昨天QQ被AVG隔离，之前一直没有动作，在http://www.virustotal.com/zh-cn/扫也只有AVG报trojan horse delf.msp,瑞星上报了一天还未有结果。请帮助分析。（不过之前QQ也不太正常，时不时掉线）

用户系统信息：Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/3.0.195.27 Safari/532.0

昨天QQ被AVG隔离，之前一直没有动作，在http://www.virustotal.com/zh-cn/扫也只有AVG报trojan horse delf.msp,瑞星上报了一天还未有结果。请帮助分析。（不过之前QQ也不太正常，时不时掉线）

用户系统信息：Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/3.0.195.27 Safari/532.0

请版主删除另外一个帖子，谢！

感谢楼主的支持，您提交的的样本已经上报，请继续关注瑞星~

[tr=rgb(226,][tr=rgb(226,][tr=rgb(226,]

附加信息

File size: 2012568 bytes

MD5...: 9df94308de7a636db05cb9d2291c173f

SHA1..: e6dbfbecc122dd238762cd19614880b5cb9faa3d

SHA256: 387347135949b197469ce538ab68e16c0f67195616e230bc54925923eda80b5f

ssdeep: 49152:tpOVHU3vJT22nhDX3p1lL9QgPDBIcNOLAgUThv8/:rpnp1lL9QgdIikAM/

PEiD..: -

PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x95bdf timedatestamp.....: 0x492f714c (Fri Nov 28 04:19:24 2008) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x15e3fe 0x15f000 6.52 a834fe25add6c79f4713c91d5345f4a4 .rdata 0x160000 0x6df8a 0x6e000 5.12 cd357ceea45f5b0940be0ffaa580472e .data 0x1ce000 0x18bf4 0x14000 6.29 37c0914f3ca2d2a1d154d584a119dc85 .rsrc 0x1e7000 0x7848 0x8000 4.91 c1daf7075d9b168611952fe00c5a8ba5 ( 20 imports ) > QQBaseClassInDll.dll: _Release@CCsCenterSinkHelper@@QAEXAAPAV1@PAUICsCenter@@@Z, __0CCsCenterSinkHelper@@QAE@XZ, __1CQQUrlReport@@UAE@XZ, __0CQQUrlReport@@QAE@VCString@@@Z, _SetZoneNames@CQQUrlReport@@AAEXHPAVCString@@@Z, _Create@CQQUrlReport@@AAEHPBDPAVCWnd@@@Z, _GetMessageMap@CQQUrlReport@@MBEPBUAFX_MSGMAP@@XZ, _PostNcDestroy@CQQUrlReport@@MAEXXZ, _OpenUrlWithTe@CQQUrlReport@@QAEXPAUHWND__@@VCString@@HHHHH@Z, __0CBuddyHelper@@QAE@XZ, _Init@CBuddyHelper@@QAEJKPBD@Z, _CloseAll@CBuddyHelper@@QAEJXZ, __1CBuddyHelper@@UAE@XZ, _UpdateFriendsBusinessTips@CCommBusinessInfoHelper@@SAHKGAAVCString@@@Z, _Create@CQQShopUDPGetFileCenter@@QAEHHPAUHWND__@@@Z, _SendGetQQShopDataRequest@CQQShopUDPGetFileCenter@@QAEHK@Z, __1CQInterLiveDownloadHelper@@UAE@XZ, __1CHttpDownloadQueue@@UAE@XZ, __0CHttpDownloadQueue@@QAE@XZ, __0CQInterLiveDownloadHelper@@QAE@XZ, _SetUIInterface@CHttpDownloadQueue@@QAEXPAVCHttpDownloadQueueUIInterface@@@Z, _AddDownLoadItem@CHttpDownloadQueue@@QAEHAAVCString@@0@Z, _OutOfElem@CMarkup@@QAE_NXZ, _AddNotifyItem@CQInterLiveDownloadHelper@@QAEXKH@Z, _OnDownloadComplete@CHttpDownloadQueue@@MAEXKPBD@Z, _OnRedirected@CHttpDownloadQueue@@MAEXPBD@Z, _OnOneDownloadItemComplete@CQInterLiveDownloadHelper@@MAEXKPBD@Z, _OnAllDownloadItemsComplete@CHttpDownloadQueueUIInterface@@UAEXXZ, _SetPanelIcon@CDataProcessing@@QAEHKVCString@@@Z, _SetPanelTips@CDataProcessing@@QAEHKVCString@@@Z, _SetForbid@CDataProcessing@@QAEXKH@Z, _DeleteIniPanel@CDataProcessing@@QAEXK@Z, __0CMarkup@@QAE@XZ, _SetDoc@CMarkup@@QAE_NPBD@Z, _ResetPos@CMarkup@@QAEXXZ, _FindElem@CMarkup@@QAE_NPBD@Z, _IntoElem@CMarkup@@QAE_NXZ, _GetAttrib@CMarkup@@QBE_AVCString@@PBD@Z, __1CMarkup@@UAE@XZ, _ShowIniPanel@CDataProcessing@@QAEXK@Z, _PostNcDestroy@CAutoUpdateFixDlg@@MAEXXZ, _GetSpecialFolder@CShortcut@@QAEHIAAVCString@@@Z, _CreateShortCut@CShortcut@@QAEHVCString@@0I00I@Z, __1CShortcut@@UAE@XZ, _bIsForbid@CDataProcessing@@QAEHK@Z, __0CProtocolParser@@QAE@XZ, _ParseWebPresence@CProtocolParser@@QAEHVCString@@@Z, _GetParaValue@CProtocolParser@@QAEHVCString@@AAV2@@Z, _GetUserPanelCount@CDataProcessing@@QAEHXZ, __1CProtocolParser@@UAE@XZ, __1qdatSystem@@UAE@XZ, _HideIniPanel@CDataProcessing@@QAEXK@Z, _GetPanelIDArray@CDataProcessing@@QAEXAAV_$CArray@VCString@@V1@@@@Z, _SetPanelBasicInfoByIniID@CDataProcessing@@QAEXVCString@@PAPAUPANEL_INFO@@@Z, _SetPanelIndex@CDataProcessing@@QAEHVCString@@G@Z, _Create@CCsCenterSinkHelper@@SAPAV1@XZ, _SetPanelExInfoDisk@CDataProcessing@@QAEXPAPAUPANEL_INFO@@@Z, _GetADNotifyWndName@CHelper_AD@@SA_AVCString@@XZ, __0CDataProcessing@@QAE@XZ, __0CQQShopUDPGetFileCenter@@QAE@XZ, __1CDataProcessing@@UAE@XZ, __1CQQShopUDPGetFileCenter@@UAE@XZ, _Create@CQQHtmlBrowseDlg@@QAEHHPAVCWnd@@H@Z, _SetViewSize@CQQHtmlBrowseDlg@@QAEXHH@Z, _GetReportClass@CQQUrlReport@@SAPAV1@PAVCWnd@@@Z, _NavigateHtmlBrowse@CQQUrlReport@@QAEXPAVCQQHtmlBrowseDlg@@PBDH@Z, _SetTitle@CQQHtmlBrowseDlg@@QAEXVCString@@@Z, _SetBusinessSource@CCommBusinessInfoHelper@@SAXH@Z, _FetchFriendsUpdateBusinessTips@CCommBusinessInfoHelper@@SAHPAUICsSendEventSink@@@Z, __1CCommBusinessInfoHelper@@UAE@XZ, __1CUserIDInfoParserObj@@QAE@XZ, _OffsetPos@CProgressWnd@@QAEHH@Z, _PeekAndPump@CProgressWnd@@QAEXH@Z, _SetPos@CProgressWnd@@QAEHH@Z, _OnConnecting@CHttpDownloadUIInterface@@UAEXPBD@Z, _OnConnected@CHttpDownloadUIInterface@@UAEXXZ, _OnDownloadStart@CHttpDownloadUIInterface@@UAEXKK@Z, _OnProgress@CHttpDownloadUIInterface@@UAEXKK@Z, _OnRedirected@CHttpDownloadUIInterface@@UAEXPBD@Z, _OnError@CHttpDownloadUIInterface@@UAEXK@Z, _OnProgressEx@CHttpDownloadUIInterface@@UAEXKKPBD@Z, _DoDataExchange@CAutoUpdateFixDlg@@MAEXPAVCDataExchange@@@Z, _GetMessageMap@CAutoUpdateFixDlg@@MBEPBUAFX_MSGMAP@@XZ, _Install@CAutoUpdateFixDlg@@QAEXVCString@@0@Z, __0CAutoUpdateFixDlg@@QAE@PAVCWnd@@@Z, __1CAutoUpdateFixDlg@@UAE@XZ, __1CbmpImageList@@QAE@XZ, _DeleteAllBitmaps@CbmpImageList@@QAEXXZ, _HbitGray24@CImagePro@@QAEHPAUHBITMAP__@@HKPAPAU2@@Z, _HbitAlpha24@CImagePro@@QAEHPAUHBITMAP__@@0PAPAU2@PBVCRect@@NH@Z, _HbitZoom24@CImagePro@@QAEHPAUHBITMAP__@@MPAPAU2@@Z, _Create@CbmpImageList@@QAEHHH@Z, _SetAwayMask@CbmpImageList@@QAEHPAUHBITMAP__@@@Z, _SetInvisibleMask@CbmpImageList@@QAEHPAUHBITMAP__@@@Z, __1CxImage@@UAE@XZ, _Save@CxImage@@QAE_NPBDK@Z, _Resample@CxImage@@QAE_NJJHPAV1@@Z, _CreateFromHBITMAP@CxImage@@QAEXPAUHBITMAP__@@@Z, _AddDelayBitmap@CbmpImageList@@QAEHVCString@@HH@Z, _HbitAlpha32@CImagePro@@QAEHPAUHBITMAP__@@0PAPAU2@H@Z, _HbitGray@CImagePro@@QAEHPAUHBITMAP__@@HKPAPAU2@@Z, __0CbmpImageList@@QAE@XZ, _ResetChildPos@CMarkup@@QAEXXZ, _GetTagName@CMarkup@@QBE_AVCString@@XZ, _FindChildElem@CMarkup@@QAE_NPBD@Z, _x_SetPos@CMarkup@@IAEXHHH@Z, _IncreasePushIndex@CDataProcessing@@QAEXK@Z, _GetMaxIndex@CDataProcessing@@QAEHXZ, _AddPanelArray@CDataProcessing@@QAEXVCString@@@Z, _AddAdClickCount@CHelper_AD@@SAXKK@Z, _AddAdPlayCount@CHelper_AD@@SAXKK@Z, _OnCancel@CAutoUpdateFixDlg@@MAEXXZ, _OnOK@CAutoUpdateFixDlg@@MAEXXZ, _SetSpePanelBasicInfoByPanelID@CDataProcessing@@QAEXKPAPAUPANEL_INFO@@@Z, _OnInitDialog@CAutoUpdateFixDlg@@MAEHXZ, __1COfflineFileCsController@@UAE@XZ, __1CCityListMng@@QAE@XZ, __0COfflineFileCsController@@QAE@XZ, __0CCityListMng@@QAE@XZ, __1qdatCurrentGlobal@@UAE@XZ, _GetCityList@CCityListMng@@QAEHAAV_$CArray@UtagProvinceEx@@AAU1@@@0AAIHH@Z, _InitCityListLines@CCityListMng@@QAEHH@Z, _SaveCityListLines@CCityListMng@@QAEHXZ, _UpdateCityListLine@CCityListMng@@QAEHABUtagLineInfo@@@Z, _QueryOfflineFiles@COfflineFileCsController@@QAEHABG0ABH@Z, _AddDownloadUuidHistory@COfflineFileCsController@@QAEXVCString@@@Z, _IsDownloadUuidExist@COfflineFileCsController@@QAEHABVCString@@@Z, _GetADIndexFilePath@CHelper_AD@@SA_AVCString@@XZ, _Load@CMarkup@@QAE_NPBD@Z, _IsCurrentTimeValid@CHelper_AD@@SAHAAVCString@@0@Z, _GetGADIndexFilePath@CHelper_AD@@SA_AVCString@@XZ, _ParseFileNameFromURL@CHelper_AD@@SA_AVCString@@V2@@Z, _ReadString@CReadIniFile@@QAEHVCString@@0AAV2@0@Z, __0CReadIniFile@@QAE@XZ, _Load@CReadIniFile@@QAEHVCString@@@Z, _ReadInt@CReadIniFile@@QAEHVCString@@0AAHH@Z, _ReadLong@CReadIniFile@@QAEHVCString@@0AAJJ@Z, __1CReadIniFile@@QAE@XZ, _GetADCacheDir@CHelper_AD@@SA_AVCString@@XZ, _ConfirmADCacheDirPathExist@CHelper_AD@@SAHXZ, _GetTempGADIndexFilePath@CHelper_AD@@SA_AVCString@@XZ, _GetP2PVersion@CP2PDownload@@QAEHAAVCString@@@Z, _GetTempADIndexFilePath@CHelper_AD@@SA_AVCString@@XZ, _IsCacheTaskQueueEmpty@CP2PDownload@@QAEHXZ, _GetADRootDir@CHelper_AD@@SA_AVCString@@XZ, _ConfirmADRootDirPathExist@CHelper_AD@@SAHXZ, _GetNewReportFilePath@CHelper_AD@@SA_AVCString@@XZ, _GetDlgReportFilePath@CHelper_AD@@SA_AVCString@@XZ, _GetUserHeadByUin@@YAPAUHBITMAP__@@KH@Z, _GetZoneName@CQQUrlReport@@QAE_AVCString@@XZ, _SetZoneName@CQQUrlReport@@AAEXVCString@@@Z, _DrawTextAutoBreak2@CTransparentStatic@@SAXPAVCDC@@VCRect@@VCString@@IH@Z, _GetWholeUrl@CQQUrlReport@@QAEXVCString@@AAV2@HH@Z, _SetHyperLink@CQQShowWnd@@QAEXPBDI@Z, _SetFlagTransUrl@CQQShowWnd@@QAEXH@Z, _LoadAvatar@CQQShowWnd@@QAEHKHK@Z, _SetVisibleRect@CQQShowWnd@@QAEXVCRect@@H@Z, _SetTip@CQQShowWnd@@QAEXVCString@@@Z, _Create@CQQShowWnd@@QAEHVCRect@@PAVCWnd@@@Z, __0CPopupMessage@@QAE@XZ, _GetIsPopupMessage@CPopupMessage@@QAEHXZ, __1CPopupMessage@@UAE@XZ, __0CQQShowWnd@@QAE@XZ, __1CQQShowWnd@@UAE@XZ, _OnP2PConnecting@CP2PDownloadUIInterface@@UAEXXZ, _OnP2PConnected@CP2PDownloadUIInterface@@UAEXXZ, _OnP2PProgress@CP2PDownloadUIInterface@@UAEXNNKK@Z, _OnP2PLoginRetry@CP2PDownloadUIInterface@@UAEXK@Z, _ReleaseP2PDownload@CP2PDownload@@QAEXH@Z, __1CP2PDownloadParam@@UAE@XZ, __1CP2PDownload@@UAE@XZ, __0CP2PDownload@@QAE@XZ, _SetUIInterface@CP2PDownload@@QAEXPAVCP2PDownloadUIInterface@@@Z, _SetShareQueueMaxNum@CP2PDownload@@QAEXK@Z, _IsP2PVersionOK@CP2PDownload@@QAEHXZ, __0CP2PDownloadParam@@QAE@XZ, _Init@CP2PDownloadParam@@QAEHXZ, _SetApplicationType@CP2PDownloadParam@@QAEXE@Z, _SetPartInfo@CP2PDownloadParam@@QAEXEE@Z, _SetDownloadMechanism@CP2PDownloadParam@@QAEXK@Z, _SetP2PStatReport@CP2PDownloadParam@@QAEXAAUP2PStatSvrAddrPara@@I@Z, _SetUserPrefer@CP2PDownloadParam@@QAEXW4USER_PREFER_TYPE@@@Z, _GetMessageMap@CP2PDownload@@MBEPBUAFX_MSGMAP@@XZ, _SetPeerServer@CP2PDownloadParam@@QAEHPBDG0G@Z, _SetStunServer@CP2PDownloadParam@@QAEHPBDG@Z, _SetFileURL@CP2PDownloadParam@@QAEXPBD@Z, _SetTorrentURL@CP2PDownloadParam@@QAEXPBD@Z, _SetLocalFileName@CP2PDownloadParam@@QAEXPBD@Z, _Download@CP2PDownload@@QAEHPAVCP2PDownloadParam@@@Z, ___7CP2PDownloadUIInterface@@6B@, __1CP2PDownloadUIInterface@@UAE@XZ, __0CShortcut@@QAE@XZ, _GetDownloadInfoArray@COfflineFileCsController@@QAEXAAV_$CArray@UOfflineFileDownloadInfo@@AAU1@@@@Z, _classCStrFaceTranslate2@CStrFaceTranslate2@@2UCRuntimeClass@@B, __0CxImage@@QAE@ABV0@_N11@Z, __0CxImage@@QAE@K@Z, _Crop@CxImage@@QAE_NJJJJPAV1@@Z, _Draw2@CxImage@@QAEJPAUHDC__@@JJJJ@Z, _Stretch@CxImage@@QAEJPAUHDC__@@JJJJ@Z, _Draw@CxImage@@QAEJPAUHDC__@@JJJJPAUtagRECT@@@Z, _Read@CxMemFile@@UAEIPAXII@Z, _Write@CxMemFile@@UAEIPBXII@Z, _Seek@CxMemFile@@UAE_NJH@Z, _Tell@CxMemFile@@UAEJXZ, _Size@CxMemFile@@UAEJXZ, _Flush@CxMemFile@@UAE_NXZ, _Eof@CxMemFile@@UAE_NXZ, _Error@CxMemFile@@UAEJXZ, _PutC@CxMemFile@@UAE_NE@Z, _GetC@CxMemFile@@UAEJXZ, __0CQQHtmlBrowseDlg@@QAE@PAVCWnd@@H@Z, _GetRuntimeClass@CShockwaveFlashWnd@@UBEPAUCRuntimeClass@@XZ, _SetPanelExInfoSrc@CDataProcessing@@QAEXPAPAUPANEL_INFO@@KVCString@@@Z, _Load@CPublicGDI@@SAXXZ > QQHelperDll.dll: _SaveGroupUser@@YAXPAUIQQCore@@H@Z, _IsQQStarted@@YAHXZ, _QQInitRichEdit@@YAXXZ, _IsVistaSystem@@YAHXZ, _scpAnyCopyProcess@@YAPAUHWND__@@XZ, _CanDirectoryAddFile@@YAHVCString@@@Z, _SetQQStarted@@YAXXZ, __1qdatFromMsgCenterX@@UAE@XZ, _IsTempChatID@CTChatHelper@@SAHK@Z, _GetGroupLayerXmlFilePath@@YA_AVCString@@XZ, _GetLoginServerTime@ToolTOC@@YA_AVCTime@@XZ, _GetJob@qdatCurrentUser@@QAE_AVCString@@XZ, _GetGenderType@qdatCurrentUser@@QAE_AW4enumQQUSER_GENDER@@XZ, _GetAge@qdatCurrentUser@@QAEHXZ, _GetSysDWordData@@YAHPBDAAKH@Z, _SetSysDWordData@@YAXPBDKH@Z, _GetQQDoctorFileVersion@@YAHPAV_$CMap@KAAKKAAK@@@Z, _Report_QQDocotorScan@@YAXW4QQDocotorScanReport@@@Z, _GetRealUrl@@YAHABVCString@@AAV1@@Z, _DataOperation@@YAJHHPAX@Z, _Utf8ToAnsi@@YAHPBDHPADAAH@Z, _activex_loaddefault@@YAXXZ, _BufToGUID@@YAHVCString@@PAU_GUID@@_N@Z, _activex_addfilter@@YAXABU_GUID@@KK@Z, _activex_delfilter@@YAXABU_GUID@@KK@Z, _activex_setfilter@@YAX_N@Z, _GetUserImage@qdatFriend@@QAEHXZ, _SetReportData@@YAHEGGGGW4tagParamValid@@@Z, _InstallHooks@CKernelAPIHook@@SAXHH@Z, _ReportLocalDiscCount@@YAHXZ, _GetUinExpLoginPromptFlag@qdatCurrentGlobal@@QAEHK@Z, _SetUinExpLoginPromptFlag@qdatCurrentGlobal@@QAEHKHH@Z, __0qdatCurrentGlobal@@QAE@H@Z, _GetUinMemberFlag@qdatCurrentGlobal@@QAEHK@Z, _SetUinMemberFlag@qdatCurrentGlobal@@QAEHKHH@Z, _Save@qdatCurrentGlobal@@QAEXXZ, _InitHostingCustomConfig@@YAHXZ, _GetNormalTimeFormat@@YA_AVCString@@AAVCTime@@@Z, _Friday_Log@@YAXPBD0ZZ, _Report_0x060x2a@@YAXGGGW4tagParamValid@@@Z, _Report_0x060x2b@@YAXGGG@Z, _Utf8ToUnicode@@YA_AVCString@@AAV1@@Z, _SaveFriendListConfig@@YAJE@Z, _SaveGroupListConfig@@YAJE@Z, _GetMiniPortalPath@@YA_AVCString@@XZ, _GetEscPicHttpUrl@CLNNIcon_DetailInfo@@QAE_AVCString@@K@Z, _DownloadEscPic@CLNNIconHttpDownload@@QAEXKVCString@@@Z, _GetLNNIconPic@CGetLNNIconPic@@QAEHKPAUICsSendEventSink@@@Z, _GetNeedUpdatePicArray_ByCS@CLNNIcon_DetailInfo@@QAEHPAVCDWordArray@@@Z, _GetNeedUpdatePicArray_ByHttp@CLNNIcon_DetailInfo@@QAEHPAVCDWordArray@@@Z, _OnTimeOut@CGetLNNIconConfig@@QAEHPAUIQQData@@@Z, _OnTimeOut@CGetLNNIconPic@@QAEHPAUIQQData@@@Z, _OnRecvReply@CGetLNNIconConfig@@QAEHPAUIQQData@@0@Z, _GetLNNIconGlobalData@@YAHPAPAVCLNNIcon_DetailInfo@@@Z, _Save@CLNNIcon_DetailInfo@@QAEHW4SAVE_TYPE@@@Z, _OnRecvReply@CGetLNNIconPic@@QAEHPAUIQQData@@0@Z, _GetLNNIconConfig@CGetLNNIconConfig@@QAEHPAUICsSendEventSink@@@Z, __0CGetLNNIconConfig@@QAE@XZ, __0CGetLNNIconPic@@QAE@XZ, __0CLNNIconHttpDownload@@QAE@XZ, __1CGetLNNIconConfig@@UAE@XZ, __1CGetLNNIconPic@@UAE@XZ, __1CLNNIconHttpDownload@@UAE@XZ, _Report_0x030x12@@YAXABVCString@@@Z, _Report_0x030x14@@YAXABVCString@@@Z, _Report_0x030x11@@YAXABVCString@@@Z, _Report_0x030x13@@YAXABVCString@@@Z, _NewCreateVqqObjectFromFile@@YAJPAPAUHINSTANCE__@@PADPAUIUnknown@@ABU_GUID@@3PAPAXPAU1@H@Z, _GetDefaultGroupFacePath@@YA_AVCString@@XZ, _QQGetFileHash@@YAHVCString@@PAEH@Z, _GetDefaultFacePath@@YA_AVCString@@_N@Z, _GetVer@qdatNewCcMsgFromMsgCenter@@QAEEXZ, _GetC2CType@qdatNewCcMsgFromMsgCenter@@QAEEXZ, _GetServiceType@qdatNewCcMsgFromMsgCenter@@QAEEXZ, _GetFromUin@qdatFromMsgCenterX@@QAEKXZ, _GetToUin@qdatFromMsgCenterX@@QAEKXZ, _GetFirstSessionToUserInfo@qdatNewCcMsgFromMsgCenter@@QAEXAAK0@Z, _GetPersonalWPACreateTime@qdatNewCcMsgFromMsgCenter@@QAEKXZ, _GetIHostingSettingObj@CTChatHelper@@SAHPAPAUIHostingSettingObj@@PAUIQQCore@@@Z, _SetChatID@qdatFromMsgCenterX@@QAEXK@Z, _AddUserToStrangerFolder@CTChatHelper@@SAHKK@Z, _SetWpaCreateTime@qdatTChatUser@@QAEXK@Z, _GetSOVerMain@qdatCcMsgFromMsgCenterX@@QAEEXZ, _GetSOVerSub@qdatCcMsgFromMsgCenterX@@QAEEXZ, _SetProtocolNum@qdatFriend@@QAEXG@Z, _SetProtocolNum@qdatTChatUser@@QAEXG@Z, _IsOffLineMsg@@YAHXZ, _SetLastChatTime@qdatFriend@@QAEXK@Z, _SetLastMsgTime@qdatTChatUser@@QAEXK@Z, _GetSOFace@qdatCcMsgFromMsgCenterX@@QAEGXZ, _SetUserImage@qdatTChatUser@@QAEXH@Z, _SetUserImage@qdatFriend@@QAEXH@Z, _GetSigTXFromC2CMsg@qdatNewCcMsgFromMsgCenter@@QAEXAAVCString@@@Z, _GetSigType@qdatNewCcMsgFromMsgCenter@@QAEEXZ, _GetGroupUin@qdatNewCcMsgFromMsgCenter@@QAEKXZ, _SetGroupUin@qdatTChatUser@@QAEXK@Z, _GetDiscUin@qdatNewCcMsgFromMsgCenter@@QAEKXZ, _SetDiscUin@qdatTChatUser@@QAEXK@Z, _GetBitmap@qdatTChatUser@@QAEKXZ, _GetRichBitmap@qdatNewCcMsgFromMsgCenter@@QAEKXZ, _IsGroupExist@@YAHPAUIQQUserManager@@K@Z, _IsTOCGroup@ToolTOC@@YAHK@Z, _IsUserInTOCGroup@ToolTOC@@YAHK@Z, _GetDisDataFromDisUin@@YAHPAUIQQUserManager@@KKPAPAUIQQData@@@Z, _Report_0x07x06@@YAXGGGW4tagParamValid@@@Z, __0CCabHelper@@QAE@XZ, _bCreateParentFolder@CCabHelper@@QAEXH@Z, _Extract@CCabHelper@@QAEHVCString@@ABV2@@Z, __1CCabHelper@@UAE@XZ, _GetTTPath@@YAHAAVCString@@@Z, _IsQQServiceEnable@@YAHI@Z, _IsLogin@@YAHPAUIQQCore@@@Z, _AddUserToFriendList@CHelper_QQAppOperation@@SAXKHKPAUIQQData@@@Z, _GetGamePath@@YAHAAVCString@@@Z, _DownloadAndInstallFile@@YAHPBD00H@Z, _GetQQTangExeFilePath@@YAHAAVCString@@@Z, _GetCurrentProxy@@YAHPAUIQQCore@@AAEAAVCString@@AAG222@Z, _GetSoundByIndex@@YA_AVCString@@H@Z, _GetHostingConfig@@YAHPBDAAVCStringList@@@Z, _SetSigTXResult@qdatTChatUser@@QAEXEAAVCString@@@Z, _SetSigTX@qdatTChatUser@@QAEXAAVCString@@@Z, _SetSigTXFromC2CMsg@qdatTChatUser@@QAEXAAVCString@@@Z, _SetSigType@qdatTChatUser@@QAEXE@Z, _SetBitmap@qdatTChatUser@@QAEXK@Z, _GetAIOTempChatDlg@qdatFriend@@QAEPAUHWND__@@XZ, _ReplaceSigTX@qdatNewCsToMsgCenterSend@@QAEXAAVCString@@@Z, __0qdatCsToMsgCenterReply@@QAE@PAUIQQData@@@Z, _GetChatID@qdatFromMsgCenterX@@QAEKXZ, __0qdatFromMsgCenterX@@QAE@PAUIQQData@@@Z, __1qdatCcMsgFromMsgCenterX@@UAE@XZ, _GetResult@qdatCsToMsgCenterReply@@QAEEXZ, __0qdatNewCsToMsgCenterSend@@QAE@PAUIQQData@@@Z, _GetToUin@qdatCsToMsgCenterSend@@QAEKXZ, _GetChatID@qdatNewCsToMsgCenterSend@@QAEKXZ, __0qdatTChatUser@@QAE@KK@Z, _GetGroupUin@qdatTChatUser@@QAEKXZ, __1qdatTChatUser@@UAE@XZ, _GetDiscUin@qdatTChatUser@@QAEKXZ, _GetLastSigTX@qdatTChatUser@@QAEHAAVCString@@@Z, __1qdatCsToMsgCenterReply@@UAE@XZ, __1qdatNewCsToMsgCenterSend@@UAE@XZ, __1qdatCsToMsgCenterSend@@UAE@XZ, _scpSetUserDataFolder@@YAXKVCString@@@Z, __0CComputerIDGenerator@@QAE@XZ, _Generate@CComputerIDGenerator@@QAEKPAE@Z, _GenerateGuidEx@CComputerIDGenerator@@QAEHPAE@Z, __1CComputerIDGenerator@@UAE@XZ, _GetScreenShort@@YA_AVCString@@K@Z, _InitQQPhoneAPI@@YAHPAUIQQCore@@@Z, _Utf8strToAnsi@@YA_AVCString@@V1@@Z, _IsPetEnable@CPetHelper@@SAHXZ, _GetIconFromText@CPetHelper@@SAHPAHAAVCString@@KHH@Z, _IsNeedtoUpdate@CPetHelper@@SAHKH@Z, _UpdateOnePetInfo@CPetHelper@@SAXKHPAX@Z, _AddMixedStat@@YAXI@Z, _GetLocalRSAType@@YAHXZ, _Report_0x060x18_0_0@@YAXG@Z, _IsNeedToUpdateSimpleInfo@qdatSystem@@QAEHXZ, _IsIdentityUserFlagEx@@YAHKEPAHPAUIQQData@@H@Z, _CRM_OnRecvGetCRMUserInfo@@YAHPAUIQQData@@0AAVCDWordArray@@AAKH@Z, _CRM_GetCRMUserInfo@@YAHKAAVCDWordArray@@PAXH@Z, _AddReportData@@YAHEGGGG@Z, _GetQInterLiveImagePath@@YAHAAVCString@@K@Z, _CheckParentDirectory1@@YAHPBDH@Z, __0qdatFriend@@QAE@K@Z, _IsQQInterLiveRobot@qdatFriend@@QAEHXZ, __1qdatFriend@@UAE@XZ, _GetFileName@@YA_AVCString@@ABV1@@Z, _GetMiniPortalPath@@YA_AVCString@@K@Z, _GetAirDLIconPath@@YA_AVCString@@XZ, _GetHostingID@qdatCurrentUser@@QAEKXZ, _GetHostingAccount@qdatCurrentUser@@QAE_AVCString@@XZ, __0qdatHostingUser@@QAE@KK@Z, _GetName@qdatHostingUser@@QAE_AVCString@@XZ, __1qdatHostingUser@@UAE@XZ, _GetCurrentSysData@@YAHPAPAUIQQData@@@Z, _IsFirstUseCurVer@@YAHXZ, _IsIdentityFlag@@YAHKKH@Z, __0CQQBusinessCollection@@QAE@KH@Z, _GetBussinessStat@CQQBusinessCollection@@QAEHJJ@Z, __1CQQBusinessCollection@@UAE@XZ, _ShowMessageBox@@YAHPAUHWND__@@III@Z, _CRM_GetCRMUserArray@@YAHPAPAUIQQDataArray@@H@Z, _IsIdentityFlagEx@@YAHAAVCString@@EH@Z, _CRM_SetCRMInfotoUserData@@YAXPAUIQQData@@PAUIQQDataArray@@KKH@Z, _IsIdentityFlagEx@@YAHKEHPAUIQQData@@H@Z, _CRM_SetCRMArrInDWordArr@@YAXAAVCDWordArray@@@Z, _SortDWordArray@@YAXAAVCDWordArray@@@Z, _SaveAsUinAccount@@YAHKPAUIAccountInfoService@@@Z, _SaveUinEmailInfo@@YAHKEHVCString@@KPAUIAccountInfoService@@@Z, __0qdatSystem@@QAE@PAUIQQData@@@Z, _SaveUpdateSimpleInfoFinish@qdatSystem@@QAEXK@Z, _SaveCSBuddyData@@YAXXZ, _GetFileVersion@@YAHPBDAAK1@Z, __0CMACReaderExForSL@@QAE@XZ, _GetMAC@CMACReaderExForSL@@QAEHXZ, _ResetEnum@CMACReaderExForSL@@QAEHXZ, _GetNext@CMACReaderExForSL@@QAEHPAU_STMACFORSL@@@Z, __1CMACReaderExForSL@@UAE@XZ, _Report_0x0D0x17@@YAXK@Z, _StartTrayAnimate@@YAXPAUIQQCore@@@Z, _StartLoginTaskTrayAnimation@@YAHXZ, _StringToGUID@@YAHVCString@@PAU_GUID@@@Z, _GetHostingConfig@@YAHPBDAAVCString@@@Z, _IsPaiPaiPanelView@@YAHXZ, __0qdatCurrentUser@@QAE@PAUIQQData@@@Z, _GetNickName@qdatCurrentUser@@QAE_AVCString@@XZ, _GetUinAccountInfo@@YAXKAAEAAVCString@@PAUIAccountInfoService@@AAKPAH4@Z, _GetUin@qdatCurrentUser@@QAEKXZ, __1qdatCurrentUser@@UAE@XZ, _LoadStatusTray@@YAPAXPAUHINSTANCE__@@H@Z, _InitQQShow@@YAHPAUIQQCore@@@Z, _Flush@CThreeParamReportObj@@SAXXZ, _GetMainFrameHWnd@@YAPAUHWND__@@XZ, _GetCApplicationOP@@YAHPAUIQQCore@@PAPAUIQQAppOperation@@@Z, _SetProfileID@@YAXKKK@Z, _Gender_IDToString@CUserIDInfoParserObj@@QAEJEAAVCString@@@Z, __0CUserIDInfoParserObj@@QAE@XZ, _Location_IDToString@CUserIDInfoParserObj@@QAEJKKKAAVCString@@00@Z, _QQGetData@@YAHPAUIQQData@@PBDEPAX@Z, __0qdatNewCcMsgFromMsgCenter@@QAE@PAUIQQData@@@Z, _IsFileEnable@qdatNewCcMsgFromMsgCenter@@QAEHXZ, _IsPicEnable@qdatNewCcMsgFromMsgCenter@@QAEHXZ, _GetVqqRequestInfoFromDataCome@CHelper_VQQ@@SAHPAUIQQData@@PAUtagVQQRequestInfo@@@Z, _IsAudioEnable@qdatNewCcMsgFromMsgCenter@@QAEHXZ, _IsVideoEnable@qdatNewCcMsgFromMsgCenter@@QAEHXZ, __1qdatNewCcMsgFromMsgCenter@@UAE@XZ > BasicCtrlDll.dll: _GetMessageMap@CLoginInfoDlg@@MBEPBUAFX_MSGMAP@@XZ, _DoDataExchange@CLoginInfoDlg@@MAEXPAVCDataExchange@@@Z, _OnInitDialog@CLoginInfoDlg@@MAEHXZ, _OnOK@CLoginInfoDlg@@MAEXXZ, _OnCancel@CLoginInfoDlg@@MAEXXZ, _GetMessageMap@CLoginFailedDlg@@MBEPBUAFX_MSGMAP@@XZ, _DoDataExchange@CLoginFailedDlg@@MAEXPAVCDataExchange@@@Z, _OnInitDialog@CLoginFailedDlg@@MAEHXZ, _OnOK@CLoginFailedDlg@@MAEXXZ, _InitBugReport@@YAHVCString@@0000HHKKKHHH00@Z, __0CTimerEvent@@QAE@XZ, _SetInterval@CTimerEvent@@QAEXI@Z, _SetEnabled@CTimerEvent@@QAEXH@Z, __0CLoginInfoDlg@@QAE@PAVCWnd@@@Z, _OnCancel@CDlgDrInfo@@MAEXXZ, _OnOK@CDlgDrInfo@@MAEXXZ, _OnInitDialog@CDlgDrInfo@@MAEHXZ, _GetExeFolder@@YA_AVCString@@XZ, TXLog_DoTXLogVT, _CreateQQData@@YAXPAPAUIQQData@@@Z, _GetQQStorePath@@YAAAVCString@@AAV1@V1@W4_emQQPath@@@Z, _CreateAllDir@@YAHABVCString@@@Z, _GetQQStorePath@@YAAAVCString@@AAV1@W4_emQQPath@@@Z, _GUID2String@@YA_AVCString@@ABU_GUID@@@Z, _CreateQQDataArray@@YAXPAPAUIQQDataArray@@@Z, _DoDataExchange@CDlgDrInfo@@MAEXPAVCDataExchange@@@Z, _GetMessageMap@CDlgDrInfo@@MBEPBUAFX_MSGMAP@@XZ, _ShowDlg@CDlgDrInfo@@QAEXXZ, _SetDetail@CDlgDrInfo@@QAEXVCString@@@Z, __0CDlgDrInfo@@QAE@PAVCWnd@@@Z, __1CDlgDrInfo@@UAE@XZ, __1CDlgUpdate@@UAE@XZ, _SetDetail@CDlgUpdate@@QAEXVCString@@@Z, _SetUin@CDlgUpdate@@QAEXK@Z, __0CDlgUpdate@@QAE@PAVCWnd@@@Z, _IsMySelfInLan@@YAHK@Z, _GetCurrentSysTempData@@YAXPAUIQQCore@@PAPAUIQQData@@@Z, _GetQQDataStr@@YAJPAUIQQData@@PBDAAVCString@@@Z, _GetCurrentUin@@YAKPAUIQQCore@@@Z, _BasicLoadStr@@YAXAAVCString@@I@Z, _CopyAFieldQQData@@YAJPAUIQQData@@0VCString@@1E@Z, _QQDoctorAutoScan_IsNeedRun@@YAHXZ, _CheckForUinNeedUpdate@@YAHPAUIQQCore@@VCString@@@Z, _QQGetPwdRecodeEnable@@YAHXZ, _DealAutoLogin@@YAXXZ, _Encode16@@YAXAAVCString@@@Z, _GetQQDataBuf@@YAJPAUIQQData@@PBDAAVCString@@@Z, _GetCurrentUserData@@YAXPAUIQQCore@@PAPAUIQQData@@@Z, _GetQQStorePath@@YAAAVCString@@AAV1@W4_emQQPath@@K@Z, _CheckFileExist1@@YAHVCString@@@Z, _RemoveTempDir1@@YAHVCString@@@Z, _Base64Decode2@@YAHPBDHPAEPAH@Z, _DoModal_InputLocalPwdDlg@@YAHHHVCString@@AAV1@KH@Z, _SetControlBox@CLoginInfoDlg@@QAEX_N@Z, __1CCsRegisterSinkHelper@@UAE@XZ, __1CCsSendSinkHelper@@UAE@XZ, __1CTimerEvent@@UAE@XZ, __0CCsRegisterSinkHelper@@QAE@XZ, __0CCsSendSinkHelper@@QAE@XZ, _PSWEncrypt@@YA_AVCString@@PAEH@Z, _PSWDecrypt@@YA_AVCString@@V1@@Z, _GetInstallFolder@@YA_AVCString@@XZ, _SetNewStatMsg@CStatMsgMng@@SAXGVCString@@@Z, _SetOldStatMsg@CStatMsgMng@@SAXGVCString@@@Z, _GetStatMsg@CStatMsgMng@@SA_AVCString@@G@Z, _GetDefaultStatMsg@@YA_AVCString@@G@Z, _GetLastChangeTime@@YAKPAUIQQCore@@@Z, _GetFaceIndex@@YAGPAUIQQCore@@@Z, _CheckCameraStatus@@YAHXZ, _LoadResponseStr@@YAXAAVCString@@I@Z, _GetAutoAwayPreStatus@@YAGPAUIQQCore@@@Z, _GetPasswordHash@@YA_AVCString@@XZ, _ConvertGBKToUtf8@@YAXAAVCString@@@Z, _SetExistMsgTempFlag@@YAXH@Z, _IsServerControlBitOn@@YAHK@Z, _IsUseIEHttpProxy@@YAHXZ, _ShowDlg@CLoginFailedDlg@@QAEXXZ, _GetQQFileCacheFolder@@YA_AVCString@@XZ, _GetQQGlobalDb@@YA_AVCString@@XZ, __0CAsyncGetHostByName@@QAE@PAUHWND__@@IVCString@@HH@Z, _NextQQDataArrayStr@@YAJPAUIQQDataArray@@AAVCString@@@Z, _GetEnabled@CTimerEvent@@QAEHXZ, _GetLocalComputerGUID@@YAXPAEH@Z, _GetOIcqProcessCount@@YAEXZ, _GetQQExeHash@@YAHPAE@Z, _EncryptChallenge@@YA_AVCString@@K@Z, _GetTimeOffsetUTC@@YAJXZ, __1CPwdProtectCardDlg@@UAE@XZ, _GetInput@CPwdProtectCardDlg@@QAE_AVCString@@XZ, _SetCoordinate@CPwdProtectCardDlg@@QAEXGGG@Z, __0CPwdProtectCardDlg@@QAE@PAVCWnd@@@Z, _BasicLoadFileFromRes@@YAHAAVCString@@@Z, __1CHttpDownload@@UAE@XZ, __1CHttpDownloadUIInterface@@UAE@XZ, _SetUIInterface@CHttpDownload@@QAEXPAVCHttpDownloadUIInterface@@@Z, __0CHttpDownload@@QAE@XZ, __0CHttpDownloadUIInterface@@IAE@XZ, _CancelDownload@CHttpDownload@@QAEXXZ, _Download@CHttpDownload@@QAEIPBDPAU_SYSTEMTIME@@@Z, _Decode16@@YAXAAVCString@@@Z, _QueryInfo@CHttpDownload@@QAEHABVCString@@AAV2@H@Z, __1CPwdProtectCardResultDlg@@UAE@XZ, _SetMode@CPwdProtectCardResultDlg@@QAEXH@Z, _SetInfo@CPwdProtectCardResultDlg@@QAEXAAVCString@@@Z, _SetMode@CPwdProtectCardResultDlg@@QAEXW4UIMODE@1@@Z, __0CPwdProtectCardResultDlg@@QAE@PAVCWnd@@@Z, _GetLoginNotifyCheck@CPwdProtectCardResultDlg@@QAEHXZ, _AsynGetHostByName@CAsyncGetHostByName@@QAEXVCString@@@Z, __0CAsyncGetHostByName@@QAE@XZ, _BUFFER2String@@YA_AVCString@@PBDH@Z, _NextQQDataArrayBuf@@YAJPAUIQQDataArray@@AAVCString@@@Z, _GetLocalIP@@YA_AVCString@@PAKH@Z, _Base64Encode@@YA_AVCString@@PBDH@Z, _TXLogStack@@YAXVCString@@0HHH@Z, _GetCurrentStatus@@YAHPAUIQQCore@@PAH@Z, _InitCQQUserData@@YAXJPAUIQQData@@@Z, _BIG2GB@@YAXAAVCString@@@Z, _ConvertUtf8ToGBK@@YAXAAVCString@@@Z, _GB2BIG@@YAXAAVCString@@@Z, _BIG_GB@@YAHPAEH@Z, _MinimizeMemory@@YAXXZ, _SetStartSubStat@CStatMsgMng@@SAXG@Z, _GetNewStatSeq@CStatMsgMng@@SAXAAGGVCString@@@Z, _GetOldStatMsg@CStatMsgMng@@SA_AVCString@@G@Z, _RecodeLoginDateTime@@YAHXZ, _GetAppDataPath@@YA_AVCString@@XZ, _GetFriendQQData@@YAHPAUIQQCore@@KPAPAUIQQData@@@Z, _GetCurCacheSize@@YAKXZ, _GetOSVersion@@YAHAAK000@Z, _OnSupportResume@CHttpDownload@@MAEXH@Z, _OnProgress@CHttpDownload@@MAEXK@Z, _OnStatusCallback@CHttpDownload@@MAEXPAXK0K@Z, _HttpSendRequestA@CHttpDownload@@MAEIXZ, _Run@CHttpDownload@@MAEIXZ, _AfterThread@CHttpDownload@@MAEXXZ, _BeforeThread@CHttpDownload@@MAEXXZ, _Download@CHttpDownload@@QAEIPBD0PAU_SYSTEMTIME@@@Z, _AddInfo@CHttpDownload@@QAEHABVCString@@0@Z, _ClearRequestHeader@CHttpDownload@@QAEXXZ, _SetDownloadTempDir@CHttpDownload@@QAEXPBD@Z, _AfterThread@CThreadModel@@MAEXXZ, _BeforeThread@CThreadModel@@MAEXXZ, __1CThreadModel@@MAE@XZ, __0CThreadModel@@IAE@XZ, _StopThread@CThreadModel@@QAEXXZ, _StartThread@CThreadModel@@QAEHXZ, _QueryExitEvent@CThreadModel@@IAEHK@Z, _SetAutoAddCookieToHeadFlag@CHttpDownload@@QAEXH@Z, _AddInfo@CHttpDownload@@QAEHABVCString@@K@Z, _GetStatusCode@CHttpDownload@@QAEKXZ, _InitGUserData@@YAXJPAUIQQData@@@Z, _GetSequenceID@@YAHXZ, _QQDoctorAutoScan_GetScanOpt@@YAHAAH@Z, _GetQQStorePath@@YAAAVCString@@AAV1@V1@W4_emQQPath@@K@Z, _SetEnableOffLine@CLoginFailedDlg@@QAEXH@Z, __1CLoginFailedDlg@@UAE@XZ, _SetErrorCode@CLoginFailedDlg@@QAEXK@Z, _SetText@CLoginFailedDlg@@QAEXVCString@@0AAV2@@Z, __0CLoginFailedDlg@@QAE@PAVCWnd@@@Z, _ShowDlg@CLoginInfoDlg@@QAEXXZ, _SetDisableOffLine@CLoginInfoDlg@@QAEX_N@Z, __1CLoginInfoDlg@@UAE@XZ, _GetBasicCtrlDllResourceHandle@@YAPAUHINSTANCE__@@XZ, _SetDoModal@CLoginInfoDlg@@QAEX_N@Z, _GetCurrentUin@@YAHPAUIQQCore@@PAK@Z, _SetProperty@CLoginInfoDlg@@QAEXPAUIQQDataArray@@@Z > iphlpapi.dll: GetNetworkParams, GetAdaptersInfo > SHLWAPI.dll: PathFindExtensionA, PathCombineA, PathRemoveExtensionA, SHDeleteKeyA

> MFC42.DLL: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -
> MSVCRT.dll: strstr, abs, _snprintf, strncat, srand, _getpid, time, rand, _ftol, memmove, _CxxThrowException, strcmp, _except_handler3, realloc, _beginthreadex, _atoi64, _mbsstr, _mbccpy, _mbclen, _mbschr, _mbsnbcmp, wctomb, memcmp, _mbsncmp, _mbsnicmp, __dllonexit, _onexit, _exit, _XcptFilter, exit, _acmdln, __getmainargs, _initterm, __setusermatherr, _adjust_fdiv, __p__commode, __p__fmode, __set_app_type, _terminate@@YAXXZ, __1type_info@@UAE@XZ, _controlfp, malloc, free, getc, fputc, fflush, ftell, fseek, fwrite, _setmbcp, fgetc, calloc, _iob, _endthreadex, _mbslwr, _mbsicoll, fread, fclose, fopen, _purecall, _mbscmp, strlen, memcpy, _mbsicmp, atol, atoi, __p___argc, __p___argv, memset, strncpy, strtol, __CxxFrameHandler, _splitpath, strchr, _itoa, _stricmp, _strdup, _strlwr, _mbsnbcpy
> KERNEL32.dll: ResumeThread, VirtualQuery, SetThreadPriority, FindClose, FindNextFileA, FindFirstFileA, GetEnvironmentVariableA, OpenProcess, Process32Next, Process32First, CreateToolhelp32Snapshot, GetTimeZoneInformation, ExpandEnvironmentStringsA, LockResource, SizeofResource, LoadResource, FindResourceA, MoveFileA, LocalFree, LocalAlloc, GetStartupInfoA, CreateFileMappingA, MapViewOfFile, UnmapViewOfFile, SetFileAttributesA, IsBadReadPtr, IsBadWritePtr, GetFileAttributesExA, lstrlenW, WideCharToMultiByte, QueryPerformanceFrequency, QueryPerformanceCounter, CopyFileA, GetTempFileNameA, DeleteFileA, GetSystemDirectoryA, GetPrivateProfileIntA, GetPrivateProfileStringA, GlobalFree, GetTempPathA, WritePrivateProfileStringA, CreateDirectoryA, GetVersionExA, CreateProcessA, CreateEventA, SetEvent, GetCurrentProcessId, FormatMessageA, SetFilePointer, WriteFile, GetSystemTime, GetExitCodeThread, WaitForSingleObject, TerminateThread, EnterCriticalSection, LeaveCriticalSection, DeleteCriticalSection, InitializeCriticalSection, DuplicateHandle, GetCurrentThread, GetThreadTimes, GetSystemTimeAsFileTime, GetVersion, GlobalAlloc, GlobalLock, GlobalUnlock, GetCommandLineA, HeapFree, InterlockedDecrement, InterlockedIncrement, GetProcessHeap, HeapAlloc, VirtualProtect, GetCurrentProcess, FlushInstructionCache, lstrlenA, MultiByteToWideChar, Sleep, ReadFile, GetFileAttributesA, GetWindowsDirectoryA, lstrcpynA, CreateFileA, GetFileSize, SetEndOfFile, CreateMutexA, GetModuleHandleA, GetLastError, LoadLibraryA, GetProcAddress, FreeLibrary, GetCurrentThreadId, GetTickCount, ReleaseMutex, CloseHandle, GetModuleFileNameA, SetLastError
> USER32.dll: SystemParametersInfoA, EnableWindow, RegisterWindowMessageA, CloseClipboard, PeekMessageA, PostQuitMessage, IsWindow, SendMessageA, GetWindowRect, SetWindowPos, ShowWindow, EmptyClipboard, OpenClipboard, PostThreadMessageA, SetTimer, KillTimer, GetDesktopWindow, MessageBoxA, PostMessageA, UnregisterHotKey, GetClassInfoA, ScreenToClient, GetCapture, SetForegroundWindow, SetClipboardData, DefWindowProcA, DestroyIcon, LoadBitmapA, IsIconic, LoadImageA, FindWindowA, LoadStringA, GetMessageA, GetCursorPos, OffsetRect, DispatchMessageA, TranslateMessage, InvalidateRect, ReleaseDC, GetClientRect, GetDC, InflateRect, PtInRect, DrawStateA, CopyRect, SetCursor, LoadCursorA, SetCapture, ReleaseCapture
> ADVAPI32.dll: RegCloseKey, RegSetValueExA, RegOpenKeyExA, RegEnumKeyExA, RegQueryValueExA, RegDeleteKeyA, RegQueryInfoKeyA, RegCreateKeyExA
> SHELL32.dll: SHGetSpecialFolderPathA, SHGetFileInfoA, Shell_NotifyIconA, ShellExecuteA
> ole32.dll: StgIsStorageFile, CoCreateGuid, StgOpenStorage, StgCreateDocfile, CoTaskMemAlloc, CoTaskMemFree, CLSIDFromString, CoCreateInstance, CoLoadLibrary, OleUninitialize, OleInitialize
> OLEAUT32.dll: -, -, -
> WSOCK32.dll: -, -, -, -, -, -, -, -, -, -, -, -
> MSVCP60.dll: _assign@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z, __9std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@0@Z, __9std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@PBD@Z, __Tidy@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@AAEX_N@Z, _assign@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@PBDI@Z, __C@_1___Nullstr@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@CAPBDXZ@4DB, _npos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@2IB, __8std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@0@Z, __0_Lockit@std@@QAE@XZ, __1_Lockit@std@@QAE@XZ, _c_str@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBEPBDXZ, _substr@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBE_AV12@II@Z, _find@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBEIPBDII@Z, __Xlen@std@@YAXXZ, __Xran@std@@YAXXZ, __1_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ, _resize@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEXID@Z
> VERSION.dll: VerQueryValueA, GetFileVersionInfoA, GetFileVersionInfoSizeA
> WINMM.dll: sndPlaySoundA
> WININET.dll: HttpOpenRequestA, HttpSendRequestA, HttpQueryInfoA, InternetConnectA, InternetCloseHandle, InternetSetOptionA, InternetQueryOptionA, InternetOpenA, InternetSetCookieA, InternetErrorDlg
> GDI32.dll: GetObjectA, CreateCompatibleBitmap, CreateCompatibleDC, BitBlt, CreatePen, CreateRoundRectRgn, GetStockObject, CreateFontIndirectA, Rectangle, DeleteObject
> COMCTL32.dll: ImageList_SetBkColor, ImageList_AddMasked, _TrackMouseEvent

( 96 exports )
__0CCommBusinessInfoHelper@@QAE@ABV0@@Z, __0CShockwaveFlashWnd@@QAE@XZ, __0CxFile@@QAE@ABV0@@Z, __0CxFile@@QAE@XZ, __0CxIOFile@@QAE@ABV0@@Z, __0CxIOFile@@QAE@PAU_iobuf@@@Z, __0CxMemFile@@QAE@ABV0@@Z, __0CxMemFile@@QAE@PAEK@Z, __1CShockwaveFlashWnd@@UAE@XZ, __1CxFile@@UAE@XZ, __1CxIOFile@@UAE@XZ, __1CxMemFile@@UAE@XZ, __4CCommBusinessInfoHelper@@QAEAAV0@ABV0@@Z, __4CxFile@@QAEAAV0@ABV0@@Z, __4CxIOFile@@QAEAAV0@ABV0@@Z, __4CxMemFile@@QAEAAV0@ABV0@@Z, ___7CCommBusinessInfoHelper@@6B@, ___7CShockwaveFlashWnd@@6B@, ___7CxFile@@6B@, ___7CxIOFile@@6B@, ___7CxMemFile@@6B@, ___FCQQHtmlBrowseDlg@@QAEXXZ, ___FCxIOFile@@QAEXXZ, ___FCxImage@@QAEXXZ, ___FCxMemFile@@QAEXXZ, ___OCxImage@@QAEXABV0@@Z, _AlphaGetMax@CxImage@@QBEEXZ, _AlphaIsValid@CxImage@@QAE_NXZ, _AlphaPaletteEnable@CxImage@@QAEX_N@Z, _AlphaPaletteIsEnabled@CxImage@@QAE_NXZ, _AlphaSetMax@CxImage@@QAEXE@Z, _Close@CxIOFile@@UAE_NXZ, _Close@CxMemFile@@UAE_NXZ, _Create@CShockwaveFlashWnd@@QAEHPBDKABUtagRECT@@PAVCWnd@@IPAVCFile@@HPAG@Z, _Create@CShockwaveFlashWnd@@UAEHPBD0KABUtagRECT@@PAVCWnd@@IPAUCCreateContext@@@Z, _Crop@CxImage@@QAE_NABUtagRECT@@PAV1@@Z, _Draw2@CxImage@@QAEJPAUHDC__@@ABUtagRECT@@@Z, _Draw@CxImage@@QAEJPAUHDC__@@ABUtagRECT@@PAU3@@Z, _Enable@CxImage@@QAEX_N@Z, _Eof@CxIOFile@@UAE_NXZ, _Error@CxIOFile@@UAEJXZ, _Flush@CxIOFile@@UAE_NXZ, _GetBpp@CxImage@@QBEGXZ, _GetBuffer@CxMemFile@@QAEPAEXZ, _GetC@CxIOFile@@UAEJXZ, _GetClsid@CShockwaveFlashWnd@@QAEABU_GUID@@XZ, _GetDIB@CxImage@@QBEPAXXZ, _GetEffWidth@CxImage@@QBEKXZ, _GetEncodeOption@CxImage@@QBEKXZ, _GetEscape@CxImage@@QBEJXZ, _GetFlags@CxImage@@QBEKXZ, _GetFrame@CxImage@@QBEJXZ, _GetFrameDelay@CxImage@@QBEKXZ, _GetHTMLADID@CQQHtmlBrowseDlg@@QAEHXZ, _GetHeight@CxImage@@QBEKXZ, _GetJpegQuality@CxImage@@QBEEXZ, _GetLastError@CxImage@@QAEPADXZ, _GetNumColors@CxImage@@QBEKXZ, _GetNumFrames@CxImage@@QBEJXZ, _GetNumLayers@CxImage@@QBEJXZ, _GetOffset@CxImage@@QAEXPAJ0@Z, _GetParent@CxImage@@QBEPAV1@XZ, _GetProgress@CxImage@@QBEJXZ, _GetTransIndex@CxImage@@QBEJXZ, _GetType@CxImage@@QBEKXZ, _GetWidth@CxImage@@QBEKXZ, _GetXDPI@CxImage@@QBEJXZ, _GetYDPI@CxImage@@QBEJXZ, _IsEnabled@CxImage@@QBE_NXZ, _IsIndexed@CxImage@@QAE_NXZ, _IsTransparent@CxImage@@QBE_NXZ, _IsValid@CxImage@@QBE_NXZ, _Open@CxIOFile@@QAE_NPBD0@Z, _Open@CxMemFile@@QAE_NXZ, _PutC@CxFile@@UAE_NE@Z, _PutC@CxIOFile@@UAE_NE@Z, _Read@CxIOFile@@UAEIPAXII@Z, _Seek@CxIOFile@@UAE_NJH@Z, _SelectionGetBox@CxImage@@QAEXAAUtagRECT@@@Z, _SelectionIsValid@CxImage@@QAE_NXZ, _SetEncodeOption@CxImage@@QAEXK@Z, _SetEscape@CxImage@@QAEXJ@Z, _SetFrame@CxImage@@QAEXJ@Z, _SetFrameDelay@CxImage@@QAEXK@Z, _SetGetNearestNoAlpha@CxImage@@QAEXH@Z, _SetHTMLADID@CQQHtmlBrowseDlg@@QAEXH@Z, _SetJpegQuality@CxImage@@QAEXE@Z, _SetOffset@CxImage@@QAEXJJ@Z, _SetProgress@CxImage@@QAEXJ@Z, _SetTransColor@CxImage@@QAEXUtagRGBQUAD@@@Z, _SetTransIndex@CxImage@@QAEXJ@Z, _Size@CxIOFile@@UAEJXZ, _Stretch@CxImage@@QAEJPAUHDC__@@ABUtagRECT@@@Z, _Tell@CxIOFile@@UAEJXZ, _Write@CxIOFile@@UAEIPBXII@Z, _clsid@_1__GetClsid@CShockwaveFlashWnd@@QAEABU_GUID@@XZ@4U3@B
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: TENCENT
copyright....: Copyright (C) 1998 - 2008 TENCENT All Rights Reserved
product......: QQ
description..: QQ
original name: QQ.exe
internal name: COMQQD
file version.: 8,0,1300,1881
comments.....:
signers......: Tencent Technology(Shenzhen) Company Limited
VeriSign Class 3 Code Signing 2004 CA
Class 3 Public Primary Certification Authority
signing date.: 6:19 AM 11/28/2008
verified.....: -

RS20091018145809234420 瑞星检测正常。AVG今天还是隔离，发给其分析未有结果，只有将QQ路径排除了。

请教AVG命名的trojan horse delf.msp这类木马会做何动作？

看了MD5值相同，算了不检了。