ThreatExpert's Statistics for Trojan-Downloader.Agent!sd6 [PC Tools]:

Trojan-Downloader.Agent!sd6 [PC Tools] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	4,805
Generic Downloader.x [McAfee]	4,201
Trojan Horse [Symantec]	3,674
Trojan-Downloader.Win32.Agent.agzq [Kaspersky Lab]	3,300
Trojan-Dropper.Agent [Ikarus]	2,921
Virus.Win32.Virut.br [Ikarus]	2,805
Downloader [Symantec]	2,536
Trojan-Dropper [Ikarus]	675
W32/Almanahe.dll [McAfee]	651
Troj/Renos-BS [Sophos]	650
Trojan-Downloader.Win32.Agent.arpa [Kaspersky Lab]	650
PE_CORELINK.C-O [Trend Micro]	630
Troj/Agent-FUR [Sophos]	630
Trojan-Downloader.Win32.Agent.bsi [Kaspersky Lab]	630
Trojan:Win32/Almanahe.E.dll [Microsoft]	609
W32.Almanahe.B [Symantec]	609
Trojan-Downloader.Win32.Agent.bexw [Kaspersky Lab]	560
Trojan-Downloader.Small [Ikarus]	500
Mal/TibsPak [Sophos]	441
Win-Trojan/Downloader.7680.MI [AhnLab]	428
Trojan:Win32/Tibs.gen!lds [Microsoft]	423
Trojan-Downloader.Win32.Agent.bhyn [Kaspersky Lab]	416
Trojan-Downloader.Win32.Agent.bozt [Kaspersky Lab]	360
Win-Trojan/Yanshi.3072 [AhnLab]	360
Trojan-Downloader.Win32.Agent.bccp [Kaspersky Lab]	336
Win-Trojan/Xema.variant [AhnLab]	266
Trojan.Fakeavalert [Symantec]	253
Win-Trojan/Alman.46592 [AhnLab]	252
TrojanDownloader:Win32/Troxen!rts [Microsoft]	236
Generic.f [McAfee]	224
Win32.SuspectCrc [Ikarus]	136
Mal/PWS-Fam [Sophos]	112
Trojan:Win32/Almanahe.C [Microsoft]	109
Trojan-Downloader.Win32.Agent.yuv [Kaspersky Lab]	109
Downloader-BJK [McAfee]	98
TrojanDownloader:Win32/Agent!rts [Microsoft]	97
Trojan-Downloader.Win32.Agent.bgnd [Kaspersky Lab]	96
TrojanDownloader:Win32/Tiny.AP [Microsoft]	81
Trojan.Generic [Ikarus]	80
Troj/Vundeb-A [Sophos]	67
Trojan-Downloader.Win32.Agent.aukz [Kaspersky Lab]	67
Trojan-Downloader.Win32.Agent.ahcg [Kaspersky Lab]	64
Trojan-Downloader.Win32.Agent.bcdc [Kaspersky Lab]	57
Win-Trojan/Agent.104960.AF [AhnLab]	55
Infostealer.Gampass [Symantec]	52
Trojan-Downloader.Win32.Agent.bgpo [Kaspersky Lab]	52
Cutwail [McAfee]	50
W32.SillyDC [Symantec]	48
BehavesLike [Ikarus]	43
Trojan-Downloader.Win32.Agent.bhfr [Kaspersky Lab]	43
Trojan-Downloader.Win32.Agent.akuo [Kaspersky Lab]	42
Generic.dx [McAfee]	41
Mal/Packer [Sophos]	41
Trojan-Downloader.Win32.Agent.aigp [Kaspersky Lab]	41
Trojan.Dropper [Symantec]	40
Win-Trojan/Downloader.20480.WN [AhnLab]	40
Trojan.Pandex [Symantec]	38
PE_FLOB.A [Trend Micro]	36
Troj/Dloadr-BYW [Sophos]	36
W32.Pavsee.C [Symantec]	36
Downloader.gen.a [McAfee]	35
Trojan-Downloader.Agent [Ikarus]	35
Trojan-Downloader.Win32.Agent.beqi [Kaspersky Lab]	35
Mal/Autorun-F, Mal/Packer, Mal/Behav-024, Mal/EncPk-BW, Mal/Behav-009 [Sophos]	31
W32.SillyFDC [Symantec]	31
W32/Autorun.worm.bl [McAfee]	31
Trojan-Downloader.Win32.Agent.anjl [Kaspersky Lab]	30
New Malware.n [McAfee]	29
TrojanDownloader:Win32/Qibongi.A [Microsoft]	28
W32.Pavsee.A [Symantec]	28
Trojan:Win32/Insebro.C [Microsoft]	27
TrojanDownloader:Win32/Kolilks.A [Microsoft]	27
Win-Trojan/Hupigon.Gen [AhnLab]	27
FakeAlert-AB [McAfee]	25
TROJ_DLOADR.EO [Trend Micro]	25
Trojan.Fakeav.BE [Ikarus]	25
Win-Trojan/Agent.3200.I [AhnLab]	25
Backdoor.Trojan [Symantec]	24
Generic.PWS.Games [Ikarus]	24
Troj/DwnLdr-HJF [Sophos]	24
Trojan-Downloader.Win32.Agent.ahpi [Kaspersky Lab]	24
Trojan-Downloader.Win32.Agent.bpmk [Kaspersky Lab]	24
TrojanDownloader:Win32/VB.GS [Microsoft]	24
Downloader-BMO [McAfee]	23
TrojanDownloader:Win32/Small.gen!AP [Microsoft]	23
Trojan-Downloader [Ikarus]	22
TrojanDownloader:Win32/Tracur.A [Microsoft]	21
Win32.Alman.B [PC Tools]	21
Trojan-Spy.Win32.Banker.anv [Ikarus]	20
Trojan-Downloader.Win32.Agent.bgtc [Kaspersky Lab]	19
Mal/Behav-024 [Sophos]	18
Trojan.Vundo [Symantec]	18
Trojan:Win32/Alureon.gen!O [Microsoft]	18
Trojan-Downloader.Win32.Agent.bhmm [Kaspersky Lab]	18
TROJ_VUNDO.ZRO [Trend Micro]	17
VirTool:Win32/CeeInject.gen!A [Microsoft]	17
Worm.Win32.Conficker [Ikarus]	17
Backdoor.Win32.Frauder.in [Kaspersky Lab]	16
Rootkit.Agent [Ikarus]	16
Trojan-Downloader.Win32.Agent.ahbi [Kaspersky Lab]	16

Trojan-Downloader.Agent!sd6 [PC Tools] has the following possible countries of origin:

Origin		Number of Incidents
	Ukraine	328
	Slovenia	275
	China	101
	Russian Federation	18
	Brazil	11
	France	1
	Germany	1
	Iceland	1
	Netherlands	1
	Poland	1
	Republic of Korea	1
	United Kingdom	1

Trojan-Downloader.Agent!sd6 [PC Tools] is known to be created as:

%AppData%\helper.exe

%AppData%\microsoft\dtsc\17120.exe

%AppData%\service.exe

%AppData%\spool.exe

%CommonAppData%\fyhilcnk\nevedqfm.exe

%LocalSettings%\tempimages\spf11.exe

%ProgramFiles%\1nwfro82s.exe

%ProgramFiles%\38gqm7m7g.exe

%ProgramFiles%\6r03g5ji.exe

%ProgramFiles%\71qvbzg.exe

%ProgramFiles%\cinvig\iek.exe

%ProgramFiles%\common files\designer\wsock32.dll

%ProgramFiles%\common files\mssoap\binaries\wsock32.dll

%ProgramFiles%\common files\mssoap\wsock32.dll

%ProgramFiles%\common files\odbc\data sources\wsock32.dll

%ProgramFiles%\common files\odbc\wsock32.dll

%ProgramFiles%\common files\safesys.exe

%ProgramFiles%\common files\services\wsock32.dll

%ProgramFiles%\common files\speechengines\microsoft\wsock32.dll

%ProgramFiles%\common files\speechengines\wsock32.dll

%ProgramFiles%\common files\system\ado\wsock32.dll

%ProgramFiles%\common files\system\msadc\wsock32.dll

%ProgramFiles%\common files\system\ole db\wsock32.dll

%ProgramFiles%\common files\system\wsock32.dll

%ProgramFiles%\common files\system\x_msy32.dll

%ProgramFiles%\common files\wise installation wizard\wsock32.dll

%ProgramFiles%\common files\wsock32.dll

%ProgramFiles%\complus applications\wsock32.dll

%ProgramFiles%\internet explorer\connection wizard\wsock32.dll

%ProgramFiles%\internet explorer\mui\0409\wsock32.dll

%ProgramFiles%\internet explorer\mui\wsock32.dll

%ProgramFiles%\internet explorer\signup\wsock32.dll

%ProgramFiles%\internet explorer\svch0st.exe

%ProgramFiles%\internet explorer\wsock32.dll

%ProgramFiles%\lpvideoplugin\5378.exe

%ProgramFiles%\messenger\msgmr.dll

%ProgramFiles%\messenger\wsock32.dll

%ProgramFiles%\microsoft common\wuauclt.exe

%ProgramFiles%\microsoft frontpage\version3.0\bin\wsock32.dll

%ProgramFiles%\microsoft frontpage\version3.0\wsock32.dll

%ProgramFiles%\microsoft frontpage\wsock32.dll

%ProgramFiles%\movie maker\wsock32.dll

%ProgramFiles%\msn gaming zone\windows\wsock32.dll

%ProgramFiles%\msn gaming zone\wsock32.dll

%ProgramFiles%\msn\msncorefiles\install\wsock32.dll

%ProgramFiles%\msn\msncorefiles\oobe\wsock32.dll

%ProgramFiles%\msn\msncorefiles\wsock32.dll

%ProgramFiles%\msn\msnia\wsock32.dll

%ProgramFiles%\msn\msninstaller\wsock32.dll

%ProgramFiles%\msn\wsock32.dll

%ProgramFiles%\netmeeting\wsock32.dll

%ProgramFiles%\ohafhbqulmr.exe

%ProgramFiles%\online services\wsock32.dll

%ProgramFiles%\outlook express\wsock32.dll

%ProgramFiles%\quickdownloadpack\qdpack.exe

%ProgramFiles%\skmw\iek.exe

%ProgramFiles%\uninstall information\wsock32.dll

%ProgramFiles%\web publish\logfiles\wsock32.dll

%ProgramFiles%\web publish\wsock32.dll

%ProgramFiles%\windows media player\icons\wsock32.dll

%ProgramFiles%\windows media player\msplay32.exe

%ProgramFiles%\windows media player\sample playlists\wsock32.dll

%ProgramFiles%\windows media player\skins\wsock32.dll

%ProgramFiles%\windows media player\visualizations\wsock32.dll

%ProgramFiles%\windows media player\wsock32.dll

%ProgramFiles%\windows nt\accessories\wsock32.dll

%ProgramFiles%\windows nt\pinball\wsock32.dll

%ProgramFiles%\windows nt\wsock32.dll

%ProgramFiles%\windowsupdate\wsock32.dll

%ProgramFiles%\winpcap\wsock32.dll

%ProgramFiles%\wsock32.dll

%Programs%\startup\userinit.exe

%System%\_temp.exe

%System%\72elwv7.exe

%System%\arjxsjdll.dll

%System%\cbevtsvc.exe

%System%\compatui32.dll

%System%\compbatc.dll

%System%\crypts.dll

%System%\cssrss.exe

%System%\ddraw32.dll

%System%\dllcache\appmgmts.dll

%System%\dpserial32.dll

%System%\drivers\alg.exe

%System%\drivers\anu41.sys

%System%\drivers\ctfmon.exe

%System%\drivers\easydowns.sys

%System%\drivers\gpx63.sys

%System%\drivers\gqw17.sys

%System%\drivers\hdl53.sys

%System%\drivers\iug56.sys

%System%\drivers\jvc51.sys

%System%\drivers\mud85.sys

%System%\drivers\nfr.sys

%System%\drivers\oxg30.sys

%System%\drivers\services.exe

%System%\duba.exe

%System%\eyfwin.dll

%System%\fmifs32.dll

%System%\fpwpp32.dll

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).