Windows XP ÖÐµÄ Svchost.exe ˵Ã÷
ÊÊÓÃÓÚ
Óйر¾ÎÄµÄ Microsoft Windows 2000 °æ±¾£¬Çë²ÎÔÄ 250320.
¸ÅÒª
±¾ÎÄÃèÊö Svchost.exe ¼°Æ书ÄÜ¡£Svchost.exe ÊÇ´Ó¶¯Ì¬Á´½Ó¿â (DLL) ÖÐÔËÐеķþÎñµÄͨÓÃÖ÷»ú½ø³ÌÃû³Æ¡£
¸ü¶àÐÅÏ¢
Svchost.exe ÎļþλÓÚ %SystemRoot%\System32 Îļþ¼ÐÖС£Æô¶¯Ê±£¬Svchost.exe ½«¼ì²é×¢²á±íµÄ·þÎñ²¿·Ö£¬ÒÔ¹¹½¨ÐèÒª¼ÓÔصķþÎñµÄÁÐ±í¡£Svchost.exe µÄ¶à¸öʵÀý¿ÉͬʱÔËÐС£Ã¿¸ö Svchost.exe »á»°¿ÉÒÔ°üº¬Ò»×é·þÎñ£¬ÒÔ±ã¿ÉÒÔ¸ù¾Ý Svchost.exe µÄÆô¶¯·½Ê½ºÍλÖõIJ»Í¬ÔËÐв»Í¬µÄ·þÎñ¡£ÕâÑù¿ÉÒÔ¸üºÃµØ½øÐпØÖÆ£¬ÇÒ¸ü¼Ó±ãÓÚµ÷ÊÔ¡£
Svchost.exe ×éÓÉÒÔÏÂ×¢²á±íÏî±êʶ£º
HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\Svchost
´Ë×¢²á±íÏîϵÄÿ¸öÖµ¶¼´ú±íµ¥¶ÀµÄ Svchost ×飬²¢ÔÚÄú²é¿´»î¶¯½ø³Ìʱ×÷Ϊµ¥¶ÀµÄʵÀýÏÔʾ¡£Ã¿¸öÖµ¾ùΪ REG_MULTI_SZ Öµ£¬²¢ÇÒ°üº¬Ôڸà Svchost ×éÏÂÃæÔËÐеķþÎñ¡£Ã¿¸ö Svchost ×鶼¿ÉÒÔ°üº¬Ò»¸ö»ò¶à¸ö´ÓÒÔÏÂ×¢²á±íÏîÌáÈ¡µÄ·þÎñÃû³Æ£¬¸Ã×¢²á±íÏîµÄ²ÎÊýÏî°üº¬Ò»¸ö ServiceDLL Öµ£º
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\·þÎñ
Òª²é¿´ÔÚ Svchost ÖÐÔËÐеķþÎñµÄÁÐ±í£¬ÇëÖ´ÐÐÒÔϲÙ×÷£º
µ¥»÷ Windows ÈÎÎñÀ¸ÉϵĿªÊ¼£¬È»ºóµ¥»÷ÔËÐС£
ÔÚ´ò¿ª¿òÖУ¬¼üÈë CMD£¬È»ºó°´ ENTER ¼ü¡£
¼üÈë Tasklist /SVC£¬È»ºó°´ ENTER ¼ü¡£
Tasklist ÃüÁîÏÔʾ»î¶¯½ø³ÌµÄÁÐ±í¡£/SVC ÃüÁ¹ØÏÔʾÿ¸ö½ø³ÌÖл·þÎñµÄÁÐ±í¡£Óйؽø³ÌµÄÏêϸÐÅÏ¢£¬Çë¼üÈëÒÔÏÂÃüÁȻºó°´ ENTER ¼ü£º
Tasklist /FI "PID eq ½ø³Ì ID"£¨´øÒýºÅ£©
ÒÔÏ嵀 Tasklist ÃüÁîÊä³öʾÀýÏÔʾÕýÔÚÔËÐÐµÄ Svchost.exe µÄÁ½¸öʵÀý¡£ Image Name PID Services
========================================================================
System Process 0 N/A
System 8 N/A
Smss.exe 132 N/A
Csrss.exe 160 N/A
Winlogon.exe 180 N/A
Services.exe 208 AppMgmt,Browser,Dhcp,Dmserver,Dnscache,
Eventlog,LanmanServer,LanmanWorkstation,
LmHosts,Messenger,PlugPlay,ProtectedStorage,
Seclogon,TrkWks,W32Time,Wmi
Lsass.exe 220 Netlogon,PolicyAgent,SamSs
Svchost.exe 404 RpcSs
Spoolsv.exe 452 Spooler
Cisvc.exe 544 Cisvc
Svchost.exe 556 EventSystem,Netman,NtmsSvc,RasMan,
SENS,TapiSrv
Regsvc.exe 580 RemoteRegistry
Mstask.exe 596 Schedule
Snmp.exe 660 SNMP
Winmgmt.exe 728 WinMgmt
Explorer.exe 812 N/A
Cmd.exe 1300 N/A
Tasklist.exe 1144 N/A
´ËʾÀýµÄÁ½ÖÖ×éºÏµÄ×¢²á±íÉèÖÃÈçÏÂËùʾ£º
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost:
Netsvcs:Reg_Multi_SZ:EventSystem Ias Iprip Irmon Netman Nwsapagent Rasauto Rasman Remoteaccess SENS Sharedaccess Tapisrv Ntmssvc
RApcss :Reg_Multi_SZ:RpcSs
ÕâƪÎÄÕÂÖеÄÐÅÏ¢ÊÊÓÃÓÚ:
Microsoft Windows XP Professional
×î½ü¸üÐÂ: 2003-7-23 (1.0)
¹Ø¼ü×Ö kbinfo KB314056
MicrosoftºÍ/»òÆä¸÷¹©Ó¦É̶ÔÓÚΪÈκÎÄ¿µÄ¶øÔÚ±¾·þÎñÆ÷ÉÏ·¢²¼µÄÎļþ¼°ÓйØͼÐÎËùº¬ÐÅÏ¢µÄÊÊÓÃÐÔ£¬²»×÷ÈκÎÉùÃ÷¡£ ËùÓиõÈÎļþ¼°ÓйØͼÐξù"ÒÀÑù"Ìṩ£¬¶ø²»´øÈκÎÐÔÖʵı£Ö¤¡£MicrosoftºÍ/»òÆä¸÷¹©Ó¦ÉÌÌØ´ËÉùÃ÷£¬¶ÔËùÓÐÓë¸ÃµÈÐÅÏ¢Óйصı£Ö¤ºÍÌõ¼þ²»¸ºÈκÎÔðÈΣ¬¸ÃµÈ±£Ö¤ºÍÌõ¼þ°üÀ¨¹ØÓÚÊÊÏúÐÔ¡¢·ûºÏÌض¨ÓÃ;¡¢ËùÓÐȨºÍ·ÇÇÖȨµÄËùÓÐĬʾ±£Ö¤ºÍÌõ¼þ¡£ÔÚÈκÎÇé¿öÏ£¬ÔÚÓÉÓÚʹÓûòÔËÐб¾·þÎñÆ÷ÉϵÄÐÅÏ¢ËùÒýÆðµÄ»òÓë¸ÃµÈʹÓûòÔËÐÐÓйصÄËßËÏÖУ¬MicrosoftºÍ/»òÆä¸÷¹©Ó¦É̾ÍÒòɥʧʹÓá¢Êý¾Ý»òÀûÈóËùµ¼ÖµÄÈκÎÌرðµÄ¡¢¼ä½ÓµÄ»òÑÜÉúÐÔµÄËðʧ»òÈκÎÖÖÀàµÄËðʧ£¬¾ù²»¸ºÈκÎÔðÈΣ¬ÎÞÂ۸õÈËßËÏÊǺÏ֮ͬËß¡¢Êèºö»òÆäËüÇÖȨÐÐΪ֮Ëß¡£