瑞星卡卡安全论坛

关于:hxxp://5.sqit.cc/解密的日志(全体输出 -  28):

Level  0>http://5.sqit.cc/
Level  1>http://5.sqit.cc/user/userlogin.asp?action=top
Level  1>http://5.sqit.cc/ks_inc/loadflash.js
Level  1>http://5.sqit.cc/upfiles/article/ccoec/200905/2009051509201720218.jpg
Level  1>http://5.sqit.cc/plus/showa.asp?i=58
Level  1>http://5.sqit.cc/plus/showa.asp?i=57
Level  1>http://5.sqit.cc/plus/showa.asp?i=60
Level  1>http://5.sqit.cc/plus/showa.asp?i=61
Level  1>http://5.sqit.cc/ks_inc/ajax.js
Level  1>http://tmds.xorg.pl/x.js?google_ad=75x30_ad
Level  1>http://mbp.xorg.pl/x.js?google_ad=95x10_ad
Level  2>http://myap.dns0755.net/bb/360.htm
Level  3>http://img.tongji.linezing.com/806392/tongji.gif
Level  3>http://js.tongji.linezing.com/806392/tongji.js
Level  3>http://myap.dns0755.net/bb/aa.js
Level  4>http://myap.dns0755.net/bb/aa.htm
Level  5>http://myap.dns0755.net/bb/ff.html
Level  6>http://myap.dns0755.net/bb/xp.swf 
Level  6>http://myap.dns0755.net/bb/done.swf 
Level  6>http://myap.dns0755.net/a/nnn.exe  ●
Level  5>http://myap.dns0755.net/bb/ff.html
Level  5>http://myap.dns0755.net/bb/ie.html
Level  5>http://myap.dns0755.net/bb/ff.html
Level  5>http://myap.dns0755.net/bb/ie.html
Level  5>http://myap.dns0755.net/bb/ff.html
Level  3>http://myap.dns0755.net/bb/yt.htm
Level  3>http://myap.dns0755.net/bb/fff.swf 
Level  3>http://myap.dns0755.net/bb/iie.swf 

网页分析：是昔流芳

用户系统信息：Mozilla/5.0 (Windows; U; Windows NT 5.1; zh-CN; rv:1.9.1.2) Gecko/20090729 Firefox/3.5.2

Log is generated by FreShow.
[wide]http://5.sqit.cc
    [frame]http://5.sqit.cc/user/userlogin.asp?action=Top
    [script]http://5.sqit.cc/ks_inc/loadflash.js
    [script]http://5.sqit.cc/plus/ShowA.asp?i=58
    [script]http://5.sqit.cc/plus/ShowA.asp?i=57
    [script]http://5.sqit.cc/plus/ShowA.asp?i=60
    [script]http://5.sqit.cc/plus/ShowA.asp?i=61
    [script]http://5.sqit.cc/ks_inc/ajax.js
    [script]http://%74%6D%64%73%2E%78%6F%72%67%2E%70%6C/x.js?google_ad=75x30_ad
        [frame]http://myap.dns0755.net/bb/yt.htm
        [script]http://myap.dns0755.net/bb/aa.js
        [script]http://js.tongji.linezing.com/806392/tongji.js
            [script]http://js.tongji.linezing.com/806392/\""+_st_dest+"\"
    [script]http://%6D%62%70%2E%78%6F%72%67%2E%70%6C/x.js?google_ad=95x10_ad
        [frame]http://myap.dns0755.net/bb/yt.htm
            [script]http://myap.dns0755.net/bb/yt.js
            [frame]http://myap.dns0755.net/bb/xie.htm
                [script]http://myap.dns0755.net/bb/av1.swf
                [script]http://myap.dns0755.net/bb/av3.swf
                [script]http://myap.dns0755.net/bb/av2.swf
            [frame]http://myap.dns0755.net/bb/office.htm
                [object]http://myap.dns0755.net/a/nn.exe
            [frame]http://myap.dns0755.net/bb/newlz.htm
            [frame]http://myap.dns0755.net/bb/of.htm
            [frame]http://myap.dns0755.net/bb/bf.htm
        [script]http://myap.dns0755.net/bb/aa.js
        [script]http://js.tongji.linezing.com/806392/tongji.js