西西河

主题:【原创】一个360老用户的心路 -- zzbzerg

共:💬153 🌺382 🌵1
全看分页树展 · 主题 跟帖
家园 【文摘】QQ正在监视你的电脑

链接:外链出处

乌有之乡8月份的一篇文章,请懂电脑的河友分析一下。

QQ,你监视我,我也监视你!

重新申请了QQ,里面只有我自己。不存在跟任何其他人通讯。

除了弹出广告以外,什么操作也没做。死盯。

不一会儿,终于显形了:

我才启动你1秒钟,你就开始扫描我了?

我是从桌面启动你,不是从TC启动你的

(Total Commander)

Quote:

9:59:31.1445962 QQ.exe 3936 CreateFile E:\Program Files\TotalCmd SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Open For Backup, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened

9:59:31.1446909 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd SUCCESS 0: ., 1: .., 2: CABRK.DLL, 3: CGLPT9X.VXD, 4: CGLPTNT.SYS, 5: FRERES32.DLL, 6: HISTORY.TXT, 7: sfxhead.sfx, 8: SHARE_NT.EXE, 9: TCMADMIN.EXE, 10: TOTALCMD.EXE, 11: TOTALCMD.HLP, 12: TCUNZLIB.DLL, 13: UNACEV2.DLL, 14: UNRAR.DLL, 15: WC32TO16.EXE, 16: WCMICONS.DLL, 17: WCMICONS.INC, 18: WCMZIP32.DLL, 19: Readme.txt, 20: FAQ.txt, 21: Keyboard_chs.txt, 22: Keyboard_eng.TXT, 23: Totalcmd_eng.INC, 24: Totalcmd.inc, 25: UserApps_eng.bar, 26: UserApps.bar, 27: TCscheme.exe, 28: NoClose.pif, 29: NoClose.ini, 30: DEFAULT.BAR, 31: wcx_ftp.ini, 32: wincmd.ini, 33: uninst.exe, 34: fsplugin.ini, 35: LSPlugin.ini, 36: default.br2, 37: WINCMD.KEY, 38: ShellDetails.ini, 39: UserApps.br2, 40: Plugins, 41: Sounds, 42: Language, 43: Themes, 44: TOTALCMD.GID

9:59:31.1447920 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd NO MORE FILES

9:59:31.1448373 QQ.exe 3936 CloseFile E:\Program Files\TotalCmd SUCCESS

9:59:31.1456276 QQ.exe 3936 CreateFile E:\Program Files\TotalCmd\Plugins SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Open For Backup, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened

9:59:31.1458564 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd\Plugins SUCCESS 0: ., 1: .., 2: TCPPReadme.txt, 3: TCPPuninst.exe, 4: Wdx, 5: Wlx, 6: Wfx, 7: Wcx

9:59:31.1459408 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd\Plugins NO MORE FILES

9:59:31.1461584 QQ.exe 3936 CloseFile E:\Program Files\TotalCmd\Plugins SUCCESS

9:59:31.1464721 QQ.exe 3936 CreateFile E:\Program Files\TotalCmd\Plugins\Wlx SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Open For Backup, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened

9:59:31.1467568 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd\Plugins\Wlx SUCCESS 0: ., 1: .., 2: peviewer, 3: SWFView, 4: iclview, 5: xBaseView, 6: synplus, 7: OOoViewer, 8: gswlx, 9: fileinfo, 10: nfoviewer, 11: ieview, 12: mmedia, 13: office, 14: Imagine

9:59:31.1468641 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd\Plugins\Wlx NO MORE FILES

9:59:31.1469110 QQ.exe 3936 CloseFile E:\Program Files\TotalCmd\Plugins\Wlx SUCCESS

9:59:31.1473337 QQ.exe 3936 CreateFile E:\Program Files\TotalCmd\Plugins\Wlx\ieview SUCCESS Desired Access: Read Data/List Directory, Synchronize, Disposition: Open, Options: Directory, Synchronous IO Non-Alert, Open For Backup, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a, OpenResult: Opened

9:59:31.1474312 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd\Plugins\Wlx\ieview SUCCESS 0: ., 1: .., 2: ieview.wlx, 3: Ieview.ini, 4: readme_eng.txt, 5: positions.ini

9:59:31.1482176 QQ.exe 3936 QueryDirectory E:\Program Files\TotalCmd\Plugins\Wlx\ieview NO MORE FILES

9:59:31.1482696 QQ.exe 3936 CloseFile E:\Program Files\TotalCmd\Plugins\Wlx\ieview SUCCESS

C、E盘读写了大量文件,大量注册表项,20秒钟后,你终于开始了你的网络数据处女行

9:59:52.9243551 QQ.exe 3936 UDP Send IBM-T43:4000 -> 219.133.60.25:8000 SUCCESS Length: 76

……

全看分页树展 · 主题 跟帖


有趣有益,互惠互利;开阔视野,博采众长。
虚拟的网络,真实的人。天南地北客,相逢皆朋友

Copyright © cchere 西西河