大量伪快播(Qvod.exe,click.exe,duogua.exe),天天更新 (637 楼有新)

Johnny.R

回复 450楼 sam.to  的帖子

jayavira

回复 450楼 sam.to  的帖子

to eset

http://samples.eset.com.cn/index ... 856c3a786e8bbf0abf3
   

麦兜响当当

回复 450楼 sam.to  的帖子

金山毒霸KILL ALL
   

hansyu

450
to xandora(panda)

IllusionWing

* “H:\temp\tv99\73qasw87\click.e)xe” | “Heur.Encrpyted.e”
* “H:\temp\tv99\73qasw87\click.ex1e” | “Heur.Encrpyted.e”
* “H:\temp\tv99\73qasw87\duogua.ex3e” | “Heur.Encrpyted.e”
* “H:\temp\tv99\73qasw87\Qvodplayer.e#xe” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.e&xe” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.e2xe” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.e3xe” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex#e” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex)e” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex+e” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex1e” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex2e” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.exe2” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex^e” | “Trojan.Downloader.QVod.Gen”
* “H:\temp\tv99\73qasw87\Qvodplayer.ex~e” | “Trojan.Downloader.QVod.Gen”
* “SCANTIME” | 452

langzi2009

诺顿全杀

XMonster

病毒        2010-07-25  10:01:50        c:\documents and settings\dxm\桌面\876e.rar<a:rar>876e\qvodplayer.e#xe        Win32.Troj.FakeQvod.ac        处理成功（操作：删除）       

sam.to

19a143cb7d377cbeedf3ff272d77a946  click.exe(
7ebaf9c72b7b1e59057d524364fd5b34  click.ex~e
c43e6029987821bfb937e35d4d073428  duogua.ex#e
df5dd99909e9ae03a2e36e3491502003  Qvodplayer.e!xe
daa7ca4bffa9b7d4c14385f012afde2a  Qvodplayer.e#xe
2ca4c4551941bb9b008c72fcde899fd0  Qvodplayer.ex#e
134b513b55d8ee8768b9326c855a8923  Qvodplayer.ex$e
f0becd76845aefb38c9aae7d23188fc4  Qvodplayer.ex0e
d3c5f8035c905c0e91cdf0e21f5b3269  Qvodplayer.ex2e
56054861b1722719f53b02371db3de77  Qvodplayer.ex5e
d5589caa40ff0765ee2d335736afc5e6  Qvodplayer.exe&
37b83d3ca3a2cd842cbd520e4e4d2606  Qvodplayer.exe+
39f3d26ef4013bf56bf1de69ea3e2bfb  Qvodplayer.exe3
3b6c3cd075c692e7c4599addc855882c  Qvodplayer.ex`e
c21367de8bdf9ac61aa5f1d7f921777e  Qvodplayer.e^xe
8f734ba45ef810a364a18042f5ef369d  Qvodplayer.e_xe


to kl,ll,mcafee,comodo





Hello,

click.ex.e, click.exe( - Trojan-Downloader.Win32.Agent.ebyu,
duogua.ex#e - Trojan-Downloader.Win32.Agent.ebkv,
Qvodplayer.e!xe, Qvodplayer.e#xe, Qvodplayer.ex#e, Qvodplayer.ex$e, Qvodplayer.ex0e, Qvodplayer.ex2e, Qvodplayer.ex5e, Qvodplayer.exe&, Qvodplayer.exe+, Qvodplayer.exe3, Qvodplayer.ex`e, Qvodplayer.e^xe, Qvodplayer.e_xe - Trojan-Downloader.Win32.Agent.ecee

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

The answer is relevant to the latest bases from update sources.

Please quote all when answering.
-----------------
Regards, Baranov Artiom
Virus Analyst, Kaspersky Lab.

蝉鸣时

458

ESET NOD32 missed 13×.
To ESET.

sam.to

0d484cc80614510af4e6a9b096b84ff8  Qvodplayer.ex&e
2b6eea38f085157c6f59fa04f7d85824  Qvodplayer.e!xe
35d468cdbaab75a3c5271dcb921def10  Qvodplayer.ex3e
531563aa8726d09282853b4e3c63fb41  Qvodplayer.ex_e
700abc11cfa433887f65725907176845  Qvodplayer.exe)
8c625f1c33d0a5d5cb124ce81ee02cb9  Qvodplayer.exe5
8d7814da9c583294b6a12366c35be25b  Qvodplayer.exe&
acc0e5c2ee82f9b55fc63fde02e5ecf7  Qvodplayer.e#xe
b266f2b92917a1a9e1f402de0a15c3c0  Qvodplayer.e2xe
c4c07088cb6bc6bdd479f19ec0e0f8ae  Qvodplayer.e@xe
c6cf175a5f61dd5564d2f7cb23ab04a3  Qvodplayer.ex$e
d58de23bff56a1da5669dc49c6335b7b  Qvodplayer.exe#
df9342f4642d55169c84bc5a4d153f00  Qvodplayer.ex2e


to kl,ll,comodo


Hello,

Qvodplayer.e!xe, Qvodplayer.e#xe, Qvodplayer.e2xe, Qvodplayer.e@xe, Qvodplayer.ex$e, Qvodplayer.ex&e, Qvodplayer.ex2e, Qvodplayer.ex3e, Qvodplayer.exe#, Qvodplayer.exe&, Qvodplayer.exe), Qvodplayer.exe5, Qvodplayer.ex_e - Trojan-Downloader.Win32.Agent.ecof

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.
The answer is relevant to the latest bases from update sources.

Regards, Kuskov Vladimir
Virus Analyst