www.webdeveloper.com
Results 1 to 5 of 5

Thread: How to generated this script?

  1. #1
    Join Date
    Apr 2012
    Posts
    3

    How to generated this script?

    Hello,

    I need to figure out how to generate this script. I discovered someone using this on adwords platform. its include redirect url but encrypted by eval vode. How can I solve this?

    I think this is redirect script because if I click their ad redirect one site but copy paste display URL to adress bar redirect to another site.

    Can someone enlighten me please, how to created this script?

    Thanks...

    Code:
    <script language="javascript" type="text/javascript">var _0x362a=["ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=","","charAt","indexOf","fromCharCode","length"];function _0IO(_0x6ea4x2){var _0x6ea4x3=_0x362a[0];var _0x6ea4x4,_0x6ea4x5,_0x6ea4x6,_0x6ea4x7,_0x6ea4x8,_0x6ea4x9,_0x6ea4xa,_0x6ea4xb,_0x6ea4xc=0,_0x6ea4xd=_0x362a[1];do{_0x6ea4x7=_0x6ea4x3[_0x362a[3]](_0x6ea4x2[_0x362a[2]](_0x6ea4xc++));_0x6ea4x8=_0x6ea4x3[_0x362a[3]](_0x6ea4x2[_0x362a[2]](_0x6ea4xc++));_0x6ea4x9=_0x6ea4x3[_0x362a[3]](_0x6ea4x2[_0x362a[2]](_0x6ea4xc++));_0x6ea4xa=_0x6ea4x3[_0x362a[3]](_0x6ea4x2[_0x362a[2]](_0x6ea4xc++));_0x6ea4xb=_0x6ea4x7<<18|_0x6ea4x8<<12|_0x6ea4x9<<6|_0x6ea4xa;_0x6ea4x4=_0x6ea4xb>>16&0xff;_0x6ea4x5=_0x6ea4xb>>8&0xff;_0x6ea4x6=_0x6ea4xb&0xff;if(_0x6ea4x9==64){_0x6ea4xd+=String[_0x362a[4]](_0x6ea4x4);} else {if(_0x6ea4xa==64){_0x6ea4xd+=String[_0x362a[4]](_0x6ea4x4,_0x6ea4x5);} else {_0x6ea4xd+=String[_0x362a[4]](_0x6ea4x4,_0x6ea4x5,_0x6ea4x6);} ;} ;} while(_0x6ea4xc<_0x6ea4x2[_0x362a[5]]);;return _0x6ea4xd;} ;function _1OO(_0x6ea4xf){var _0x6ea4x10=_0x362a[1],_0x6ea4xc=0;for(_0x6ea4xc=_0x6ea4xf[_0x362a[5]]-1;_0x6ea4xc>=0;_0x6ea4xc--){_0x6ea4x10+=_0x6ea4xf[_0x362a[2]](_0x6ea4xc);} ;return _0x6ea4x10;} ;var I0l='==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';eval(_0IO(_1OO(I0l)));</script>

  2. #2
    Join Date
    Oct 2010
    Location
    Versailles, France
    Posts
    1,266

    A script for the innocents !

    All this script are easy to read ! Displaying this kind of script at the end of the body after a <div id="rsp"></div> and replacing the eval function at the end of the script with a
    Code:
    document.getElementById('rsp').innerHTML=unescape(_0IO(_1OO(I0l)));
    is enough not to make advertising for this kind of obfuscator...

  3. #3
    Join Date
    Apr 2012
    Posts
    3
    hello, can you do this for me? I'm total newbie..
    thanks..
    Quote Originally Posted by 007Julien View Post
    All this script are easy to read ! Displaying this kind of script at the end of the body after a <div id="rsp"></div> and replacing the eval function at the end of the script with a
    Code:
    document.getElementById('rsp').innerHTML=unescape(_0IO(_1OO(I0l)));
    is enough not to make advertising for this kind of obfuscator...

  4. #4
    Join Date
    Oct 2010
    Location
    Versailles, France
    Posts
    1,266
    The last statement of the script is eval(_0IO(_1OO(I0l))); which restores the initial script by means of two functions. You can perhaps, at first, replace this eval with an alert like this : alert(_0IO(_1OO(I0l))); ? Then an unescape function would make the result more readable alert(unescape(_0IO(_1OO(I0l))));.

  5. #5
    Join Date
    Apr 2012
    Posts
    3
    Thanks for help...

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
HTML5 Development Center



Recent Articles