networkedition - 2010-9-7 10:21:00
网址均来自瑞星每日安全播报,我们详细分析其中所挂恶意网址,对于已失效的恶意网址就不再分析。
注:以下分析出的恶意网址均包含有真实网马下载地址,请勿直接下载并运行,以免系统中招。
1. http://bbs.game.mop.com/(猫扑游戏频道综合社区·魔兽世界中国论坛)
2. http://www.hzfoto.com/(杭州摄影网__Hzfoto.com)
3. http://www.rsdown.cn/(红软基地 - 免费软件集散地)
4. http://zzys.agri.gov.cn/(中国种植业信息网-首页 )
5. http://2007.jbnews.gov.cn/(中国·重庆·江北网 重庆江北区门户网站)
用户系统信息:Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.2)
networkedition - 2010-9-7 10:21:00
Log is generated by FreShow.
[wide]http://bbs.game.mop.com/viewthread.php?tid=2483909
[script]http://bbs.game.mop.com/include/javascript/common.js
[script]http://bbs.game.mop.com/include/javascript/menu.js
[script]http://bbs.game.mop.com/include/javascript/ajax.js
[object]http://www.fm5.cn/counter/js/new.js?用户注册
[object]http://www.fm5.cn/counter/js/new.html?用户注册
[object]http://www.fm5.cn/counter/js/533.exe
[script]http://stat.ent.mop.com/js/mmov_1.js
[script]http://ovsmbt.mop.com/ov.js
[ani]http://bbs.game.mop.com/images/alliance/alliance_2.gif)
[frame]http://mopgg.mop.com/adshow.jsp?p=1705
[ani]http://bbs.game.mop.com/images/alliance/alliance_7.gif)
[script]http://bbs.game.mop.com/include/javascript/tooltip.js
[script]http://bbs.game.mop.com/include/javascript/rewardinfo.js
[script]http://bbs.game.mop.com/include/javascript/viewthread.js
[script]http://bbs.game.mop.com/include/wowarad.js
[ani]http://bbs.game.mop.com/images/alliance/alliance_9.gif)
[frame]http://mopgg.mop.com/adshow.jsp?p=96
[script]http://s4.cnzz.com/stat.php?id=2149344&web_id=2149344
[script]http://tjj.mop.com/calculate?id=208
[script]http://tjj.mop.com/calculate?id=27
[script]http://www.google-analytics.com/urchin.js
[script]http://txt.mop.com/dzhjs/stat/userstat1.js
[script]http://bbs.game.mop.com/include/javascript/msn.js
networkedition - 2010-9-7 10:21:00
Log generated by networkedition use mdecoder 0.54
[root]http://www.hzfoto.com/goodshow/wenda.asp?h=/azoovaqp.html
[exp]http://907a4.3322.org:1134/q2/index.html(Exploit.Ie0dayCVE0806.a)
[script]http://907a4.3322.org:1134/q2/mc12.js
[virus]http://225atb.3322.org:1134/q2/bmw.exe
[exp]http://907a4.3322.org:1134/q2/index.html(Exploit.Ie0dayCVE0806.a)
[exp]http://907a4.3322.org:1134/q2/index.html(Exploit.Ie0dayCVE0806.a)
networkedition - 2010-9-7 10:22:00
Log is generated by FreShow.
[wide]http://www.rsdown.cn/downinfo/785.html
[script]http://www.rsdown.cn/downinfo/../js/soft.js
[script]http://www.rsdown.cn/other/js/rsdowngood_14.js
[frame]http://unstat.baidu.com/bdun.bsc?tn=cpx2004&cv=0&cid=216647&csid=261&bgcr=ffffff&ftcr=000000&urlcr=0000ff&tbsz=265&sropls=1,2,3,4,5,6,7,9,10,99&insiteurl=www.rsdown.cn%3Bbbs.rsdown.cn&defid=99&kwgp=2
[script]http://unstat.baidu.com/code/js/fyb_2.js
[script]http://www.rsdown.cn/other/js/rsdowngood_23.js
[script]http://www.rsdown.cn/other/js/rsdowngood_24.js
[script]http://cpro.baidu.com/cpro/ui/c.js
[frame]http://cpro.baidu.com/cpro/ui/'+O+P+'
[script]http://wm.baidu.com/preview/preview.js
[script]http://cpro.baidu.com/cpro/ui/'+y(a,c)+'
[script]http://www.rsdown.cn/other/js/rsdowngood_19.js
[script]http://www.rsdown.cn/other/js/rsdowngood_20.js
[script]http://www.rsdown.cn/other/js/rsdowngood_21.js
[script]http://www.rsdown.cn/other/js/rsdowngood_22.js
[frame]http://36071.9966.org:6677/a/ads.html
[object]http://147atb.3322.org:6677/a/bmw.exe
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[frame]http://36071.9966.org:6677/a/ads.html
[script]http://www.rsdown.cn/other/js/rsdowngood_30.js
[script]http://www.rsdown.cn/other/js/rsdowngood_12.js
[script]http://www.rsdown.cn/other/js/rsdowngood_10.js
[script]http://www.rsdown.cn/other/js/rsdowngood_18.js
[script]http://www.rsdown.cn/other/js/rsdowngood_3.js
[script]http://www.rsdown.cn/other/js/rsdowngood_2.js
[script]http://www.rsdown.cn/other/js/rsdowngood_27.js
[script]http://www.rsdown.cn/other/js/rsdowngood_26.js
[script]http://www.rsdown.cn/downurl.asp?id=785&RandomLink=True
[script]http://www.rsdown.cn/other/js/rsdowngood_28.js
[script]http://cpro.baidu.com/cpro/ui/c.js
[script]http://www.rsdown.cn/other/js/rsdowngood_31.js
[script]http://cpro.baidu.com/cpro/ui/f.js
[script]http://www.rsdown.cn/comment.asp?style=default&category=soft&id=785&type=js
[script]http://s17.cnzz.com/stat.php?id=938537&web_id=938537
[script]http://www.rsdown.cn/vip_img/fumeiti.js
[script]http://www.rsdown.cn/vip_img/tan.js
networkedition - 2010-9-7 10:22:00
Log is generated by FreShow.
[wide]http://zzys.agri.gov.cn/Manager/upexcel/con.xwtem729/wenda./lpt5.hgqcj591.asp
[script]http://js.tongji.linezing.com/1347479/tongji.js
[frame]http://907a4.3322.org:1134/q2/index.html
[object]http://225atb.3322.org:1134/q2/bmw.exe
[frame]http://907a4.3322.org:1134/q2/index.html
[frame]http://907a4.3322.org:1134/q2/index.html
networkedition - 2010-9-7 10:23:00
Log is generated by FreShow.
[wide]http://2007.jbnews.gov.cn/nul.wowshow.asp?dy=218623684
[script]http://js.users.51.la/4091865.js
[frame]http://www.jjeffyfc19.info/wm/wow/index.htm
[object]http://xz.8899shop.info/2.exe
© 2000 - 2024 Rising Corp. Ltd.