貌似跳转到 hxxp://utilizationseverely.biz/closest/98yf8913fjipgjialhg8239jgighnjh4i6k5o.php
类别: 入侵防护
日期和时间,风险,活动,状态,推荐的操作,IPS 警报名称,默认操作,采取的操作,攻击电脑,攻击者网址,目标地址,源地址,通信说明,类别
2013/1/27 16:05:10,高,阻止了一次入侵企图。,已阻止,不需要操作,Web Attack: Exploit Toolkit Website 27,不需要操作,不需要操作,,http://utilizationseverely.biz/closest/98yf8913fjipgjialhg8239jgighnjh4i6k5o.php,,,,
这里放过,然后是下面的
类别: 入侵防护
日期和时间,风险,活动,状态,推荐的操作,IPS 警报名称,默认操作,采取的操作,攻击电脑,攻击者网址,目标地址,源地址,通信说明,类别
2013/1/27 16:05:29,高,阻止了 WIN-MUD6U7NNTD1 的入侵企图,已阻止,不需要操作,Web Attack: JRE Concurrency CVE-2012-0507 6,不需要操作,不需要操作,"WIN-MUD6U7NNTD1 (192.168.58.128, 58238)",utilizationseverely.biz/closest/98yf8913fjipgjialhg8239jgighnjh4i6k5o.php?shbf=sumb&yyigwv=alqte,"utilizationseverely.biz (46.30.41.77, 80)",192.168.58.128 (192.168.58.128),"TCP, 端口 58238",
2013/1/27 16:05:27,高,阻止了 WIN-MUD6U7NNTD1 的入侵企图,已阻止,不需要操作,Web Attack: JRE Concurrency CVE-2012-0507 6,不需要操作,不需要操作,"WIN-MUD6U7NNTD1 (192.168.58.128, 58236)",utilizationseverely.biz/closest/98yf8913fjipgjialhg8239jgighnjh4i6k5o.php?shbf=sumb&yyigwv=alqte,"utilizationseverely.biz (46.30.41.77, 80)",192.168.58.128 (192.168.58.128),"TCP, 端口 58236",
2013/1/27 16:05:17,高,阻止了 WIN-MUD6U7NNTD1 的入侵企图,已阻止,不需要操作,Web Attack: JRE Concurrency CVE-2012-0507 6,不需要操作,不需要操作,"WIN-MUD6U7NNTD1 (192.168.58.128, 58235)",utilizationseverely.biz/closest/98yf8913fjipgjialhg8239jgighnjh4i6k5o.php?shbf=sumb&yyigwv=alqte,"utilizationseverely.biz (46.30.41.77, 80)",192.168.58.128 (192.168.58.128),"TCP, 端口 58235",
2013/1/27 16:05:15,高,阻止了 WIN-MUD6U7NNTD1 的入侵企图,已阻止,不需要操作,Web Attack: JRE Concurrency CVE-2012-0507 6,不需要操作,不需要操作,"WIN-MUD6U7NNTD1 (192.168.58.128, 58233)",utilizationseverely.biz/closest/98yf8913fjipgjialhg8239jgighnjh4i6k5o.php?shbf=sumb&yyigwv=alqte,"utilizationseverely.biz (46.30.41.77, 80)",192.168.58.128 (192.168.58.128),"TCP, 端口 58233",
|
发表于 2013-1-27 16:11:08
