ThreatExpert's Statistics for Mal/TibsPk-A [Sophos]:

Mal/TibsPk-A [Sophos] is also known as:

Threat Alias	Number of Incidents
FakeAlert-LA.dll [McAfee]	177
Infostealer.Gampass [Symantec]	140
Win32.SuspectCrc [Ikarus]	137
Generic.dx [McAfee]	125
Trojan-GameThief.Win32.WOW [Ikarus]	114
Trojan-GameThief.Win32.WOW.fjo [Kaspersky Lab]	114
Trojan:Win32/Fakeinit [Microsoft]	105
Packed/Upack [AhnLab]	101
Suspicious.MH690 [Symantec]	100
Trojan-Downloader.VB!sd6 [PC Tools]	81
Win-Trojan/OnlineGameHack.B [AhnLab]	72
TROJ_ZLOB.AKT [Trend Micro]	65
Trojan-Downloader.Win32.VB.lih [Kaspersky Lab]	64
Virus.Win32.Virtumonde [Ikarus]	62
Trojan Horse [Symantec]	61
Trojan:Win32/Meredrop [Microsoft]	51
Trojan.Vundo [Ikarus]	49
Trojan-Downloader.Small.GEN [PC Tools]	49
Trojan-Spy.Gampass!sd6 [PC Tools]	49
Generic Downloader.x [McAfee]	45
Trojan.Dropper [Symantec]	44
TSPY_ONLINEG.FYU [Trend Micro]	44
Trojan:Win32/Alureon.CO [Microsoft]	42
Win-Trojan/OnlineGameHack.12840.C [AhnLab]	41
Trojan-Downloader.Win32.VB.kwb [Kaspersky Lab]	33
Downloader [Symantec]	28
Trojan.Win32.Fakeinit [Ikarus]	27
Trojan.Win32.Agent [Ikarus]	25
RogueAntiSpyware.XPAntivirus [PC Tools]	24
Trojan.Win32.Agent.demh [Kaspersky Lab]	24
Worm.AutoRun.WHY [PC Tools]	24
XPAntivirus [Symantec]	24
Virus.Win32.Trojan [Ikarus]	23
Win-Trojan/Xema.variant [AhnLab]	22
New Malware.aj [McAfee]	21
Trojan.Win32.Piptea [Ikarus]	21
Trojan.Spammer [Ikarus]	20
Trojan.Win32.VB [Ikarus]	18
Trojan.Win32.VB.vcu [Kaspersky Lab]	18
Win-Trojan/Fakeav.18432 [AhnLab]	16
Generic Dropper [McAfee]	14
Packed/Upack [PC Tools]	13
Trojan.Win32.Alureon [Ikarus]	13
TROJ_SHEUR.BMD [Trend Micro]	12
TrojanDownloader:Win32/Cutwail.gen!C [Microsoft]	12
Trojan-Dropper.VB!sd6 [PC Tools]	12
TROJ_VB.FJP [Trend Micro]	11
TROJ_ZLOB.ANT [Trend Micro]	11
Trojan.Generic [Ikarus]	11
Trojan.Win32.Scar [Ikarus]	11
Trojan-Downloader.Win32.Cutwail [Ikarus]	11
Trojan-Downloader.Win32.VB.rie [Kaspersky Lab]	11
PWS-Mmorpg.gen [McAfee]	9
Trojan.Generic [PC Tools]	9
Trojan.Win32.Scar.ason [Kaspersky Lab]	9
Trojan:Win32/Alureon.BJ [Microsoft]	9
Trojan-Dropper.Win32.VB.bpz [Kaspersky Lab]	9
Generic FakeAlert!cz [McAfee]	8
Trojan.FakeAV!gen [Symantec]	8
Trojan.Win32.Scar.aphs [Kaspersky Lab]	8
TrojanDownloader:Win32/Troxen!rts [Microsoft]	8
Win-Trojan/Scar.38912.BU [AhnLab]	8
Backdoor.Tidserv [Symantec]	6
Trojan.Win32.Agent.bwnb [Kaspersky Lab]	6
Trojan.Win32.Meredrop [Ikarus]	6
Trojan:Win32/Ertfor.A [Microsoft]	6
Trojan-Spy.Win32.Agent [Ikarus]	6
Trojan.Crypt [Ikarus]	5
Trojan.Dropper [PC Tools]	5
Trojan.Win32.Ertfor [Ikarus]	5
Generic Downloader.x!ft [McAfee]	4
Generic Dropper.cx [McAfee]	4
Generic Packed [McAfee]	4
Generic PWS.y [McAfee]	4
Trojan:Win32/Alureon.BU [Microsoft]	4
Trojan-Clicker.Win32.VB.cqc [Kaspersky Lab]	4
Trojan-Downloader.Win32.Agent.cxds [Kaspersky Lab]	4
Trojan-Downloader.Win32.VB.lai [Kaspersky Lab]	4
Trojan-Spy.Win32.Agent.akuh [Kaspersky Lab]	4
Win-Trojan/Agent.18944.KB [AhnLab]	4
Awola [Symantec]	3
Backdoor.Win32.Tofsee [Ikarus]	3
Trojan.FakeAV [PC Tools]	3
Trojan.PWS.Trial.A [PC Tools]	3
Trojan.PWS.Trial.C [PC Tools]	3
Trojan.Win32.Agent2.lbd [Kaspersky Lab]	3
Trojan.Win32.Pakes.ngv [Kaspersky Lab]	3
Trojan.Win32.Scar.arxp [Kaspersky Lab]	3
Trojan:Win32/Alureon.gen!J [Microsoft]	3
Trojan:Win32/Piptea.E [Microsoft]	3
Trojan-Dropper.Agent [Ikarus]	3
DNSChanger!cf [McAfee]	2
DNSChanger!ch [McAfee]	2
DNSChanger!h [McAfee]	2
FakeAlert-FA [McAfee]	2
Generic BackDoor [McAfee]	2
Generic Downloader.x!fa [McAfee]	2
Generic Downloader.x!zg [McAfee]	2
Generic FakeAlert!ca [McAfee]	2
Infostealer [Symantec]	2

Mal/TibsPk-A [Sophos] has the following possible countries of origin:

Origin		Number of Incidents
	China	268
	Russian Federation	14
	Germany	4
	Ukraine	4
	United Kingdom	3
	Brazil	1
	Israel	1
	Saudi Arabia	1
	Spain	1

Mal/TibsPk-A [Sophos] is known to be created as:

%AppData%\acluih.exe

%AppData%\amcompats.exe

%DownloadedProgramFiles%\smss.exe

%Profiles%\localservice.exe

%Profiles%\networkservice.exe

%ProgramFiles%\adobe.exe

%ProgramFiles%\md5-algo-check\md5-algo-check.exe

%ProgramFiles%\messenger.exe

%ProgramFiles%\msn.exe

%ProgramFiles%\netmeeting.exe

%ProgramFiles%\vmware.exe

%ProgramFiles%\windowsupdate.exe

%ProgramFiles%\winpcap.exe

%ProgramFiles%\xerox.exe

%System%\0001d3fc.exe

%System%\0001d40e.exe

%System%\0001d67d.exe

%System%\0001d8cd.exe

%System%\0001d8fb.exe

%System%\0001dc28.exe

%System%\0001e0ef.exe

%System%\0001e2d6.exe

%System%\00035b8e.exe

%System%\00035bd0.exe

%System%\00035be5.exe

%System%\00035c56.exe

%System%\00035ee0.exe

%System%\00035efe.exe

%System%\0003622e.exe

%System%\000363ba.exe

%System%\acluiy.exe

%System%\admparsek.exe

%System%\aliware.exe

%System%\helper32.dll

%System%\kdexe.exe

%System%\mo9k80d0o.dll

%System%\mp6qm63kh.dll

%System%\msexe.exe

%System%\msihost.exe

%System%\mssrv32.exe

%System%\obrji.exe

%System%\oggypof.exe

%System%\ovfsthwi.dll

%System%\rs32net.exe

%System%\saw110.exe

%System%\syscore.dll

%System%\system.exe

%System%\tdd.exe

%System%\winhelper86.dll

%System%\winlogon86.exe

%System%\winminix.dll

%System%\winupdate86.exe

%System%\x5i4y0v55p.dll

%System%\zxexe.exe

%Temp%\1.exe

%Temp%\17.exe

%Temp%\1wtj3j8l.exe

%Temp%\32.exe

%Temp%\33.exe

%Temp%\47xuqpwv.exe

%Temp%\6_ldr.exe

%Temp%\6_ldry3.exe

%Temp%\6476728f.exe

%Temp%\8ajhoy2n.exe

%Temp%\a.exe

%Temp%\av.exe

%Temp%\betacoder.exe

%Temp%\byhostfile.exe

%Temp%\c.exe

%Temp%\d.exe

%Temp%\df9f2s1w.exe

%Temp%\e.exe

%Temp%\f.exe

%Temp%\g.exe

%Temp%\h.exe

%Temp%\hhmrbxb53s2.exe

%Temp%\i.exe

%Temp%\k.exe

%Temp%\l.exe

%Temp%\l32bveosij.dll

%Temp%\m.exe

%Temp%\n4ld4vkn.exe

%Temp%\pinnew.exe

%Temp%\plugins\slysoft.dll

%Temp%\services.exe

%Temp%\slysoft.dll

%Temp%\tkvtgvyg.exe

%Temp%\w.exe

%Temp%\winlognn.exe

%Temp%\zj.exe

%Temp%\zpr3jict.exe

%UserProfile%\giwjq.exe

%UserProfile%\iexyn.exe

%UserProfile%\ktyttqx.exe

%UserProfile%\wbqmlv.exe

%Windir%\services.exe

%Windir%\system\conimeyy.exe

%Windir%\system\winlogonyy.exe

c:\inetpub.exe

c:\inetpub\wwwroot.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%DownloadedProgramFiles% is a variable that refers to the file system directory containing downloaded program files. A typical path is C:\Windows\Downloaded Program Files.
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.