系统进程精解
首先,我要说的是,我提供的这个东西,是用来教大家一些基本知识,做出基本判断的东西,由于现在软件和代码的繁多,我总结的有很多的不足。本贴很多内容,请大家用CTRL+F,输入查找内容后有选择的查找
本列表包括三个部分:1.病毒、木马进程速查表2.WINDOWS系统常见进程3.进程解释(在后面跟贴)
另:这些进程全是在任务管理器中能看到的,不包括DLL及其他的一些控件的名字,所以要 慎重判断!!!!
病毒、木马进程速查表(感谢ZOL论坛的“宝宝随风”为我提供了了一篇常见病毒、木马进程速查表,相信对大家都有所帮助)本部分仍不提供进程解释,但有进程名称了
exe → BF Evolution Mbbmanager.exe → 聪明基因
_.exe → Tryit Mdm.exe → Doly 1.6-1.7
Aboutagirl.exe → 初恋情人 Microsoft.exe → 传奇密码使者
Absr.exe → Backdoor.Autoupder Mmc.exe → 尼姆达病毒
Aplica32.exe → 将死者病毒 Mprdll.exe → Bla
Avconsol.exe → 将死者病毒 Msabel32.exe → Cain and Abel
Avp.exe → 将死者病毒 Msblast.exe → 冲击波病毒
Avp32.exe → 将死者病毒 Mschv.exe → Control
Avpcc.exe → 将死者病毒 Msgsrv36.exe → Coma
Avpm.exe → 将死者病毒 Msgsvc.exe → 火凤凰
Avserve.exe → 震荡波病毒 Msgsvr16.exe → Acid Shiver
Bbeagle.exe → 恶鹰蠕虫病毒 Msie5.exe → Canasson
Brainspy.exe → BrainSpy vBeta Msstart.exe → Backdoor.livup
Cfiadmin.exe → 将死者病毒 Mstesk.exe → Doly 1.1-1.5
Cfiaudit.exe → 将死者病毒 Netip.exe → Spirit 2000 Beta
Cfinet32.exe → 将死者病毒 Netspy.exe → 网络精灵
Checkdll.exe → 网络公牛 Notpa.exe → Backdoor
Cmctl32.exe → Back Construction Odbc.exe → Telecommando
Command.exe → AOL Trojan Pcfwallicon.exe → 将死者病毒
Diagcfg.exe → 广外女生 Pcx.exe → Xplorer
Dkbdll.exe → Der Spaeher Pw32.exe → 将死者病毒
Dllclient.exe → Bobo Recycle - Bin.exe → s**tHeap
Dvldr32.exe → 口令病毒 Regscan.exe → 波特后门变种
Esafe.exe → 将死者病毒 Tftp.exe → 尼姆达病毒
Expiorer.exe → Acid Battery Thing.exe → Thing
Feweb.exe → 将死者病毒 User.exe → Schwindler
Flcss.exe → Funlove病毒 Vp32.exe → 将死者病毒
Frw.exe → 将死者病毒 Vpcc.exe → 将死者病毒
Icload95.exe → 将死者病毒 Vpm.exe → 将死者病毒
Icloadnt.exe → 将死者病毒 Vsecomr.exe → 将死者病毒
Icmon.exe → 将死者病毒 Server.exe → Revenger, WinCrash, YAT
Icsupp95.exe → 将死者病毒 Service.exe → Trinoo
Iexplore.exe → 恶邮差病毒 Setup.exe → 密码病毒或Xanadu
Rpcsrv.exe → 恶邮差病毒 Sockets.exe → Vampire
Rundll.exe → SCKISS爱情森林 Something.exe → BladeRunner
Rundll32.exe→ 狩猎者病毒 Spfw.exe → 瑞波变种PX
Runouce.exe → 中国黑客病毒 Svchost.exe (线程105) → 蓝色代码
Scanrew.exe → 传奇终结者 Sysedit32.exe → SCKISS爱情森林
Scvhost.exe → 安哥病毒 Sy***plor.exe → wCrat
Server 1. 2.exe → Spirit 2000 1.2fixed Sy***plr.exe → 冰河
Intel.exe → 传奇叛逆 Syshelp.exe → 恶邮差病毒
Internet.exe → 传奇幽灵 Sysprot.exe → Satans Back Door
Internet.exe → 网络神偷 Sysrunt.exe → Ripper
Kernel16.exe → Transmission Scount System.exe → s**tHeap
Kernel32.exe → 坏透了或冰河 System32.exe → DeepThroat 1.0
Kiss.exe → 传奇天使 Systray.exe → DeepThroat 2.0-3.1
Krn132.exe → 求职信病毒 Syswindow.exe → Trojan Cow
Libupdate.exe → BioNet Task_Bar.exe → WebEx
Load.exe → 尼姆达病毒 Taskbar → 密码病毒 Frethem
Lockdown2000.exe → 将死者病毒 Taskmon.exe → 诺维格蠕虫病毒
Taskmon32 → 传奇黑眼睛 Tds2-98.exe → 将死者病毒
Tds2-Nt.exe → 将死者病毒 Temp .exe → Snid
Tempinetb00st.exe → The Unexplained Tempserver.exe → Delta Source
Vshwin32.exe → 将死者病毒 Vsstart.exe → 将死者病毒
Vw32.exe → 将死者病毒 Windown.exe → Spirit 2000 1.2
Windows.exe → 黑洞2000 Winfunctions.exe → Dark Shadow
Wingate.exe → 恶邮差病毒 Wink????.exe → 求职信病毒
Winl0g0n.exe → 笑哈哈病毒 Winmgm32.exe → 巨无霸病毒
Winmsg32.exe → Xtcp Winprot.exe → Chupachbra
Winprotecte.exe → Stealth Winrpc.exe → 恶邮差病毒
Winrpcsrv.exe → 恶邮差病毒 Winserv.exe → Softwarst
Wubsys.exe → 传奇猎手 Winupdate.exe → Sckiss爱情森林
Winver.exe → Sckiss爱情森林 Winvnc.exe → 恶邮差病毒
Winzip.exe → ShadowPhyre Wqk.exe → 求职信病毒
Wscan.exe → AttackFTP Xx.Tmp.exe → 尼姆达病毒
Zcn32.exe → Ambush Zonealarm.exe → 将死者病毒
Wscan.exe → AttackFTP Xx.Tmp.exe → 尼姆达病毒
Zcn32.exe → Ambush Zonealarm.exe → 将死者病毒
Windows 系统常见进程
系统进程
映像名称 进程名称
system process Windows内存处理系统进程
alg.exe 应用层网关服务
csrss.exe Client/Server Runtime Server Subsystem
ddhelp.exe DirectDraw Helper
dllhost.exe DCOM DLL Host进程
inetinfo.exe IIS Admin Service Helper
internat.exe Input Locales
kernel32.dll Windows壳进程
lsass.exe 本地安全权限服务
mdm.exe Machine Debug Manager
mmtask.tsk 多媒体支持进程
mprexe.exe Windows路由进程
msgsrv32.exe Windows信使服务
mstask.exe Windows计划任务
regsvc.exe 远程注册表服务
rpcss.exe RPC Portmapper
services.exe Windows Service Controller
smss.exe Session Manager Subsystem
snmp.exe Microsoft SNMP Agent
spool32.exe Printer Spooler
spoolsv.exe Printer Spooler Service
stisvc.exe Still Image Service
svchost.exe Service Host Process
system Windows System Process
taskmon.exe Windows Task Optimizer
tcpsvcs.exe TCP/IP Services
winlogon.exe Windows Logon Process
winmgmt.exe Windows Management Service
一般程序进程
映像名称 进程名称
absr.exe Backdoor.Autoupder Virus
acrobat.exe Adobe Acrobat
acrord32.exe Acrobat Reader
agentsvr.exe OLE automation server
aim.exe AOL Instant Messenger
airsvcu.exe Microsoft Media Manager
alogserv.exe McAfee VirusScan
avconsol.exe McAfee VirusScan
avsynmgr.exe McAfee VirusScan
ati2evxx.exe ATI External Event Utility EXE Module
backWeb.exe Backweb Adware
bcb.exe Borland C++ Builder
calc.exe Calculator
ccapp.exe Symantec Common Client
cdplayer.exe CD Player
charmap.exe Windows Character Map
idaemon.exe Microsoft Indexing Service
cisvc.exe Microsoft Index Service Helper
cmd.exe Windows Command Prompt
cmesys.exe Gator GAIN Adware
ctfmon.exe Alternative User Input Services
ctsvccda.exe Create CD-ROM Services
cutftp.exe CuteFTP
defwatch.exe Norton AntiVirus
devldr32.exe Create Device Loader
directcd.exe Adaptec DirectCD
dreamweaver.exe Macromedia DreamWeaver
em_exec.exe Logitech Mouse Settings
excel.exe Microsoft Excel
findfast.exe Microsoft Office Indexing
flash.exe Macromedia Flash
frontpage.exe Microsoft FrontPage
gmt.exe Gator Spyware Component
ghost_2.exe Symantec Ghost
hh.exe Gator Windows Help
hidserv.exe Microsoft Human Interface Device Audio Service
QQ.exe QQ
iexplore.exe Internet Explorer
kodakimage.exe Imaging
loadqm.exe MSN Queue Manager Loader
loadwc.exe Load WebCheck
mad.exe System Attendant Service
mcshield.exe mcshield or mcshield.exe
mgabg.exe Matrox BIOS Guard
mmc.exe Microsoft Management Console
mobsync.exe Microsoft Synchronization Manager
mplayer.exe Windows Media Player
mplayer2.exe Windows Media Player
msaccess.exe Microsoft Access
msbb.exe MSBB Web3000 Spyware Application
msdtc.exe Distributed Transaction Coordinator
msiexec.exe Windows Installer Component
msimn.exe Microsoft Outlook Express
msmsgs.exe MSN Messenger Traybar Process
msoobe.exe Windows Product Activation
mspaint.exe Microsoft Paint
mspmspsv.exe WMDM PMSP Service
mysqld-nt.exe MySQL Daemon
navapsvc.exe Norton AntiVirus Auto-Protect Service
navapw32.exe Norton AntiVirus Agent
ndetect.exe ICQ Ndetect Agent
netscape.exe Netscape
notepad.exe Notepad
ntbackup.exe Windows Backup
ntvdm.exe Windows 16-bit Virtual Machine
nvsvc32.exe NVIDIA Driver Helper Service
nwiz.exe NVIDIA nView Control Panel
osa.exe Office Startup Assistant
outlook.exe Microsoft Outlook
photoshop.exe Adobe Photoshop
point32.exe Microsoft Intellimouse Monitor
powerpnt.exe Microsoft PowerPoint
pstores.exe Protected Storage Service
qttask.exe Quick Time Tray Icon
realplay.exe Real Player
realsched.exe RealNetworks Scheduler
rnaapp.exe Windows Modem Connection
rtvscan.exe Norton AntiVirus
rundll32.exe Windows RUNDLL32 Helper
sndrec32.exe Microsoft Windows Sound Recorder
sndvol32.exe Windows Volume Control
spoolss.exe Windows Volume Control
starter.exe Creative Labs Ensoniq Mixer Tray icon
systray.exe Windows Power Management
tapisrv.exe TAPI Service
userinit.exe UserInit Process
visio.exe Microsoft Visio
vptray.exe Norton AntiVirus
vshwin32.exe McAfee VirusScan
vsmon.exe True Vector Internet Monitor
vsstat.exe McAfee VirusScan
wab.exe Address Book
webscanx.exe McAfee VirusScan
winamp.exe WinAmp
winhlp32.exe Windows Help
winoa386.mod MS-DOS Console
winproj.exe Microsoft Project
winroute.exe WinRoute
Winrar.exe WinRar Archiver
winword.exe Microsoft Word
winzip32.exe WinZip
wkcalrem.exe Microsoft Works Calendar Reminder
wkqkpick.exe WinZip traybar icon
wmplayer.exe Windows Media Player
wordpad.exe Wordpad
wowexec.exe Windows On Windows Execution Process
ypager.exe Yahoo Messenger Helper
以上是考验大家英语和计算机术语水平的时候了,不过不用担心看不懂,我后面附上所有我列出的进程的解释,方便大家了解。
系统进程精解
这个要好好看看 强贴,赞一个!!!!!页:
[1]