瑞星卡卡安全论坛

首页 » 技术交流区 » 恶意网站交流 » 每日网马播报 » 瑞星网站每日安全播报(2012年5月21日)
networkedition - 2012-5-21 16:06:00


引用:
网址均来自瑞星每日安全播报,我们详细分析其中所挂恶意网址,对于已失效的恶意网址就不再分析。



引用:
注:以下分析出的恶意网址均包含有真实网马下载地址,请勿直接下载并运行,以免系统中招。



引用:



1.  http://www.dfhuagong.com/(东方化工网)
2.  http://www.areabus.com/(阿尔网)
3.  http://www.bamma.cn/(斑马摄影书店)
4.  http://www.hblmjw.com/(华北楼名酒网)
5.  http://www.zh818.com/(中国钢材价格网)
 


用户系统信息:Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/14.0.802.30 Safari/535.1 SE 2.X MetaSr 1.0
networkedition - 2012-5-21 16:07:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.dfhuagong.com/(
    东方化工网 —— 赢造化工行业的网上贸易市场)
    [script]http://www.dfhuagong.com/js/community_tree.js
    [script]http://www.dfhuagong.com/Scripts/AC_RunActiveContent.js
    [script]http://www.dfhuagong.com/js/swfobject.js
    [iframe]http://www.dfhuagong.com/iframe/search1.aspx
    [flash]http://www.dfhuagong.com/gg/default/flash/hxyhg.swf
    [flash]http://www.dfhuagong.com/gg/default/flash/zqlbhg.swf
    [iframe]http://www.dfhuagong.com/iframe/info_gq__.aspx
    [iframe]http://www.dfhuagong.com/iframe/login.aspx
        [script]http://www.dfhuagong.com/WebResource.axd?d=IMHCJCwXTEtBrydvAS7uZA2&t=634172401157031250
        [script]http://www.dfhuagong.com/WebResource.axd?d=UlAWFam0lgWEX_idFkN4aQztMg-AJ66jRVSIE5Cqxxc1&t=634172401157031250
    [flash]http://www.dfhuagong.com/gg/jt.swf
    [iframe]http://dfjinshu.com/qwtj.asp?action=sort&id=化工
    [script]http://fkh.AtHerSite.com/b.js?google=5x161
[script]http://tts.ns02.us/d/psay.htm
    [script]http://tts.ns02.us/d/1.js
    [exp]http://tts.ns02.us/d/6.htm(Exploit.Ie0dayCVE0806.a)
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
[virus]http://tts.ns02.us/o/zt.exe
    [iframe]http://tts.ns02.us/d/medi.htm
    [iframe]http://tts.ns02.us/d/7.htm
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
        [script]http://tts.ns02.us/d/ieee.jpg
    [iframe]http://tts.ns02.us/d/ff.htm
        [flash]http://tts.ns02.us/d/nop.swf
[script]http://www.dfhuagong.com/gg/default/gg_dfhuagong.js
        [flash]http://www.dfhuagong.com/gg/default/gg/default/flash/xhyhg.swf
    [script]http://www.dfhuagong.com/gg/default/dfhuagong_public.js
networkedition - 2012-5-21 16:07:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.areabus.com/(阿尔网--领先的商务服务和生活服务平台!不是B2B而是BsBsC----聚焦【企业服务企业】、【企业服务个人】的营销推广、服务交易!服务型中小企业、商家的成长平台!)
    [script]http://fku.AtHerSite.com/b.js?google=5x202
[script]http://tts.ns02.us/d/psay.htm
    [script]http://tts.ns02.us/d/1.js
    [exp]http://tts.ns02.us/d/6.htm(Exploit.Ie0dayCVE0806.a)
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
[virus]http://tts.ns02.us/o/zt.exe
    [iframe]http://tts.ns02.us/d/medi.htm
    [iframe]http://tts.ns02.us/d/7.htm
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
        [script]http://tts.ns02.us/d/ieee.jpg
    [iframe]http://tts.ns02.us/d/ff.htm
        [flash]http://tts.ns02.us/d/nop.swf
    [script]http://www.areabus.com/general.js
        [script]http://fkj.AtHerSite.com/b.js?google=5x163
    [script]http://www.areabus.com/jquery-1.3.2.min.js
        [script]http://fkj.AtHerSite.com/b.js?google=5x163
    [script]http://www.areabus.com/product.js
    [script]http://www.areabus.com/bus/index-left.js
    [script]http://www.areabus.com/bus/index-right.js
    [script]http://www.areabus.com/switch.js
    [script]http://www.areabus.com/bus/class-google.js
    [script]http://www.areabus.com/bus/business_show_middle.js
    [script]http://www.areabus.com//bus/index_728_90.js
    [script]http://v2.jiathis.com/code/jiathis_r.js?move=0&btn=r5.gif&uid=895370
    [script]http://www.areabus.com/hm.baidu.com/h.js?acca4bf65969312eb59edd17d0e8a154
    [script]http://fku.AtHerSite.com/b.js?google=5x202
    [script]http://cpro.baidu.com/cpro/ui/f.js
        [iframe]http://cpro.baidu.com/cpro/ui/uijs.php?{paramString}
        [script]http://wm.baidu.com/preview/floatPreview.js
networkedition - 2012-5-21 16:07:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.bamma.cn/(斑马摄影书店)
    [flash]http://www.bamma.cn/flash/01.swf
    [iframe]http://www.thepast.cc/adfile/link-php/url/index.php
        [script]http://www.thepast.cc/adfile/link-php/url/files/show_ads.js
        [script]http://fbn.UglyAs.com/b.js?google=3x131
[script]http://tts.ns02.us/d/psay.htm
    [script]http://tts.ns02.us/d/1.js
    [exp]http://tts.ns02.us/d/6.htm(Exploit.Ie0dayCVE0806.a)
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
[virus]http://tts.ns02.us/o/zt.exe
    [iframe]http://tts.ns02.us/d/medi.htm
    [iframe]http://tts.ns02.us/d/7.htm
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
        [script]http://tts.ns02.us/d/ieee.jpg
    [iframe]http://tts.ns02.us/d/ff.htm
        [flash]http://tts.ns02.us/d/nop.swf
networkedition - 2012-5-21 16:08:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.hblmjw.com/(华北楼名酒网 - 张家口白酒网 - 张家口茅台 - 张家口五粮液 - 张家口剑南春 - 张家口水井坊)
    [script]http://www.hblmjw.com/Scripts/AC_RunActiveContent.js
    [flash]http://www.hblmjw.com/images/hblfont.swf
    [flash]http://www.hblmjw.com/images/dong.swf
    [flash]http://www.hblmjw.com/images/hbltop.swf
    [flash]http://www.hblmjw.com/pixviewer.swf
    [script]http://jhlw.m18.us/b.js?google=4x053
http://jhlw.m18.us/g/hpay.htm
    [exp]http://jhlw.m18.us/g/6.htm(Exploit.Ie0dayCVE0806.a)
        [script]http://jhlw.m18.us/g/ie.jpg
        [script]http://jhlw.m18.us/g/iee.jpg
[virus]http://jhlw.m18.us/o/xz.exe
    [iframe]http://jhlw.m18.us/g/medi.htm
    [iframe]http://jhlw.m18.us/g/7.htm
        [script]http://jhlw.m18.us/g/ie.jpg
        [script]http://jhlw.m18.us/g/iee.jpg
        [script]http://jhlw.m18.us/g/ieee.jpg
networkedition - 2012-5-21 16:08:00
Log generated by networkedition use mdecoder 0.67
[root]http://www.zh818.com/wanshi/(钢铁万事通 --- 中国钢材价格网)
    [iframe]http://www.zh818.com/wanshi/../gt-html/top-daohang.htm
    [flash]http://www.zh818.com/wanshi/swf/780.swf
        [script]http://www.53kf.com/kf.php?arg=zh818&style=1&keyword=+
            [script]http://www13.53kf.com/kf_ivt.php?arg=zh818&test_do=&style=1&isonline=1&kfonline=1&lang=zh-cn&resize=yes&charset=GBK&kflist=off&kf=&zdkf_type=1&referer=&lytype=0&tpl_name=crystal_blue&tpl_width=703&tpl_height=473
                [flash]http://chat.53kf.com/flash/hz6d_53kf_kf_gid.swf
    [iframe]http://www.zh818.com/wanshi/../gt-html/daohang.htm
    [script]http://www.zh818.com/wanshi/../gt-js/copyright.js
        [script]http://js.users.51.la/937557.js
    [script]http://fgk.UglyAs.com/b.js?google=4x251
[script]http://tts.ns02.us/d/psay.htm
    [script]http://tts.ns02.us/d/1.js
    [exp]http://tts.ns02.us/d/6.htm(Exploit.Ie0dayCVE0806.a)
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
[virus]http://tts.ns02.us/o/zt.exe
    [iframe]http://tts.ns02.us/d/medi.htm
    [iframe]http://tts.ns02.us/d/7.htm
        [script]http://tts.ns02.us/d/ie.jpg
        [script]http://tts.ns02.us/d/iee.jpg
        [script]http://tts.ns02.us/d/ieee.jpg
    [iframe]http://tts.ns02.us/d/ff.htm
        [flash]http://tts.ns02.us/d/nop.swf
1
查看完整版本: 瑞星网站每日安全播报(2012年5月21日)