ThreatExpert's Statistics for Packed.Win32.Klone [Ikarus]:

Packed.Win32.Klone [Ikarus] is also known as:

Threat Alias	Number of Incidents
Packed.Win32.Klone.bj [Kaspersky Lab]	183
W32.Harakit [Symantec]	156
Worm:AutoIt/Renocide.gen!C [Microsoft]	81
Mal/Packer [Sophos]	49
Mal/Generic-A [Sophos]	35
Suspicious.MH690 [Symantec]	34
Mal/Behav-299 [Sophos]	30
Trojan.Win32.Pakes.nkm [Kaspersky Lab]	28
Mal/Behav-009 [Sophos]	27
Win-Trojan/Pakes.82439 [AhnLab]	25
W32/Fujacks.aw [McAfee]	24
W32.Fiala.A [Symantec]	19
Bloodhound.Malautoit.2 [Symantec]	18
Win-Trojan/Xema.variant [AhnLab]	16
W32.SillyFDC [Symantec]	13
Generic.dx [McAfee]	12
New Malware.aq [McAfee]	12
Trojan Horse [Symantec]	11
Trojan:Win32/Meredrop [Microsoft]	9
W32.Fujacks.CA [Symantec]	9
Worm:AutoIt/Renocide.gen!A [Microsoft]	9
PE_FUJACKS.DE-O [Trend Micro]	8
IRC.Backdoor.Trojan [Symantec]	7
Mal/Inet-Fam [Sophos]	7
not-a-virus:Client-IRC.Win32.mIRC.603 [Kaspersky Lab]	7
Trojan:Win32/Pakes.K [Microsoft]	7
W32/Fujacks-BD [Sophos]	7
Backdoor.Graybird [Symantec]	6
Backdoor.IRCBot [PC Tools]	5
BKDR_MIRC.AA [Trend Micro]	5
PE_FUJACKS.JK-O [Trend Micro]	5
Troj/AdbPat-A [Sophos]	5
BKDR_HUPIGON.EVG [Trend Micro]	4
Troj/Zapchas-EJ [Sophos]	4
Trojan:Win32/Pepatch.E [Microsoft]	4
W32.Spybot.Worm [Symantec]	4
Win-Trojan/Agent.81463 [AhnLab]	4
Backdoor.Trojan [Symantec]	3
Infostealer [Symantec]	3
Mal/Basine-C, Mal/Behav-009 [Sophos]	3
Mal/EncPk-AI [Sophos]	3
Trojan-PWS.Magania [PC Tools]	3
Virus:Win32/Sapaq.C [Microsoft]	3
Win-Trojan/Agent.81468 [AhnLab]	3
Worm:AutoIt/Renocide.AB [Microsoft]	3
Backdoor.Graybird.GEN [PC Tools]	2
Backdoor:Win32/IRCbot [Microsoft]	2
Cryp_Pai-6 [Trend Micro]	2
Generic PUP.x [McAfee]	2
Infostealer.Gampass [Symantec]	2
Infostealer.Wowcraft [Symantec]	2
IRC/Client [McAfee]	2
Mal/EncPk-BU, Mal/Packer, Mal/EncPk-BA [Sophos]	2
Mal/TibsPk-A, Mal/Packer [Sophos]	2
New Malware.u [McAfee]	2
not-a-virus:Client-IRC.Win32.mIRC [Ikarus]	2
Packed.Win32.Klone.af [Ikarus]	2
PE_FUJACKS.AO-O [Trend Micro]	2
Trojan.Pakes!sd6 [PC Tools]	2
Trojan.Win32.Midgare.uik [Kaspersky Lab]	2
Trojan-Downloader.Win32.Agent.alis [Kaspersky Lab]	2
TrojanDownloader:Win32/Agent.GI [Microsoft]	2
Virus:Win32/Viking.NF [Microsoft]	2
Win-Trojan/Agent.52262 [AhnLab]	2
Win-Trojan/Midgare.229888 [AhnLab]	2
Win-Trojan/Pakes.178212 [AhnLab]	2
Worm.Win32.AutoRun.aixa [Kaspersky Lab]	2
Worm.Win32.AutoRun.gru [Kaspersky Lab]	2
Worm:AutoIt/Renocide.AC [Microsoft]	2
Worm:AutoIt/Renocide.AS [Microsoft]	2
WORM_AUTORUN.HP [Trend Micro]	2
Backdoor.Ciadoor [PC Tools]	1
Backdoor.Ciadoor [Symantec]	1
Backdoor.Graybird!sd6 [PC Tools]	1
Backdoor.Win32.Hupigon.buwa [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.deoe [Kaspersky Lab]	1
Backdoor.Win32.Rbot.adaz [Kaspersky Lab]	1
Backdoor.Win32.Rbot.asn [Kaspersky Lab]	1
Backdoor:Win32/Warring.A [Microsoft]	1
BackDoor-AWQ [McAfee]	1
Construction.Kit [Symantec]	1
Constructor.Win32.VB.cj [Kaspersky Lab]	1
Downloader [Symantec]	1
Generic BackDoor [McAfee]	1
Generic BackDoor!bg [McAfee]	1
Generic Downloader.x [McAfee]	1
Generic Downloader.x!bs [McAfee]	1
Generic.dx!cd [McAfee]	1
Generic.dx!db [McAfee]	1
Generic.dx!gfb [McAfee]	1
Generic.dx!wi [McAfee]	1
HeurEngine.Malautoit [PC Tools]	1
Mal/Behav-024, Mal/Behav-004, Mal/Packer, Mal/Emogen-Y, Mal/Behav-160 [Sophos]	1
Mal/Emogen-E [Sophos]	1
Mal/Emogen-E, Mal/Behav-160, Mal/EncPk-AI [Sophos]	1
Mal/Emogen-E, Mal/Packer [Sophos]	1
Mal/Emogen-E, Mal/Packer, Mal/Behav-210, Mal/Behav-160, Mal/Emogen-F [Sophos]	1
Mal/Packer, Mal/EncPk-BW, Mal/Basine-C [Sophos]	1
Malware.Harakit [PC Tools]	1
Packed.Win32.Klone.af [Kaspersky Lab]	1

Packed.Win32.Klone [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	United Kingdom	181
	Russian Federation	89
	China	63
	Singapore	24
	France	15
	Iran	15
	Sweden	8
	Belgium	2
	Portugal	1
	Taiwan	1

Packed.Win32.Klone [Ikarus] is known to be created as:

%ProgramFiles%\common files\system\qq8rlh.exe

%ProgramFiles%\s.exe

%System%\csjdll.exe

%System%\csrcs.exe

%System%\drivers\messages.exe

%System%\drivers\txp1atform.exe

%System%\drivers\txplatf0rmm.exe

%System%\drivers\txplatformm.exe

%System%\regedit32.exe

%Temp%\090521-7-8.exe

%Temp%\090521-8-10.exe

%Temp%\090612-a-13.exe

%Temp%\10.exe

%Temp%\20090320\mtoiop.exe

%Temp%\24.exe

%Temp%\360.exe

%Temp%\4.exe

%Temp%\contextmenueditor.exe

%Temp%\downloader.exe

%Temp%\inorca.exe

%Temp%\sent2pct\20090320\mtoiop.exe

%Temp%\tddownload\a.exe

%Temp%\twfwgn.exe

c:\wmiprvse.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).