ThreatExpert's Statistics for Trojan-Spy.Win32.VB [Ikarus]:

Trojan-Spy.Win32.VB [Ikarus] is also known as:

Threat Alias	Number of Incidents
Win-Trojan/Xema.variant [AhnLab]	62
Trojan Horse [Symantec]	60
Mal/Generic-A [Sophos]	36
Trojan:Win32/Puzlice.A [Microsoft]	36
Adclicker-GV [McAfee]	35
Troj/VB-EHN [Sophos]	31
Trojan-Spy.Win32.VB.bzc [Kaspersky Lab]	30
Downloader [Symantec]	23
Generic Dropper!bdl [McAfee]	16
Trojan-Dropper.Win32.VB.afbw [Kaspersky Lab]	16
Virus.Win32.Virut.ce [Kaspersky Lab]	16
W32/Scribble-B [Sophos]	16
Win32/Virut.F [AhnLab]	16
Generic PWS.y [McAfee]	13
TrojanDropper:Win32/Puzlice.A [Microsoft]	13
Troj/VB-EJN [Sophos]	12
W32.Virut.CF [Symantec]	11
Downloader.Generic [PC Tools]	10
Trojan-Dropper.Win32.VB.mvl [Kaspersky Lab]	9
Trojan-Spy.Win32.VB.bsr [Kaspersky Lab]	9
Infostealer [Symantec]	8
Trojan.Generic [PC Tools]	8
W32/Virut.n.gen [McAfee]	8
Win-Trojan/MulDrop.77824 [AhnLab]	8
VirTool:Win32/VBInject.AJ [Microsoft]	7
Mal/EncPk-IA, Mal/HckPk-A [Sophos]	6
Mal/VB-Z, Mal/Behav-211 [Sophos]	6
Trojan:Win32/Meredrop [Microsoft]	6
Trojan-Spy.Win32.VB.awy [Kaspersky Lab]	6
Trojan-Spy.Win32.VB.bfo [Kaspersky Lab]	6
VirTool:Win32/Selcrypt.A [Microsoft]	6
Virus:Win32/Virut.BM [Microsoft]	6
Generic.dx [McAfee]	5
PWS:Win32/Ldpinch.BC [Microsoft]	5
Trojan-Spy.VB!sd6 [PC Tools]	5
Adware.BetterInternet [Symantec]	4
Troj/PWS-AWP [Sophos]	4
Trojan.Win32.VB.taw [Kaspersky Lab]	4
Trojan-Dropper.Win32.Agent.aven [Kaspersky Lab]	4
Trojan-Spy.Win32.VB.aaf [Kaspersky Lab]	4
Trojan-Spy.Win32.VB.aza [Kaspersky Lab]	4
Trojan-Spy.Win32.VB.bqa [Kaspersky Lab]	4
Trojan-Spy.Win32.VB.bvw [Kaspersky Lab]	4
Generic Dropper!bcs [McAfee]	3
Backdoor.Bifrose [Symantec]	2
Generic PWS.y!dp [McAfee]	2
Generic.dx!zg [McAfee]	2
Htool-FishingBait [McAfee]	2
Mal/HckPk-A [Sophos]	2
New Malware.bl [McAfee]	2
Spyware.Screenspy [Symantec]	2
Suspicious.MH690 [Symantec]	2
Troj/SDF-Gen [Sophos]	2
Trojan.Win32.Refroso.cxc [Kaspersky Lab]	2
Trojan.Win32.VB.jej [Kaspersky Lab]	2
Trojan-Dropper.VB.iyv [PC Tools]	2
Trojan-Spy.Win32.VB.bcd [Kaspersky Lab]	2
Trojan-Spy.Win32.VB.blt [Kaspersky Lab]	2
Trojan-Spy.Win32.VB.blv [Kaspersky Lab]	2
Trojan-Spy.Win32.VB.bxe [Kaspersky Lab]	2
Trojan-Spy.Win32.VB.bxy [Kaspersky Lab]	2
VirTool:Win32/VBInject.AU [Microsoft]	2
VirTool:Win32/VBInject.gen!AP [Microsoft]	2
Virus.Win32.Virut.q [Kaspersky Lab]	2
W32.IRCBot [Symantec]	2
W32/Vbbot [McAfee]	2
Win32/IRCBot.worm.90836 [AhnLab]	2
Worm:Win32/Flibot.gen!A [Microsoft]	2
Backdoor.IRCBot!sd6 [PC Tools]	1
Backdoor:Win32/Poisonivy.E [Microsoft]	1
BackDoor-CWW [McAfee]	1
BKDR_CIADOOR.BP [Trend Micro]	1
Downloader.Trojan [Symantec]	1
Downloader-BRI [McAfee]	1
Dropper/Agent.125952.H [AhnLab]	1
Dropper/Agent.128000.K [AhnLab]	1
Dropper/Agent.245760.J [AhnLab]	1
Dropper/Xema.23040.V [AhnLab]	1
Generic Dropper [McAfee]	1
Generic Dropper!es [McAfee]	1
Generic Dropper!qc [McAfee]	1
Generic PWS.o [McAfee]	1
Generic PWS.y!dk [McAfee]	1
Generic PWS.y!xr [McAfee]	1
Generic Qhost!a [McAfee]	1
Generic.dx!tg [McAfee]	1
Generic.dx!tz [McAfee]	1
Infostealer.Refest [Symantec]	1
Mal/Behav-109 [Sophos]	1
Mal/Emogen-G [Sophos]	1
Mal/Emogen-H [Sophos]	1
Mal/HckPk-A, Mal/Sality-B [Sophos]	1
Mal/StartP-A, Mal/Emogen-H [Sophos]	1
Mal/TibsPk-A, Mal/Packer, Mal/EncPk-BA [Sophos]	1
Mal/VB-G [Sophos]	1
Mal/VBSpy-A [Sophos]	1
New Win32 [McAfee]	1
PE_SALITY.BU [Trend Micro]	1
PE_VIRUT.XO [Trend Micro]	1
PE_VIRUX.A-1 [Trend Micro]	1

Trojan-Spy.Win32.VB [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	China	29
	Spain	18
	Russian Federation	3
	Italy	1

Trojan-Spy.Win32.VB [Ikarus] is known to be created as:

%CommonAppData%\microsoft\user account pictures\guest.bmp.exe

%CommonDocuments%\my pictures\sample pictures\sunset.jpg.exe

%CommonDocuments%\my pictures\sample pictures\winter.jpg.exe

%FontsDir%\logcde.dll

%FontsDir%\services.exe

%FontsDir%\windef.dll

%Profiles%\default user\templates\winword.doc.exe

%Profiles%\default user\templates\winword2.doc.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\common files\designer\msaddndr.dll.exe

%ProgramFiles%\common files\designer\mshtmpgd.dll.exe

%ProgramFiles%\common files\designer\mshtmpgr.dll.exe

%ProgramFiles%\common files\mssoap\binaries\mssoap1.dll.exe

%ProgramFiles%\common files\mssoap\binaries\wisc10.dll.exe

%ProgramFiles%\common files\services\bigfoot.bmp.exe

%ProgramFiles%\common files\services\verisign.bmp.exe

%ProgramFiles%\common files\services\whowhere.bmp.exe

%ProgramFiles%\common files\system\ado\msader15.dll.exe

%ProgramFiles%\common files\system\ado\msado15.dll.exe

%ProgramFiles%\common files\system\ado\msadomd.dll.exe

%ProgramFiles%\common files\system\ado\msador15.dll.exe

%ProgramFiles%\common files\system\ado\msadox.dll.exe

%ProgramFiles%\common files\system\ado\msadrh15.dll.exe

%ProgramFiles%\common files\system\ado\msjro.dll.exe

%ProgramFiles%\common files\system\bullshit.exe

%ProgramFiles%\common files\system\directdb.dll.exe

%ProgramFiles%\common files\system\msadc\msadce.dll.exe

%ProgramFiles%\common files\system\msadc\msadcer.dll.exe

%ProgramFiles%\common files\system\msadc\msadcf.dll.exe

%ProgramFiles%\common files\system\msadc\msadcfr.dll.exe

%ProgramFiles%\common files\system\msadc\msadco.dll.exe

%ProgramFiles%\common files\system\msadc\msadcor.dll.exe

%ProgramFiles%\common files\system\msadc\msadcs.dll.exe

%ProgramFiles%\microsoft common\wuauclt.exe

%ProgramFiles%\services\smss.exe

%System%\155309.exe

%System%\3178629.exe

%System%\3361\services.exe

%System%\3824534.exe

%System%\3908.exe

%System%\3949046.exe

%System%\6953501.exe

%System%\7462687.exe

%System%\8384623.exe

%System%\9763712.exe

%System%\explore.exe

%System%\explorer.exe

%System%\logcde.dll

%System%\msaoahv.exe

%System%\msbpiaj.exe

%System%\mscenly.exe

%System%\mscetek.exe

%System%\mscexsg.exe

%System%\mscqx.exe

%System%\mscwpaci.exe

%System%\msdhev.exe

%System%\msdin.exe

%System%\msdwtxgo.exe

%System%\msdxtm.exe

%System%\mseaw.exe

%System%\msecfppx.exe

%System%\msehj.exe

%System%\msekpau.exe

%System%\mseloff.exe

%System%\mselpkm.exe

%System%\msepo.exe

%System%\msfkgi.exe

%System%\msfqefq.exe

%System%\msfya.exe

%System%\msgckhuo.exe

%System%\msgctr.exe

%System%\msgezbya.exe

%System%\msgismg.exe

%System%\msglmgf.exe

%System%\msgvw.exe

%System%\mshesoa.exe

%System%\mshsulu.exe

%System%\mshuqb.exe

%System%\msigyj.exe

%System%\msijn.exe

%System%\msildkj.exe

%System%\msilgk.exe

%System%\msimo.exe

%System%\msjan.exe

%System%\msjbadk.exe

%System%\msjewht.exe

%System%\msjjw.exe

%System%\msjzbphc.exe

%System%\mskhscha.exe

%System%\mskspkiq.exe

%System%\mskxd.exe

%System%\mskxvv.exe

%System%\mskxwpe.exe

%System%\mslnrjhe.exe

%System%\mslrggz.exe

%System%\msmcqp.exe

%System%\msmegfr.exe

%System%\msmgtue.exe

%System%\msmli.exe

%System%\msmmg.exe

Notes:

%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonDocuments% is a variable that refers to the file system directory that contains documents that are common to all users. A typical paths is C:\Documents and Settings\All Users\Documents.
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).