查看: 3311|回复: 16
收起左侧

[已鉴定] 这个站又被挂了……

 关闭 [复制链接]
剑书
头像被屏蔽
发表于 2008-2-14 02:07:03 | 显示全部楼层 |阅读模式
hxxp://www.yychk.com

冷冷
发表于 2008-2-14 02:10:22 | 显示全部楼层
MS这个站没有威力

3.PNG

用freshow按了几下


Log is generated by FreShow.
[wide]http://www.yychk.com
    [frame]http://baidu1633.com/a1.htm
        [frame]http://baidu1633.com/001.htm
        [frame]http://baidu1633.com/002.htm
            [object]http://baidu1633.com/admin/xx.exe
        [frame]http://baidu1633.com/003.htm
            [object]http://baidu1633.com/admin/xx.exe
        [script]http://s134.cnzz.com/stat.php?id=755872&web_id=755872
    [script]http://www.yychk.com/common/common.js
        [object]http://activex.microsoft.com/activex/controls/mplayer/en/nsmp2inf.cab

[ 本帖最后由 冷_冷 于 2008-2-14 02:23 编辑 ]
solcroft
发表于 2008-2-14 02:13:11 | 显示全部楼层
报脚本
http://baidu1633.com/admin/xx.exe却挂掉
nod32.PNG
solcroft
发表于 2008-2-14 02:22:01 | 显示全部楼层
无聊的网马
欺骗感情
不玩了
mofunzone
发表于 2008-2-14 03:57:06 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\TDDOWNLOAD\002.htm'
C:\TDDOWNLOAD\
  002.htm
      [DETECTION] Contains detection pattern of the Java script virus JS/Agent.ES
      [INFO]      The file was deleted!

Starting the file scan:

Begin scan in 'C:\TDDOWNLOAD\003.htm'
C:\TDDOWNLOAD\
  003.htm
      [DETECTION] Contains detection pattern of the HTML script virus HTML/Shellcode.Gen
      [WARNING]   The file was ignored!
leonfg
发表于 2008-2-14 09:41:19 | 显示全部楼层
原帖由 冷_冷 于 2008-2-14 02:10 发表
MS这个站没有威力

200274

用freshow按了几下


Log is generated by FreShow.
[wide]http://www.yychk.com
    [frame]http://baidu1633.com/a1.htm
        [frame]http://baidu1633.com/001.ht ...

cab下不下来,
xx.exe:
Hello,

Thank you for the sample that you sent to us.

The file you submitted is clean. It is not malicious. This is the calc.exe executable from Microsoft.

Should you have further concerns, please do not hesitate to e-mail us again.

Have a nice day!

--
F-Secure Security Labs              http://www.f-secure.com/weblog/
F-Secure Corporation                http://www.f-secure.com/
BE SURE.
spaceplane
发表于 2008-2-14 09:44:08 | 显示全部楼层
avast 飘
啊弥陀佛
发表于 2008-2-14 10:00:35 | 显示全部楼层
http://baidu1633.com/admin/xx.exe
貌似有微软的数字签名..
Guanguancan
发表于 2008-2-14 10:19:15 | 显示全部楼层
AVAST飘过
但是挡住了
avast! Web Shield Warning
Access denied
avast! Web Shield detected a blocked file or page
and will not allow you to access the object. Please see
the system administrator if you need to access it anyway.

Object information
URL: http://baidu1633.com/admin/xx.exe
Accessed: 2008-2-14 10:18:36 +0800

Please be careful of what you're downloading from the Internet.
Many sites contain viruses or hostile Java/ActiveX objects
that may severely damage your system.


avast! - copyright (c) 1988-2007 ALWIL Software.
Thank you for using avast!.
hyxuzhimin
发表于 2008-2-14 10:34:06 | 显示全部楼层
不会用FreShow看不懂也。
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-16 18:33 , Processed in 0.139018 second(s), 20 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表