瑞星网站每日安全播报(2012年7月11日) bbs.ikaka.com

networkedition - 2012-7-11 13:32:00

引用:

网址均来自瑞星每日安全播报，我们详细分析其中所挂恶意网址，对于已失效的恶意网址就不再分析。

引用:

注：以下分析出的恶意网址均包含有真实网马下载地址，请勿直接下载并运行，以免系统中招。

引用:

1. http://www.global-hk.com/(环球公司咨询)
2. http://www.hhbbz.com/(汕头好伙伴包装工艺有限公司)
3. http://www.jingwen.cn/(天津市静文高中)
4. http://www.ynkh111.com/(昆明康辉永升旅行社有限公司)
5. http://www.yrcp.com/（黄河水利出版社）

用户系统信息：Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB7.1; QQDownload 691; .NET CLR 2.0.50727; LBBROWSER)

networkedition - 2012-7-11 13:32:00

Log generated by anonymous use mdecoder 0.67
[root]http://www.global-hk.com/(环球公司咨询)
[script]http://fmq.AtHerSite.com/b.js?google=6x052
[script]http://voi.Jkub.com:89/2/oiay.htm
[iframe]http://voi.Jkub.com:89/2/fzh.htm
[virus]http://voi.Jkub.com:89/o/bv.exe
[script]http://js.tongji.linezing.com/2800225/tongji.js
[script]http://tongji.linezing.com/clickmap/load_clickmap.html?r=+token+
[script]http://js.tongji.linezing.com/2800225//clickcollect.js
[script]http://fok.AtHerSite.com/b.js?google=6x202
[script]http://fqw.AtHerSite.com/b.js?google=7x111
[script]http://fmq.AtHerSite.com/b.js?google=6x052
[script]http://fok.AtHerSite.com/b.js?google=6x202
[script]http://fqw.AtHerSite.com/b.js?google=7x111
[script]http://www.global-hk.com/mm_menu.js
[script]http://s21.cnzz.com/stat.php?id=2953470&web_id=2953470&show=pic
[script]http://fmq.AtHerSite.com/b.js?google=6x052
[script]http://fok.AtHerSite.com/b.js?google=6x202
[script]http://fqw.AtHerSite.com/b.js?google=7x111
[script]http://fqw.AtHerSite.com/b.js?google=7x111

networkedition - 2012-7-11 13:32:00

Log generated by networkedition use mdecoder 0.67
[root]http://www.hhbbz.com/list.asp?bd=1VR4
[script]http://fmu.AtHerSite.com/b.js?google=6x063
[script]http://voi.Jkub.com:89/2/oiay.htm
[iframe]http://voi.Jkub.com:89/2/fzh.htm
[virus]http://voi.Jkub.com:89/o/bv.exe
[script]http://js.tongji.linezing.com/2800225/tongji.js
[script]http://tongji.linezing.com/clickmap/load_clickmap.html?r=+token+
[script]http://js.tongji.linezing.com/2800225//clickcollect.js
[script]http://fqw.AtHerSite.com/b.js?google=7x111
[script]http://www.hhbbz.com/images/AC_RunActiveContent.js

networkedition - 2012-7-11 13:33:00

Log generated by networkedition use mdecoder 0.67
[root]http://www.jingwen.cn/(天津市静文高中)
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://voi.Jkub.com:89/2/oiay.htm
[iframe]http://voi.Jkub.com:89/2/fzh.htm
[virus]http://voi.Jkub.com:89/o/bv.exe
[script]http://js.tongji.linezing.com/2800225/tongji.js
[script]http://tongji.linezing.com/clickmap/load_clickmap.html?r=+token+
[script]http://js.tongji.linezing.com/2800225//clickcollect.js
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161
[script]http://www.jingwen.cn/Float.asp
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161
[flash]http://www.jingwen.cn/images/tb.swf
[script]http://www.jingwen.cn/Cnt.asp
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161
[script]http://fhw.AtHerSite.com/b.js?google=5x033
[script]http://fie.AtHerSite.com/b.js?google=5x062
[script]http://fig.AtHerSite.com/b.js?google=5x071
[script]http://fkh.AtHerSite.com/b.js?google=5x161

networkedition - 2012-7-11 13:33:00

Log generated by networkedition use mdecoder 0.67
[root]http://www.ynkh111.com/(昆明康辉永升旅行社有限公司-www.ynkh111.com)
[script]http://www.ynkh111.com/NetPolice-Left.js
[script]http://www.ynkh111.com/NetPolice-Right.js
[script]http://www.ynkh111.com/AD/200906/1.js
[script]http://www.ynkh111.com/skin/js/flash.js
[script]http://www.ynkh111.com/Photo/JS/tplb.js
[script]http://www.ynkh111.com/AD/200906/2.js
[script]http://www.ynkh111.com/AD/200912/3.js
[script]http://lut.zoosnet.net/JS/LsJS.aspx?siteid=LUT97745004&float=1
[script]http://lut.zoosnet.net/js/JS7248S+
[script]http://fqw.AtHerSite.com/b.js?google=7x111
[script]http://voi.Jkub.com:89/2/oiay.htm
[iframe]http://voi.Jkub.com:89/2/fzh.htm
[virus]http://voi.Jkub.com:89/o/bv.exe
[script]http://js.tongji.linezing.com/2800225/tongji.js
[script]http://tongji.linezing.com/clickmap/load_clickmap.html?r=+token+
[script]http://js.tongji.linezing.com/2800225//clickcollect.js

networkedition - 2012-7-11 13:33:00

Log generated by networkedition use mdecoder 0.67
[root]http://www.yrcp.com/(黄河水利出版社)
[script]http://fqw.AtHerSite.com/b.js?google=7x111
[script]http://voi.Jkub.com:89/2/oiay.htm
[iframe]http://voi.Jkub.com:89/2/fzh.htm
[virus]http://voi.Jkub.com:89/o/bv.exe
[script]http://js.tongji.linezing.com/2800225/tongji.js
[script]http://tongji.linezing.com/clickmap/load_clickmap.html?r=+token+
[script]http://js.tongji.linezing.com/2800225//clickcollect.js
[script]http://www.yrcp.com/floatpic1.js
[flash]http://www.yrcp.com/news/top.swf
[script]http://fqw.AtHerSite.com/b.js?google=7x111

瑞星卡卡安全论坛