瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 我的电脑进程有59个,是否正常?
格子人生 - 2006-9-13 11:03:00
我用瑞星杀毒诊听器得出以下日记
系统活动进程
C:\WINNT\SYSTEM32\SMSS.EXE
C:\WINNT\SYSTEM32\CSRSS.EXE
C:\WINNT\SYSTEM32\WINLOGON.EXE
C:\WINNT\SYSTEM32\WDMAUD.DRV
C:\WINNT\SYSTEM32\SERVICES.EXE
C:\WINNT\SYSTEM32\LSASS.EXE
C:\WINNT\SYSTEM32\TERMSRV.EXE
C:\WINNT\SYSTEM32\SVCHOST.EXE
C:\WINNT\SYSTEM32\SPOOLSV.EXE
C:\WINNT\SYSTEM32\SVCHOST.EXE
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEFWATCH.EXE
C:\WINNT\SYSTEM32\DFSSVC.EXE
C:\WINNT\SYSTEM32\SVCHOST.EXE
C:\WINNT\SYSTEM32\MSDART.DLL

C:\WINNT\SYSTEM32\CBA\PDS.EXE
C:\WINNT\SYSTEM32\PDS.DLL
C:\WINNT\SYSTEM32\NTS.DLL
C:\WINNT\SYSTEM32\LOC32VC0.DLL

C:\WINNT\SYSTEM32\LLSSRV.EXE
C:\WINNT\SYSTEM32\TCPSVCS.EXE
C:\WINNT\SYSTEM32\SFMSVC.EXE
C:\WINNT\SYSTEM32\SFMPRINT.EXE
E:\MYOA\MECHAT\MECHAT.EXE
C:\PROGRA~1\MICROS~3\MSSQL\BINN\SQLSERVR.EXE
C:\PROGRA~1\MICROS~3\MSSQL\BINN\OPENDS60.DLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\UMS.DLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\SQLSORT.DLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\RESOURCES\2052\SQLEVN70.RLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\SSNETLIB.DLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\SSNMPN70.DLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\SSMSLPCN.DLL
C:\PROGRA~1\MICROS~3\MSSQL\BINN\SQLFTQRY.DLL
C:\PROGRAM FILES\COMMON FILES\SYSTEM\OLE DB\SQLOLEDB.DLL
C:\WINNT\SYSTEM32\MSDART.DLL
C:\PROGRAM FILES\COMMON FILES\SYSTEM\OLE DB\MSDATL3.DLL

E:\MYOA\MYSQL\BIN\MYSQLD-NT.EXE
C:\WINNT\SYSTEM32\WINDOW~1\SERVER\NSPMON.EXE
C:\WINNT\SYSTEM32\WINDOW~1\SERVER\NSCM.EXE
C:\WINNT\SYSTEM32\NTFRS.EXE
E:\MYOA\BIN\APACHE.EXE
E:\MYOA\BIN\LIBAPR.DLL
E:\MYOA\BIN\LIBAPRUTIL.DLL
E:\MYOA\BIN\LIBAPRICONV.DLL
E:\MYOA\BIN\LIBHTTPD.DLL
E:\MYOA\MODULES\MOD_ACCESS.SO
E:\MYOA\MODULES\MOD_ACTIONS.SO
E:\MYOA\MODULES\MOD_ALIAS.SO
E:\MYOA\MODULES\MOD_ASIS.SO
E:\MYOA\MODULES\MOD_AUTH.SO
E:\MYOA\MODULES\MOD_AUTOINDEX.SO
E:\MYOA\MODULES\MOD_DIR.SO
E:\MYOA\MODULES\MOD_ENV.SO
E:\MYOA\MODULES\MOD_INCLUDE.SO
E:\MYOA\MODULES\MOD_LOG_CONFIG.SO
E:\MYOA\MODULES\MOD_MIME.SO
E:\MYOA\MODULES\MOD_NEGOTIATION.SO
E:\MYOA\MODULES\MOD_SETENVIF.SO
E:\MYOA\MODULES\MOD_CGI.SO
E:\MYOA\MODULES\MOD_ISAPI.SO
E:\MYOA\BIN\SAPI\PHP4APACHE2.DLL
E:\MYOA\BIN\PHP4TS.DLL
E:\MYOA\BIN\MMCACHE.DLL
E:\MYOA\BIN\ZENDOPTIMIZER.DLL
E:\MYOA\BIN\PHP_GD2.DLL
E:\MYOA\BIN\PHP_ICONV.DLL
E:\MYOA\BIN\ICONV.DLL

E:\MYOA\TOMCAT\BIN\TOMCAT.EXE
E:\MYOA\JDK\BIN\JAVA.EXE
E:\MYOA\JDK\JRE\BIN\CLIENT\JVM.DLL
E:\MYOA\JDK\JRE\BIN\HPI.DLL
E:\MYOA\JDK\JRE\BIN\VERIFY.DLL
E:\MYOA\JDK\JRE\BIN\JAVA.DLL
E:\MYOA\JDK\JRE\BIN\ZIP.DLL
E:\MYOA\JDK\JRE\BIN\NET.DLL

C:\PROGRAM FILES\PEANUTHULL3\PHCORE.EXE
C:\PROGRAM FILES\PEANUTHULL3\PHALIVE.DLL

C:\WINNT\SYSTEM32\REGSVC.EXE
C:\WINNT\SYSTEM32\LOCATOR.EXE
C:\WINNT\SYSTEM32\LOGON.SCR
C:\WINNT\SYSTEM32\MSTASK.EXE
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\RTVSCAN.EXE
C:\WINNT\SYSTEM32\CBA.DLL
C:\WINNT\SYSTEM32\MSGSYS.DLL
C:\WINNT\SYSTEM32\NTS.DLL
C:\WINNT\SYSTEM32\PDS.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\NAVLU.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\I2LDVP3.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\ECMLDR32.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\SAVRT32.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\NAVNTUTL.DLL
C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060906.017\ECMSVR32.DLL
C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060906.017\NAVEX32A.DLL
C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060906.017\NAVENG32.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DECSDK.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2ID.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2ZIP.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2SS.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2GZIP.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2CAB.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2LHA.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2ARJ.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2TNEF.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2LZ.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2AMG.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2TAR.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2RTF.DLL
C:\PROGRAM FILES\SYMANTEC ANTIVIRUS\DEC2TEXT.DLL

C:\WINNT\SYSTEM32\WBEM\WINMGMT.EXE
C:\WINNT\SYSTEM32\WINS.EXE
C:\WINNT\SYSTEM32\SVCHOST.EXE
C:\WINNT\SYSTEM32\WUPS.DLL
C:\WINNT\SYSTEM32\WUPS2.DLL

C:\WINNT\SYSTEM32\DNS.EXE
C:\WINNT\SYSTEM32\INETSRV\INETINFO.EXE
C:\WINNT\SYSTEM32\CSRSS.EXE
E:\MYOA\IMA\IMASERVER.EXE
E:\MYOA\IMA\CRYPT.DLL
E:\MYOA\IMA\CC3260MT.DLL
E:\MYOA\IMA\LIBMYSQL.DLL

E:\MYOA\BIN\APACHE.EXE
E:\MYOA\BIN\LIBAPR.DLL
E:\MYOA\BIN\LIBAPRUTIL.DLL
E:\MYOA\BIN\LIBAPRICONV.DLL
E:\MYOA\BIN\LIBHTTPD.DLL
E:\MYOA\MODULES\MOD_ACCESS.SO
E:\MYOA\MODULES\MOD_ACTIONS.SO
E:\MYOA\MODULES\MOD_ALIAS.SO
E:\MYOA\MODULES\MOD_ASIS.SO
E:\MYOA\MODULES\MOD_AUTH.SO
E:\MYOA\MODULES\MOD_AUTOINDEX.SO
E:\MYOA\MODULES\MOD_DIR.SO
E:\MYOA\MODULES\MOD_ENV.SO
E:\MYOA\MODULES\MOD_INCLUDE.SO
E:\MYOA\MODULES\MOD_LOG_CONFIG.SO
E:\MYOA\MODULES\MOD_MIME.SO
E:\MYOA\MODULES\MOD_NEGOTIATION.SO
E:\MYOA\MODULES\MOD_SETENVIF.SO
E:\MYOA\MODULES\MOD_CGI.SO
E:\MYOA\MODULES\MOD_ISAPI.SO
E:\MYOA\BIN\SAPI\PHP4APACHE2.DLL
E:\MYOA\BIN\PHP4TS.DLL
E:\MYOA\BIN\MMCACHE.DLL
E:\MYOA\BIN\ZENDOPTIMIZER.DLL
E:\MYOA\BIN\PHP_GD2.DLL
E:\MYOA\BIN\PHP_ICONV.DLL
E:\MYOA\BIN\ICONV.DLL

C:\WINNT\SYSTEM32\ISMSERV.EXE
C:\WINNT\SYSTEM32\MSDTC.EXE
C:\PROGRAM FILES\COMMON FILES\SYSTEM\MSSEARCH\BIN\MSSEARCH.EXE
C:\PROGRAM FILES\COMMON FILES\SYSTEM\MSSEARCH\BIN\MSSWS.DLL
C:\PROGRA~1\COMMON~1\SYSTEM\MSSEARCH\BIN\MSSRCH.DLL
C:\PROGRAM FILES\COMMON FILES\SYSTEM\MSSEARCH\BIN\TQUERY.DLL
C:\PROGRA~1\COMMON~1\SYSTEM\MSSEARCH\BIN\PROPDEFS.DLL
C:\PROGRA~1\COMMON~1\SYSTEM\MSSEARCH\BIN\SRCHIDX.DLL

C:\WINNT\EXPLORER.EXE
C:\WINNT\SYSTEM32\WINLOGON.EXE
C:\WINNT\SYSTEM32\NAVLOGON.DLL

C:\WINNT\SYSTEM32\WINDOW~1\SERVER\NSPM.EXE
C:\WINNT\SYSTEM32\WINDOW~1\SERVER\NMSA.DLL
C:\WINNT\SYSTEM32\WINDOWS MEDIA\SERVER\NSODBC.DLL
C:\WINNT\SYSTEM32\WINDOWS MEDIA\SERVER\MDSPRX.DLL
C:\WINNT\SYSTEM32\IMAADP32.ACM
C:\WINNT\SYSTEM32\MSADP32.ACM
C:\WINNT\SYSTEM32\MSG711.ACM
C:\WINNT\SYSTEM32\MSGSM32.ACM
C:\WINNT\SYSTEM32\TSSOFT32.ACM
C:\WINNT\SYSTEM32\L3CODECA.ACM
C:\WINNT\SYSTEM32\LHACM.ACM
C:\WINNT\SYSTEM32\MSG723.ACM
C:\WINNT\SYSTEM32\IAC25_32.AX

C:\WINNT\SYSTEM32\WINDOW~1\SERVER\NSUM.EXE
C:\WINNT\SYSTEM32\WINDOWS MEDIA\SERVER\ACCESSCONTROL.DLL

C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\专杀工具\听诊器.EXE
C:\WINNT\SYSTEM32\DLLHOST.EXE
E:\MYOA\BIN\MONITOR.EXE
C:\PROGRAM FILES\MICROSOFT SQL SERVER\80\TOOLS\BINN\SQLMANGR.EXE
C:\PROGRAM FILES\MICROSOFT SQL SERVER\80\TOOLS\BINN\W95SCM.DLL
C:\WINNT\SYSTEM32\SQLUNIRL.DLL
C:\PROGRAM FILES\MICROSOFT SQL SERVER\80\TOOLS\BINN\SQLSVC.DLL
C:\WINNT\SYSTEM32\ODBCBCP.DLL
C:\PROGRAM FILES\MICROSOFT SQL SERVER\80\TOOLS\BINN\SQLRESLD.DLL
C:\PROGRAM FILES\MICROSOFT SQL SERVER\80\TOOLS\BINN\RESOURCES\2052\SQLSVC.RLL
C:\PROGRAM FILES\MICROSOFT SQL SERVER\80\TOOLS\BINN\RESOURCES\2052\SQLMANGR.RLL

C:\WINNT\SYSTEM32\RDPCLIP.EXE
C:\WINNT\SYSTEM32\WUAUCLT.EXE
C:\WINNT\SYSTEM32\WUPS.DLL
C:\WINNT\SYSTEM32\WUPS2.DLL
C:\WINNT\SYSTEM32\WUCLTUI.DLL

C:\PROGRAM FILES\PEANUTHULL3\PHMAIN.EXE
C:\PROGRAM FILES\PEANUTHULL3\MSVCP60.DLL
C:\PROGRAM FILES\PEANUTHULL3\PHRES.DLL
C:\PROGRAM FILES\PEANUTHULL3\PHSERVICE.DLL
C:\PROGRAM FILES\PEANUTHULL3\ICONV.DLL
C:\WINNT\PHIDNA.DLL
C:\WINNT\SYSTEM32\MSXML4.DLL

C:\WINNT\SYSTEM32\INTERNAT.EXE
C:\WINNT\SYSTEM32\SVCHOST.EXE
C:\WINNT\SYSTEM32\UNIMDM.TSP
C:\WINNT\SYSTEM32\KMDDSP.TSP
C:\WINNT\SYSTEM32\NDPTSP.TSP
C:\WINNT\SYSTEM32\IPCONF.TSP
C:\WINNT\SYSTEM32\H323.TSP

C:\PROGRAM FILES\SPYWARE TERMINATOR\SPYWARETERMINATORSHIELD.EXE

独孤豪侠 - 2006-9-13 11:04:00
进程多少不能反应电脑有没有问题.....
格子人生 - 2006-9-13 11:06:00
但是好像普通的才30多个进程阿
CuDDi - 2006-9-13 11:07:00
这59个也太多了吧
CuDDi - 2006-9-13 11:07:00
引用:
【格子人生的贴子】但是好像普通的才30多个进程阿
………………

是哦
Flying1889 - 2006-9-13 11:08:00
呵呵
是挺多的
与时拒进 - 2006-9-13 11:10:00
有没有说有什么病毒?你自己装的程序是不是很多?好多不认识
格子人生 - 2006-9-13 11:11:00
对阿,所以想请教一下,是否是因为病毒引起的,但是我用瑞星的查杀也没有,用诺顿查杀也没有.但是还是有点不放心,所以把进程放上来让大家帮忙看看.
从头爱你 - 2006-9-13 11:13:00
请下载 System Repair Engineer,使用“智能扫描”,按下“扫描”按钮进行扫描,扫描完成后按下“保存报告”按钮保存报告日志文件(SREng.LOG),把保存的报告日志文件内容复制-粘贴上来
下载网址
http://www.kztechs.com/sreng/sreng2.zip
http://forum.ikaka.com/topic.asp?board=67&artid=5188931
日志一次粘不完,分次粘完,请不要修改。
CuDDi - 2006-9-13 11:17:00
我的进程大概在45个左右.还从没这么多过
格子人生 - 2006-9-13 11:18:00
2006-09-13,11:09:39

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows 2000 Advanced Server Service Pack 4 (Build 2195)
- 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <Internat.exe><internat.exe>  [Microsoft Corporation]
    <PhMain><C:\Program Files\PeanutHull3\Phmain.exe>  [广东网域]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <SpywareTerminator><"C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe">  [Crawler.com]
    <vptray><C:\PROGRA~1\SYMANT~1\VPTray.exe>  [Symantec Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINNT\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
    <WinlogonNotify: NavLogon><C:\WINNT\system32\NavLogon.dll>  [Symantec Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><(无)>  []

==================================
启动文件夹
[服务管理器]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk><N>
[通达应用服务监视器]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\通达应用服务监视器.lnk><N>

==================================
服务
[Symantec AntiVirus Definition Watcher / DefWatch]
  <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
[Logical Disk Manager Administrative Service / dmadmin]
  <C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[IMA_Server / IMA_Server]
  <e:\MYOA\IMA\IMAServer.exe><N/A>
[Intel PDS / Intel PDS]
  <C:\WINNT\system32\CBA\pds.exe><Intel? Corporation>
[MeChat / MeChat]
  <e:\MYOA\MeChat\MeChat.exe><N/A>
[MySQL_OA / MySQL_OA]
  <E:\MYOA\mysql\bin\mysqld-nt.exe MySQL_OA><N/A>
[Office_Anywhere / Office_Anywhere]
  <"e:\MYOA\bin\apache.exe" -k runservice><Apache Software Foundation>
[Office_tomcat / Office_tomcat]
  <e:\MYOA\Tomcat\bin\tomcat.exe //RS//Office_tomcat><Apache Software Foundation>
[PeanuthullCore / PeanuthullCore]
  <C:\Program Files\PeanutHull3\PhCore.exe -service><广东网域>
[Symantec AntiVirus / Symantec AntiVirus]
  <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>

==================================
浏览器加载项
[@msdxmLC.dll,-1@2052,电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\system32\msdxm.ocx, Microsoft Corporation>

==================================
正在运行的进程
[PID: 188][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.00.2195.6601>
[PID: 212][\??\C:\WINNT\system32\csrss.exe]  <Microsoft Corporation><5.00.2195.6601>
[PID: 236][\??\C:\WINNT\system32\winlogon.exe]  <Microsoft Corporation><5.00.2195.6997>
[PID: 264][C:\WINNT\system32\services.exe]  <Microsoft Corporation><5.00.2195.7035>
    [C:\WINNT\system32\dmserver.dll]  <VERITAS Software Corp.><2195.6605.297.3>
[PID: 276][C:\WINNT\system32\lsass.exe]  <Microsoft Corporation><5.00.2195.7011>
[PID: 364][C:\WINNT\System32\termsrv.exe]  <Microsoft Corporation><5.00.2195.6696>
[PID: 500][C:\WINNT\system32\svchost.exe]  <Microsoft Corporation><5.00.2134.1>
[PID: 528][C:\WINNT\system32\spoolsv.exe]  <Microsoft Corporation><5.00.2195.7059>
[PID: 752][C:\Program Files\Symantec AntiVirus\DefWatch.exe]  <Symantec Corporation><9.0.0.338>
[PID: 780][C:\WINNT\system32\Dfssvc.exe]  <Microsoft Corporation><5.00.2195.6664>
[PID: 820][C:\WINNT\system32\svchost.exe]  <Microsoft Corporation><5.00.2134.1>
[PID: 856][C:\WINNT\system32\CBA\pds.exe]  <Intel? Corporation><6.12.0.112 E>
    [C:\WINNT\system32\PDS.DLL]  <Intel? Corporation><6.12.0.112 E>
    [C:\WINNT\system32\NTS.dll]  <Intel? Corporation><6.12.0.112 E>
    [C:\WINNT\system32\loc32vc0.dll]  <Intel><3, 0, 0, 2>
[PID: 892][C:\WINNT\System32\llssrv.exe]  <Microsoft Corporation><5.00.2195.7021>
[PID: 928][C:\WINNT\system32\tcpsvcs.exe]  <Microsoft Corporation><5.00.2134.1>
[PID: 944][C:\WINNT\system32\sfmsvc.exe]  <Microsoft Corporation><5.00.2195.6684>
[PID: 976][C:\WINNT\system32\sfmprint.exe]  <Microsoft Corporation><5.00.2157.1>
[PID: 1052][e:\MYOA\MeChat\MeChat.exe]  <N/A><N/A>
[PID: 1124][C:\PROGRA~1\MICROS~3\MSSQL\binn\sqlservr.exe]  <Microsoft Corporation><2000.080.0194.00>
[PID: 1148][E:\MYOA\mysql\bin\mysqld-nt.exe]  <N/A><N/A>
[PID: 1184][C:\WINNT\system32\WINDOW~1\Server\nspmon.exe]  <Microsoft Corporation><4.1.00.3934>
[PID: 1212][C:\WINNT\system32\WINDOW~1\Server\nscm.exe]  <Microsoft Corporation><4.1.00.3934>
[PID: 1256][C:\WINNT\system32\ntfrs.exe]  <Microsoft Corporation><5.00.2195.6709>
[PID: 1388][e:\MYOA\bin\apache.exe]  <Apache Software Foundation><2.0.55>
    [e:\MYOA\bin\libapr.dll]  <Apache Software Foundation><0.9.7>
    [e:\MYOA\bin\libaprutil.dll]  <Apache Software Foundation><0.9.7>
    [e:\MYOA\bin\libapriconv.dll]  <Apache Software Foundation><0.9.7>
    [e:\MYOA\bin\libhttpd.dll]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_access.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_actions.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_alias.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_asis.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_auth.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_autoindex.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_dir.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_env.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_include.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_log_config.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_mime.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_negotiation.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_setenvif.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_cgi.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_isapi.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\bin\sapi\php4apache2.dll]  <N/A><N/A>
    [e:\MYOA\bin\php4ts.dll]  <The PHP Group><4.3.10.10>
    [E:\MYOA\bin\mmcache.dll]  <N/A><N/A>
    [E:\MYOA\bin\ZendOptimizer.dll]  <N/A><N/A>
    [e:\MYOA\bin\php_gd2.dll]  <N/A><N/A>
    [e:\MYOA\bin\php_iconv.dll]  <N/A><N/A>
    [e:\MYOA\bin\iconv.dll]  <Free Software Foundation><1.9>
[PID: 1424][e:\MYOA\Tomcat\bin\tomcat.exe]  <Apache Software Foundation><1.1.0>
[PID: 1448][e:\MYOA\jdk\bin\java.exe]  <N/A><N/A>
    [e:\MYOA\jdk\jre\bin\client\jvm.dll]  <N/A><N/A>
    [e:\MYOA\jdk\jre\bin\hpi.dll]  <N/A><N/A>
    [e:\MYOA\jdk\jre\bin\verify.dll]  <N/A><N/A>
    [e:\MYOA\jdk\jre\bin\java.dll]  <N/A><N/A>
    [e:\MYOA\jdk\jre\bin\zip.dll]  <N/A><N/A>
    [E:\MYOA\jdk\jre\bin\net.dll]  <N/A><N/A>
格子人生 - 2006-9-13 11:18:00
[PID: 1468][C:\Program Files\PeanutHull3\PhCore.exe]  <广东网域><1, 0, 0, 13>
    [C:\Program Files\PeanutHull3\PhAlive.dll]  <广东网域><1, 0, 1, 26>
[PID: 1548][C:\WINNT\system32\regsvc.exe]  <Microsoft Corporation><5.00.2195.6701>
[PID: 1560][C:\WINNT\system32\locator.exe]  <Microsoft Corporation><5.00.2195.6619>
[PID: 1600][C:\WINNT\system32\MSTask.exe]  <Microsoft Corporation><4.71.2195.6972>
[PID: 1620][C:\Program Files\Symantec AntiVirus\Rtvscan.exe]  <Symantec Corporation><9.0.0.338>
    [C:\WINNT\system32\CBA.DLL]  <Intel? Corporation><6.12.0.112 E>
    [C:\WINNT\system32\MsgSys.dll]  <Intel? Corporation><6.12.0.112 E>
    [C:\WINNT\system32\NTS.dll]  <Intel? Corporation><6.12.0.112 E>
    [C:\WINNT\system32\PDS.DLL]  <Intel? Corporation><6.12.0.112 E>
    [C:\Program Files\Symantec AntiVirus\NAVLU.dll]  <Symantec Corporation><9.0.0.338>
    [C:\Program Files\Symantec AntiVirus\I2ldvp3.dll]  <Symantec Corporation><9.0.0.338>
    [C:\Program Files\Symantec AntiVirus\ecmldr32.DLL]  <Symantec Corp.><1.1.0.3>
    [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL]  <Symantec Corporation><9.3.0.28>
    [C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL]  <Symantec Corporation><9.0.0.338>
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060906.017\ecmsvr32.dll]  <Symantec Corporation><61.2.1.10>
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060906.017\NAVEX32a.DLL]  <Symantec Corporation><20061.2.0.26>
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060906.017\NAVENG32.DLL]  <Symantec Corporation><20061.2.0.26>
    [C:\Program Files\Symantec AntiVirus\DecSDK.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2ID.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2ZIP.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2SS.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2GZIP.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2CAB.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2LHA.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2ARJ.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2TNEF.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2LZ.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2AMG.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2TAR.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2RTF.dll]  <Symantec Corporation><3.02.11.32>
    [C:\Program Files\Symantec AntiVirus\Dec2Text.dll]  <Symantec Corporation><3.02.11.32>
[PID: 1704][C:\WINNT\System32\WBEM\WinMgmt.exe]  <Microsoft Corporation><1.50.1085.0100>
[PID: 1720][C:\WINNT\System32\wins.exe]  <Microsoft Corporation><5.00.2195.7005>
[PID: 1740][C:\WINNT\system32\svchost.exe]  <Microsoft Corporation><5.00.2134.1>
[PID: 1768][C:\WINNT\System32\dns.exe]  <Microsoft Corporation><5.00.2195.6715>
[PID: 1796][C:\WINNT\system32\inetsrv\inetinfo.exe]  <Microsoft Corporation><5.00.0984>
[PID: 1960][e:\MYOA\IMA\IMAServer.exe]  <N/A><N/A>
    [e:\MYOA\IMA\crypt.dll]  <N/A><N/A>
    [e:\MYOA\IMA\CC3260MT.DLL]  <Borland Corporation><0.0.0.0 (informal build)>
    [e:\MYOA\IMA\libmysql.dll]  <N/A><N/A>
[PID: 1988][E:\MYOA\bin\apache.exe]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\bin\libapr.dll]  <Apache Software Foundation><0.9.7>
    [E:\MYOA\bin\libaprutil.dll]  <Apache Software Foundation><0.9.7>
    [E:\MYOA\bin\libapriconv.dll]  <Apache Software Foundation><0.9.7>
    [E:\MYOA\bin\libhttpd.dll]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_access.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_actions.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_alias.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_asis.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_auth.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_autoindex.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_dir.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_env.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_include.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_log_config.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_mime.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_negotiation.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_setenvif.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_cgi.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\modules\mod_isapi.so]  <Apache Software Foundation><2.0.55>
    [E:\MYOA\bin\sapi\php4apache2.dll]  <N/A><N/A>
    [E:\MYOA\bin\php4ts.dll]  <The PHP Group><4.3.10.10>
    [E:\MYOA\bin\mmcache.dll]  <N/A><N/A>
    [E:\MYOA\bin\ZendOptimizer.dll]  <N/A><N/A>
    [E:\MYOA\bin\php_gd2.dll]  <N/A><N/A>
    [E:\MYOA\bin\php_iconv.dll]  <N/A><N/A>
    [E:\MYOA\bin\iconv.dll]  <Free Software Foundation><1.9>
[PID: 3112][C:\WINNT\System32\ismserv.exe]  <Microsoft Corporation><5.00.2195.6684>
[PID: 3124][C:\WINNT\system32\msdtc.exe]  <Microsoft Corporation><1999.9.3421.3>
[PID: 3228][C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe]  <Microsoft Corporation><9.107.5512.0>
[PID: 3388][C:\WINNT\system32\WINDOW~1\Server\nspm.exe]  <Microsoft Corporation><4.1.00.3917>
    [C:\WINNT\system32\tssoft32.acm]  <DSP GROUP, INC.><1.01>
    [C:\WINNT\system32\tsd32.dll]  <N/A><N/A>
    [C:\WINNT\system32\l3codeca.acm]  <Fraunhofer Institut Integrierte Schaltungen IIS><1, 9, 0, 0305>
    [C:\WINNT\system32\iac25_32.ax]  <Intel Corporation><2.05.53>
[PID: 3448][C:\WINNT\system32\WINDOW~1\Server\nsum.exe]  <Microsoft Corporation><4.1.00.3930>
[PID: 712][C:\WINNT\system32\svchost.exe]  <Microsoft Corporation><5.00.2134.1>
[PID: 3892][C:\WINNT\System32\svchost.exe]  <Microsoft Corporation><5.00.2134.1>
[PID: 1852][\??\C:\WINNT\system32\csrss.exe]  <Microsoft Corporation><5.00.2195.6601>
[PID: 3376][\??\C:\WINNT\system32\winlogon.exe]  <Microsoft Corporation><5.00.2195.6997>
    [C:\WINNT\system32\NavLogon.dll]  <Symantec Corporation><9.0.0.338>
[PID: 3704][C:\WINNT\system32\rdpclip.exe]  <Microsoft Corporation><5.00.2174.1>
[PID: 3336][C:\WINNT\Explorer.EXE]  <Microsoft Corporation><5.00.3700.6690>
[PID: 3956][C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe]  <Crawler.com><1.1.0.316>
[PID: 3748][C:\WINNT\system32\internat.exe]  <Microsoft Corporation><5.00.2920.0000>
[PID: 3732][C:\Program Files\PeanutHull3\Phmain.exe]  <广东网域><3, 1, 0, 42>
    [C:\Program Files\PeanutHull3\PhRes.dll]  <广东网域><1, 0, 8, 1>
    [C:\Program Files\PeanutHull3\PhService.dll]  <广东网域><1, 0, 1, 21>
    [C:\Program Files\PeanutHull3\iconv.dll]  <Free Software Foundation><1.9>
    [C:\WINNT\PhIDNA.dll]  <广东网域><1, 0, 0, 2>
[PID: 3708][C:\WINNT\system32\wuauclt.exe]  <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[PID: 3628][C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe]  <Microsoft Corporation><2000.080.0194.00>
[PID: 3620][E:\MYOA\bin\monitor.exe]  <N/A><N/A>
[PID: 3604][C:\WINNT\system32\dllhost.exe]  <Microsoft Corporation><5.00.2195.6692>
[PID: 4292][C:\WINNT\system32\conime.exe]  <Microsoft Corporation><5.00.2195.6655>
[PID: 564][C:\Documents and Settings\Administrator\桌面\专杀工具\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINNT\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================
Flying1889 - 2006-9-13 11:21:00
lz用HJ扫描一下.似乎有鸽子
格子人生 - 2006-9-13 11:27:00
没有,我用灰鸽子扫描了,没有发现
Flying1889 - 2006-9-13 11:31:00
引用:
【格子人生的贴子】没有,我用灰鸽子扫描了,没有发现

………………

....难得你这么相信专杀..但是还是请扫描一个上来
格子人生 - 2006-9-13 11:35:00
引用:
【Flying1889的贴子】
....难得你这么相信专杀..但是还是请扫描一个上来
………………

我觉得专杀是挺好用的,主要是要对症下葯,如果你知道病毒的话,我觉得专杀是最好用的,
霞儿0999 - 2006-9-13 11:40:00
开的程序多啊
deadmanzj - 2006-9-13 11:47:00
楼上的说了和没说一个样,变相灌水
打开SREng 启动项目 注册表,删除
<SCRNSAVE.EXE><(无)> []
服务WIN32  删除
[IMA_Server / IMA_Server]
<e:\MYOA\IMA\IMAServer.exe><N/A>
[MeChat / MeChat]
<e:\MYOA\MeChat\MeChat.exe><N/A>
[MySQL_OA / MySQL_OA]
<E:\MYOA\mysql\bin\mysqld-nt.exe MySQL_OA><N/A>
[Office_tomcat / Office_tomcat]
<e:\MYOA\Tomcat\bin\tomcat.exe //RS//Office_tomcat><Apache Software Foundation>
重启,安全模式下删除
e:\MYOA整个删除干净了,那么多文件要删

再扫个SREng 上来
格子人生 - 2006-9-13 11:56:00
e:\MYOA\IMA\IMAServer.exe这个是我的OA系统,不能关掉的
努力小蝦米 - 2007-2-15 12:59:00
lz如果你裝的是windows advance server2000版本,就可能有50多個系統進程,另外你裝了編程程序,就可能有這麼多進程了,這樣機子會變慢很多的
ywlxf - 2007-2-15 13:04:00
我开机只有14个进程。
196TSV - 2007-2-15 13:19:00
59个不多,我以前也有过58个
过客2007 - 2007-2-15 13:40:00
引用:
【deadmanzj的贴子】楼上的说了和没说一个样,变相灌水
打开SREng 启动项目 注册表,删除
<SCRNSAVE.EXE><(无)> []
服务WIN32  删除
[IMA_Server / IMA_Server]
<e:\MYOA\IMA\IMAServer.exe><N/A>
[MeChat / MeChat]
<e:\MYOA\MeChat\MeChat.exe><N/A>
[MySQL_OA / MySQL_OA]
<E:\MYOA\mysql\bin\mysqld-nt.exe MySQL_OA><N/A>
[Office_tomcat / Office_tomcat]
<e:\MYOA\Tomcat\bin\tomcat.exe //RS//Office_tomcat><Apache Software Foundation>
重启,安全模式下删除
e:\MYOA整个删除干净了,那么多文件要删

再扫个SREng 上来

………………



变相灌水....

哈哈..总得冒个泡嘛!!要不,咋升为高手/....



光之创世神 - 2007-2-15 13:45:00
我的才33个
光之创世神 - 2007-2-15 13:47:00
我的才33个
真的很好奇 - 2007-2-15 13:57:00
怎么我的这么少,才30个
真的很好奇 - 2007-2-15 13:59:00
怎么我的才30个,呵呵
飞一般の忧伤 - 2007-2-15 14:15:00
当然有问题  你拿机子干什么啊..
寻找北方的哥儿 - 2007-2-15 14:30:00
日志没看出什么大问题.
中东小国家几百万,战火哪都是......

中国13亿人口,人多??
不见中国有战争...安逸
jmbt - 2007-2-15 14:46:00
病毒一队
12
查看完整版本: 我的电脑进程有59个,是否正常?
© 2000 - 2026 Rising Corp. Ltd.