河南电信测速中心挂马

显示全部楼层 · 发表于 2009-10-5 20:52:43

河南电信测速中心http://speed.myzone.cn/挂马，360.红伞和avast均报。已经好长时间了。

显示全部楼层 · 发表于 2009-10-5 20:58:27

Log generated by 是昔流芳 use mdecoder 0.26
[root]http://speed.myzone.cn/
[script]http://dxk.xorg.pl/x.js?google_ad=99x19_ad
      [iframe]http://acg.dns0755.net/365/360safe.htm
[script]http://dxn.xorg.pl/x.js?google_ad=99x22_ad
      [iframe]http://acg.dns0755.net/365/360safe.htm
[script]http://dad.xorg.pl/c.js?google_ad=105x30_ad
      [iframe]http://acg.dns0755.net/365/360safe.htm
         [iframe]http://acg.dns0755.net/365/at.htm
            [script]http://acg.dns0755.net/365/at.js
                  [iframe]http://acg.dns0755.net/365/myrea.htm
                     [script]http://acg.dns0755.net/365/myrea.css
                        [exe]http://acg.dns0755.net/d/ee.exe
                  [iframe]http://acg.dns0755.net/365/myreal.htm
                     [script]http://acg.dns0755.net/365/breal.css
            [iframe]http://acg.dns0755.net/365/xie.htm
                  [script]http://acg.dns0755.net/365/us0.swf
                  [script]http://acg.dns0755.net/365/us1.swf
                     [exe]http://acg.dns0755.net/d/ee.exe
                  [script]http://acg.dns0755.net/365/us3.swf
                  [script]http://acg.dns0755.net/365/us2.swf
            [iframe]http://acg.dns0755.net/365/office.htm
                  [script]http://acg.dns0755.net/365/office.css
                     [exe]http://acg.dns0755.net/d/ee.exe
            [iframe]http://acg.dns0755.net/365/newlz.htm
                  [script]http://acg.dns0755.net/365/newlz.js
                  [script]http://acg.dns0755.net/365/newlz.css
                     [exe]http://acg.dns0755.net/d/ee.exe
            [iframe]http://acg.dns0755.net/365/off.htm
                  [script]http://acg.dns0755.net/365/off.css
                     [exe]http://acg.dns0755.net/d/ee.exe
            [iframe]http://acg.dns0755.net/365/bf.htm
                  [script]http://acg.dns0755.net/365/breal.css
                     [exe]http://acg.dns0755.net/d/ee.exe
                  [script]http://acg.dns0755.net/365/bf.js
         [script]http://acg.dns0755.net/365/fa.js
            [iframe]http://acg.dns0755.net/365/fa.htm
                  [iframe]http://acg.dns0755.net/365/ff.html
                  [iframe]http://acg.dns0755.net/365/ie.html
                  [iframe]http://acg.dns0755.net/365/ff.html
                  [iframe]http://acg.dns0755.net/365/ie.html
                  [iframe]http://acg.dns0755.net/365/ff.html
                  [iframe]http://acg.dns0755.net/365/ff.html
[exe]http://219.150.150.22/windowsxp_sp2.exe
[exe]http://222.89.228.5:81/win2003sp1.exe
[exe]http://219.150.221.48/win2003sp1.exe
[exe]http://219.150.251.69/mvbar_v2/soft/wmp9cn.exe
[exe]http://222.88.193.202/test/win2003sp1.exe
[exe]http://219.150.137.194:8000/windowsxpsp3.exe
[exe]http://222.89.195.226:81/windowsxp_sp2.exe
[exe]http://219.150.176.188/files/windowsxp_sp2.exe
[exe]http://219.150.224.242/windows_sp2.exe

显示全部楼层 · 发表于 2009-10-5 20:59:41

[quote]原帖由 是昔流芳 于 2009-10-5 20:58 发表

Log generated by 是昔流芳 use mdecoder 0.26
[root]http://speed.myzone.cn/
[script]http://dxk.xorg.pl/x.js?google_ad=99x19_ad
http://acg.dns0755.net/365/360safe.htm
[script]http://d ... [/q看不懂

显示全部楼层 · 发表于 2009-10-5 21:00:02

显示全部楼层 · 发表于 2009-10-5 21:01:12

2009-10-05 21:00:05 成功阻止iexplore.exe访问http://acg.dns0755.net/365/fa.htm，此页面含有flash攻击恶意代码
2009-10-05 21:00:00 成功阻止iexplore.exe访问http://acg.dns0755.net/365/at.htm，此页面含有应用软件

[ 本帖最后由 lelefree 于 2009-10-5 21:03 编辑 ]

显示全部楼层 · 发表于 2009-10-9 04:13:32

Chrome都报了～

[其它] 河南电信测速中心挂马