https://gekkk.co/i/c7c59e6b4ed009a5983a6501d2afd637

提交的 URL:
https://gekkk.co/i/c7c59e6b4ed009a5983a6501d2afd637
报告完成时间:

链接 · 找到 1 个

从页面中识别出的传出链接

链接文本
https://lyrahosting.comLyraHosting

JavaScript 变量 · 找到 20 个

在页面窗口对象上加载的全局 JavaScript 变量是在函数外部声明的变量,可以从当前范围内的代码中的任何位置访问

名称类型
onbeforetoggleobject
documentPictureInPictureobject
onscrollendobject
_0xe17cobject
w3DataObjectobject
w3DisplayDatafunction
w3IncludeHTMLfunction
w3Httpfunction
_0x556ffunction
_0x2ab8function

控制台日志消息 · 找到 0 条

记录到 Web 控制台的消息

HTML

页面的原始 HTML 正文

<!DOCTYPE html><html><head><script src="/vddosw3data.js"></script>
<script type="text/javascript" src="/min.js"></script><noscript><h1 style="text-align:center;color:red;"><strong>Please turn JavaScript on and reload the page.</strong></h1></noscript>
</head><body>
<div>


	<title>Just a moment...</title>
<style>
body {
  background-color: #333333;
}

<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<meta charset="UTF-8">


</style>
<link href="https://fonts.googleapis.com/css2?family=Open+Sans:wght@300;400&amp;display=swap" rel="stylesheet">


<table width="100%" height="100%" cellpadding="30">
<tbody><tr>
<td align="center" valign="center">
<img src="https://lyrahosting.com/lyrashield/lyrashield.svg">
						<h2 style="text-align: center;text-shadow: black 0.1em 0.1em 0.2em;color: #E0E0E0;opacity: .9;font-weight: 400;font-size: 20px;font-family: 'Source Code Pro';">
							Detecting intrusions...<br>This process will redirect you shortly.
						</h2>
<noscript>
<h1 style="text-align:center;color:red;">
<strong>Please turn JavaScript on and reload the page.</strong>
</h1>
</noscript>
<br>

<h3 style="text-align: center;text-shadow: black 0.1em 0.1em 0.2em;color: #E0E0E0;opacity: .9;font-weight: 400;font-size: 18px;font-family: 'Source Code Pro';">
							Powered by <a style="color: #ce3233;" href="https://lyrahosting.com" target="_blank"><b>LyraHosting</b></a>
						</h3>
<br>

</td>
</tr>
</tbody></table>


</div> 
<script>
w3IncludeHTML();
</script>
<script>var _0xe262=["\x70\x75\x73\x68","\x72\x65\x70\x6C\x61\x63\x65","\x6C\x65\x6E\x67\x74\x68","\x63\x6F\x6E\x73\x74\x72\x75\x63\x74\x6F\x72","","\x30","\x74\x6F\x4C\x6F\x77\x65\x72\x43\x61\x73\x65","\x4E\x54\x6B\x31\x5A\x6A\x4D\x33\x4E\x47\x45\x30\x5A\x6A\x63\x33\x4F\x54\x68\x6A\x4E\x44\x46\x68\x59\x7A\x6B\x33\x4E\x6A\x67\x31\x4F\x54\x6B\x78\x5A\x44\x4E\x68\x4D\x6A\x55\x3D"];function toNumbers(_0x3920x2){var _0x3920x3=[];_0x3920x2[_0xe262[1]](/(..)/g,function(_0x3920x2){_0x3920x3[_0xe262[0]](parseInt(_0x3920x2,16))});return _0x3920x3}function toHex(){for(var _0x3920x2=[],_0x3920x2=1== arguments[_0xe262[2]]&& arguments[0][_0xe262[3]]== Array?arguments[0]:arguments,_0x3920x3=_0xe262[4],_0x3920x5=0;_0x3920x5< _0x3920x2[_0xe262[2]];_0x3920x5++){_0x3920x3+= (16> _0x3920x2[_0x3920x5]?_0xe262[5]:_0xe262[4])+ _0x3920x2[_0x3920x5].toString(16)};return _0x3920x3[_0xe262[6]]()}var b2=atob(_0xe262[7]),b1=toNumbers(b2),c1=atob("OGQ0ZTk3ZjBkOGM2Yjk0MTYyZjhlMjhlNTdjYTNhODY="),c2=toNumbers(c1),a3=toNumbers("cbd31a6cde7727f73c6e76095e3d968c");document.cookie="LyraShield-ij="+toHex(slowAES.decrypt(a3,2,b1,c2))+";  path=/";setTimeout("location.href='https://gekkk.co:443/i/c7c59e6b4ed009a5983a6501d2afd637';",5000);
</script>
<center>
<br>
<br>
<center>


</center></center></body></html>