yang115 - 2010-1-16 9:55:00
网站地址:www.moshini.com
网页:http://www.moshini.com/forumdisplay.php?fid=8
检测时间:2010-1-16 3:54:470
木马网址: http://1120.kuik.8866.org:2000/360/ shellcode溢出攻击
网页:http://www.moshini.com/forumdisplay.php?fid=42
检测时间:2010-1-16 3:54:46
木马网址: http://1120.kuik.8866.org:2000/360/ shellcode溢出攻击
网页:http://www.moshini.com/plugin.php?identifier=sign&module=sign
检测时间:2010-1-16 1:45:42
木马网址: http://1120.kuik.8866.org:2000/360/ shellcode溢出攻击
网页:http://www.moshini.com/plugin.php?identifier=sign&module=sign&o
检测时间:2010-1-16 1:45:44
木马网址: http://1120.kuik.8866.org:2000/360/ shellcode溢出攻击
网页:http://www.moshini.com/pm.php?pmid=19416&filter=newpm
检测时间:2010-1-16 3:54:42
木马网址: http://1120.kuik.8866.org:2000/360/ shellcode溢出攻击
网页:http://www.moshini.com/logging.php?action=login&;loginsubmit=yes
检测时间:2010-1-16 1:45:360
木马网址:http://kugoux026.hs3mmt.com/pz/yt.htm shellcode溢出攻击
网页:http://www.moshini.com/plugin.php?id=sign:sign
检测时间:2010-1-16 1:45:36
木马网址: http://1122cc.qaqa126.8866.org:3000/360 shellcode溢出攻击
用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; GTB6.3; QQPinyin 689; chromeframe; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; MAXTHON 2.0)
networkedition - 2010-1-16 10:28:00
网站应该是被挂马了,所挂恶意链接地址为:http://1120.kuik.8866.org:2000/360/2011/index.html
Level 0>http://1120.kuik.8866.org:2000/360/2011/index.html
Level 1>http://js.tongji.linezing.com/1399654/tongji.js
Level 1>http://js.tongji.linezing.com/1389409/tongji.js
Level 1>http://1120.kuik.8866.org:2000/360/2011/a.jpg
Level 2>http://my.xingan5.cn:8886/Down/my/2011.exe
Level 1>http://1120.kuik.8866.org:2000/360/2011/c.jpg
Level 1>http://1120.kuik.8866.org:2000/360/2011/d.css
Level 1>http://1120.kuik.8866.org:2000/360/2011/e.jpg
Level 1>http://1120.kuik.8866.org:2000/360/2011/f.css
© 2000 - 2024 Rising Corp. Ltd.