├── AVCheck.py ├── README.md ├── tasklist.txt └── 杀软识别.txt /AVCheck.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python3 2 | 3 | banner = ''' 4 | 5 | ___ ____ ____ ______ __ __ _______ ______ __ ___ 6 | / \ \ \ / / / || | | | | ____| / || |/ / 7 | / ^ \ \ \/ / | ,----'| |__| | | |__ | ,----'| ' / 8 | / /_\ \ \ / | | | __ | | __| | | | < 9 | / _____ \ \ / | `----.| | | | | |____ | `----.| . \ 10 | /__/ \__\ \__/ \______||__| |__| |_______| \______||__|\__\ 11 | 12 | --by 想走安全的小白 13 | 14 | ''' 15 | 16 | print(banner) 17 | 18 | with open('tasklist.txt', 'r') as file: 19 | for line in file.readlines(): 20 | line = line.strip('\n') 21 | #取出tasklist中的进程名称 22 | target = line.split(' ')[0] 23 | with open('杀软识别.txt', 'r') as f: 24 | for i in f.readlines(): 25 | #将取出的进程名与杀软识别列表中的名称进行对比 26 | if target == i.strip('\n').split('\"')[1]: 27 | result = i.strip('\n').split('\"')[3] 28 | if result is None: 29 | print("没有识别到杀软或者不存在杀软") 30 | else: 31 | print("服务器上存在的杀毒软件有:" + result) 32 | else: 33 | pass 34 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # AVCheck 2 | 对windows系统进程中的杀软进行识别,快速发现杀软,为后续绕过进行准备。 3 | 4 | ### 工具简介: 5 | 首先使用tasklist查看windows服务器上运行的进程,然后将结果复制到“tasklist.txt”,然后遍历tasklist文件并将进程名获取到,然后将进程名与“杀软识别.txt”中的进程名进行对比,如果存在即证明服务器上存在该杀软。 6 | 7 | ### 使用方法 8 | 1.在服务器上执行tasklist命令查看运行的进程 9 | 10 | 2.将结果复制到tasklit.txt文件中 11 | 12 | 3.执行命令`python3 AVCheck.py`运行程序 13 | -------------------------------------------------------------------------------- /tasklist.txt: -------------------------------------------------------------------------------- 1 | System Idle Process 0 Services 0 8 K 2 | System 4 Services 0 12 K 3 | Registry 92 Services 0 15,168 K 4 | smss.exe 328 Services 0 暂缺 5 | csrss.exe 460 Services 0 1,224 K 6 | wininit.exe 540 Services 0 暂缺 7 | csrss.exe 548 Console 1 1,596 K 8 | services.exe 616 Services 0 4,296 K 9 | winlogon.exe 648 Console 1 668 K 10 | lsass.exe 688 Services 0 8,168 K 11 | fontdrvhost.exe 796 Services 0 暂缺 12 | fontdrvhost.exe 804 Console 1 2,356 K 13 | svchost.exe 816 Services 0 14,144 K 14 | svchost.exe 924 Services 0 9,224 K 15 | dwm.exe 1012 Console 1 118,228 K 16 | svchost.exe 712 Services 0 2,812 K 17 | svchost.exe 748 Services 0 60,648 K 18 | svchost.exe 1060 Services 0 3,176 K 19 | svchost.exe 1068 Services 0 11,260 K 20 | svchost.exe 1076 Services 0 19,780 K 21 | svchost.exe 1096 Services 0 14,848 K 22 | svchost.exe 1164 Services 0 11,068 K 23 | svchost.exe 1588 Services 0 12,616 K 24 | svchost.exe 1636 Services 0 10,468 K 25 | svchost.exe 1792 Services 0 8,212 K 26 | svchost.exe 1944 Services 0 732 K 27 | svchost.exe 1472 Services 0 4,900 K 28 | Memory Compression 2056 Services 0 188,284 K 29 | svchost.exe 2248 Services 0 4,268 K 30 | wsctrlsvc.exe 2340 Services 0 348 K 31 | svchost.exe 2396 Services 0 1,612 K 32 | svchost.exe 2416 Services 0 3,392 K 33 | spoolsv.exe 2604 Services 0 1,068 K 34 | svchost.exe 2684 Services 0 7,652 K 35 | svchost.exe 2888 Services 0 3,608 K 36 | svchost.exe 2984 Services 0 988 K 37 | svchost.exe 3004 Services 0 6,884 K 38 | svchost.exe 3016 Services 0 508 K 39 | phpStudyServer.exe 2080 Services 0 72 K 40 | SunloginClient.exe 1928 Services 0 4,368 K 41 | VGAuthService.exe 2316 Services 0 暂缺 42 | vmtoolsd.exe 2380 Services 0 8,044 K 43 | svchost.exe 8 Services 0 396 K 44 | vm3dservice.exe 3100 Services 0 112 K 45 | vm3dservice.exe 3344 Console 1 936 K 46 | SunloginClient.exe 3608 Services 0 164 K 47 | WmiPrvSE.exe 3712 Services 0 12,724 K 48 | dllhost.exe 3888 Services 0 1,828 K 49 | sihost.exe 4076 Console 1 12,132 K 50 | svchost.exe 4092 Console 1 19,712 K 51 | taskhostw.exe 1708 Console 1 4,604 K 52 | dasHost.exe 4116 Services 0 8,972 K 53 | ctfmon.exe 4188 Console 1 10,596 K 54 | explorer.exe 4436 Console 1 95,512 K 55 | ChsIME.exe 4568 Console 1 48 K 56 | msdtc.exe 4820 Services 0 暂缺 57 | svchost.exe 4912 Console 1 13,368 K 58 | StartMenuExperienceHost.e 5992 Console 1 18,920 K 59 | RuntimeBroker.exe 6092 Console 1 1,388 K 60 | SearchApp.exe 5456 Console 1 4,968 K 61 | SearchIndexer.exe 5408 Services 0 5,044 K 62 | RuntimeBroker.exe 5632 Console 1 8,216 K 63 | YourPhone.exe 6252 Console 1 680 K 64 | LockApp.exe 6432 Console 1 暂缺 65 | RuntimeBroker.exe 6440 Console 1 864 K 66 | RuntimeBroker.exe 6548 Console 1 6,524 K 67 | TextInputHost.exe 6780 Console 1 12,908 K 68 | SecurityHealthSystray.exe 6656 Console 1 324 K 69 | vmtoolsd.exe 4672 Console 1 25,652 K 70 | SecurityHealthService.exe 6940 Services 0 4,076 K 71 | HipsTray.exe 4592 Console 1 4,820 K 72 | OneDrive.exe 4648 Console 1 25,240 K 73 | msedge.exe 6752 Console 1 22,432 K 74 | msedge.exe 760 Console 1 164 K 75 | msedge.exe 7388 Console 1 4,968 K 76 | msedge.exe 7408 Console 1 8,856 K 77 | msedge.exe 7532 Console 1 1,420 K 78 | jusched.exe 7636 Console 1 1,668 K 79 | SunloginClient.exe 7884 Console 1 11,740 K 80 | ShellExperienceHost.exe 7924 Console 1 暂缺 81 | RuntimeBroker.exe 7744 Console 1 432 K 82 | RuntimeBroker.exe 5352 Console 1 1,812 K 83 | svchost.exe 5788 Services 0 5,760 K 84 | SgrmBroker.exe 9040 Services 0 2,496 K 85 | svchost.exe 64 Services 0 2,388 K 86 | svchost.exe 6832 Services 0 23,756 K 87 | SystemSettings.exe 8768 Console 1 暂缺 88 | ApplicationFrameHost.exe 8756 Console 1 8,544 K 89 | svchost.exe 8876 Services 0 10,144 K 90 | UserOOBEBroker.exe 9100 Console 1 228 K 91 | HipsDaemon.exe 4768 Services 0 38,888 K 92 | usysdiag.exe 3564 Services 0 暂缺 93 | Microsoft.Photos.exe 2172 Console 1 暂缺 94 | RuntimeBroker.exe 8628 Console 1 964 K 95 | svchost.exe 6148 Services 0 5,684 K 96 | audiodg.exe 7212 Services 0 5,288 K 97 | backgroundTaskHost.exe 3136 Console 1 748 K 98 | TrustedInstaller.exe 8776 Services 0 3,268 K 99 | TiWorker.exe 2468 Services 0 24,240 K 100 | backgroundTaskHost.exe 1044 Console 1 760 K 101 | HxTsr.exe 5332 Console 1 1,736 K 102 | backgroundTaskHost.exe 792 Console 1 528 K 103 | RuntimeBroker.exe 8964 Console 1 4,168 K 104 | RuntimeBroker.exe 8508 Console 1 3,716 K 105 | svchost.exe 5256 Services 0 10,860 K 106 | upfc.exe 2768 Services 0 6,108 K 107 | MicrosoftEdgeUpdate.exe 5220 Services 0 6,860 K 108 | taskhostw.exe 3452 Services 0 23,664 K 109 | taskhostw.exe 9024 Services 0 7,640 K 110 | wermgr.exe 6824 Services 0 7,976 K 111 | firefox.exe 8436 Console 1 3,968 K 112 | CompatTelRunner.exe 7912 Services 0 3,828 K 113 | DeviceCensus.exe 8048 Services 0 9,520 K 114 | MicrosoftEdgeUpdate.exe 8820 Services 0 8,060 K 115 | MusNotification.exe 5808 Services 0 11,220 K 116 | sc.exe 8868 Services 0 2,924 K 117 | default-browser-agent.exe 3632 Console 1 4,712 K 118 | MicrosoftEdgeUpdate.exe 6688 Services 0 8,064 K 119 | OneDriveStandaloneUpdater 8128 Console 1 13,468 K 120 | OneDriveStandaloneUpdater 2156 Console 1 13,224 K 121 | svchost.exe 1496 Console 1 11,576 K 122 | conhost.exe 4948 Services 0 13,584 K 123 | backgroundTaskHost.exe 6340 Console 1 360 K 124 | backgroundTaskHost.exe 5108 Console 1 360 K 125 | backgroundTaskHost.exe 112 Console 1 360 K 126 | smartscreen.exe 8440 Console 1 24,716 K 127 | cmd.exe 5216 Console 1 4,416 K 128 | MoUsoCoreWorker.exe 3912 Services 0 30,072 K 129 | conhost.exe 4140 Console 1 25,540 K 130 | sppsvc.exe 4772 Services 0 16,892 K 131 | conhost.exe 3576 Services 0 14,204 K 132 | SppExtComObj.Exe 5920 Services 0 9,084 K 133 | slui.exe 5860 Services 0 14,740 K 134 | firefox.exe 5100 Console 1 2,060 K 135 | MusNotificationUx.exe 6600 Console 1 1,732 K 136 | slui.exe 7188 Console 1 14,192 K 137 | slui.exe 2880 Services 0 10,764 K 138 | tasklist.exe 5712 Console 1 9,280 K 139 | -------------------------------------------------------------------------------- /杀软识别.txt: -------------------------------------------------------------------------------- 1 | "360tray.exe": "360安全卫士-实时保护", 2 | "360safe.exe": "360安全卫士-主程序", 3 | "ZhuDongFangYu.exe": "360安全卫士-主动防御", 4 | "360sd.exe": "360杀毒", 5 | "a2guard.exe": "a-squared杀毒", 6 | "ad-watch.exe": "Lavasoft杀毒", 7 | "cleaner8.exe": "The Cleaner杀毒", 8 | "vba32lder.exe": "vb32杀毒", 9 | "MongoosaGUI.exe": "Mongoosa杀毒", 10 | "CorantiControlCenter32.exe": "Coranti2012杀毒", 11 | "F-PROT.exe": "F-Prot AntiVirus", 12 | "CMCTrayIcon.exe": "CMC杀毒", 13 | "K7TSecurity.exe": "K7杀毒", 14 | "UnThreat.exe": "UnThreat杀毒", 15 | "CKSoftShiedAntivirus4.exe": "Shield Antivirus杀毒", 16 | "AVWatchService.exe": "VIRUSfighter杀毒", 17 | "ArcaTasksService.exe": "ArcaVir杀毒", 18 | "iptray.exe": "Immunet杀毒", 19 | "PSafeSysTray.exe": "PSafe杀毒", 20 | "nspupsvc.exe": "nProtect杀毒", 21 | "SpywareTerminatorShield.exe": "SpywareTerminator反间谍软件", 22 | "BKavService.exe": "Bkav杀毒", 23 | "MsMpEng.exe": "Microsoft Security Essentials", 24 | "SBAMSvc.exe": "VIPRE", 25 | "ccSvcHst.exe": "Norton杀毒", 26 | "f-secure.exe": "冰岛", 27 | "avp.exe": "Kaspersky", 28 | "KvMonXP.exe": "江民杀毒", 29 | "RavMonD.exe": "瑞星杀毒", 30 | "Mcshield.exe": "McAfee", 31 | "Tbmon.exe": "McAfee", 32 | "Frameworkservice.exe": "McAfee", 33 | "egui.exe": "ESET NOD32", 34 | "ekrn.exe": "ESET NOD32", 35 | "eguiProxy.exe": "ESET NOD32", 36 | "kxetray.exe": "金山毒霸", 37 | "knsdtray.exe": "可牛杀毒", 38 | "TMBMSRV.exe": "趋势杀毒", 39 | "avcenter.exe": "Avira(小红伞)", 40 | "avguard.exe": "Avira(小红伞)", 41 | "avgnt.exe": "Avira(小红伞)", 42 | "sched.exe": "Avira(小红伞)", 43 | "ashDisp.exe": "Avast网络安全", 44 | "rtvscan.exe": "诺顿杀毒", 45 | "ccapp.exe": "SymantecNorton", 46 | "NPFMntor.exe": "Norton杀毒软件", 47 | "ccSetMgr.exe": "赛门铁克", 48 | "ccRegVfy.exe": "Norton杀毒软件", 49 | "ksafe.exe": "金山卫士", 50 | "QQPCRTP.exe": "QQ电脑管家", 51 | "avgwdsvc.exe": "AVG杀毒", 52 | "QUHLPSVC.exe": "QUICK HEAL杀毒", 53 | "mssecess.exe": "微软杀毒", 54 | "SavProgress.exe": "Sophos杀毒", 55 | "SophosUI.exe": "Sophos杀毒", 56 | "SophosFS.exe": "Sophos杀毒", 57 | "SophosHealth.exe": "Sophos杀毒", 58 | "SophosSafestore64.exe": "Sophos杀毒", 59 | "SophosCleanM.exe": "Sophos杀毒", 60 | "fsavgui.exe": "F-Secure杀毒", 61 | "vsserv.exe": "比特梵德", 62 | "remupd.exe": "熊猫卫士", 63 | "FortiTray.exe": "飞塔", 64 | "safedog.exe": "安全狗", 65 | "parmor.exe": "木马克星", 66 | "Iparmor.exe.exe": "木马克星", 67 | "beikesan.exe": "贝壳云安全", 68 | "KSWebShield.exe": "金山网盾", 69 | "TrojanHunter.exe": "木马猎手", 70 | "GG.exe": "巨盾网游安全盾", 71 | "adam.exe": "绿鹰安全精灵", 72 | "AST.exe": "超级巡警", 73 | "ananwidget.exe": "墨者安全专家", 74 | "AVK.exe": "AntiVirusKit", 75 | "avg.exe": "AVG Anti-Virus", 76 | "spidernt.exe": "Dr.web", 77 | "avgaurd.exe": "Avira Antivir", 78 | "vsmon.exe": "Zone Alarm", 79 | "cpf.exe": "Comodo", 80 | "outpost.exe": "Outpost Firewall", 81 | "rfwmain.exe": "瑞星防火墙", 82 | "kpfwtray.exe": "金山网镖", 83 | "FYFireWall.exe": "风云防火墙", 84 | "MPMon.exe": "微点主动防御", 85 | "pfw.exe": "天网防火墙", 86 | "BaiduSdSvc.exe": "百度杀毒-服务进程", 87 | "BaiduSdTray.exe": "百度杀毒-托盘进程", 88 | "BaiduSd.exe": "百度杀毒-主程序", 89 | "SafeDogGuardCenter.exe": "安全狗", 90 | "safedogupdatecenter.exe": "安全狗", 91 | "safedogguardcenter.exe": "安全狗", 92 | "SafeDogSiteIIS.exe": "安全狗", 93 | "SafeDogTray.exe": "安全狗", 94 | "SafeDogServerUI.exe": "安全狗", 95 | "D_Safe_Manage.exe": "D盾", 96 | "d_manage.exe": "D盾", 97 | "yunsuo_agent_service.exe": "云锁", 98 | "yunsuo_agent_daemon.exe": "云锁", 99 | "HwsPanel.exe": "护卫神", 100 | "hws_ui.exe": "护卫神", 101 | "hws.exe": "护卫神", 102 | "hwsd.exe": "护卫神", 103 | "hipstray.exe": "火绒", 104 | "wsctrl.exe": "火绒", 105 | "usysdiag.exe": "火绒", 106 | "SPHINX.exe": "SPHINX防火墙", 107 | "bddownloader.exe": "百度卫士", 108 | "baiduansvx.exe": "百度卫士-主进程", 109 | "AvastUI.exe": "Avast!5主程序", 110 | "emet_agent.exe": "EMET", 111 | "emet_service.exe": "EMET", 112 | "firesvc.exe": "McAfee", 113 | "firetray.exe": "McAfee", 114 | "hipsvc.exe": "McAfee", 115 | "mfevtps.exe": "McAfee", 116 | "mcafeefire.exe": "McAfee", 117 | "scan32.exe": "McAfee", 118 | "shstat.exe": "McAfee", 119 | "vstskmgr.exe": "McAfee", 120 | "engineserver.exe": "McAfee", 121 | "mfeann.exe": "McAfee", 122 | "mcscript.exe": "McAfee", 123 | "updaterui.exe": "McAfee", 124 | "udaterui.exe": "McAfee", 125 | "naprdmgr.exe": "McAfee", 126 | "cleanup.exe": "McAfee", 127 | "cmdagent.exe": "McAfee", 128 | "frminst.exe": "McAfee", 129 | "mcscript_inuse.exe": "McAfee", 130 | "mctray.exe": "McAfee", 131 | "_avp32.exe": "卡巴斯基", 132 | "_avpcc.exe": "卡巴斯基", 133 | "_avpm.exe": "卡巴斯基", 134 | "aAvgApi.exe": "AVG", 135 | "ackwin32.exe": "已知杀软进程,名称暂未收录", 136 | "alertsvc.exe": "Norton AntiVirus", 137 | "alogserv.exe": "McAfee VirusScan", 138 | "anti-trojan.exe": "Anti-Trojan Elite", 139 | "arr.exe": "Application Request Route", 140 | "atguard.exe": "AntiVir", 141 | "atupdater.exe": "已知杀软进程,名称暂未收录", 142 | "atwatch.exe": "Mustek", 143 | "au.exe": "NSIS", 144 | "aupdate.exe": "Symantec", 145 | "auto-protect.nav80try.exe": "已知杀软进程,名称暂未收录", 146 | "autodown.exe": "AntiVirus AutoUpdater", 147 | "avconsol.exe": "McAfee", 148 | "avgcc32.exe": "AVG", 149 | "avgctrl.exe": "AVG", 150 | "avgemc.exe": "AVG", 151 | "avgrsx.exe": "AVG", 152 | "avgserv.exe": "AVG", 153 | "avgserv9.exe": "AVG", 154 | "avgw.exe": "AVG", 155 | "avkpop.exe": "G DATA SOFTWARE AG", 156 | "avkserv.exe": "G DATA SOFTWARE AG", 157 | "avkservice.exe": "G DATA SOFTWARE AG", 158 | "avkwctl9.exe": "G DATA SOFTWARE AG", 159 | "avltmain.exe": "Panda Software Aplication", 160 | "avnt.exe": "H+BEDV Datentechnik GmbH", 161 | "avp32.exe": "Kaspersky Anti-Virus", 162 | "avpcc.exe": " Kaspersky AntiVirus", 163 | "avpdos32.exe": " Kaspersky AntiVirus", 164 | "avpm.exe": " Kaspersky AntiVirus", 165 | "avptc32.exe": " Kaspersky AntiVirus", 166 | "avpupd.exe": " Kaspersky AntiVirus", 167 | "avsynmgr.exe": "McAfee", 168 | "avwin.exe": " H+BEDV", 169 | "bargains.exe": "Exact Advertising SpyWare", 170 | "beagle.exe": "Avast", 171 | "blackd.exe": "BlackICE", 172 | "blackice.exe": "BlackICE", 173 | "blink.exe": "micromedia", 174 | "blss.exe": "CBlaster", 175 | "bootwarn.exe": "Symantec", 176 | "bpc.exe": "Grokster", 177 | "brasil.exe": "Exact Advertising", 178 | "ccevtmgr.exe": "Norton Internet Security", 179 | "cdp.exe": "CyberLink Corp.", 180 | "cfd.exe": "Motive Communications", 181 | "cfgwiz.exe": " Norton AntiVirus", 182 | "claw95.exe": "已知杀软进程,名称暂未收录", 183 | "claw95cf.exe": "已知杀软进程,名称暂未收录", 184 | "clean.exe": "windows流氓软件清理大师", 185 | "cleaner.exe": "windows流氓软件清理大师", 186 | "cleaner3.exe": "windows流氓软件清理大师", 187 | "cleanpc.exe": "windows流氓软件清理大师", 188 | "cpd.exe": "McAfee", 189 | "ctrl.exe": "已知杀软进程,名称暂未收录", 190 | "cv.exe": "已知杀软进程,名称暂未收录", 191 | "defalert.exe": "Symantec", 192 | "defscangui.exe": "Symantec", 193 | "defwatch.exe": "Norton Antivirus", 194 | "doors.exe": "已知杀软进程,名称暂未收录", 195 | "dpf.exe": "已知杀软进程,名称暂未收录", 196 | "dpps2.exe": "PanicWare", 197 | "dssagent.exe": "Broderbund", 198 | "ecengine.exe": "已知杀软进程,名称暂未收录", 199 | "emsw.exe": "Alset Inc", 200 | "ent.exe": "已知杀软进程,名称暂未收录", 201 | "espwatch.exe": "已知杀软进程,名称暂未收录", 202 | "ethereal.exe": "RationalClearCase", 203 | "exe.avxw.exe": "已知杀软进程,名称暂未收录", 204 | "expert.exe": "已知杀软进程,名称暂未收录", 205 | "f-prot95.exe": "已知杀软进程,名称暂未收录", 206 | "fameh32.exe": "F-Secure", 207 | "fast.exe": " FastUsr", 208 | "fch32.exe": "F-Secure", 209 | "fih32.exe": "F-Secure", 210 | "findviru.exe": "F-Secure", 211 | "firewall.exe": "AshampooSoftware", 212 | "fnrb32.exe": "F-Secure", 213 | "fp-win.exe": " F-Prot Antivirus OnDemand", 214 | "fsaa.exe": "F-Secure", 215 | "fsav.exe": "F-Secure", 216 | "fsav32.exe": "F-Secure", 217 | "fsav530stbyb.exe": "F-Secure", 218 | "fsav530wtbyb.exe": "F-Secure", 219 | "fsav95.exe": "F-Secure", 220 | "fsgk32.exe": "F-Secure", 221 | "fsm32.exe": "F-Secure", 222 | "fsma32.exe": "F-Secure", 223 | "fsmb32.exe": "F-Secure", 224 | "gbmenu.exe": "已知杀软进程,名称暂未收录", 225 | "guard.exe": "ewido", 226 | "guarddog.exe": "ewido", 227 | "htlog.exe": "已知杀软进程,名称暂未收录", 228 | "htpatch.exe": "Silicon Integrated Systems Corporation", 229 | "hwpe.exe": "已知杀软进程,名称暂未收录", 230 | "iamapp.exe": "Symantec", 231 | "iamserv.exe": "Symantec", 232 | "iamstats.exe": "Symantec", 233 | "iedriver.exe": " Urlblaze.com", 234 | "iface.exe": "Panda Antivirus Module", 235 | "infus.exe": "Infus Dialer", 236 | "infwin.exe": "Msviewparasite", 237 | "intdel.exe": "Inet Delivery", 238 | "intren.exe": "已知杀软进程,名称暂未收录", 239 | "jammer.exe": "已知杀软进程,名称暂未收录", 240 | "kavpf.exe": "Kapersky", 241 | "kazza.exe": "Kapersky", 242 | "keenvalue.exe": "EUNIVERSE INC", 243 | "launcher.exe": "Intercort Systems", 244 | "ldpro.exe": "已知杀软进程,名称暂未收录", 245 | "ldscan.exe": "Windows Trojans Inspector", 246 | "localnet.exe": "已知杀软进程,名称暂未收录", 247 | "luall.exe": "Symantec", 248 | "luau.exe": "Symantec", 249 | "lucomserver.exe": "Norton", 250 | "mcagent.exe": "McAfee", 251 | "mcmnhdlr.exe": "McAfee", 252 | "mctool.exe": "McAfee", 253 | "mcupdate.exe": "McAfee", 254 | "mcvsrte.exe": "McAfee", 255 | "mcvsshld.exe": "McAfee", 256 | "mfin32.exe": "MyFreeInternetUpdate", 257 | "mfw2en.exe": "MyFreeInternetUpdate", 258 | "mfweng3.02d30.exe": "MyFreeInternetUpdate", 259 | "mgavrtcl.exe": "McAfee", 260 | "mgavrte.exe": "McAfee", 261 | "mghtml.exe": "McAfee", 262 | "mgui.exe": "BullGuard", 263 | "minilog.exe": "Zone Labs Inc", 264 | "mmod.exe": "EzulaInc", 265 | "mostat.exe": "WurldMediaInc", 266 | "mpfagent.exe": "McAfee", 267 | "mpfservice.exe": "McAfee", 268 | "mpftray.exe": "McAfee", 269 | "mscache.exe": "Integrated Search Technologies Spyware", 270 | "mscman.exe": "OdysseusMarketingInc", 271 | "msmgt.exe": "Total Velocity Spyware", 272 | "msvxd.exe": "W32/Datom-A", 273 | "mwatch.exe": "已知杀软进程,名称暂未收录", 274 | "nav.exe": "Reuters Limited", 275 | "navapsvc.exe": "Norton AntiVirus", 276 | "navapw32.exe": "Norton AntiVirus", 277 | "navw32.exe": "Norton Antivirus", 278 | "ndd32.exe": "诺顿磁盘医生", 279 | "neowatchlog.exe": "已知杀软进程,名称暂未收录", 280 | "netutils.exe": "已知杀软进程,名称暂未收录", 281 | "nisserv.exe": "Norton", 282 | "nisum.exe": "Norton", 283 | "nmain.exe": "Norton", 284 | "nod32.exe": "ESET Smart Security", 285 | "norton_internet_secu_3.0_407.exe": "已知杀软进程,名称暂未收录", 286 | "notstart.exe": "已知杀软进程,名称暂未收录", 287 | "nprotect.exe": "Symantec", 288 | "npscheck.exe": "Norton", 289 | "npssvc.exe": "Norton", 290 | "ntrtscan.exe": "趋势反病毒应用程序", 291 | "nui.exe": "已知杀软进程,名称暂未收录", 292 | "otfix.exe": "已知杀软进程,名称暂未收录", 293 | "outpostinstall.exe": "Outpost", 294 | "patch.exe": "趋势科技", 295 | "pavw.exe": "已知杀软进程,名称暂未收录", 296 | "pcscan.exe": "趋势科技", 297 | "pdsetup.exe": "已知杀软进程,名称暂未收录", 298 | "persfw.exe": "Tiny Personal Firewall", 299 | "pgmonitr.exe": "PromulGate SpyWare", 300 | "pingscan.exe": "已知杀软进程,名称暂未收录", 301 | "platin.exe": "已知杀软进程,名称暂未收录", 302 | "pop3trap.exe": "PC-cillin", 303 | "poproxy.exe": "NortonAntiVirus", 304 | "popscan.exe": "已知杀软进程,名称暂未收录", 305 | "powerscan.exe": "Integrated Search Technologies", 306 | "ppinupdt.exe": "已知杀软进程,名称暂未收录", 307 | "pptbc.exe": "已知杀软进程,名称暂未收录", 308 | "ppvstop.exe": "已知杀软进程,名称暂未收录", 309 | "prizesurfer.exe": "Prizesurfer", 310 | "prmt.exe": "OpiStat", 311 | "prmvr.exe": "Adtomi", 312 | "processmonitor.exe": "Sysinternals", 313 | "proport.exe": "已知杀软进程,名称暂未收录", 314 | "protectx.exe": "ProtectX", 315 | "pspf.exe": "已知杀软进程,名称暂未收录", 316 | "purge.exe": "已知杀软进程,名称暂未收录", 317 | "qconsole.exe": "Norton AntiVirus Quarantine Console", 318 | "qserver.exe": "Norton Internet Security", 319 | "rapapp.exe": "BlackICE", 320 | "rb32.exe": "RapidBlaster", 321 | "rcsync.exe": "PrizeSurfer", 322 | "realmon.exe": "Realmon ", 323 | "rescue.exe": "已知杀软进程,名称暂未收录", 324 | "rescue32.exe": "卡巴斯基互联网安全套装", 325 | "rshell.exe": "已知杀软进程,名称暂未收录", 326 | "rtvscn95.exe": "Real-time virus scanner ", 327 | "rulaunch.exe": "McAfee User Interface", 328 | "run32dll.exe": "PAL PC Spy", 329 | "safeweb.exe": "PSafe Tecnologia", 330 | "sbserv.exe": "Norton Antivirus", 331 | "scrscan.exe": "360杀毒", 332 | "sfc.exe": "System file checker", 333 | "sh.exe": "MKS Toolkit for Win3", 334 | "showbehind.exe": "MicroSmarts Enterprise Component ", 335 | "soap.exe": "System Soap Pro", 336 | "sofi.exe": "已知杀软进程,名称暂未收录", 337 | "sperm.exe": "已知杀软进程,名称暂未收录", 338 | "supporter5.exe": "eScorcher反病毒", 339 | "symproxysvc.exe": "Symantec", 340 | "symtray.exe": "Symantec", 341 | "tbscan.exe": "ThunderBYTE", 342 | "tc.exe": "TimeCalende", 343 | "titanin.exe": "TitanHide", 344 | "tvmd.exe": "Total Velocity", 345 | "tvtmd.exe": " Total Velocity", 346 | "vettray.exe": "eTrust", 347 | "vir-help.exe": "已知杀软进程,名称暂未收录", 348 | "vnpc3000.exe": "已知杀软进程,名称暂未收录", 349 | "vpc32.exe": "Symantec", 350 | "vpc42.exe": "Symantec", 351 | "vshwin32.exe": "McAfee", 352 | "vsmain.exe": "McAfee", 353 | "vsstat.exe": "McAfee", 354 | "wfindv32.exe": "已知杀软进程,名称暂未收录", 355 | "zapro.exe": "Zone Alarm", 356 | "zonealarm.exe": "Zone Alarm", 357 | "AVPM.exe": "Kaspersky", 358 | "A2CMD.exe": "Emsisoft Anti-Malware", 359 | "A2SERVICE.exe": "a-squared free", 360 | "A2FREE.exe": "a-squared Free", 361 | "ADVCHK.exe": "Norton AntiVirus", 362 | "AGB.exe": "安天防线", 363 | "AHPROCMONSERVER.exe": "安天防线", 364 | "AIRDEFENSE.exe": "AirDefense", 365 | "ALERTSVC.exe": "Norton AntiVirus", 366 | "AVIRA.exe": "小红伞杀毒", 367 | "AMON.exe": "Tiny Personal Firewall", 368 | "AVZ.exe": "AVZ", 369 | "ANTIVIR.exe": "已知杀软进程,名称暂未收录", 370 | "APVXDWIN.exe": "熊猫卫士", 371 | "ASHMAISV.exe": "Alwil", 372 | "ASHSERV.exe": "Avast Anti-virus", 373 | "ASHSIMPL.exe": "AVAST!VirusCleaner", 374 | "ASHWEBSV.exe": "Avast", 375 | "ASWUPDSV.exe": "Avast", 376 | "ASWSCAN.exe": "Avast", 377 | "AVCIMAN.exe": "熊猫卫士", 378 | "AVCONSOL.exe": "McAfee", 379 | "AVENGINE.exe": "熊猫卫士", 380 | "AVESVC.exe": "Avira AntiVir Security Service", 381 | "AVEVL32.exe": "已知杀软进程,名称暂未收录", 382 | "AVGAM.exe": "AVG", 383 | "AVGCC.exe": "AVG", 384 | "AVGCHSVX.exe": "AVG", 385 | "AVGCSRVX": "AVG", 386 | "AVGNSX.exe": "AVG", 387 | "AVGCC32.exe": "AVG", 388 | "AVGCTRL.exe": "AVG", 389 | "AVGEMC.exe": "AVG", 390 | "AVGFWSRV.exe": "AVG", 391 | "AVGNTMGR.exe": "AVG", 392 | "AVGSERV.exe": "AVG", 393 | "AVGTRAY.exe": "AVG", 394 | "AVGUPSVC.exe": "AVG", 395 | "AVINITNT.exe": "Command AntiVirus for NT Server", 396 | "AVPCC.exe": "Kaspersky", 397 | "AVSERVER.exe": "Kerio MailServer", 398 | "AVSCHED32.exe": "H+BEDV", 399 | "AVSYNMGR.exe": "McAfee", 400 | "AVWUPSRV.exe": "H+BEDV", 401 | "BDSWITCH.exe": "BitDefender Module", 402 | "BLACKD.exe": "BlackICE", 403 | "CCEVTMGR.exe": "Symantec", 404 | "CFP.exe": "COMODO", 405 | "CLAMWIN.exe": "ClamWin Portable", 406 | "CUREIT.exe": "DrWeb CureIT", 407 | "DEFWATCH.exe": "Norton Antivirus", 408 | "DRWADINS.exe": "Dr.Web", 409 | "DRWEB.exe": "Dr.Web", 410 | "DEFENDERDAEMON.exe": "ShadowDefender", 411 | "EWIDOCTRL.exe": "Ewido Security Suite", 412 | "EZANTIVIRUSREGISTRATIONCHECK.exe": "e-Trust Antivirus", 413 | "FIREWALL.exe": "AshampooSoftware", 414 | "FPROTTRAY.exe": "F-PROT Antivirus", 415 | "FPWIN.exe": "Verizon", 416 | "FRESHCLAM.exe": "ClamAV", 417 | "FSAV32.exe": "F-Secure", 418 | "FSBWSYS.exe": "F-secure", 419 | "FSDFWD.exe": "F-Secure", 420 | "FSGK32.exe": "F-Secure", 421 | "FSGK32ST.exe": "F-Secure", 422 | "FSMA32.exe": "F-Secure", 423 | "FSMB32.exe": "F-Secure", 424 | "FSSM32.exe": "F-Secure", 425 | "GUARDGUI.exe": "网游保镖", 426 | "GUARDNT.exe": "IKARUS", 427 | "IAMAPP.exe": "Symantec", 428 | "INOCIT.exe": "eTrust", 429 | "INORPC.exe": "eTrust", 430 | "INORT.exe": "eTrust", 431 | "INOTASK.exe": "eTrust", 432 | "INOUPTNG.exe": "eTrust", 433 | "ISAFE.exe": "eTrust", 434 | "KAV.exe": "Kaspersky", 435 | "KAVMM.exe": "Kaspersky", 436 | "KAVPF.exe": "Kaspersky", 437 | "KAVPFW.exe": "Kaspersky", 438 | "KAVSTART.exe": "Kaspersky", 439 | "KAVSVC.exe": "Kaspersky", 440 | "KAVSVCUI.exe": "Kaspersky", 441 | "KMAILMON.exe": "金山毒霸", 442 | "MCAGENT.exe": "McAfee", 443 | "MCMNHDLR.exe": "McAfee", 444 | "MCREGWIZ.exe": "McAfee", 445 | "MCUPDATE.exe": "McAfee", 446 | "MCVSSHLD.exe": "McAfee", 447 | "MINILOG.exe": "Zone Alarm", 448 | "MYAGTSVC.exe": "McAfee", 449 | "MYAGTTRY.exe": "McAfee", 450 | "NAVAPSVC.exe": "Norton", 451 | "NAVAPW32.exe": "Norton", 452 | "NAVLU32.exe": "Norton", 453 | "NAVW32.exe": "Norton Antivirus", 454 | "NEOWATCHLOG.exe": "NeoWatch", 455 | "NEOWATCHTRAY.exe": "NeoWatch", 456 | "NISSERV.exe": "Norton", 457 | "NISUM.exe": "Norton", 458 | "NMAIN.exe": "Norton", 459 | "NOD32.exe": "ESET NOD32", 460 | "NPFMSG.exe": "Norman个人防火墙", 461 | "NPROTECT.exe": "Symantec", 462 | "NSMDTR.exe": "Norton", 463 | "NTRTSCAN.exe": "趋势科技", 464 | "OFCPFWSVC.exe": "OfficeScanNT", 465 | "ONLINENT.exe": "已知杀软进程,名称暂未收录", 466 | "OP_MON.exe": " OutpostFirewall", 467 | "PAVFIRES.exe": "熊猫卫士", 468 | "PAVFNSVR.exe": "熊猫卫士", 469 | "PAVKRE.exe": "熊猫卫士", 470 | "PAVPROT.exe": "熊猫卫士", 471 | "PAVPROXY.exe": "熊猫卫士", 472 | "PAVPRSRV.exe": "熊猫卫士", 473 | "PAVSRV51.exe": "熊猫卫士", 474 | "PAVSS.exe": "熊猫卫士", 475 | "PCCGUIDE.exe": "PC-cillin", 476 | "PCCIOMON.exe": "PC-cillin", 477 | "PCCNTMON.exe": "PC-cillin", 478 | "PCCPFW.exe": "趋势科技", 479 | "PCCTLCOM.exe": "趋势科技", 480 | "PCTAV.exe": "PC Tools AntiVirus", 481 | "PERSFW.exe": "Tiny Personal Firewall", 482 | "PERVAC.exe": "已知杀软进程,名称暂未收录", 483 | "PESTPATROL.exe": "Ikarus", 484 | "PREVSRV.exe": "熊猫卫士", 485 | "RTVSCN95.exe": "Real-time Virus Scanner", 486 | "SAVADMINSERVICE.exe": "SAV", 487 | "SAVMAIN.exe": "SAV", 488 | "SAVSCAN.exe": "SAV", 489 | "SDHELP.exe": "Spyware Doctor", 490 | "SHSTAT.exe": "McAfee", 491 | "SPBBCSVC.exe": "Symantec", 492 | "SPIDERCPL.exe": "Dr.Web", 493 | "SPIDERML.exe": "Dr.Web", 494 | "SPIDERUI.exe": "Dr.Web", 495 | "SPYBOTSD.exe": "Spybot ", 496 | "SWAGENT.exe": "SonicWALL", 497 | "SWDOCTOR.exe": "SonicWALL", 498 | "SWNETSUP.exe": "Sophos", 499 | "SYMLCSVC.exe": "Symantec", 500 | "SYMPROXYSVC.exe": "Symantec", 501 | "SYMSPORT.exe": "Sysmantec", 502 | "SYMWSC.exe": "Sysmantec", 503 | "SYNMGR.exe": "Sysmantec", 504 | "TMLISTEN.exe": "趋势科技", 505 | "TMNTSRV.exe": "趋势科技", 506 | "TMPROXY.exe": "趋势科技", 507 | "TNBUTIL.exe": "Anti-Virus", 508 | "VBA32ECM.exe": "已知杀软进程,名称暂未收录", 509 | "VBA32IFS.exe": "已知杀软进程,名称暂未收录", 510 | "VBA32PP3.exe": "已知杀软进程,名称暂未收录", 511 | "VCRMON.exe": "VirusChaser", 512 | "VRMONNT.exe": "HAURI", 513 | "VRMONSVC.exe": "HAURI", 514 | "VSHWIN32.exe": "McAfee", 515 | "VSSTAT.exe": "McAfee", 516 | "XCOMMSVR.exe": "BitDefender", 517 | "ZONEALARM.exe": "Zone Alarm", 518 | "360rp.exe": "360杀毒", 519 | "afwServ.exe": " Avast Antivirus", 520 | "safeboxTray.exe": "360杀毒", 521 | "360safebox.exe": "360杀毒", 522 | "QQPCTray.exe": "QQ电脑管家", 523 | "KSafeTray.exe": "金山毒霸", 524 | "KSafeSvc.exe": "金山毒霸", 525 | "KWatch.exe": "金山毒霸", 526 | "gov_defence_service.exe": "云锁", 527 | "gov_defence_daemon.exe": "云锁", 528 | "smartscreen.exe": "Windows Defender", 529 | "finalshell.exe": "finalshell终端管理", 530 | "navicat.exe": "数据库管理", 531 | "AliSecGuard.exe": "阿里云盾", 532 | "AliYunDunUpdate.exe": "阿里云盾", 533 | "AliYunDun.exe": "阿里云盾", 534 | "CmsGoAgent.windows-amd64.": "阿里云监控", --------------------------------------------------------------------------------