networkedition - 2011-6-24 13:15:00
网址均来自瑞星每日安全播报,我们详细分析其中所挂恶意网址,对于已失效的恶意网址就不再分析。
注:以下分析出的恶意网址均包含有真实网马下载地址,请勿直接下载并运行,以免系统中招。
1. http://web3.fimmu.com/(南方医科大学首页)
2. http://www.cxfood.cn/(慈溪市食品安全信息网)
3. http://www.maestro.com.cn/(美涛——专业美发大师)
4. http://www.sanyamarry.com/(三亚心欣婚庆礼仪)
5. http://www.gzyoga.com.cn/(瑜珈网址大全)
用户系统信息:Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
networkedition - 2011-6-24 13:16:00
Log generated by networkedition use mdecoder 0.67
[root]http://web3.fimmu.com/sifa/images/wow.htm?www.3g3h.cn
[iframe]http://web3.fimmu.com/sifa/img/flash.html
[virus]http://web3.fimmu.com/sifa/img/wow.exe
[script]http://js.users.51.la/4573991.js
networkedition - 2011-6-24 13:16:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.cxfood.cn/webedit/m.html?www.jiemeng.com.cn(梦幻西游工具箱4.85版_百度百科 )
[iframe]http://www.cxfood.cn/webedit/ie.html
[script]http://www.cxfood.cn/webedit/party.css
[virus]http://www.jx2dbtwg.com/dnf/016.css
[script]http://www.cxfood.cn/webedit/css.css
[script]http://www.cxfood.cn/webedit/js.css
[script]http://event.youku.com/dabao/public/images/btn/time.js
networkedition - 2011-6-24 13:17:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.maestro.com.cn/userfiles/media/1/2.htm(Exploit.IEAurora.a)
[virus]http://www.ydfc.net.cn/data/1.exe
networkedition - 2011-6-24 13:17:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.sanyamarry.com/bbs/flash.html
[virus]http://www.sanyamarry.com/bbs/css.exe
networkedition - 2011-6-24 13:17:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.gzyoga.com.cn/info/8760-1.htm(瑜珈,瑜珈教程:湿婆神式,瑜珈网址大全|瑜珈教程下载|瑜珈音乐下载|瑜珈学馆|瑜加|瑜珈培训|瑜伽音乐|瑜伽音乐下载|瑜伽|愈伽|瑜伽教程|瑜伽用品—www.gzyoga.com.cn)
[iframe]http://www.krindus.co.kr/myutil/mod_test/gm/ms0700422.htm
[exp]http://www.krindus.co.kr/myutil/mod_test/gm/Storm22.htm(Exploit.Baofeng.a)
[exp]http://www.krindus.co.kr/myutil/mod_test/gm/tok.htm(Exploit.XunleiPplayer.a)
[iframe]http://www.krindus.co.kr/myutil/mod_test/gm/xpcx22.htm.htm
[exp]http://www.krindus.co.kr/myutil/mod_test/gm/BaiduBar.htm(Exploit.Baidu.a)
[virus]http://www.krindus.co.kr/bbs/vip.exe
© 2000 - 2024 Rising Corp. Ltd.