ThreatExpert's Statistics for Mal/TDSSPack-Q [Sophos]:

Mal/TDSSPack-Q [Sophos] is also known as:

Threat Alias	Number of Incidents
Backdoor:WinNT/Rustock.AN [Microsoft]	68
Packed.Win32.TDSS.aa [Kaspersky Lab]	60
Backdoor.Tidserv [PC Tools]	52
Backdoor.WinNT.Rustock [Ikarus]	38
Generic FakeAlert.k [McAfee]	30
Adware.Lop [Symantec]	28
Packed.Win32.Tdss.m [Kaspersky Lab]	28
Backdoor.Win32.NewRest.gh [Kaspersky Lab]	25
Generic BackDoor!zw [McAfee]	25
Trojan.Pandex [Symantec]	25
Trojan.Win32.FraudPack.ajkj [Kaspersky Lab]	25
TrojanSpy:Win32/Chadem.A [Microsoft]	24
Mal/Generic-A [Sophos]	20
Packed.Win32.TDSS.y [Kaspersky Lab]	20
Trojan:Win32/Alureon.CT [Microsoft]	20
Generic.dx!lcw [McAfee]	16
Trojan:WinNT/Alureon.AD [Microsoft]	16
Win-Trojan/Tdss.30208 [AhnLab]	16
FakeAlert-FQ [McAfee]	13
HeurEngine.MaliciousPacker [PC Tools]	12
Packed.Generic.277 [Symantec]	12
Trojan Horse [Symantec]	12
Gen.Trojan [Ikarus]	10
Trojan.Win32.Tdss.awfb [Kaspersky Lab]	9
Packed.Generic.254 [Symantec]	8
TROJ_FAKEAV.SMSS [Trend Micro]	8
Packed.Win32.Tdss [Ikarus]	7
Vundo.gen.cu [McAfee]	7
DNSChanger.at [McAfee]	6
Trojan.Generic [PC Tools]	6
Trojan:Win32/Alureon.DA [Microsoft]	6
Trojan:Win32/Alureon.gen!J [Microsoft]	6
Backdoor.Win32.NewRest [Ikarus]	5
Backdoor.Win32.NewRest.ao [Kaspersky Lab]	5
DNSChanger.p [McAfee]	5
Trojan.WinNT.Tibs [Ikarus]	5
Trojan:Win32/InternetAntivirus [Microsoft]	5
Trojan:WinNT/Tibs.gen!A [Microsoft]	5
Win-Trojan/Rustock.Gen [AhnLab]	5
Backdoor.Rustock.B [Symantec]	4
Backdoor.Win32.NewRest.pb [Kaspersky Lab]	4
Backdoor:WinNT/Rustock.F [Microsoft]	4
CoreGuardAntivirus2009 [Symantec]	4
Generic BackDoor!sn [McAfee]	4
Generic.dx!ffx [McAfee]	4
RogueAntiSpyware.CoreGuardAntivirus2009 [PC Tools]	4
Rootkit.Win32.Agent.ryf [Kaspersky Lab]	4
Trojan:Win32/FakeCog [Microsoft]	4
Trojan:Win32/FakeSpyguard [Microsoft]	4
TrojanDownloader:Win32/Rugzip.A [Microsoft]	4
DNSChanger.aw [McAfee]	3
Infostealer.Gampass [Symantec]	3
Trojan.Win32.FakeSpyguard [Ikarus]	3
Trojan.Win32.InternetAntivirus [Ikarus]	3
Adware.VirtuMonde [Symantec]	2
Backdoor.Tidserv!gen1 [Symantec]	2
Downloader [Symantec]	2
Downloader.MisleadApp [PC Tools]	2
Downloader.MisleadApp [Symantec]	2
FakeAlert-IC [McAfee]	2
FakeAlert-SpywareGuard.gen.b [McAfee]	2
Generic BackDoor!bcn [McAfee]	2
Mal/RKRustok-B [Sophos]	2
Packed.Win32.Tdss.b [Kaspersky Lab]	2
Trojan.Dropper [PC Tools]	2
Trojan.Dropper [Symantec]	2
Trojan.Win32.Alureon [Ikarus]	2
Trojan.Win32.FakeAV [Ikarus]	2
Trojan:WinNT/Alureon.D [Microsoft]	2
Backdoor.Tidserv [Symantec]	1
Backdoor.Win32.NewRest.bf [Kaspersky Lab]	1
FakeAlert-EJB [McAfee]	1
Generic BackDoor!tg [McAfee]	1
Generic FakeAlert.b [McAfee]	1
HeurEngine.ZeroDayThreat [PC Tools]	1
InternetAntivirus [Symantec]	1
Packed.Generic.188 [Symantec]	1
Packed.Generic.200 [Symantec]	1
Rootkit.Win32.TDSS.ac [Kaspersky Lab]	1
Suspicious.DLoader [Symantec]	1
Trojan.Fakeavalert [Symantec]	1
Trojan.Vundo [Ikarus]	1
Trojan.Win32.Agent2.liw [Kaspersky Lab]	1
Trojan.Win32.FraudPack.aliq [Kaspersky Lab]	1
Trojan.Win32.FraudPack.aliy [Kaspersky Lab]	1
Trojan.Win32.FraudPack.amir [Kaspersky Lab]	1
Trojan.Win32.Tdss [Ikarus]	1
Trojan.Win32.Tdss.avdp [Kaspersky Lab]	1
Trojan:Win32/Vundo.gen!BN [Microsoft]	1
Trojan-Downloader.Win32.Agent.cngb [Kaspersky Lab]	1
Trojan-Downloader.Win32.FraudLoad.fpj [Kaspersky Lab]	1
Trojan-Downloader.Win32.Rugzip [Ikarus]	1
TrojanDownloader:Win32/FakeIA.A [Microsoft]	1
Trojan-GameThief.Win32.Magania.cwen [Kaspersky Lab]	1
VipAntiSpyware [Symantec]	1
Virus.Win32.Cryptor [Ikarus]	1
Win-Trojan/Malware.68096.AU [AhnLab]	1
Win-Trojan/Malware.716800 [AhnLab]	1
Win-Trojan/Rustock.92544 [AhnLab]	1
Win-Trojan/Xema.variant [AhnLab]	1

Mal/TDSSPack-Q [Sophos] has the following possible country of origin:

Origin		Number of Incidents
	Russian Federation	21

Mal/TDSSPack-Q [Sophos] is known to be created as:

%AppData%\microsoft\windows\winlogon.exe

%ProgramFiles%\advanced defender\advanceddefender.exe

%ProgramFiles%\malware defense\uninstall.exe

%ProgramFiles%\smart protector\uninstalls.exe

%ProgramFiles%\trustcop software\trustcop\trustcop.exe

%System%\_voidxthevpibiy.dll

%System%\_voidxtnftobtym.dll

%System%\2c4d4c5.exe

%System%\drivers\1d761e3.sys

%System%\drivers\2cd0ddf4.sys

%System%\drivers\305581fa.sys

%System%\drivers\32baef88.sys

%System%\drivers\5b29aa91.sys

%System%\drivers\685e160d.sys

%System%\drivers\7003c167.sys

%System%\drivers\75479ee9.sys

%System%\drivers\842cc729.sys

%System%\drivers\913e9e57.sys

%System%\drivers\947efb1e.sys

%System%\drivers\97b2ee62.sys

%System%\drivers\b3db198b.sys

%System%\drivers\b5ebcc8.sys

%System%\drivers\b67e9043.sys

%System%\drivers\b72b44dc.sys

%System%\drivers\b8585b99.sys

%System%\drivers\b8664dde.sys

%System%\drivers\bdaef0a7.sys

%System%\drivers\d53d7bb7.sys

%System%\drivers\d61ddc99.sys

%System%\drivers\d68ca6b.sys

%System%\drivers\df4dc2b6.sys

%System%\drivers\ezdgjg.sys

%System%\drivers\h8srtfoqfulnbsi.sys

%System%\drivers\h8srtiuyfulkspu.sys

%System%\drivers\h8srtjwbevpqsbc.sys

%System%\drivers\h8srtlkvxbnmtnb.sys

%System%\drivers\h8srtpiberxribc.sys

%System%\drivers\h8srtqmkjouqawq.sys

%System%\drivers\h8srtwbpxmfoero.sys

%System%\drivers\xwoarh.sys

%Temp%\2c4d4c5.exe

%Temp%\757154charmap.exe

%Temp%\eventcreatexp.exe

%Temp%\h8srtkiojnrqskr.sys

%Temp%\h8srtynaunhnkjm.sys

%Temp%\richtx64.exe

%Temp%\settdebugx.exe

%Temp%\wcenter.exe

%Temp%\wscsvc32.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).