Not at all, that is awesome, you don't understand how many hours I've been trying to find that info. I also have plenty more flash files to get the code from :). It's actually kind of interesting that they use javascript that checks useragent, timezone, etc. on whether a pop should be launched or not.
Burak, can I contact you at manitu at buraks.com ? -Mike -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael Stuhr Sent: Wednesday, September 20, 2006 6:52 PM To: Flashcoders mailing list Subject: Re: [Flashcoders] Decompiling some sketchy flash code Michiel Nolet schrieb: > I am more than willing to shell $59.95 for asv, I just want to make > sure it can extract stuff that other toosl couldn't. I've tried the > free command line ones, and shell out $30 for some crappy software > that plain didn't work. Could you copy paste some sample lines of > more informative code you're finding? > > function setswfashCookie() { my_date.setTime(my_date.getTime() + 432000000); my_so.data.expires = my_date.getTime(); my_so.swfush(); if (_root.strong) { this.createEmptyMovieClip("target_mc", this.getNextHighestDepth()); target_mc.unique = unique.getTime(); target_mc.loadVariables(_root.sscript, "GET"); target_mc.param_interval = setInterval(checkParamsLoaded, 100); } } function checkParamsLoaded() { if (target_mc.popup == undefined) { } else if (target_mc.popup == "1") { clearInterval(target_mc.param_interval); getURL (_root.tzjscript, "_self"); } else if (target_mc.popup == "0") { clearInterval(target_mc.param_interval); } } _root.strong = true; _root.strongPP = "###"; _root.sscript = "###"; _root.easyPP = "###"; _root.tz_begin = -3; _root.tz_end = -9; _root.tzjscript = ((((("javascript:var w=window,n=navigator,a=n.appMinorVersion,d=document,u='" + _root.strongPP) + "',dt=new Date(),tz=-dt.getTimezoneOffset()/60;p=(n.userAgent.indexOf('SV1')!=-1)| |(a&&(a.indexOf('SP2')!=-1));i=(d.all&&encodeURI()&&!w.Event);if(!(tz>=" ) + _root.tz_end) + "&&tz<=") + _root.tz_begin) + ")){if(p&&!d.getElementById('o')){d.body.innerHTML+='<object id=o height=\"0\" classid=\"CLSID:6BF52A52-394A-11D3-B153-00C04F79FAA6\"></object>';};(i&& p)?o.launchURL(u):w.open(u);};void 0;"; _root.jscript = ("javascript:var w=window,n=navigator,a=n.appMinorVersion,d=document,u='" + _root.strongPP) + "';p=(n.userAgent.indexOf('SV1')!=-1)||(a&&(a.indexOf('SP2')!=-1));i=(d. all&&encodeURI()&&!w.Event);if(p&&!d.getElementById('o')){d.body.innerHT ML+='<object id=o height=\"0\" classid=\"CLSID:6BF52A52-394A-11D3-B153-00C04F79FAA6\"></object>';};(i&& p)?o.launchURL(u):w.open(u);void 0;"; var unique:Date = new Date(); var my_date:Date = new Date(); var my_so:SharedObject = SharedObject.getLocal("tiger_swf7300506", "/"); if (my_so.data.expires != undefined) { var tm = my_date.getTime(); if (tm > my_so.data.expires) { setswfashCookie(); } } else { setswfashCookie(); } if (_root.ClickTAG == undefined) { _root.ClickTAG = _root.easyPP; } if (_root.ClickTARGET == undefined) { _root.ClickTARGET = "_blank"; } _root.URL_btn.onRelease = function () { getURL (_root.ClickTAG, _root.ClickTARGET); }; those ###'s are real urls. and those are only the actions on frame 1 ... i guess you "lost" ~60 bucks right now :-) micha _______________________________________________ Flashcoders@chattyfig.figleaf.com To change your subscription options or search the archive: http://chattyfig.figleaf.com/mailman/listinfo/flashcoders Brought to you by Fig Leaf Software Premier Authorized Adobe Consulting and Training http://www.figleaf.com http://training.figleaf.com _______________________________________________ Flashcoders@chattyfig.figleaf.com To change your subscription options or search the archive: http://chattyfig.figleaf.com/mailman/listinfo/flashcoders Brought to you by Fig Leaf Software Premier Authorized Adobe Consulting and Training http://www.figleaf.com http://training.figleaf.com