瑞星卡卡安全论坛

用户系统信息：Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2)

Log generated by networkedition use mdecoder 0.54
[root]http://www.msw.sdu.edu.cn/cms/html/xsgl/gzzd/20061217/qq/1014.html(2010qqxiazai
)
    [script]http://club.9istyle.com/wap/include/main/ads.jpg
        [iframe]http://club.9istyle.com/wap/include/main/ie.html
            [exe]http://club.9istyle.com/wap/include/main/bb.exe

Log generated by networkedition use mdecoder 0.54
[root]http://www.rwxy.zjut.edu.cn/(浙江工业大学人文学院)
    [script]http://10v.gsup.ass0.fr/css.js?tid=gb&pid=80
        [exp]http://ov3.tvb.vu.cx:300/xc15/15index.htm(Exploit.Ie0dayCVE0806.a)
            [script]http://ov3.tvb.vu.cx:300/xc15/ap.js
            [virus]http://aia.hao3.uicp.cn:300/up15.exe

Log is generated by FreShow.
[wide]http://hzpk.39.net/list/hz/xs/
    [script]http://img.39.net/js/hzp/show_test.js
    [script]http://img.39.net/js/hzp/39fun.js
    [frame]http://dpvc.39.net/ADPolestar/lgs/door/;ap=686f182a-a851-4eef-8b57-afc7c843f6c4&ct=i&pw=970&ph=90&mv=710&er=&ir=f&pu=san9?
    [script]http://hzpk.39.net/include2/hotkeyword-hzp.js
    [script]http://img.39.net/js/hzp/tabs.js
    [script]http://img.39.net/js/hzp/search_test.js
    [script]http://img.39.net/js/hzp/jquery.js
    [script]http://www.w.wwvv.us/images/css/swf.swf
        [frame]http://errors.9966.org.wwvv.us/images/css/jg.htm
            [object]http://www.baidu.cn.wwvv.us/images/css/css.exe
        [frame]http://errors.9966.org.wwvv.us/images/css/jf.htm
        [frame]http://errors.9966.org.wwvv.us/images/css/mepeg.htm
        [frame]http://errors.9966.org.wwvv.us/images/css/of.htm
        [frame]http://errors.9966.org.wwvv.us/images/css/bf.htm
        [frame]http://errors.9966.org.wwvv.us/images/css/018.htm
        [frame]http://errors.9966.org.wwvv.us/images/css/tj.htm
    [script]http://hzpk.39.net/list/hz/xs/pager.js
    [script]http://image.39.net/js/function.js
    [script]http://image.39.net/tools/djan.js

Log generated by networkedition use mdecoder 0.54
[root]http://bj.dqccc.com/citymap/detail_851967.html
    [script]http://pic.dq3c.cn/js/mootools-1.2.1.js
    [script]http://pic.dq3c.cn/js/map/MapEngine.js
        [script]http://app.mapabc.com/apis?&t=flashmap&v=2.2.1&key=dbf8be9b4f581817970b415c150ab931b725541b6c928713b93c0d74c4ea9dd8084b40773f45e389
            [script]http://api.mapabc.com/flashmap/2.2.1/js/fmp.js?key=dbf8be9b4f581817970b415c150ab931b725541b6c928713b93c0d74c4ea9dd8084b40773f45e389
    [script]http://pic.dq3c.cn/js/map/MapEngineSearch.js
        [script]http://app.mapabc.com/apis?&t=ajaxsearch&v=2.2.1&key=dbf8be9b4f581817970b415c150ab931b725541b6c928713b93c0d74c4ea9dd8084b40773f45e389
            [script]http://api.mapabc.com/ajaxsearch/2.2.1/js/asa.js?key=dbf8be9b4f581817970b415c150ab931b725541b6c928713b93c0d74c4ea9dd8084b40773f45e389
    [script]http://pic.dq3c.cn/js/map/MapDetail.js
    [script]http://pic.dq3c.cn/js/map/city_u.js
    [script]http://pic.dq3c.cn/js/global.js
    [script]http://pic.dq3c.cn/js/favorite/Favorite.js
    [iframe]http://www.wenpei.com.cn/index.asp
        [script]http://22k.officea.ze.tc/office.js?google_ad_format=728x90_as
            [exp]http://ov3.tvb.vu.cx:300/xc15/15index.htm(Exploit.Ie0dayCVE0806.a)
                [script]http://ov3.tvb.vu.cx:300/xc15/ap.js
                [virus]http://aia.hao3.uicp.cn:300/up15.exe
        [flash]http://www.wenpei.com.cn/images/top.swf
        [script]http://22k.officea.ze.tc/office.js?google_ad_format=728x90_as
    [script]http://pic.dq3c.cn/js/showAd/180_340.js
        [iframe]http://pic.dq3c.cn/file/180_340.html

Log generated by networkedition use mdecoder 0.54
[root]http://aac.artron.net/css/3.htm(Exploit.Ie0dayCVE0806.a)
    [virus]http://bbs.5ifit.com/forumdata/plugins/cj.exe

这个只是信息说明，没有真正的处理方法啊。