ThreatExpert's Statistics for W32.Koobface.D [Symantec]:

W32.Koobface.D [Symantec] is also known as:

Threat Alias	Number of Incidents
Worm:Win32/Koobface.gen!D [Microsoft]	129
Net-Worm.Koobface [PC Tools]	90
W32/Koobface.worm [McAfee]	82
Mal/Generic-A [Sophos]	80
Mal/KoobHeur-A [Sophos]	71
Worm.Win32.Koobface [Ikarus]	65
Net-Worm.Win32.Koobface.bjq [Kaspersky Lab]	28
Net-Worm.Win32.Koobface [Ikarus]	27
Net-Worm.Win32.Koobface.bkb [Kaspersky Lab]	27
Mal/EncPk-LW [Sophos]	26
W32/Koobfa-Gen, Mal/KoobHeur-A [Sophos]	25
Net-Worm.Win32.Koobface.bka [Kaspersky Lab]	20
W32/Koobface.worm.gen.j [McAfee]	19
Net-Worm.Win32.Koobface.fcw [Kaspersky Lab]	16
Mal/Generic-A, Mal/KoobHeur-A [Sophos]	14
Net-Worm.Win32.Koobface.brr [Kaspersky Lab]	11
Net-Worm.Win32.Koobface.bno [Kaspersky Lab]	10
W32/Koobface.worm.gen.ac [McAfee]	10
Trojan-Downloader.Win32.Small [Ikarus]	9
Trojan-Downloader.Win32.Small.anlx [Kaspersky Lab]	9
Win-Trojan/Downloader.6144.WF [AhnLab]	9
W32/Koobface.worm.gen.v [McAfee]	7
Worm:Win32/Koobface.W [Microsoft]	7
Net-Worm.Win32.Koobface.css [Kaspersky Lab]	6
Trojan-Downloader.Win32.Small.aoiu [Kaspersky Lab]	6
W32/Koobface.worm.gen.g [McAfee]	6
Win32/Koobface.worm.36864.H [AhnLab]	6
Net-Worm.Koobface.bjq [PC Tools]	5
Net-Worm.Win32.Koobface.bjz [Kaspersky Lab]	5
Net-Worm.Win32.Koobface.cta [Kaspersky Lab]	5
Troj/Capa-Gen [Sophos]	5
W32/Koobface.worm.gen.d [McAfee]	5
W32/Koobface.worm.gen.x [McAfee]	5
Mal/Generic-A, Mal/EncPk-LW [Sophos]	4
Net-Worm.Koobface.bgr [PC Tools]	4
Net-Worm.Win32.Koobface.bqk [Kaspersky Lab]	4
Net-Worm.Win32.Koobface.bqm [Kaspersky Lab]	4
Net-Worm.Win32.Koobface.cmc [Kaspersky Lab]	4
Net-Worm.Win32.Koobface.csa [Kaspersky Lab]	4
Net-Worm.Win32.Koobface.cse [Kaspersky Lab]	4
Net-Worm.Win32.Koobface.csh [Kaspersky Lab]	4
W32.Koobface.A [Symantec]	4
Win32/Koobface.worm.49152.G [AhnLab]	4
Win32/Koobface.worm.69632.J [AhnLab]	4
WORM_PKOOBF.SMQ [Trend Micro]	4
Mal/Koobface-A [Sophos]	3
Net-Worm.Win32.Koobface.bsh [Kaspersky Lab]	3
Net-Worm.Win32.Koobface.csr [Kaspersky Lab]	3
Trojan-Downloader.Win32.Injecter.dit [Kaspersky Lab]	3
W32/Koobface.worm.gen.e [McAfee]	3
W32/Koobface.worm.gen.r [McAfee]	3
W32/Koobface.worm.gen.u [McAfee]	3
W32/KoobFa-S [Sophos]	3
Generic.dx!lux [McAfee]	2
Mal/Dial-V [Sophos]	2
Mal/FakeSpy-A [Sophos]	2
Mal/Koobface-A, Mal/EncPk-LW [Sophos]	2
Net-Worm.Win32.Koobface.cma [Kaspersky Lab]	2
Net-Worm.Win32.Koobface.cuu [Kaspersky Lab]	2
Trojan.Win32.Scar [Ikarus]	2
Trojan.Win32.Vilsel [Ikarus]	2
Trojan.Win32.Vilsel.mbs [Kaspersky Lab]	2
Trojan-Downloader.Win32.Injecter.dix [Kaspersky Lab]	2
Trojan-Downloader.Win32.Small.kjp [Kaspersky Lab]	2
VirTool.WinNT.Koobface [Ikarus]	2
VirTool:WinNT/Koobface.gen!B [Microsoft]	2
W32/Koobface.worm.gen.ai [McAfee]	2
W32/Koobface.worm.gen.q [McAfee]	2
Win32/Koobface.worm.20748 [AhnLab]	2
Win32/Koobface.worm.38912.DD [AhnLab]	2
Win32/Koobface.worm.49152.H [AhnLab]	2
Win32/Kooface.worm.58368 [AhnLab]	2
Adware.BrowseCtl [PC Tools]	1
Downloader-CCN [McAfee]	1
Dropper/Malware.40960.BC [AhnLab]	1
Generic.dx!cwy [McAfee]	1
Generic.dx!dsb [McAfee]	1
Generic.dx!gpc [McAfee]	1
Generic.dx!ilj [McAfee]	1
Generic.dx!ncz [McAfee]	1
Mal/Generic-A, Mal/Koobface-A, Mal/EncPk-LW [Sophos]	1
Net-Worm.Koobface.bjj [PC Tools]	1
Net-Worm.Koobface.bjz [PC Tools]	1
Net-Worm.Koobface.bkm [PC Tools]	1
Net-Worm.Koobface.hx [PC Tools]	1
Net-Worm.Koobface.za [PC Tools]	1
Net-Worm.Win32.Koobface.bgv [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bit [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.biy [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bjc [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bje [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bjg [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bjj [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bke [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.blp [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bml [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bmw [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.bqn [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.ciy [Kaspersky Lab]	1
Net-Worm.Win32.Koobface.cjh [Kaspersky Lab]	1

W32.Koobface.D [Symantec] has the following possible countries of origin:

Origin		Number of Incidents
	Finland	9
	Russian Federation	3

W32.Koobface.D [Symantec] is known to be created as:

%ProgramFiles%\browserctl\browserctl.sys

%Temp%\ld12.exe

%Windir%\freddy57.exe

%Windir%\freddy58.exe

%Windir%\freddy59.exe

%Windir%\freddy62.exe

%Windir%\freddy63.exe

%Windir%\freddy65.exe

%Windir%\freddy72.exe

%Windir%\freddy75.exe

%Windir%\ld12.exe

%Windir%\ld14.exe

%Windir%\ld15.exe

%Windir%\ld16.exe

%Windir%\mstre21.exe

%Windir%\mstre24.exe

%Windir%\pp11.exe

%Windir%\pp12.exe

%Windir%\pp14.exe

%Windir%\rdr_1253304947.exe

%Windir%\rdr_1254265248.exe

%Windir%\rdr_1260268147.exe

%Windir%\rdr_1260444871.exe

%Windir%\rdr_1260518795.exe

%Windir%\rdr_1260574404.exe

%Windir%\rdr_1264787015.exe

%Windir%\rdr_1265498029.exe

%Windir%\sber18.exe

%Windir%\tag13.exe

%Windir%\vkl_1253068509.exe

%Windir%\vkl_1253157410.exe

%Windir%\vkl_1253176598.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.