µçÄÔÉϳöÏÖÒƶ¯Í¼±ê¹Ø±Õ²»ÁË

ÒѾٱ¨ »Ø´ð
µçÄÔÉϳöÏÖÒƶ¯Í¼±ê¹Ø±Õ²»ÁË
ÎÊÔÚÏß¿Í·þ
ɨÂëÎÊÔÚÏß¿Í·þ
  • »Ø´ðÊý

    6

  • ä¯ÀÀÊý

    820

6¸ö»Ø´ð ĬÈÏÅÅÐò
  • ĬÈÏÅÅÐò
  • °´Ê±¼äÅÅÐò

ÒѲÉÄÉ
ϵͳÓдíÎó£¬ÓÃÕâ¸öÈí¼þÐÞ¸´£ºÏµÍ³´íÎóÐÞ¸´¾«Á飬
È¡Ïû ÆÀÂÛ
svchost.exeÊÇNTºËÐÄϵͳ·Ç³£ÖØÒªµÄÎļþ£¬¶ÔÓÚWin2000/XPÀ´Ëµ£¬²»¿É»òȱ¡£ÕâЩsvchost½ø³ÌÌṩºÜ¶àϵͳ·þÎñ£¬È磺rpcss·þÎñ£¨remote procedure call£©¡¢dmserver·þÎñ£¨logical disk manager£©¡¢dhcp·þÎñ£¨dhcp client£©µÈµÈ¡£

Èç¹ûÒªÁ˽âÿ¸ösvchost½ø³Ìµ½µ×ÌṩÁ˶àÉÙϵͳ·þÎñ£¬¿ÉÒÔÔÚWinXPµÄÃüÁîÌáʾ·û´°¿ÚÖÐÊäÈë¡°tasklist /svc¡±ÃüÁîÀ´²é¿´¡£

¹¤×÷Ô­Àí

Ò»°ãÀ´Ëµ£¬Windowsϵͳ½ø³Ì·ÖΪ¶ÀÁ¢½ø³ÌºÍ¹²Ïí½ø³ÌÁ½ÖÖ¡£svchost.exeÎļþ´æÔÚÓÚ%systemroot%\system32Ŀ¼Ï£¬ÊôÓÚ¹²Ïí½ø³Ì¡£

Ëæ×ÅWindowsϵͳ·þÎñ²»¶ÏÔö¶à£¬ÎªÁ˽Úʡϵͳ×ÊÔ´£¬Î¢Èí°ÑºÜ¶à·þÎñ¶¼×ö³É¹²Ïí·½Ê½£¬½»ÓÉsvchost½ø³ÌÀ´Æô¶¯¡£µ«svchost½ø³ÌÖ»×÷Ϊ·þÎñËÞÖ÷£¬²¢²»ÄÜʵÏÖÈκηþÎñ¹¦ÄÜ£¬¼´ËüÖ»ÄÜÌṩÌõ¼þÈÃÆäËû·þÎñÔÚÕâÀï±»Æô¶¯£¬¶øËü×Ô¼ºÈ´²»ÄܸøÓû§ÌṩÈκηþÎñ¡£

ÕâЩ·þÎñÊÇÈçºÎʵÏÖµÄÄØ?Ô­À´ÕâЩϵͳ·þÎñÊÇÒÔ¶¯Ì¬Á´½Ó¿â£¨dll£©ÐÎʽʵÏֵģ¬ËüÃÇ°Ñ¿ÉÖ´ÐгÌÐòÖ¸Ïòsvchost£¬ÓÉsvchostµ÷ÓÃÏàÓ¦·þÎñµÄ¶¯Ì¬Á´½Ó¿âÀ´Æô¶¯·þÎñ¡£

ÄÇsvchostÓÖÔõô֪µÀij¸öϵͳ·þÎñ¸Ãµ÷ÓÃÄĸö¶¯Ì¬Á´½Ó¿âÄØ?ÕâÊÇͨ¹ýϵͳ·þÎñÔÚ×¢²á±íÖÐÉèÖõIJÎÊýÀ´ÊµÏֵġ£

¾ßÌåʵÀý

ÏÂÃæÒÔRemote Registry·þÎñΪÀý£¬À´¿´¿´svchost½ø³ÌÊÇÈçºÎµ÷ÓÃDLLÎļþµÄ¡£ÔÚWinXPÖУ¬µã»÷¡°¿ªÊ¼¡úÔËÐС±£¬ÊäÈë¡°services.msc¡±ÃüÁ»áµ¯³ö·þÎñ¶Ô»°¿ò£¬È»ºó´ò¿ª¡°Remote Registry¡±ÊôÐÔ¶Ô»°¿ò£¬¿ÉÒÔ¿´µ½Remote Registry·þÎñµÄ¿ÉÖ´ÐÐÎļþµÄ·¾¶Îª¡°C:\Windows\System32\svchost -k LocalService¡±£¬Õâ˵Ã÷Remote Registry·þÎñÊÇÒÀ¿¿svchostµ÷Óá°LocalService¡±²ÎÊýÀ´ÊµÏֵģ¬¶ø²ÎÊýµÄÄÚÈÝÔòÊÇ´æ·ÅÔÚϵͳע²á±íÖеġ£

ÔÚÔËÐжԻ°¿òÖÐÊäÈë¡°regedit.exe¡±ºó»Ø³µ£¬´ò¿ª×¢²á±í±à¼­Æ÷£¬ÕÒµ½¡°HKEY_LOCAL_MACHINE\System\currentcontrolset\services\Remote Registry¡±ÏÔÙÕÒµ½ÀàÐÍΪ¡°reg_expand_sz¡±µÄ¡°Imagepath¡±ÏÆä¼üֵΪ¡°%systemroot%\system32\svchost -k LocalService¡±£¨Õâ¾ÍÊÇÔÚ·þÎñ´°¿ÚÖп´µ½µÄ·þÎñÆô¶¯ÃüÁ£¬ÁíÍâÔÚ¡°parameters¡±×ÓÏîÖÐÓиöÃûΪ¡°ServiceDll¡±µÄ¼ü£¬ÆäֵΪ¡°% systemroot%\system32\regsvc.dll¡±£¬ÆäÖС°regsvc.dll¡±¾ÍÊÇRemote Registry·þÎñҪʹÓõĶ¯Ì¬Á´½Ó¿âÎļþ¡£ÕâÑùsvchost½ø³Ìͨ¹ý¶ÁÈ¡¡°Remote Registry¡±·þÎñ×¢²á±íÐÅÏ¢£¬¾ÍÄÜÆô¶¯¸Ã·þÎñÁË¡£

Ò²ÕýÊÇÒòΪsvchostµÄÖØÒªÐÔ£¬ËùÒÔ²¡¶¾¡¢Ä¾ÂíÒ²Ï뾡°ì·¨À´ÀûÓÃËü£¬ÆóͼÀûÓÃËüµÄÌØÐÔÀ´ÃÔ»óÓû§£¬´ïµ½¸ÐȾ¡¢ÈëÇÖ¡¢ÆÆ»µµÄÄ¿µÄ¡£ÄÇôӦ¸ÃÈçºÎÅжϵ½µ×ÄĸöÊDz¡¶¾½ø³ÌÄØ?Õý³£µÄsvchost.exeÎļþÓ¦¸Ã´æÔÚÓÚ¡°C:\Windows\system32¡±Ä¿Â¼Ï£¬Èç¹û·¢ÏÖ¸ÃÎļþ³öÏÖÔÚÆäËûĿ¼Ï¾ÍҪСÐÄÁË¡£

Ìáʾ£ºsvchost.exeÎļþµÄµ÷Ó÷¾¶¿ÉÒÔͨ¹ý¡°ÏµÍ³ÐÅÏ¢¡úÈí¼þ»·¾³¡úÕýÔÚÔËÐÐÈÎÎñ¡±À´²é¿´£©¡£
È¡Ïû ÆÀÂÛ
ÓгÌÐòÔÚºǫ́ÔËÐУ¬»¹Ã»ÓнáÊø£¬»òÕßÊÇϵͳ¼ÙËÀ»úÁË¡£ÖØװϵͳ¿´¿´ÁË
È¡Ïû ÆÀÂÛ
ÄÇÊÇ·À´òÈÅģʽ£¬¹Øµô¾ÍOKÁË
È¡Ïû ÆÀÂÛ
Äã°Ñʱ¼äÄÇÀïµÄinterÑ¡ÏîÖÐ×Ô¶¯Óëinterʱ¼äͬ²½È¥µô¾ÍÐÐÁË¡£
È¡Ïû ÆÀÂÛ
¹â±êÒƵ½¹Ø±Õ£¬×ó¼üµãһϾͺÃÁË
È¡Ïû ÆÀÂÛ
ZOLÎÊ´ð > ±Ê¼Ç±¾ > ÆäËû·ÖÀà > µçÄÔÉϳöÏÖÒƶ¯Í¼±ê¹Ø±Õ²»ÁË

ÌØ»ÝÍƼö

¾Ù±¨

¸ÐлÄúΪÉçÇøµÄºÍг¹±Ï×Á¦Á¿ÇëÑ¡Ôñ¾Ù±¨ÀàÐÍ

¾Ù±¨³É¹¦

¾­¹ýºËʵºó½«»á×ö³ö´¦Àí
¸ÐлÄúΪÉçÇøºÍг×ö³ö¹±Ï×

ɨÂë²ÎÓëÐÂÆ·0ÔªÊÔÓÃ
ɹµ¥¡¢¶¥Â¥ºÀÀñµÈÄãÄÃ

ɨһɨ£¬¹Ø×¢ÎÒÃÇ
Ìáʾ

È·¶¨ÒªÈ¡Ïû´Ë´Î±¨Ãû£¬Í˳ö¸Ã»î¶¯£¿