瑞星网站每日安全播报(2011年7月4日) bbs.ikaka.com

networkedition - 2011-7-4 16:06:00

引用:

网址均来自瑞星每日安全播报，我们详细分析其中所挂恶意网址，对于已失效的恶意网址就不再分析。

引用:

注：以下分析出的恶意网址均包含有真实网马下载地址，请勿直接下载并运行，以免系统中招。

引用:

1. http://job.njtu.edu.cn/(北京交通大学就业资讯网)
2. http://admission.sysu.edu.cn/(中山大学本科招生网)
3. http://imagesi.jstv.com/(江苏网络广播电视台)
4. http://www.xiankenet.com/(仙客网)
5. http://www.jxwsjd.com/(嘉兴卫生监督信息网)

networkedition - 2011-7-4 16:07:00

Log generated by anonymous use mdecoder 0.66
[root]http://job.njtu.edu.cn/forum/freeBBS/style/wow.htm
[exp]http://job.njtu.edu.cn/images/Theme/1.html(Exploit.Ie0dayCVE0806.a)
[virus]http://3.ajehe.info:86/1.exe

networkedition - 2011-7-4 16:07:00

Log generated by anonymous use mdecoder 0.66
[root]http://admission.sysu.edu.cn/News_View.asp?NewsID=2657(中山大学2010年各院系本科招生咨询电话)
[exp]http://www.ycww.net/dd/swf/(Exploit.Mpeg2.c)
[script]http://www.ycww.net/dd/swf/go.jpg
[virus]http://www.baihecai.com/admin/editor/UploadFile/2011630173513428.exe
[exp]http://www.ycww.net/eWebEditor/db/index1.htm(Exploit.Mpeg2.c)
[script]http://www.ycww.net/eWebEditor/db/go.jpg
[exp]http://www.ycww.net/eWebEditor/NewFolder/index1.htm(Exploit.Mpeg2.c)
[virus]http://www.mxczj.gov.cn/img/10.exe悙悙
[exp]http://www.ycww.net/eWebEditor/db/index1.htm(Exploit.Mpeg2.c)
[virus]http://www.ncxhsd.com/admin/ewebeditor/uploadfile/2010312161625886.exe
[exp]http://www.ycww.net/eWebEditor/NewFolder/(Exploit.Mpeg2.c)
[script]http://www.ycww.net/eWebEditor/NewFolder/go.jpg
[exp]http://www.ycww.net/eWebEditor/NewFolder/index1.htm(Exploit.Mpeg2.c)
[script]http://www.ycww.net/eWebEditor/NewFolder/go.jpg
[exp]http://www.ycww.net/eWebEditor/NewFolder/index1.htm(Exploit.Mpeg2.c)
[exp]http://www.ycww.net/eWebEditor/db/index1.htm(Exploit.Mpeg2.c)
[exp]http://www.ycww.net/eWebEditor/db/index1.htm(Exploit.Mpeg2.c)
[virus]http://www.mxczj.gov.cn/img/10.exe

networkedition - 2011-7-4 16:08:00

Log generated by anonymous use mdecoder 0.66
[root]http://imagesi.jstv.com/img/j3/ie.html(Exploit.Ie0dayCVE0806.a)
[virus]http://imagesi.jstv.com/img/j3/ie.exe

networkedition - 2011-7-4 16:08:00

Log generated by anonymous use mdecoder 0.66
[root]http://www.xiankenet.com/js/t.htm(Exploit.Ie0dayCVE0806.a)
[virus]http://www.xiankenet.com/js/tlbb.exe

networkedition - 2011-7-4 16:08:00

Log generated by anonymous use mdecoder 0.66
[root]http://www.jxwsjd.com/manager/include/zt/yt.html(Exploit.Ie0dayCVE0806.a)
[script]http://www.jxwsjd.com/manager/include/zt/yt.jpg
[virus]http://2112111.com/123456/z.exe

瑞星卡卡安全论坛