使用360修复IE的 时候出来了 这个东西!~
组别 名称 描述
020 自启动项AppInit_DLLs kmon*dll
查找了一下目标文件,出来个记事本里包含,内容如下。高手帮解决下啊~!
Microsoft (R) DrWtsn32
Copyright (C) 1985-2001 Microsoft Corp. All rights reserved.
发生应用程序意外错误:
应用程序: C:\Program Files\Internet Explorer\iexplore.exe (pid=1500)
时间: 2009-3-10 @ 18:37:08.750
意外情况编号: c0000005 (访问侵犯)
*----> 系统信息 <----*
计算机名: B1C86E92C44E413
用户名: Administrator
终端会话 Id: 0
处理器数量: 2
处理器类型: x86 Family 15 Model 107 Stepping 2
Windows 版本: 5.1
当前内部版本号: 2600
Service Pack: 2
当前类型: Multiprocessor Free
注册的单位: 微软中国
注册的所有者: 微软用户
*----> 任务列表 <----*
0 System Process
4 System
916 smss.exe
980 csrss.exe
1004 winlogon.exe
1048 services.exe
1060 lsass.exe
1228 svchost.exe
1324 svchost.exe
1544 Error 0x8007007A
1564 CCENTER.EXE
1572 svchost.exe
1712 svchost.exe
1796 svchost.exe
1892 rfwsrv.exe
1928 Error 0x8007007A
1984 Error 0x8007007A
548 spoolsv.exe
580 SCardSvr.exe
688 stormliv.exe
1264 Explorer.EXE
1508 nvsvc32.exe
2020 PlugServer.exe
2000 PnkBstrA.exe
856 Error 0x8007007A
964 ssMgr_ccb.exe
1376 RavTask.exe
356 Error 0x8007007A
1772 svchost.exe
748 Error 0xD0000388
2320 alg.exe
2548 rstray.exe
2584 RRMSVR.exe
2596 RegTool.exe
2628 Error 0x8007007A
2884 Error 0xD0000388
2940 RsTray.exe
3328 ctfmon.exe
3460 Wcescomm.exe
3556 Error 0x8007007A
3700 msnmsgr.exe
3980 rapimgr.exe
1500 iexplore.exe
2788 drwtsn32.exe
*----> 模块清单 <----*
(0000000000400000 - 000000000049b000: C:\Program Files\Internet Explorer\iexplore.exe
(0000000000ab0000 - 0000000000ac9000: C:\Program Files\Rising\AntiSpyware\Syslay.dll
(0000000000da0000 - 0000000000dc9000: F:\¹¤¾ß\360°²È«ÎÀÊ¿\360safe\safemon\safemon.dll
(0000000001660000 - 000000000169e000: c:\documents and settings\administrator\application data\ppstream\bin\1.0.0.2\vodrc.dll
(0000000001d30000 - 0000000001d39000: C:\WINDOWS\system32\Normaliz.dll
(0000000002420000 - 0000000002457000: F:\¹¤¾ß\½ðɽ¿ì~1\IEBand.dll
(0000000002480000 - 0000000002492000: C:\PROGRA~1\COMMON~1\KingSoft\Extract\KSVoice.dll
(00000000028e0000 - 000000000291f000: C:\PROGRA~1\COMMON~1\KingSoft\Extract\KSEngine.dll
(0000000002b20000 - 0000000002b49000: C:\PROGRA~1\COMMON~1\KingSoft\Extract\XDPopWnd.dll
(0000000002b50000 - 0000000002b62000: C:\PROGRA~1\COMMON~1\KingSoft\Extract\XImage32.dll
(0000000002da0000 - 0000000002dcc000: F:\¹¤¾ß\ѸÀ×\ComDlls\TDAtOnce_Now.dll
(0000000002de0000 - 0000000002e5a000: F:\¹¤¾ß\BT\BitComet\tools\BitCometBHO_1.2.1.2.dll
(0000000002ef0000 - 0000000002f21000: F:\¹¤¾ß\ѸÀ×\ComDlls\xunleiBHO_Now.dll
(0000000002f60000 - 0000000002f89000: C:\WINDOWS\system32\msls31.dll
(0000000003170000 - 0000000003188000: C:\WINDOWS\system32\urlFilter.dll
(00000000031a0000 - 00000000031b1000: C:\Program Files\Rising\AntiSpyware\UrlRule.dll
(00000000031d0000 - 0000000003573000: c:\program files\google\googletoolbar1.dll
(00000000036e0000 - 00000000036eb000: F:\¹¤¾ß\360°²È«ÎÀÊ¿\360safe\safemon\urlproc.dll
(0000000003ee0000 - 0000000003ef6000: C:\WINDOWS\system32\xunyount.dll
(00000000055b0000 - 00000000055c6000: F:\¹¤¾ß\ÈðÐÇ\Rising\Rav\RavScrCh.dll
(0000000008b30000 - 0000000008fb8000: C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx
(000000000ffd0000 - 000000000fff8000: C:\WINDOWS\system32\rsaenh.dll
(0000000010000000 - 000000001002d000: C:\Program Files\Rising\AntiSpyware\comx3.dll
(0000000010290000 - 000000001029d000: C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
(000000001b000000 - 000000001b00c000: C:\WINDOWS\system32\ImgUtil.dll
(0000000020000000 - 0000000020549000: C:\WINDOWS\system32\xpsp2res.dll
(00000000241f0000 - 000000002420e000: F:\¹¤¾ß\ѸÀ×\Components\ResWorker\DataProcessor_00.dll
(0000000024240000 - 000000002424e000: F:\¹¤¾ß\ѸÀ×\Components\ResWorker\DsBho_00.dll
(0000000027500000 - 000000002761a000: C:\Program Files\Common Files\Microsoft Shared\Windows Live\msidcrl40.dll
(0000000029500000 - 0000000029567000: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
(00000000325c0000 - 00000000325d2000: C:\Program Files\Microsoft Office\OFFICE11\msohev.dll
(00000000411d0000 - 00000000411de000: C:\WINDOWS\system32\pngfilt.dll
(00000000413b0000 - 0000000041407000: C:\WINDOWS\system32\Dxtmsft.dll
(0000000041480000 - 00000000414b9000: C:\WINDOWS\system32\Dxtrans.dll
(0000000041d50000 - 0000000041d95000: C:\WINDOWS\system32\iertutil.dll
(0000000041f50000 - 0000000041fc7000: C:\WINDOWS\system32\mshtmled.dll
(0000000041fd0000 - 00000000420a0000: C:\WINDOWS\system32\WININET.dll
(00000000420b0000 - 00000000421d7000: C:\WINDOWS\system32\urlmon.dll
(00000000422b0000 - 000000004287d000: C:\WINDOWS\system32\IEFRAME.dll
(0000000042920000 - 0000000042980000: C:\WINDOWS\system32\ieapfltr.dll
(0000000042990000 - 0000000042d04000: C:\WINDOWS\system32\mshtml.dll
(0000000047060000 - 0000000047081000: C:\WINDOWS\system32\xmllite.dll
(000000004a410000 - 000000004a468000: C:\WINDOWS\system32\WINHTTP.dll
(000000004ae90000 - 000000004b036000: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\gdiplus.dll
(0000000058760000 - 0000000058792000: C:\WINDOWS\system32\iepeers.dll
(000000005adc0000 - 000000005adf7000: C:\WINDOWS\system32\UxTheme.dll
(000000005d170000 - 000000005d20a000: C:\WINDOWS\system32\comctl32.dll
(000000005dd50000 - 000000005de64000: C:\WINDOWS\system32\msxml3.dll
(000000005dff0000 - 000000005e01f000: C:\WINDOWS\system32\IEUI.dll
(000000005fdd0000 - 000000005fe24000: C:\WINDOWS\system32\NETAPI32.dll
(0000000060000000 - 0000000060074000: C:\WINDOWS\system32\kmon.dll
(0000000060fd0000 - 0000000061025000: C:\WINDOWS\system32\hnetcfg.dll
(0000000061930000 - 000000006197a000: C:\Program Files\Internet Explorer\ieproxy.dll
(0000000062c20000 - 0000000062c29000: C:\WINDOWS\system32\LPK.DLL
(0000000063380000 - 00000000633f8000: C:\WINDOWS\system32\jscript.dll
(0000000068100000 - 0000000068124000: C:\WINDOWS\system32\dssenh.dll
(000000006d7c0000 - 000000006d7ca000: C:\WINDOWS\system32\ddrawex.dll
(00000000719c0000 - 00000000719fe000: C:\WINDOWS\system32\mswsock.dll
(0000000071a00000 - 0000000071a08000: C:\WINDOWS\System32\wshtcpip.dll
(0000000071a10000 - 0000000071a18000: C:\WINDOWS\system32\WS2HELP.dll
(0000000071a20000 - 0000000071a37000: C:\WINDOWS\system32\WS2_32.DLL
(0000000071a40000 - 0000000071a4b000: C:\WINDOWS\system32\WSOCK32.DLL
(0000000071b70000 - 0000000071b83000: C:\WINDOWS\system32\SAMLIB.dll
(0000000071cc0000 - 0000000071cdc000: C:\WINDOWS\system32\actxprxy.dll
(0000000072240000 - 0000000072245000: C:\WINDOWS\system32\SensApi.dll
(0000000072c80000 - 0000000072c88000: C:\WINDOWS\system32\msacm32.drv
(0000000072c90000 - 0000000072c99000: C:\WINDOWS\system32\wdmaud.drv
(0000000072f70000 - 0000000072f96000: C:\WINDOWS\system32\WINSPOOL.DRV
(0000000073300000 - 0000000073365000: C:\WINDOWS\system32\vbscript.dll
(0000000073640000 - 000000007366e000: C:\WINDOWS\system32\msctfime.ime
(00000000736d0000 - 0000000073719000: C:\WINDOWS\system32\DDRAW.dll
(0000000073aa0000 - 0000000073ab5000: C:\WINDOWS\system32\mscms.dll
(0000000073b30000 - 0000000073b36000: C:\WINDOWS\system32\DCIMAN32.dll
(0000000073fa0000 - 000000007400b000: C:\WINDOWS\system32\USP10.dll
(0000000074650000 - 000000007467a000: C:\WINDOWS\system32\msimtf.dll
(0000000074680000 - 00000000746cc000: C:\WINDOWS\system32\MSCTF.dll
(0000000074be0000 - 0000000074c0c000: C:\WINDOWS\system32\OLEACC.dll
(0000000074cf0000 - 0000000074d81000: C:\WINDOWS\system32\MLANG.dll
(00000000757d0000 - 00000000757e3000: C:\WINDOWS\system32\cryptnet.dll
(00000000759d0000 - 0000000075a7e000: C:\WINDOWS\system32\userenv.dll
(0000000075e00000 - 0000000075eae000: C:\WINDOWS\system32\SXS.DLL
(0000000075ff0000 - 0000000076055000: C:\WINDOWS\system32\MSVCP60.dll
(0000000076060000 - 00000000761b6000: C:\WINDOWS\system32\SETUPAPI.dll
(00000000762d0000 - 00000000762e0000: C:\WINDOWS\system32\WINSTA.dll
(00000000762f0000 - 00000000762f5000: C:\WINDOWS\system32\MSIMG32.dll
(0000000076300000 - 000000007631d000: C:\WINDOWS\system32\IMM32.DLL
(0000000076320000 - 0000000076367000: C:\WINDOWS\system32\COMDLG32.dll
(0000000076570000 - 000000007658c000: C:\WINDOWS\System32\CSCDLL.dll
(0000000076590000 - 00000000765de000: C:\WINDOWS\System32\cscui.dll
(00000000765e0000 - 0000000076672000: C:\WINDOWS\system32\CRYPT32.dll
(0000000076750000 - 0000000076759000: C:\WINDOWS\system32\shfolder.dll
(00000000767c0000 - 00000000767e7000: C:\WINDOWS\system32\schannel.dll
(0000000076990000 - 0000000076acd000: C:\WINDOWS\system32\ole32.dll
(0000000076af0000 - 0000000076b01000: C:\WINDOWS\system32\ATL.DLL
(0000000076b10000 - 0000000076b3a000: C:\WINDOWS\system32\WINMM.dll
(0000000076bc0000 - 0000000076bcb000: C:\WINDOWS\system32\PSAPI.DLL
(0000000076c00000 - 0000000076c2e000: C:\WINDOWS\system32\WINTRUST.dll
(0000000076c60000 - 0000000076c88000: C:\WINDOWS\system32\IMAGEHLP.dll
(0000000076cb0000 - 0000000076cd0000: C:\WINDOWS\system32\NTMARTA.DLL
(0000000076d30000 - 0000000076d48000: C:\WINDOWS\system32\iphlpapi.dll
(0000000076d70000 - 0000000076d92000: C:\WINDOWS\system32\apphelp.dll
(0000000076db0000 - 0000000076dc2000: C:\WINDOWS\system32\MSASN1.dll
(0000000076e50000 - 0000000076e5e000: C:\WINDOWS\system32\rtutils.dll
(0000000076e60000 - 0000000076e72000: C:\WINDOWS\system32\rasman.dll
(0000000076e80000 - 0000000076eaf000: C:\WINDOWS\system32\TAPI32.dll
(0000000076eb0000 - 0000000076eec000: C:\WINDOWS\system32\RASAPI32.dll
(0000000076ef0000 - 0000000076f17000: C:\WINDOWS\system32\DNSAPI.dll
(0000000076f20000 - 0000000076f28000: C:\WINDOWS\system32\Wtsapi32.dll
(0000000076f30000 - 0000000076f5c000: C:\WINDOWS\system32\WLDAP32.dll
(0000000076f80000 - 0000000076f88000: C:\WINDOWS\System32\winrnr.dll
(0000000076f90000 - 0000000076f96000: C:\WINDOWS\system32\rasadhlp.dll
(0000000076fa0000 - 000000007701f000: C:\WINDOWS\system32\CLBCATQ.DLL
(0000000077020000 - 00000000770ba000: C:\WINDOWS\system32\COMRes.dll
(00000000770f0000 - 000000007717b000: C:\WINDOWS\system32\OLEAUT32.dll
(0000000077180000 - 0000000077283000: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
(0000000077ba0000 - 0000000077ba7000: C:\WINDOWS\system32\midimap.dll
(0000000077bb0000 - 0000000077bc5000: C:\WINDOWS\system32\MSACM32.dll
(0000000077bd0000 - 0000000077bd8000: C:\WINDOWS\system32\VERSION.dll
(0000000077be0000 - 0000000077c38000: C:\WINDOWS\system32\msvcrt.dll
(0000000077c40000 - 0000000077c64000: C:\WINDOWS\system32\msv1_0.dll
(0000000077d10000 - 0000000077d9f000: C:\WINDOWS\system32\USER32.dll
(0000000077da0000 - 0000000077e49000: C:\WINDOWS\system32\ADVAPI32.dll
(0000000077e50000 - 0000000077ee2000: C:\WINDOWS\system32\RPCRT4.dll
(0000000077ef0000 - 0000000077f37000: C:\WINDOWS\system32\GDI32.dll
(0000000077f40000 - 0000000077fb6000: C:\WINDOWS\system32\SHLWAPI.dll
(0000000077fc0000 - 0000000077fd1000: C:\WINDOWS\system32\Secur32.dll
(000000007c340000 - 000000007c396000: C:\WINDOWS\system32\MSVCR71.dll
(000000007c3a0000 - 000000007c41b000: C:\WINDOWS\system32\MSVCP71.dll
(000000007c800000 - 000000007c91d000: C:\WINDOWS\system32\kernel32.dll
(000000007c920000 - 000000007c9b4000: C:\WINDOWS\system32\ntdll.dll
(000000007c9c0000 - 000000007cc7e000: C:\WINDOWS\system32\msi.dll
(000000007d590000 - 000000007dd83000: C:\WINDOWS\system32\SHELL32.dll
*----> 线程 ID 0xed0 的状态转储 <----*
eax=0002000b ebx=00000000 ecx=0002000b edx=00000000 esi=00000002 edi=0d860af0
eip=08ba619a esp=0ff7b0cc ebp=00000000 iopl=0 nv up ei pl nz na pe nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00240202
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx -
函数: Flash10b
08ba6185 47 inc edi
08ba6186 44 inc esp
08ba6187 833cb000 cmp dword ptr [eax+esi*4],0x0
08ba618b 8d04b0 lea eax,[eax+esi*4]
08ba618e 741a jz Flash10b+0x761aa (08ba61aa)
08ba6190 8b00 mov eax,[eax]
08ba6192 85c0 test eax,eax
08ba6194 740a jz Flash10b+0x761a0 (08ba61a0)
08ba6196 8b10 mov edx,[eax]
08ba6198 8bc8 mov ecx,eax
错误 ->08ba619a 8b02 mov eax,[edx] ds:0023:00000000=????????
08ba619c 6a01 push 0x1
08ba619e ffd0 call eax
08ba61a0 8b4f44 mov ecx,[edi+0x44]
08ba61a3 c704b100000000 mov dword ptr [ecx+esi*4],0x0
08ba61aa 46 inc esi
08ba61ab 3b358c40ea08 cmp esi,[Flash10b+0x37408c (08ea408c)]
08ba61b1 7cd1 jl Flash10b+0x76184 (08ba6184)
08ba61b3 5e pop esi
08ba61b4 5f pop edi
08ba61b5 c3 ret
*----> 堆栈反向跟踪 <---*
WARNING: Stack unwind information not available. Following frames may be wrong.
ChildEBP RetAddr Args to Child
00000000 00000000 00000000 00000000 00000000 Flash10b+0x7619a
*----> 原始堆栈转储 <----*
000000000ff7b0cc f0 0a 86 0d 00 00 00 00 - 86 8e bb 08 78 b1 f7 0f ............x...
000000000ff7b0dc 10 40 7d 0d 90 10 86 0d - 90 10 86 0d 90 10 86 0d .@}.............
000000000ff7b0ec 2b 64 b8 08 00 00 00 00 - f0 0a 86 0d 60 53 78 0d +d..........`Sx.
000000000ff7b0fc 00 00 00 00 e8 b2 f7 0f - e0 fe 00 12 78 b1 f7 0f ............x...
000000000ff7b10c 94 64 b8 08 e8 b2 f7 0f - 90 10 86 0d 78 b1 f7 0f .d..........x...
000000000ff7b11c e0 fe 00 12 10 40 7d 0d - 90 10 86 0d 00 00 00 00 .....@}.........
000000000ff7b12c e8 8d b8 08 e8 b2 f7 0f - 90 10 86 0d 78 b1 f7 0f ............x...
000000000ff7b13c 40 b7 f7 0f e0 fe 00 12 - 70 b5 f7 0f 90 10 86 0d @.......p.......
000000000ff7b14c 09 de be 08 90 10 86 0d - e8 b2 f7 0f 78 b1 f7 0f ............x...
000000000ff7b15c 00 00 00 00 e0 fe 00 12 - 50 f5 00 12 90 10 86 0d ........P.......
000000000ff7b16c 0d 00 00 00 40 b7 f7 0f - e0 fe 00 12 60 53 78 0d
....@.......`Sx.
000000000ff7b17c 00 00 00 00 48 ec ff 11 - 00 00 00 00 90 1f 90 0d ....H...........
000000000ff7b18c 00 00 00 00 0c 00 0e 00 - 0d 00 ff 00 0c 00 0e 00 ................
000000000ff7b19c 0d 00 ff 00 50 00 00 00 - 4c 04 00 00 fa 00 00 00 ....P...L.......
000000000ff7b1ac 22 01 00 00 00 00 80 3f - 00 00 00 00 00 00 00 00 "......?........
000000000ff7b1bc 00 00 80 3f 00 00 00 00 - 00 00 00 00 01 00 00 00 ...?............
000000000ff7b1cc ce cd 4d 3f 00 00 00 00 - 00 00 00 00 00 00 80 3f ..M?...........?
000000000ff7b1dc 10 00 00 00 00 00 00 00 - 01 00 00 00 ea d4 92 7c ...............|
000000000ff7b1ec ff 80 93 7c 00 00 92 08 - 00 30 6d 0e 00 20 00 00 ...|.....0m.. ..
000000000ff7b1fc 20 b2 f7 0f ff 1b 93 7c - 00 00 92 08 00 30 6d 0e ......|.....0m.
用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
