Threat Search: 

ThreatExpert's Statistics for Mal/EncPk-JB [Sophos]:

Mal/EncPk-JB [Sophos] is also known as:
Threat AliasNumber of Incidents
Trojan:Win32/Winwebsec [Microsoft]9
AntiVirus2008 [Symantec]8
Packed.Win32.Krap.r [Kaspersky Lab]6
FakeAlert-DZ [McAfee]5
Trojan-Downloader.Win32.Harnig [Ikarus]4
TrojanDownloader:Win32/Harnig.gen!P [Microsoft]4
Spammer:Win32/Tedroo.I [Microsoft]3
Trojan.Fakeavalert [Symantec]3
FakeAlert-WinwebSecurity.d [McAfee]2
Spammer:Win32/Tedroo.A [Microsoft]2
Trojan Horse [Symantec]2
Trojan-Dropper.Agent [Ikarus]2
Trojan-Mailfinder [Ikarus]2
Win32/MalPackedB.suspicious [AhnLab]2
Worm.Win32.Koobface [Ikarus]2
Backdoor.Win32.Bredolab [Ikarus]1
Backdoor.Win32.Bredolab.lc [Kaspersky Lab]1
Downloader [Symantec]1
Email-Worm.Win32.Joleee [Ikarus]1
Email-Worm.Win32.Joleee.dcl [Kaspersky Lab]1
Generic Downloader.x!jm [McAfee]1
Generic Downloader.x!ka [McAfee]1
Generic.dx!bjv [McAfee]1
Infostealer.Gampass [Symantec]1
Net-Worm.Win32.Koobface [Ikarus]1
Net-Worm.Win32.Koobface.atw [Kaspersky Lab]1
Net-Worm.Win32.Koobface.awo [Kaspersky Lab]1
Packed.Win32.Krap [Ikarus]1
Packed.Win32.Krap.x [Kaspersky Lab]1
PWS-LDPinch!bf [McAfee]1
Spammer:Win32/Tedroo.AA [Microsoft]1
Trojan.Spadenf [Symantec]1
Trojan.Win32.Bredolab [Ikarus]1
Trojan.Win32.Inject [Ikarus]1
Trojan.Win32.Inject.agdl [Kaspersky Lab]1
Trojan.Win32.Vaklik [Ikarus]1
Trojan.Win32.Vaklik.ftu [Kaspersky Lab]1
Trojan-Downloader.Win32.Agent.cipy [Kaspersky Lab]1
Trojan-Downloader.Win32.Agent.cnhj [Kaspersky Lab]1
Trojan-Downloader.Win32.Small.alqd [Kaspersky Lab]1
TrojanDownloader:Win32/Harnig.gen!N [Microsoft]1
Trojan-Dropper [Ikarus]1
Trojan-Dropper.Win32.Agent.avyd [Kaspersky Lab]1
Trojan-Dropper.Win32.Agent.bape [Kaspersky Lab]1
Trojan-Dropper.Win32.Agent.bbiq [Kaspersky Lab]1
Trojan-Dropper.Win32.Preald [Ikarus]1
TrojanDropper:Win32/Emold.C [Microsoft]1
TrojanDropper:Win32/Preald.A [Microsoft]1
TrojanDropper:Win32/Preald.B [Microsoft]1
Trojan-Mailfinder.Win32.Agent.acb [Kaspersky Lab]1
Trojan-Mailfinder.Win32.Agent.acc [Kaspersky Lab]1
W32.Koobface.A [Symantec]1
Win-Trojan/FakeAlert.718930 [AhnLab]1
Win-Trojan/Fakeav.715305 [AhnLab]1
Win-Trojan/Harnig.12800 [AhnLab]1
Win-Trojan/Harnig.16384.H [AhnLab]1
Win-Trojan/Spam.30720 [AhnLab]1
Worm.Win32.Bezopi [Ikarus]1
Worm.Win32.Bezopi.cl [Kaspersky Lab]1

Mal/EncPk-JB [Sophos] has the following possible country of origin:
OriginNumber of Incidents
Russian Federation32

Mal/EncPk-JB [Sophos] is known to be created as:
%CommonAppData%\12312344\12312344.exe
%CommonAppData%\12906094\12906094.exe
%CommonAppData%\12911714\12911714.exe
%CommonAppData%\13119844\13119844.exe
%CommonAppData%\13123124\13123124.exe
%CommonAppData%\13146404\13146404.exe
%CommonAppData%\17454374\17454374.exe
%ProgramFiles%\microsoft common\svchost.exe
%Programs%\startup\rqjupd32.exe
%System%\servises.exe
%System%\wbem\proquota.exe
%Temp%\1.exe
%Windir%\ld12.exe
%Windir%\svchost.exe
Notes:
  • %CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.