Victim website: http://www.caefs.zju.edu.cn/yjs/zsweb/index.htm - Zhejiang University College of Bioengineering and Food Science Graduate Admissions Information Website.
Because someone in my dormitory is taking the entrance exam for Zhejiang University's food science program, my computer has to endure this risky access every time. Now let's look at the code.
```html
```
The above are multiple compromised web pages.
- **http://xxx.745970.com/newdm/new05.htm?075**
- **http://xxx.llxxcx.cn/wm.htm?id=823**
- **http://aa.18dd.net/ww/new05.htm?075**
These three websites are no longer accessible.
- **http://aa.llsging.com/ww/new05.htm?013** contains malicious code:
```html
```
- **http://ad.haoliuliang.com/dm/diao.htm** contains malicious code (details in attachment `daio.txt`).
- **http://ad.haoliuliang.com/dm/rl.htm** contains malicious code (details in attachment `rl.txt`).
- **http://ad.haoliuliang.com/dm/rr.htm** contains malicious code (details in attachment `rr.txt`).
The last one is a tracking script.
- **http://www.shijiediyi.net/one/hao8.htm?015** contains malicious code:
```html
```
- **http://wb.shijiediyi.net/wm/new.htm** contains malicious code (details in attachment `new.txt`).
After the above analysis, although several virus URLs are no longer active, there are still three malicious code files present. Caution is advised. Those who are interested can download the compressed package for further inspection.