Hi,
I think this challenge is little stupid. There are many passwords that are correct in function Check() but not correct in URL. I think that javascripts challenges doesn't involves bruteforce attack or dictionary attack. I don't know French so I can't even select correct password from the generated list (my list has above 400 passwords).
Sorry form my English.