Blast's Security Lab
2 Jan 2010
关于:hxxp://www.xunqu.com/home/data/adtpl/file/com.js解密的日志(全体输出 - 8):
Level 0>hxxp://www.xunqu.com/home/data/adtpl/file/com.js
Level 1>hxxp://skyll2010.3322.org/360/33/index.html
Level 2>hxxp://skyll2010.3322.org/360/33/f.css
Level 2>hxxp://skyll2010.3322.org/360/33/e.jpg
Level 2>hxxp://skyll2010.3322.org/360/33/d.css
Level 2>hxxp://skyll2010.3322.org/360/33/c.jpg
Level 2>hxxp://skyll2010.3322.org/360/33/a.jpg
Level 3>hxxp://cocoexe.8gcc.com/Down/my/33.exe
日志由 Redoce2.0第86次修正版于 2010-1-2 21:41:14 生成。
Just an FYI, this one's got a new MITM (same filenames, just a different domain/path). The new domain and path is;
xnfcgx.16824.com.cn:173/360/33/
Domain resides at 204.188.206.11 (AS46844 204.188.192.0/18
SharkTECH Internet Services)
◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。