ThreatExpert's Statistics for Mal/EncPk-EQ [Sophos]:

Mal/EncPk-EQ [Sophos] is also known as:

Threat Alias	Number of Incidents
Trojan.Virantix.C [Symantec]	508
Generic Dropper.bu [McAfee]	404
TrojanDownloader:Win32/Renos [Microsoft]	357
Trojan-Clicker.Win32.Klik [Ikarus]	294
Generic FakeAlert.d [McAfee]	266
Trojan.Win32.FakePowav [Ikarus]	217
TrojanDownloader:Win32/FakeRean.gen!C [Microsoft]	193
Trojan.Fakeavalert [Symantec]	171
VirTool.Win32.Obfuscator.DF [Ikarus]	136
FakeAlert-XPSecCenter [McAfee]	131
Adware.Agent.ZO [PC Tools]	112
Downloader.MisleadApp [Symantec]	111
Trojan-Downloader.Win32.FraudLoad.vdjr [Kaspersky Lab]	108
Trojan:Win32/Wantvi.I [Microsoft]	104
Trojan.Win32.Agent2.aul [Kaspersky Lab]	100
Trojan.Agent [PC Tools]	90
Win-Trojan/Xema.variant [AhnLab]	81
Virus.Win32.Virut.au [Ikarus]	76
Trojan.Virantix!sd6 [PC Tools]	63
Backdoor.Win32.UltimateDefender.gen [Kaspersky Lab]	62
Backdoor.Tidserv [Symantec]	53
Trojan:Win32/Ertfor.A [Microsoft]	52
Trojan-Downloader.Win32.FakeRean [Ikarus]	47
Virus.Win32.Zbot.AQM [Ikarus]	39
TrojanClicker:Win32/Klik [Microsoft]	37
Virus.Win32.FakeAlert.AJ [Ikarus]	35
Trojan Horse [Symantec]	34
Backdoor.Win32.UltimateDefender [Ikarus]	33
Generic.dx [McAfee]	32
Virus.Win32.Lighty [Ikarus]	28
DNSChanger.gen [McAfee]	26
Trojan:Win32/Alureon.gen!N [Microsoft]	26
Downloader-BKK [McAfee]	25
TrojanDownloader:Win32/FakeRean [Microsoft]	23
Downloader [Symantec]	21
Trojan.TDSServ [PC Tools]	21
TrojanDownloader:Win32/Renos.FJ [Microsoft]	20
Trojan.Renos.Gen!Pac.10 [PC Tools]	17
TrojanDropper:Win32/Olmarik.A [Microsoft]	15
PWS:Win32/Ldpinch.BO [Microsoft]	14
Trojan:Win32/Renos.I [Microsoft]	14
Trojan.Fakeavalert!sd6 [PC Tools]	13
TrojanClicker:Win32/Hatigh.C [Microsoft]	13
Hoax.Win32.Renos.ebd [Kaspersky Lab]	10
Mal/Generic-A [Sophos]	10
Trojan:Win32/FakePowav [Microsoft]	10
Backdoor.Win32.TDSS.bnk [Kaspersky Lab]	9
Downloader.gen.a [McAfee]	9
Generic FakeAlert.a [McAfee]	9
Hoax.Win32.Renos.ffk [Kaspersky Lab]	9
not-a-virus:FraudTool.Win32.XPSecurityCenter.ai [Kaspersky Lab]	9
TROJ_MALBEHV.MCS [Trend Micro]	9
Trojan.Win32.Agent.avul [Kaspersky Lab]	9
Trojan-Downloader.MisleadApp!sd6 [PC Tools]	9
Generic Downloader.x [McAfee]	8
Olmarik [McAfee]	8
Trojan:Win32/Alureon.gen!J [Microsoft]	8
Trojan-Downloader.Win32.FraudLoad.vdnu [Kaspersky Lab]	8
VirTool:Win32/DelfInject.gen!AM [Microsoft]	8
Trojan.Win32.Crypt.cz [Kaspersky Lab]	7
TrojanClicker:Win32/Delf.P [Microsoft]	7
Generic PUP.x [McAfee]	6
Infostealer.Banker.C [Symantec]	6
not-a-virus:FraudTool.Win32.XPAntiSpyware2009.i [Kaspersky Lab]	6
Packer.Malware.Lighty.O [Ikarus]	6
Trojan.Win32.Ertfor.A [Ikarus]	6
XPSecurityCenter [Symantec]	6
Backdoor.Tidserv!sd6 [PC Tools]	5
Backdoor.Trojan [Symantec]	5
Backdoor.Win32.UltimateDefender.gml [Kaspersky Lab]	5
Generic BackDoor [McAfee]	5
Hoax.Win32.Renos [Ikarus]	5
PWS-Banker [McAfee]	5
Trojan.Virantix [Symantec]	5
Trojan-Clicker.Win32.Delf.akw [Kaspersky Lab]	5
Virus.Win32.Lighty.C [Ikarus]	5
Backdoor.IRC!sd6 [PC Tools]	4
Backdoor.Win32.TDSS.bnh [Kaspersky Lab]	4
Backdoor.Win32.TDSS.bot [Kaspersky Lab]	4
Backdoor.Win32.UltimateDefender.gua [Kaspersky Lab]	4
Hoax.Win32.Renos.fei [Kaspersky Lab]	4
Hoax.Win32.Renos.fex [Kaspersky Lab]	4
Hoax.Win32.Renos.fge [Kaspersky Lab]	4
Hoax.Win32.Renos.vbmz [Kaspersky Lab]	4
Packer.Malware.Lighty [Ikarus]	4
Packer.Malware.Lighty.F [Ikarus]	4
TROJ_DLOADR.RS [Trend Micro]	4
TROJ_RENOS.AHO [Trend Micro]	4
Trojan.Dropper [Symantec]	4
Trojan.Win32.Agent.acab [Kaspersky Lab]	4
Trojan.Win32.Agent.anxj [Kaspersky Lab]	4
Trojan.Win32.Agent.apwo [Kaspersky Lab]	4
Trojan.Win32.Pakes [Ikarus]	4
Trojan.Win32.Pakes.lel [Kaspersky Lab]	4
Trojan.Win32.Pakes.lgf [Kaspersky Lab]	4
Trojan.Win32.Pakes.lnh [Kaspersky Lab]	4
Trojan:Win32/Zbot.AY [Microsoft]	4
Trojan-Clicker.Win32.Delf.aym [Ikarus]	4
Trojan-Downloader.Agent.OGP [PC Tools]	4
Trojan-Downloader.Win32.Agent.ajiw [Kaspersky Lab]	4

Mal/EncPk-EQ [Sophos] has the following possible countries of origin:

Origin		Number of Incidents
	Russian Federation	357
	Thailand	1

Mal/EncPk-EQ [Sophos] is known to be created as:

%AppData%\microsoft\windows\lsass.exe

%AppData%\spool.exe

%ProgramFiles%\antispywarexp2009\uninstall.exe

%ProgramFiles%\antiviruspro2009\uninstall.exe

%ProgramFiles%\homeantivirus2009\uninstall.exe

%ProgramFiles%\richvideocodec\install.exe

%ProgramFiles%\uninstall.exe

%ProgramFiles%\xp_antispyware\uninstall.exe

%ProgramFiles%\xpprotectioncenter\uninstall.exe

%System%\brastk.exe

%System%\braviax.exe

%System%\bsn32.dll

%System%\drivers\ctfmon.exe

%System%\gks834t.dll

%System%\he73hdfe.dll

%System%\hsd63geff.dll

%System%\hsef73uhef.dll

%System%\jhsrf832jbnefe.dll

%System%\jsdf8j3dgf.dll

%System%\jsne87fidgf.dll

%System%\ntos.exe

%System%\reset5e.dll

%System%\rsekd83jde.dll

%System%\tdssl.dll

%System%\tm8259.exe

%Temp%\brastk.exe

%Temp%\csrssc.exe

%Temp%\dropper_286962.exe

%Temp%\flav.exe

%Temp%\load.exe

%Temp%\update.exe

%Temp%\wini10491.exe

%Temp%\winlogan.exe

%Temp%\winloggn.exe

%Temp%\winlogin.exe

%Temp%\winlogun.exe

%Temp%\wndutl32.dll

%Windir%\odb.exe

%Windir%\runsql.exe

%Windir%\sv.exe

%Windir%\svc.exe

%Windir%\svhoster.exe

%Windir%\svw.exe

%Windir%\svx.exe

%Windir%\svzip.exe

%Windir%\vlc.exe

%Windir%\wdmon.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.