发现一个最大的流氓网站：www.10du.com！！！ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛发现一个最大的流氓网站：www.10du.com！！！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

发现一个最大的流氓网站：www.10du.com！！！

sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:	发表于： 2006-09-17 10:08 \| 显示全部短消息资料字号：小中大 1楼发现一个最大的流氓网站：www.10du.com！！！发现一个最大的流氓网站：www.10du.com！！！删不掉啊！！！ 2006-09-17 21:50:23
sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:	分享到：

sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:	发表于： 2006-09-17 12:43 \| 显示全部短消息资料字号：小中大 2楼 HijackThis_815汉化版扫描日志 V1.99.1 保存于 12:26:20, 日期 2006-9-17 操作系统： Windows XP SP2 (WinNT 5.01.2600) 浏览器： Unable to get Internet Explorer version! 当前运行的进程： C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe e:\program files\rising\rfw\rfwsrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe E:\Program Files\Rising\Rav\RavTask.exe C:\WINDOWS\system32\ctfmon.exe E:\Program Files\Rising\Rav\Ravmon.exe e:\Program Files\Rising\Rav\CCenter.exe e:\Program Files\Rising\Rav\Ravmond.exe e:\Program Files\Rising\Rav\RavStub.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE E:\Program Files\Rising\Rfw\rfwmain.exe e:\Program Files\WinRAR\WinRAR.exe E:\Program Files\HyperSnap-DX 5\HprSnap5.exe E:\Program Files\系统优化\HijackThis1991汉化版\HijackThis1991zww.exe F2 - REG:system.ini: Shell=Explorer.exe %SystemRoot%\system32\drivers.exe O1 - Hosts: 60.190.24.232 dnsc.yahoo.com.cn O1 - Hosts: 60.190.24.232 www.hao123.com.cn O1 - Hosts: 60.190.24.232 www.hao123.cn O1 - Hosts: 60.190.24.232 www.54114.com O1 - Hosts: 60.190.24.232 www.hiurl.net O1 - Hosts: 60.190.24.232 www.hiurl.com O1 - Hosts: 60.190.24.232 www.234567.com O1 - Hosts: 60.190.24.232 www.fosoho.com O1 - Hosts: 60.190.24.232 www.hao123.cc O1 - Hosts: 60.190.24.232 www.baidui.com O1 - Hosts: 60.190.24.232 www.05335.com O1 - Hosts: 60.190.24.232 www.265dh.com O1 - Hosts: 60.190.24.232 www.12384.com O1 - Hosts: 60.190.24.232 www.yes6688.com O1 - Hosts: 60.190.24.232 www.mm3721.com O1 - Hosts: 60.190.24.232 www.tzktv.com O1 - Hosts: 60.190.24.232 www.56777.com O1 - Hosts: 60.190.24.232 www.0769cn.com O1 - Hosts: 60.190.24.232 www.love330.com O1 - Hosts: 60.190.24.232 www.eyou123.com O1 - Hosts: 60.190.24.232 www.newbaidu.net O1 - Hosts: 60.190.24.232 www.zx456.com O1 - Hosts: 60.190.24.232 www.hao456.net O1 - Hosts: 60.190.24.232 www.kuai123.com O1 - Hosts: 60.190.24.232 www.ho123.net O1 - Hosts: 60.190.24.232 www.nilaicha.com O1 - Hosts: 60.190.24.232 www.zn138.com O1 - Hosts: 60.190.24.232 www.happy8.cn O1 - Hosts: 60.190.24.232 www.haozs.com O1 - Hosts: 60.190.24.232 www.8wz.cn O1 - Hosts: 60.190.24.232 8wz.cn O1 - Hosts: 60.190.24.232 www.ewtj.com O1 - Hosts: 60.190.24.232 www.hoyido.com O1 - Hosts: 60.190.24.232 www.ezhtong.com O1 - Hosts: 60.190.24.232 www.kk369.com O1 - Hosts: 60.190.24.232 www.917114.com O1 - Hosts: 60.190.24.232 www.35935.com O1 - Hosts: 60.190.24.232 www.j186.com O1 - Hosts: 60.190.24.232 www.go08.com O1 - Hosts: 60.190.24.232 www.pswz.com O1 - Hosts: 60.190.24.232 www.21rl.com O1 - Hosts: 60.190.24.232 play.unionsky.cn O1 - Hosts: 60.190.24.232 www.topvery.cn O1 - Hosts: 60.190.24.232 www.maletx.com O1 - Hosts: 60.190.24.232 www.369go.net O1 - Hosts: 60.190.24.232 www.hao1.com O1 - Hosts: 60.190.24.232 www.jnwlt.com O1 - Hosts: 60.190.24.232 www.u369.com O1 - Hosts: 60.190.24.232 www.fj568.com O1 - Hosts: 60.190.24.232 www.hs23.com O1 - Hosts: 60.190.24.232 www.e6t.cn O1 - Hosts: 60.190.24.232 www.luck68.com O1 - Hosts: 60.190.24.232 www.ok321.com O1 - Hosts: 60.190.24.232 www.go5135.com O1 - Hosts: 60.190.24.232 www.bl366.com O1 - Hosts: 60.190.24.232 www.169go.com O1 - Hosts: 60.190.24.232 www.yhjm.com O1 - Hosts: 60.190.24.232 www.so2008.com O1 - Hosts: 60.190.24.232 www.k366.com O1 - Hosts: 60.190.24.232 www.jsing.net O1 - Hosts: 60.190.24.232 www.gjj.cc O1 - Hosts: 60.190.24.232 www.web888.org O1 - Hosts: 60.190.24.232 www.pkpkpk.net O1 - Hosts: 60.190.24.232 www.jsing.net O1 - Hosts: 60.190.24.232 abc.265.com O1 - Hosts: 60.190.24.232 265.com O1 - Hosts: 60.190.24.232 www.265.com O1 - Hosts: 60.190.24.232 hao123.com O1 - Hosts: 60.190.24.232 www.hao123.com O1 - Hosts: 60.190.24.232 9991.com O1 - Hosts: 60.190.24.232 www.9991.com O1 - Hosts: 60.190.24.232 gjj.cc O1 - Hosts: 60.190.24.232 5566.net O1 - Hosts: 60.190.24.232 www.5566.net O1 - Hosts: 60.190.24.232 qu123.com O1 - Hosts: 60.190.24.232 www.qu123.com O1 - Hosts: 60.190.24.232 855.com O1 - Hosts: 60.190.24.232 www.855.com O1 - Hosts: 60.190.24.232 7b.com.cn O1 - Hosts: 60.190.24.232 www.7b.com.cn O1 - Hosts: 60.190.24.232 ppgou.com O1 - Hosts: 60.190.24.232 www.ppgou.com O1 - Hosts: 60.190.24.232 v111.com O1 - Hosts: 60.190.24.232 www.v111.com O1 - Hosts: 60.190.24.232 xp13.com O1 - Hosts: 60.190.24.232 www.xp13.com O1 - Hosts: 60.190.24.232 521521.com O1 - Hosts: 60.190.24.232 www.521521.com O1 - Hosts: 60.190.24.232 19ku.com O1 - Hosts: 60.190.24.232 www.19ku.com O1 - Hosts: 60.190.24.232 37021.com O1 - Hosts: 60.190.24.232 www.37021.com O1 - Hosts: 60.190.24.232 da123.com O1 - Hosts: 60.190.24.232 www.da123.com O1 - Hosts: 60.190.24.232 x05.net O1 - Hosts: 60.190.24.232 www.x05.net O1 - Hosts: 60.190.24.232 www.acnow.net O1 - Hosts: 60.190.24.232 acnow.net O1 - Hosts: 60.190.24.232 www.114.com.cn O1 - Hosts: 60.190.24.232 114.com.cn O1 - Hosts: 60.190.24.232 www.jjol.cn O4 - 启动项HKLM\\Run: [RavTask] "e:\Program Files\Rising\Rav\RavTask.exe" -system O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - e:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm O8 - IE右键菜单中的新增项目: 导出到 Microsoft Excel(&x) - res://E:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000 O8 - IE右键菜单中的新增项目: 添加到QQ表情 - E:\Program Files\Tencent\QQ\AddEmotion.htm O8 - IE右键菜单中的新增项目: 用比特精灵下载(&B) - E:\Program Files\BitSpirit\bsurl.htm O23 - NT 服务: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - NT 服务: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - e:\program files\rising\rfw\rfwproxy.exe O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - e:\program files\rising\rfw\rfwsrv.exe O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - e:\Program Files\Rising\Rav\CCenter.exe O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - e:\Program Files\Rising\Rav\Ravmond.exe
sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:

sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:	发表于： 2006-09-17 12:45 \| 显示全部短消息资料字号：小中大 3楼已经找到根源，是一个附加于exe文件上的恶意软件，类似病毒，添加了一个drivers.exe,所以删不了。
sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:

sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:	发表于： 2006-09-17 12:51 \| 显示全部短消息资料字号：小中大 4楼看看附件: 文件名:7514982006917124322.bmp 下载次数:2603 文件类型:application/octet-stream 文件大小: 上传时间:2006-9-17 12:51:28 描述:
sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:

sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:	发表于： 2006-09-17 12:54 \| 显示全部短消息资料字号：小中大 5楼他的网站本身没有问题，但是出现这样的恶意软件，也难辞其咎附件: 文件名:7514982006917124604.bmp 下载次数:2591 文件类型:application/octet-stream 文件大小: 上传时间:2006-9-17 12:54:10 描述:
sapp 初生襁褓狮帖子:13 注册: 2006-09-17 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT