CZ [Sophos]	10
AntiVirus2009 [Symantec]	9
FakeAlert-AB.gen.a [McAfee]	9
WinFixer [McAfee]	9
Mal/FakeAV-E [Sophos]	8
Trojan-Downloader.Win32.FraudLoad.vbgz [Kaspersky Lab]	8
Mal/EncPk-CZ, Mal/EncPk-EI [Sophos]	7
not-a-virus:FraudTool.Win32.UltimateAntivirus.an [Kaspersky Lab]	7
Cryp_Pai-5 [Trend Micro]	6
TROJ_FAKEAV.JI [Trend Micro]	6
XPAntivirus [Symantec]	6
Downloader.gen.a [McAfee]	5
FakeAlert-AB [McAfee]	5
Generic Downloader.x [McAfee]	5
Generic FakeAlert.a [McAfee]	5
RogueAntiSpyware.MS_Antivirus [PC Tools]	5
FakeAlert-AB.gen.b [McAfee]	4
Generic.dx [McAfee]	4
Mal/EncPk-CZ, Mal/TibsPak [Sophos]	4
not-a-virus:FraudTool.Win32.MSAntivirus.g [Kaspersky Lab]	4
not-a-virus:FraudTool.Win32.UltimateAntivirus.as [Kaspersky Lab]	4
not-a-virus:FraudTool.Win32.UltimateAntivirus.bf [Kaspersky Lab]	4
not-a-virus:FraudTool.Win32.UltimateAntivirus.bj [Kaspersky Lab]	4
not-a-virus:FraudTool.Win32.UltimateAntivirus.bm [Kaspersky Lab]	4
Troj/FakeVir-FL [Sophos]	4
Trojan Horse [Symantec]	4
Downloader [Symantec]	3
FakeAlert-AB.dldr.gen.a [McAfee]	3
FakeAlert-AB.gen.c [McAfee]	3
Generic FakeAlert.b [McAfee]	3
RogueAntiSpyware.AntiVirusPro [PC Tools]	3
Troj/FakeVir-DI [Sophos]	3
Troj/Fakewa-Gen [Sophos]	3
Troj/Fakewa-Gen, Mal/FakeAV-F [Sophos]	3
Trojan-Downloader.Win32.FraudLoad [Ikarus]	3
FakeAlert-AB.gen [McAfee]	2
Generic PUP.z [McAfee]	2
Infostealer.Onlinegame [Symantec]	2
not-a-virus:FraudTool.Win32.AntiVirus2008.w [Kaspersky Lab]	2
not-a-virus:FraudTool.Win32.MSAntivirus.k [Kaspersky Lab]	2
not-a-virus:FraudTool.Win32.SystemAntivirus.a [Kaspersky Lab]	2
RogueAntiSpyware.Antivirus 2009 [PC Tools]	2
SecurityRisk.Downldr [Symantec]	2
Troj/FakeAV-CQ [Sophos]	2
Troj/FakeVir-FO [Sophos]	2
TROJ_FAKEAV.JZ [Trend Micro]	2
TROJ_FAKEAV.KA [Trend Micro]	2
TROJ_FRAUDLOA.WJ [Trend Micro]	2
TROJ_RENOS.ZQ [Trend Micro]	2
Trojan-Downloader.Win32.FraudLoad.vazz [Kaspersky Lab]	2
Virus.Win32.FakeAlert.S [Ikarus]	2
W32.Spybot.Worm [Symantec]	2
AntiVirusXP2008 [Symantec]	1
Backdoor.Win32.Delf.la [Kaspersky Lab]	1
FakeAlert-AB.dldr [McAfee]	1
FakeAlert-AB.dldr.gen [McAfee]	1
FakeAlert-AG.gen.a [McAfee]	1
FakeAlert-AntiVirusPro [McAfee]	1
Generic.Trojan-Downloader.FakeAlert [Ikarus]	1
Infostealer.Banker.C [Symantec]	1
IRC Trojan [Symantec]	1
Mal/EncPk-EP, Mal/TibsPk-D [Sophos]	1
Mal/EncPk-HF, Mal/EncPk-CZ, Mal/TibsPak [Sophos]	1
Mal/Spyzee-A [Sophos]	1
New Malware.ix [McAfee]	1
not-a-virus:Downloader.Win32.Antivirus2009.ak [Kaspersky Lab]	1
not-a-virus:Downloader.Win32.FraudLoad.ds [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.Agent.bu [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.AntiVirus2008.ac [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.AntiVirus2008.an [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.AntivirusXP2008.bk [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.AntivirusXP2008.e [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.MalWarrior.y [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.MSAntivirus.t [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.UltimateAntivirus.ai [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.UltimateAntivirus.aj [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.UltimateAntivirus.ak [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.UltimateAntivirus.al [Kaspersky Lab]	1
not-a-virus:FraudTool.Win32.UltimateAntivirus.aq [Kaspersky Lab]	1

Program:Win32/Antivirus2008 [Microsoft] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	82
	China	2
	Ukraine	1

Program:Win32/Antivirus2008 [Microsoft] is known to be created as:

%ProgramFiles%\aav\aav.exe

%ProgramFiles%\antivirus 2008 pro\antivirus-2008pro.exe

%ProgramFiles%\antivirus 2008\antvrs.exe

%ProgramFiles%\avm\avm.exe

%ProgramFiles%\rhc75dj0erc1\rhc75dj0erc1.exe

%ProgramFiles%\richvideocodec\d100747.exe

%ProgramFiles%\sav\sav.exe

%ProgramFiles%\uav\uav.exe

%ProgramFiles%\vav\vav.exe

%ProgramFiles%\wav\wav.exe

%System%\crypt_16.dll

%System%\ieupdates.exe

%System%\msxml71.dll

%System%\winupdate.exe

%Temp%\av 2008 xp aug 11 2008\rhcr75j0elap\rhcr75j0elap.exe

c:\ntdubect.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).