瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 瑞星防火墙老弹出拦截一个Listen的对话框

1   1  /  1  页   跳转

[求助] 瑞星防火墙老弹出拦截一个Listen的对话框

收藏
庄饮仲焚
头像
初生襁褓狮
  • 帖子:17
  • 注册: 2005-12-27
  • 来自:
发表于: 2009-04-15 21:48 | 只看楼主 短消息 资料
字号: 1楼

瑞星防火墙老弹出拦截一个Listen的对话框



然后我用HIJACK扫描了一下,请大家帮忙看看出了什么问题,不胜感激

Logfile of HijackThis v1.99.1
Scan saved at 21:44:32, on 2009-4-15
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCENTER.EXE
C:\Program Files\Rising\Rfw\CCENTER.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rfw\RavTask.exe
C:\Program Files\Rising\Rfw\rfwsrv.exe
C:\Program Files\Rising\Rav\RavMonD.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\rsnetsvr.exe
C:\Program Files\Rising\Rav\ScanFrm.exe
C:\WINDOWS\Explorer.EXE
D:\Program Files\360safe\safemon\360tray.exe
C:\Program Files\Rising\Rav\RsTray.exe
C:\Program Files\Rising\Rfw\RsTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\360Safebox\safeboxTray.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Program Files\PPLiveVA\PPLiveVA.exe
D:\Program Files\PPLiveVA\PPLiveVAMonitor.exe
C:\WINDOWS\system32\conime.exe
C:\dzh\internet\hypwise.exe
C:\Program Files\ChinaNet\VnetClient.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\HijackThis\HijackThis.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: VnetCookie Class - {4E83D567-4697-4F7B-B1F0-A513B01DB89A} - C:\PROGRA~1\ChinaNet\VNETTR~1.DLL
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - d:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
O2 - BHO: Windows Live 登录帮助程序 - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PPVADownloader - {A986E409-30CC-4185-89BB-AB212C104524} - d:\Program Files\PPLiveVA\DownloaderManager.dll
O2 - BHO: SafeMon Class - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} - D:\Program Files\360safe\safemon\safemon.dll
O4 - HKLM\..\Run: [NvCplDaemon] ; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [360Safetray] D:\Program Files\360safe\safemon\360tray.exe /start
O4 - HKLM\..\Run: [NMGameX_AutoRun] C:\WINDOWS\system32\Rundll32.exe NMGameX.dll,LiveProcess /aa
O4 - HKLM\..\Run: [RavTray] "C:\Program Files\Rising\Rav\RsTray.exe" -system
O4 - HKLM\..\Run: [RFWTray] "C:\Program Files\Rising\Rfw\RsTray.exe" -system
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [360Safebox] "C:\Program Files\360Safebox\safeboxTray.exe" /r
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PPLiveVA] d:\Program Files\PPLiveVA\PPLiveVA.exe /LoadModule PPVA.DLL /M REAL /S 0 /T 0
O4 - Startup: QQ游戏启动加速程序.lnk = ?
O8 - Extra context menu item: &U使用纳米机器人下载并收藏 - d:\Program Files\NamiRobot\Data\du.html
O8 - Extra context menu item: 使用iTudou下载节目 - d:\Program Files\Tudou\iTudou\iTudou_Link.HTM
O8 - Extra context menu item: 使用迅雷下载 - d:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - Extra context menu item: 使用迅雷下载全部链接 - d:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ表情 - D:\Program Files\Tencent\qq\AddEmotion.htm
O8 - Extra context menu item: 通过网易邮箱发送 - d:\Program Files\Netease\网易闪电邮\闪电邮\getcontent.htm
O9 - Extra button: 启动迅雷5 - {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} - d:\Program Files\Thunder Network\Thunder\Thunder.exe
O9 - Extra 'Tools' menuitem: 启动迅雷5 - {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} - d:\Program Files\Thunder Network\Thunder\Thunder.exe
O9 - Extra button: 写入日志 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: 在 Windows Live Writer 中写入日志(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PPLive - {95B3F550-91C4-4627-BCC4-521288C52977} - D:\Program Files\PPLive\PPLive.exe
O9 - Extra 'Tools' menuitem: PPLive - {95B3F550-91C4-4627-BCC4-521288C52977} - D:\Program Files\PPLive\PPLive.exe
O11 - Options group: [INTERNATIONAL] International
O15 - Trusted Zone: http://www.icbc.com.cn
O16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl Class) - https://img.alipay.com/download/2121/aliedit.cab
O16 - DPF: {F3E70CEA-956E-49CC-B444-73AFE593AD7F} (XPPlayer Class) - http://down.sandai.net/kankan/KanKanPlayer.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1FDA07AA-03C6-4D78-BB60-451441F2C3F1}: NameServer = 58.54.252.94 202.103.24.68
O17 - HKLM\System\CS1\Services\Tcpip\..\{1FDA07AA-03C6-4D78-BB60-451441F2C3F1}: NameServer = 58.54.252.94 202.103.24.68
O18 - Protocol: KuGoo - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\WINDOWS\system32\KuGoo3DownXControl.ocx (file missing)
O18 - Protocol: KuGoo3 - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\WINDOWS\system32\KuGoo3DownXControl.ocx (file missing)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~3\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~3\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Rav Process Communication Center (RavCCenter) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCENTER.EXE
O23 - Service: Rising RavTask Manager (RavTask) - Unknown owner - C:\Program Files\Rising\Rav\RavTask.exe" RavTask (file missing)
O23 - Service: Rfw Process Communication Center (RfwCCenter) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rfw\CCENTER.EXE
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rfw\rfwsrv.exe
O23 - Service: Rising RfwTask Manager (RfwTask) - Unknown owner - C:\Program Files\Rising\Rfw\RavTask.exe" RfwTask (file missing)
O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rav\RavMonD.exe
O23 - Service: Rising Scan Service (RsScanSrv) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rav\ScanFrm.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

用户系统信息:Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8
最后编辑庄饮仲焚 最后编辑于 2009-04-15 21:49:07
分享到:
gototop
 
zoxmes
头像
叱咤花甲狮
  • 帖子:3904
  • 注册: 2008-10-27
  • 来自:天空
论坛8周年活动礼物
发表于: 2009-04-15 21:54 | 短消息 资料
字号: 2楼

回复:瑞星防火墙老弹出拦截一个Listen的对话框

SYSTEM访问网络,拦截拉就没事了。。
HijackThis的扫描的话,有用么?
繁花落尽朝朝散,年少不知轻狂.岁月岂饶人? 心未归,人已醉,何时知我悔.碧海天,夜清心.少年梦里独摘花.
gototop
 
庄饮仲焚
头像
初生襁褓狮
  • 帖子:17
  • 注册: 2005-12-27
  • 来自:
发表于: 2009-04-15 22:24 | 只看楼主 短消息 资料
字号: 3楼

回复: 瑞星防火墙老弹出拦截一个Listen的对话框

附件: SREngLOG.log (2009-4-15 22:24:05, 58.96 K)
该附件被下载次数 119


谢谢,我的电脑有几年没出现奇怪的状况了,原来有SRENG的。
我又从你的签名那里下了SRENG扫了下,如果有空请再帮我看看,多谢
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT