ThreatExpert's Statistics for PWS-QQRob [McAfee]:

PWS-QQRob [McAfee] is also known as:

Threat Alias	Number of Incidents
Trojan-PSW.QQRob!sd5 [PC Tools]	63
Infostealer [Symantec]	50
Backdoor.Trojan [Symantec]	45
Infostealer.QQRob.A [Symantec]	30
Trojan.PWS.QQPass [Symantec]	22
PWS:Win32/QQRob.T [Microsoft]	17
Trojan-PSW.QQPass!sd5 [PC Tools]	16
TSPY_QQROB.AOT [Trend Micro]	16
Trojan-PSW.Win32.QQRob.lp [Kaspersky Lab]	14
Hacktool.PWS.QQPass [Symantec]	13
Infostealer.Lemir [Symantec]	12
Mal_Xed-8 [Trend Micro]	10
Trojan-PSW.Win32.QQRob.1028 [Kaspersky Lab]	10
Trojan-PWS.QQRob.U [PC Tools]	10
Mal/Behav-142 [Sophos]	9
W32.Pasobir [Symantec]	9
Backdoor.Win32.Delf.ash [Kaspersky Lab]	8
Backdoor.Win32.Vipdataend.ar [Kaspersky Lab]	8
Backdoor:Win32/Delf [Microsoft]	8
Packed.Win32.NSAnti.a [Kaspersky Lab]	8
Trojan-PSW.Win32.QQPass.jh [Kaspersky Lab]	8
Trojan-PWS.QQPass [PC Tools]	8
Trojan-Spy.GWGhost [PC Tools]	8
Mal/Packer [Sophos]	7
Trojan-PSW.Delf!sd5 [PC Tools]	7
Trojan-Downloader.Win32.Delf.aex [Kaspersky Lab]	6
Trojan-PSW.Win32.Delf.vb [Kaspersky Lab]	6
TSPY_QQPASS.BXM [Trend Micro]	6
TSPY_QQROB.NF [Trend Micro]	6
Backdoor.Delf.ASH [PC Tools]	5
Infostealer.Lemir.Gen [Symantec]	5
Mal/Generic-A [Sophos]	5
TROJ_QQROB.ES [Trend Micro]	5
Trojan-PSW.Win32.QQRob.hw [Kaspersky Lab]	5
Trojan-PSW.Win32.QQRob.lm [Kaspersky Lab]	5
Trojan-PWS.QQRob [PC Tools]	5
Worm:Win32/Emerleox.gen!A [Microsoft]	5
Backdoor.Win32.Agent.ejz [Kaspersky Lab]	4
BKDR_HUPIGON.EVG [Trend Micro]	4
Bloodhound.NsAnti [Symantec]	4
Downloader [Symantec]	4
Mal/Behav-103, Mal/Behav-043, Mal/Emogen-E [Sophos]	4
Mal/Delf-I [Sophos]	4
Mal/Emogen-N, Mal/Heuri-E, Mal/Delf-I [Sophos]	4
Mal/Generic-A, Mal/Behav-142 [Sophos]	4
Mal_Infostl [Trend Micro]	4
Mal_MLWR-1 [Trend Micro]	4
TROJ_Generic [Trend Micro]	4
Trojan.NSAnti [PC Tools]	4
Trojan.PWS.QQPass.ACC [PC Tools]	4
Trojan:Win32/Delf.CB [Microsoft]	4
Trojan-Downloader.Win32.Delf.avo [Kaspersky Lab]	4
Trojan-Downloader.Win32.Delf.bna [Kaspersky Lab]	4
Trojan-GameThief.Win32.Magania [Ikarus]	4
Trojan-PSW.Win32.QQPass.jb [Kaspersky Lab]	4
Trojan-PSW.Win32.QQRob.hc [Kaspersky Lab]	4
Trojan-PWS.Win32.QQRob.je [Ikarus]	4
TSPY_QQROB.AEO [Trend Micro]	4
TSPY_QQROB.DV [Trend Micro]	4
Mal/Heuri-E, Mal/Delf-I [Sophos]	3
Packed.Win32.NSAnti.r [Kaspersky Lab]	3
Packed/NSPM.B [PC Tools]	3
Troj/QQRob-DG [Sophos]	3
Troj/QQRob-ZL [Sophos]	3
TROJ_INFOSTL.A [Trend Micro]	3
Trojan.PWS.Delf.WOM [PC Tools]	3
Trojan-PSW.Win32.Delf.ln [Kaspersky Lab]	3
Trojan-PSW.Win32.Delf.nx [Kaspersky Lab]	3
Trojan-PSW.Win32.QQPass.iu [Kaspersky Lab]	3
Trojan-PSW.Win32.QQPass.jo [Kaspersky Lab]	3
Trojan-PSW.Win32.QQPass.ro [Kaspersky Lab]	3
Trojan-PSW.Win32.QQPass.uj [Kaspersky Lab]	3
Trojan-PSW.Win32.QQRob.be [Kaspersky Lab]	3
Trojan-PSW.Win32.QQRob.cb [Kaspersky Lab]	3
Trojan-PSW.Win32.QQRob.ha [Kaspersky Lab]	3
Trojan-PSW.Win32.QQRob.hl [Kaspersky Lab]	3
Trojan-PSW.Win32.QQRob.jr [Kaspersky Lab]	3
Trojan-PSW.Win32.QQRob.le [Kaspersky Lab]	3
TSPY_QQROB.ANF [Trend Micro]	3
TSPY_QQROB.HU [Trend Micro]	3
WORM_QQPASS.ARP [Trend Micro]	3
Backdoor.Win32.Hupigon.bfx [Kaspersky Lab]	2
Mal/Behav-204 [Sophos]	2
Mal/EncPk-AT [Sophos]	2
Mal/Packer, Mal/Delf-M, Mal/Behav-220, Troj/QQRb-Gen [Sophos]	2
Mal_Otorun5 [Trend Micro]	2
MalwareScope.Backdoor.Hupigon.3 [Ikarus]	2
Packed/ExeSt [PC Tools]	2
Packed/NSPM [PC Tools]	2
Possible_MLWR-5 [Trend Micro]	2
PWS:Win32/QQRob [Microsoft]	2
TROJ_QQROB.135 [Trend Micro]	2
TROJ_QQROB.EK [Trend Micro]	2
Trojan.KillAV [Symantec]	2
Trojan.Packed.18 [Symantec]	2
Trojan.PWS.QQPass.HG [PC Tools]	2
Trojan.QQPass.LN [PC Tools]	2
Trojan-Dropper.Delf [Ikarus]	2
TrojanDropper:Win32/Dowque.A [Microsoft]	2
Trojan-PSW.Win32.QQPass.it [Kaspersky Lab]	2

PWS-QQRob [McAfee] has the following possible countries of origin:

Origin		Number of Incidents
	China	104
	United Kingdom	1

PWS-QQRob [McAfee] is known to be created as:

%ProgramFiles%\tencent\adplus\stup.exe

%Programs%\startup\qqupdate.exe

%System%\alligt.exe

%System%\bryato.exe

%System%\dmqgmk.exe

%System%\drivers\akouow.exe

%System%\drivers\avipit.exe

%System%\drivers\cisceq.exe

%System%\drivers\conime.exe

%System%\drivers\eyuqhu.exe

%System%\drivers\jmxxxh.exe

%System%\drivers\nkruls.exe

%System%\drivers\pnvifj.exe

%System%\drivers\qpoenl.com

%System%\drivers\rekbao.com

%System%\drivers\sbfcme.exe

%System%\drivers\tekkdv.exe

%System%\geakbn.exe

%System%\hh.exe

%System%\hsiwij.exe

%System%\iajqhf.exe

%System%\impai.exe

%System%\intenat.exe

%System%\jitpjr.exe

%System%\jlmtas.exe

%System%\jusodl.exe

%System%\lcjgbi.exe

%System%\mdngfh.exe

%System%\mmlucj.exe

%System%\mshx.dll

%System%\niw.exe

%System%\njetcc.exe

%System%\ntdhcp.exe

%System%\nvsvc.dll

%System%\ourfns.exe

%System%\readly.exe

%System%\rpc5s.exe

%System%\rpcs.dll

%System%\rpcs.exe

%System%\rpcsocf.exe

%System%\severe.exe

%System%\svohost.exe

%System%\svtpxi.exe

%System%\test.dll

%System%\tssrhe.exe

%System%\unsecc.exe

%System%\vkbdho.exe

%System%\vm_sti.exe

%System%\winscok.dll

%System%\wmid.exe

%System%\wsystem.dll

%System%\xpuveb.exe

%System%\ydggot.exe

%System%\yimdkc.exe

%System%\yjplqb.dll

%System%\yjplqb.exe

%Temp%\14d4e3d5.exe

%Temp%\236ff3fd.exe

%Temp%\606fecc0.exe

%Temp%\671422d0.exe

%Temp%\6a0b75a4.exe

%Temp%\89f5de9c.exe

%Temp%\92c3e869.exe

%Temp%\95f3782b.exe

%Temp%\9bacbfd0.exe

%Temp%\a7f75e1e.exe

%Temp%\b51bb8fd.exe

%Temp%\bc99eb58.exe

%Temp%\bcace3a6.exe

%Temp%\d7014b14.exe

%Temp%\d80b6748.exe

%Temp%\d8c5f453.exe

%Temp%\ddc7ee67.exe

%Temp%\e183d5f7.exe

%Temp%\e3f955bd.exe

%Windir%\taskmgr.exe

%Windir%\web\iexpl0re.exe

%Windir%\wuauclt.exe

c:\alastart.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.