ThreatExpert's Statistics for Mal/EncPk-KP [Sophos]:

Mal/EncPk-KP [Sophos] is also known as:

Threat Alias	Number of Incidents
Gen.Packed [Ikarus]	2,052
Packed.Generic.233 [Symantec]	1,874
TrojanClicker:Win32/Hatigh.C [Microsoft]	1,638
Win-Trojan/Agent.21504.NB [AhnLab]	1,056
Generic.dx!fmw [McAfee]	990
Generic.dx!fml [McAfee]	810
Trojan:Win32/Ertfor.B [Microsoft]	189
TrojanDownloader:Win32/FakeRean [Microsoft]	156
Win32.KME.Based [Ikarus]	107
Downloader [Symantec]	91
W32.Toal.A@mm [Symantec]	86
Packed.Win32.Krap.ad [Kaspersky Lab]	55
Trojan-Downloader.Win32.FraudLoad.fsd [Kaspersky Lab]	49
Win32/Based.worm.15001 [AhnLab]	49
Trojan.FakeAV!gen [Symantec]	45
Packed.Win32.Krap.ah [Kaspersky Lab]	44
Trojan-Downloader.Win32.Small.anrx [Kaspersky Lab]	42
Trojan-Downloader.Win32.Small.anry [Kaspersky Lab]	42
Trojan.Win32.Ertfor [Ikarus]	41
Trojan Horse [Symantec]	38
TrojanDownloader:Win32/Renos [Microsoft]	28
Mal/Generic-A [Sophos]	27
Trojan.Win32.Agent.cyqf [Kaspersky Lab]	25
Trojan.Win32.Agent.cysj [Kaspersky Lab]	25
Virus.Win32.Ertfor [Ikarus]	25
Mal/Generic-A, Mal/EncPk-MP, Mal/EncPk-KP [Sophos]	22
Trojan-Downloader.Win32.Suurch.bbg [Kaspersky Lab]	20
Trojan:Win32/FakeRean [Microsoft]	17
Trojan.Win32.FraudPack.vnd [Kaspersky Lab]	16
Trojan-Clicker.Win32.Hatigh [Ikarus]	16
Win-Trojan/Bredolab.13312.F [AhnLab]	16
Win-Trojan/Fakeav.Gen [AhnLab]	16
AntiVirus2009 [Symantec]	15
Trojan-Downloader.Agent [PC Tools]	15
Trojan-Downloader.Win32.Suurch.awj [Kaspersky Lab]	15
Trojan-Downloader.Win32.Suurch.awk [Kaspersky Lab]	15
Win-Trojan/Xema.15000 [AhnLab]	15
FakeAlert-FH.dll [McAfee]	13
Trojan.Win32.FraudPack.vpp [Kaspersky Lab]	12
Trojan-Downloader.Win32.Suurch.bbf [Kaspersky Lab]	12
Trojan-Downloader.Win32.FakeRean [Ikarus]	11
Generic.dx!fmr [McAfee]	10
Trojan.Crypt [Ikarus]	9
Trojan-Downloader.Win32.Small [Ikarus]	8
Trojan-Downloader.Win32.Small.ante [Kaspersky Lab]	8
W32/Ertfor.gen [McAfee]	8
Win-Trojan/Downloader.15000.BP [AhnLab]	8
Generic Downloader.x!bng [McAfee]	7
Generic Downloader.x!cfr [McAfee]	7
Trojan.Agent [PC Tools]	7
Trojan-Downloader.Win32.Harnig [Ikarus]	7
Win-Trojan/Downloader.15000.BQ [AhnLab]	7
Trojan.Win32.FraudPack.uoe [Kaspersky Lab]	6
Generic.dx!fta [McAfee]	5
Generic.dx!gkj [McAfee]	5
Generic.dx!gkv [McAfee]	5
Trojan.Win32.Agent [Ikarus]	5
Trojan-Downloader.Win32.Renos [Ikarus]	5
Trojan.Win32.FraudPack.umv [Kaspersky Lab]	4
Trojan.Win32.FraudPack.vmj [Kaspersky Lab]	4
Trojan.Win32.Vilsel.ibk [Kaspersky Lab]	4
Trojan-Downloader.Win32.Suurch.bbd [Kaspersky Lab]	4
Trojan-Downloader.Win32.Suurch.bbe [Kaspersky Lab]	4
Trojan-Dropper.Win32.FrauDrop.aez [Kaspersky Lab]	4
FakeAlert-XPSecCenter [McAfee]	3
HeurEngine.MaliciousPacker [PC Tools]	3
Packed.Generic.258 [Symantec]	3
Trojan.Win32.Regger.az [Kaspersky Lab]	3
Trojan-Downloader.Win32.FraudLoad.wswk [Kaspersky Lab]	3
TrojanDownloader:Win32/Harnig.gen!P [Microsoft]	3
TrojanDropper:Win32/Preald.B [Microsoft]	3
Win-Trojan/Fraudload.13824.R [AhnLab]	3
Generic FakeAlert!co [McAfee]	2
PWS:Win32/Zbot.gen!R [Microsoft]	2
Trojan.FakeAV [Symantec]	2
Trojan.Win32.FakeAV [Ikarus]	2
Trojan.Win32.Vilsel.iop [Kaspersky Lab]	2
TrojanClicker:Win32/Klik [Microsoft]	2
Trojan-Downloader.Win32.FraudLoad.frn [Kaspersky Lab]	2
Trojan-Spy.Win32.Zbot.abjn [Kaspersky Lab]	2
Trojan-Spy.Win32.Zbot.acbk [Kaspersky Lab]	2
AntiVirusPro [Symantec]	1
Backdoor.Win32.Bredolab.acl [Kaspersky Lab]	1
Backdoor.Win32.UltimateDefender.ioh [Kaspersky Lab]	1
Downloader.MisleadApp [Symantec]	1
Generic FakeAlert!cr [McAfee]	1
Generic.dx!fnx [McAfee]	1
Generic.dx!gfq [McAfee]	1
Trojan.Win32.Bredolab [Ikarus]	1
Trojan.Win32.FraudPack [Ikarus]	1
Trojan.Win32.FraudPack.vhx [Kaspersky Lab]	1
Trojan.Win32.FraudPack.vyu [Kaspersky Lab]	1
Trojan.Win32.FraudPack.vzy [Kaspersky Lab]	1
Trojan.Win32.FraudPack.wgd [Kaspersky Lab]	1
Trojan.Win32.FraudPack.wuk [Kaspersky Lab]	1
Trojan.Win32.Vilsel.hud [Kaspersky Lab]	1
Trojan.Win32.Vilsel.hwz [Kaspersky Lab]	1
Trojan.Win32.Vilsel.ijw [Kaspersky Lab]	1
Trojan.Win32.Vilsel.ikl [Kaspersky Lab]	1
Trojan.Win32.Vilsel.imd [Kaspersky Lab]	1

Mal/EncPk-KP [Sophos] has the following possible country of origin:

Origin		Number of Incidents
	Russian Federation	8

Mal/EncPk-KP [Sophos] is known to be created as:

%AppData%\lizkavd.exe

%AppData%\seres.exe

%AppData%\svcst.exe

%Profiles%\localservice\application data\seres.exe

%Profiles%\localservice\application data\svcst.exe

%ProgramFiles%\antiviruspro_2010\antiviruspro_2010.exe

%ProgramFiles%\antiviruspro_2010\avengn.dll

%ProgramFiles%\antiviruspro_2010\htmlayout.dll

%ProgramFiles%\antiviruspro_2010\uninstall.exe

%System%\asvfc.dll

%System%\er9kop338.dll

%System%\gvui0e6g86.dll

%System%\krjf9nv.dll

%System%\lx4m0j.dll

%System%\qjgqif.dll

%System%\sdra64.exe

%System%\sxrvo9.dll

%System%\t1x21e2y.dll

%System%\wbem\proquota.exe

%Temp%\1374062312.exe

%Temp%\15241672.exe

%Temp%\1607839762.exe

%Temp%\1728999666.exe

%Temp%\1875163416.exe

%Temp%\2124973420.exe

%Temp%\2140812170.exe

%Temp%\2214216932.exe

%Temp%\2226008316.exe

%Temp%\2301219740.exe

%Temp%\2315031172.exe

%Temp%\2337848568.exe

%Temp%\2582312852.exe

%Temp%\2611498648.exe

%Temp%\2939634622.exe

%Temp%\3079056970.exe

%Temp%\3262363470.exe

%Temp%\3527854236.exe

%Temp%\3549230742.exe

%Temp%\3591828886.exe

%Temp%\3617100728.exe

%Temp%\3895565022.exe

%Temp%\4_pinnew.exe

%Temp%\4199112722.exe

%Temp%\5_odb.exe

%Temp%\6_ldr3.exe

%Temp%\810525092.exe

%Temp%\834106102.exe

%Temp%\843332352.exe

%Temp%\919631146.exe

%Temp%\a1ku8l62.exe

%Temp%\antiviruspro_2010\antiviruspro_2010.exe

%Temp%\antiviruspro_2010\htmlayout.dll

%Temp%\antiviruspro_2010\uninstall.exe

%Temp%\avp.exe

%Temp%\avto.exe

%Temp%\azdgbny11.dll

%Temp%\bcyvz.exe

%Temp%\bev96o.exe

%Temp%\bvygkwa23r.dll

%Temp%\cmd.exe

%Temp%\csrss.exe

%Temp%\cvumy4p33c.exe

%Temp%\dc1kjofj.exe

%Temp%\debug.exe

%Temp%\drweb.exe

%Temp%\e674zfl.exe

%Temp%\hiz35qc.exe

%Temp%\hll8et79e1.exe

%Temp%\htmlayout.dll

%Temp%\i2chmvx9.exe

%Temp%\ihk8g3.exe

%Temp%\install.exe

%Temp%\lg2cqr.exe

%Temp%\login.exe

%Temp%\lqvjnb.exe

%Temp%\lsass.exe

%Temp%\m0k.exe

%Temp%\m49uskre.exe

%Temp%\m4jw9mj.exe

%Temp%\msupd_2.exe

%Temp%\mwd64onb8.exe

%Temp%\nek8xdk7d.exe

%Temp%\notepad.exe

%Temp%\nvsvc32.exe

%Temp%\q1.exe

%Temp%\qs26eordf.exe

%Temp%\r38nflr0.exe

%Temp%\rn3ugoym.exe

%Temp%\rnvghtfy.exe

%Temp%\roc6hj26.exe

%Temp%\rwkza0ku.exe

%Temp%\seres.exe

%Temp%\services.exe

%Temp%\setup.exe

%Temp%\smss.exe

%Temp%\spoolsv.exe

%Temp%\svchost.exe

%Temp%\svcst.exe

%Temp%\svphi3lkr.exe

%Temp%\system.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).