networkedition - 2009-6-30 11:19:00
经过这么一段时间,在恶意网站交流区推出了一系列网马解密教程及视频,相信大家对网马解密有了一定得了解。也应该掌握了一些解密的方法,网马解密贵在实战,为了使广大网友能够通过实战,来提高自己本身的网马解密水平。大家可能也苦于无法找到一些有效的恶意网址来分析,今后,我们将定期来搞网马解密方面分析悬赏,提供有效的恶意网址供大家来分析,其主要目的是想给广大网友提供一个网马解密学习、交流、分析的平台。
http://cjxy.kmyz.edu.cn/xbzy/zdxy/xyyw/xyyw2-1.htm
规则:1.一次解完并附解密日志和步骤,奖赏10威望,如果部分解出,每步奖赏2威望;
2.对于积极参与此活动会员,并多次中奖者,我们可以诚邀加入卡卡反病毒小组
注:卡卡反病毒小组成员禁止参加
恶意网址来源瑞星全功能安全软件拦截到真实有效的地址
用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
shadowmin - 2009-6-30 11:59:00
Log is generated by FreShow.
[wide]http://cjxy.kmyz.edu.cn/xbzy/zdxy/xyyw/xyyw2-1.htm
[script]http://cjxy.kmyz.edu.cn/xbzy/zdxy/xyyw/../mm_menu.js
[script]http://kao17.cn
[frame]http://www.86we.com/css/css.htm
[frame]http://www.86we.com/css/flash.htm
[frame]http://www.86we.com/css/iss.html
[frame]http://www.86we.com/css/fss.html
[object]http://www.86we.com/css/f47.swf
[frame]http://www.86we.com/css/a4.htm
[script]http://www.86we.com/css/14.js
[object]http://www.pcca4.cn/ads/svchost.exe
[object]http://www.pcca4.cn/ads/svchost.exe
[frame]http://www.86we.com/css/office.htm
[script]http://www.86we.com/css/of.js
[object]http://www.pcca4.cn/ads/svchost.exe
[frame]http://www.86we.com/css/02.htm
[script]http://www.86we.com/css/set.js
[object]http://www.pcca4.cn/ads/svchost.exe
[script]http://sbsbsb.7766.org/32.js
[frame]http://8man1.3322.org/aa/a4.htm?803
[frame]http://8man1.3322.org/aa/index.htm
[frame]http://8man1.3322.org/aa/flash.htm
[frame]http://8man1.3322.org/aa/iss.html
[object]http://8man1.3322.org/aa/i47.swf
[object]http://milllk.com/wm/svchost.exe
[frame]http://8man1.3322.org/aa/fss.html
[frame]http://8man1.3322.org/aa/a44.htm
[script]http://8man1.3322.org/aa/14.js
[object]http://milllk.com/wm/svchost.exe
[frame]http://8man1.3322.org/aa/office.htm
[script]http://8man1.3322.org/aa/off.js
[object]http://milllk.com/wm/svchost.exe
[frame]http://8man1.3322.org/aa/02.htm
[script]http://8man1.3322.org/aa/set.js
[object]http://milllk.com/wm/svchost.exe
[frame]http://8man1.3322.org/aa/axin.htm
[object]http://vfegt342.3322.org/atievx.exe
[script]http://8man1.3322.org/aa/\"http:\/\/js.tongji.linezing.com\/1081637\/tongji.js\"
[script]http://s6.cnzz.com/stat.php?id=1408285&web_id=1408285
[frame]http://count27.51yes.com/sa.aspx?id=278116558'+yesdata+'
[frame]http://www.86we.com/css/pef.pdf
[object]http://www.pcca4.cn/ads/svchost.exe
[object]http://www.jpjspro.com/flinko.exe
[frame]http://count24.51yes.com/sa.aspx?id=248364695'+yesdata+'
[frame]http://www.chchc.net
[script]http://www.chchc.net/ http://s6.cnzz.com/stat.php?id=1487593&web_id=1487593&show=pic
xiaoqiang305 - 2009-6-30 19:55:00
累:kaka7:
关于:hxxp://cjxy.kmyz.edu.cn/xbzy/zdxy/xyyw/xyyw2-1.htm解密的日志(全体输出 - 110):
Level 0>http://cjxy.kmyz.edu.cn/xbzy/zdxy/xyyw/xyyw2-1.htm
Level 1>http://kao17.cn
Level 2>http://www.chchc.net
Level 2>http://count24.51yes.com/sa.aspx?id=248364695+yesdata+
Level 2>http://www.86we.com/css/css.htm
Level 3>http://www.86we.com/css/pef.pdf
Level 4>http://www.pcca4.cn/ads/svchost.exe ●
Level 3>http://www.86we.com/css/02.htm
Level 4>http://www.86we.com/css/set.js
Level 5>http://www.pcca4.cn/ads/svchost.exe ●
Level 5>http://sbsbsb.7766.org/32.js
Level 6>http://count27.51yes.com/sa.aspx?id=278116558+yesdata+
Level 6>http://8man1.3322.org/aa/a4.htm?803
Level 7>http://s6.cnzz.com/stat.php?id=1408285&web_id=1408285
Level 8>http://b64.cnzz.com/stat.htm?id=1408285+data+
Level 7>http://img.tongji.linezing.com/1081637/tongji.gif
Level 7>http://js.tongji.linezing.com/1081637/tongji.js
Level 8>http://js.tongji.linezing.com/1081637/+_st_dest+
Level 7>http://8man1.3322.org/aa/index.htm
Level 8>http://8man1.3322.org/aa/js.js
Level 9>http://8man1.3322.org/aa/vcr.htm
Level 10>http://8man1.3322.org/aa/real1.js
Level 10>http://8man1.3322.org/aa/real.js
Level 10>http://8man1.3322.org/aa/turl.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/vclb.htm
Level 10>http://8man1.3322.org/aa/e.css
Level 10>http://8man1.3322.org/aa/do.css
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/vcxxz.htm
Level 9>http://8man1.3322.org/aa/vcvod.htm
Level 10>http://8man1.3322.org/aa/vcvod.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/z.htm
Level 9>http://8man1.3322.org/aa/vcff.htm
Level 10>http://8man1.3322.org/aa/ff.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/vcfl.htm
Level 10>http://8man1.3322.org/aa/2222222222.swf ●
Level 10>http://8man1.3322.org/aa/1111111111.swf ●
Level 9>http://8man1.3322.org/aa/vc14.htm
Level 10>http://8man1.3322.org/aa/16.js
Level 10>http://8man1.3322.org/aa/15.js
Level 10>http://8man1.3322.org/aa/14.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 8>http://8man1.3322.org/aa/axin.htm
Level 9>http://mmdeai.3322.org/atievx.exe ●
Level 3>http://www.86we.com/css/office.htm
Level 4>http://www.86we.com/css/of.js
Level 5>005>http://www.pcca4.cn/ads/svchost.exe ●
Level 5>http://sbsbsb.7766.org/32.js
Level 6>http://count27.51yes.com/sa.aspx?id=278116558+yesdata+
Level 6>http://8man1.3322.org/aa/a4.htm?803
Level 7>http://s6.cnzz.com/stat.php?id=1408285&web_id=1408285
Level 7>http://img.tongji.linezing.com/1081637/tongji.gif
Level 7>http://js.tongji.linezing.com/1081637/tongji.js
Level 7>http://8man1.3322.org/aa/index.htm
Level 8>http://8man1.3322.org/aa/js.js
Level 9>http://8man1.3322.org/aa/vcr.htm
Level 10>http://8man1.3322.org/aa/real1.js
Level 10>http://8man1.3322.org/aa/real.js
Level 10>http://8man1.3322.org/aa/turl.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/vclb.htm
Level 10>http://8man1.3322.org/aa/e.css
Level 10>http://8man1.3322.org/aa/do.css
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/vcxxz.htm
Level 9>http://8man1.3322.org/aa/vcvod.htm
Level 10>http://8man1.3322.org/aa/vcvod.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/z.htm
Level 9>http://8man1.3322.org/aa/vcff.htm
Level 10>http://8man1.3322.org/aa/ff.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 9>http://8man1.3322.org/aa/vcfl.htm
Level 10>http://8man1.3322.org/aa/2222222222.swf ● 貌似没有东西
Level 10>http://8man1.3322.org/aa/1111111111.swf ● 同上
Level 9>http://8man1.3322.org/aa/vc14.htm
Level 10>http://8man1.3322.org/aa/16.js
Level 10>http://8man1.3322.org/aa/15.js
Level 10>http://8man1.3322.org/aa/14.js
Level 11>http://milllk.com/wm/svchost.exe ●
Level 8>http://8man1.3322.org/aa/axin.htm
Level 9>http://mmdeai.3322.org/atievx.exe ●
Level 3>http://www.86we.com/css/a4.htm
Level 4>http://www.86we.com/css/14.js
Level 5>http://sbsbsb.77%366.org/32.js
Level 6>http://8man1.3322.org/aa/a4.htm?803
Level 3>http://www.86we.com/css/flash.htm
Level 4>http://www.86we.com/css/fss.html
Level 5>http://www.86we.com/css/f115.swf ●
Level 6>http://www.pcca4.cn/ads/svchost.exe ●
Level 5>http://www.86we.com/css/f64.swf ●
Level 5>http://www.86we.com/css/f47.swf ●
Level 5>http://www.86we.com/css/f45.swf ●
Level 5>http://www.86we.com/css/f28.swf ●
Level 5>http://www.86we.com/css/f16.swf ●
Level 5>http://www.86we.com/css/swfobject.js
Level 4>http://www.86we.com/css/iss.html
Level 5>http://www.86we.com/css/i115.swf ●
Level 5>http://www.86we.com/css/i64.swf ●
Level 5>http://www.86we.com/css/i47.swf ●
Level 5>http://www.86we.com/css/i45.swf ●
Level 5>http://www.86we.com/css/i28.swf ●
Level 5>http://www.86we.com/css/i16.swf ●
Level 6>http://www.pcca4.cn/ads/svchost.exe ●
Level 5>http://www.86we.com/css/swfobject.js
Level 1>http://cjxy.kmyz.edu.cn/xbzy/zdxy/image/logo1.swf
Level 1>http://cjxy.kmyz.edu.cn/xbzy/zdxy/mm_menu.js
日志由 Redoce1.9第68次修正版于 2009-6-30 19:57:54 生成。
© 2000 - 2024 Rising Corp. Ltd.