江苏电信这流氓又出新的劫持了 手段更隐蔽 访问后一段时间内买任何东西 电商都得给电信分成

2015-10-25 08:52:56 +08:00
 gy86
江苏电信这流氓又出新的劫持了 手段更隐蔽 访问后一段时间内买任何东西 电商都得给电信分成
不知道怎么发图片 请看视频吧 优酷我也传了 不过清晰度只能到普清 只能百度在线凑合看了 http://pan.baidu.com/s/1mgNDcDy
付源代码
<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><style>
@charset "utf-8";body, div, span, p, iframe,a{margin:0;padding:0;outline:none}.ad-dialog{position:absolute;z-index:998;padding:0px;font-size:12px;overflow:hidden;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;box-shadow:1px 2px 2px #999;-webkit-box-shadow:1px 2px 2px #999;-moz-box-shadow:1px 2px 2px #999}.ad-dialog .title{width:100%;height:25px;line-height:25px;text-align:left;text-indent:8px;font-size:12px;font-weight:bold;color:#FFF;background:#CCC;-webkit-border-top-left-radius:4px;-moz-border-top-left-radius:4px;border-top-left-radius:4px;-webkit-border-top-right-radius:4px;-moz-border-top-right-radius:4px;border-top-right-radius:4px}.ad-dialog .icon{position:absolute;top:0;right:0;margin-right:4px}.ad-dialog .icon a{width:20px;height:20px;margin:2px 0 0 2px;text-align:center;line-height:20px;float:left;display:inline-block;text-decoration:none;color:#FFF;font-family:Verdana, Geneva, sans-serif;font-weight:bold;font-size:15px;overflow:hidden}.ad-dialog .icon a:hover{color:#F00}.ad-dialog .icon a:hover span{border-color:#F00}.ad-dialog .icon a span{display:inline-block;margin:0px;padding:0;overflow:hidden;zoom:1}.ad-dialog .icon .icon-min span{height:8px;width:12px;margin:2px 3px;border-bottom:2px solid #FFF}.ad-dialog .icon .icon-max span{height:8px;width:8px;margin:4px 4px;border:2px solid #FFF}.ad-dialog .icon .icon-max span:hover{border:2px solid #F00}.ad-dialog .icon .icon-min span:hover{border-bottom:2px solid #F00}.ad-dialog .content{-webkit-border-bottom-left-radius:4px;-moz-border-bottom-left-radius:4px;border-bottom-left-radius:4px;-webkit-border-bottom-right-radius:4px;-moz-border-bottom-right-radius:4px;border-bottom-right-radius:4px}.style0{-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;box-shadow:none}.style0 .title{background:#CCC;color:#333}.style0 .content{-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px}.style0 .icon a{color:#333}.style0 .icon .icon-min span{border-color:#333}.style0 .icon .icon-max span{border-color:#333}.style1{border:1px solid #000}.style1 .title{background:#444}
</style>
<script>
function b(){
_keyStr = "QWERTYUIOPASDFGHJKLZXCVBNMqazwsxedcrfvtgbyhnujmikolp2301674598*-";

this.encode = function (input) {
var output = "";
var chr1, chr2, chr3, enc1, enc2, enc3, enc4;
var i = 0;
input = _utf8_encode(input);
while (i < input.length) {
chr1 = input.charCodeAt(i++);
chr2 = input.charCodeAt(i++);
chr3 = input.charCodeAt(i++);
enc1 = chr1 >> 2;
enc2 = ((chr1 & 3) << 4) | (chr2 >> 4);
enc3 = ((chr2 & 15) << 2) | (chr3 >> 6);
enc4 = chr3 & 63;
if (isNaN(chr2)) {
enc3 = enc4 = 64;
} else if (isNaN(chr3)) {
enc4 = 64;
}
output = output +_keyStr.charAt(enc1) + _keyStr.charAt(enc2) +_keyStr.charAt(enc3) + _keyStr.charAt(enc4);
}
return output;
}
this.decode = function (input) {
var output = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
input = input.replace(/[^A-Za-z0-9\*\-\=]/g, "");
while (i < input.length) {
enc1 = _keyStr.indexOf(input.charAt(i++));
enc2 = _keyStr.indexOf(input.charAt(i++));
enc3 = _keyStr.indexOf(input.charAt(i++));
enc4 = _keyStr.indexOf(input.charAt(i++));
chr1 = (enc1 << 2) | (enc2 >> 4);
chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
chr3 = ((enc3 & 3) << 6) | enc4;
output = output + String.fromCharCode(chr1);
if (enc3 != 64) {
output = output + String.fromCharCode(chr2);
}
if (enc4 != 64) {
output = output + String.fromCharCode(chr3);
}
}
output = _utf8_decode(output);
return output;
}
_utf8_encode = function (string) {
string = string.replace(/\r\n/g, "\n");
var utftext = "";
for (var n = 0; n < string.length; n++) {
var c = string.charCodeAt(n);
if (c < 128) {
utftext += String.fromCharCode(c);
} else if ((c > 127) && (c < 2048)) {
utftext += String.fromCharCode((c >> 6) | 192);
utftext += String.fromCharCode((c & 63) | 128);
} else {
utftext += String.fromCharCode((c >> 12) | 224);
utftext += String.fromCharCode(((c >> 6) & 63) | 128);
utftext += String.fromCharCode((c & 63) | 128);
}
}
return utftext;
}
_utf8_decode = function (utftext) {
var string = "";
var i = 0;
var c = c1 = c2 = 0;
while (i < utftext.length) {
c = utftext.charCodeAt(i);
if (c < 128) {
string += String.fromCharCode(c);
i++;
} else if ((c > 191) && (c < 224)) {
c2 = utftext.charCodeAt(i + 1);
string += String.fromCharCode(((c & 31) << 6) | (c2 & 63));
i += 2;
} else {
c2 = utftext.charCodeAt(i + 1);
c3 = utftext.charCodeAt(i + 2);
string += String.fromCharCode(((c & 15) << 12) | ((c2 & 63) << 6) | (c3 & 63));
i += 3;
}
}
return string;
}
}

</script>
</head><body style='margin:0px;overflow-x:hidden;overflow-y:hidden;'><div class='ad-dialog ad_'id='ad_id'><div class='title tt_'></div><div class='icon'><a class='icon-min min_'><span></span></a><a style='display: none;'class='icon-max max_'><span></span></a><a class='icon-close close_'><span>..</span></a></div><div class='content ct_'></div></div><iframe id='ifrmain'src='#'scrolling=auto width='100%'height='100%'frameborder='no'onload=''style='position:fixed;'></iframe></body>
<script>
var bs = new b();
var urlm = bs.decode('qIK2zRbiS0FiwV72StFbNV7vwE7ra02mN06iN0oyN0umN0wyH0T8FZO6FZfpPtJ8Dpe7FpOtwZ2tMZ2twBPuHVd2wIQvD2TvDfNvDfM1w1zmatC1MVwgStFmPZPU');
var mainFrame = document.getElementById("ifrmain");
mainFrame.contentWindow.location.href = urlm;
</script>
</html>
2814 次点击
所在节点    宽带症候群
8 条回复
wql
2015-10-25 10:03:04 +08:00
也就是说,江苏电信通过脚本加入了他们的 aff 脚本,从而以此手段获取分成?
paradoxs
2015-10-25 10:09:08 +08:00
手机客户端购买就不用怕了。
laoyuan
2015-10-25 10:31:58 +08:00
日经,马上就时经了
laoyuan
2015-10-25 10:33:21 +08:00
你以为京东玩命从微信端发优惠券为了什么
d7101120120
2015-10-25 12:15:07 +08:00
电商直接把推广这东西关了不久得了?平时也没见推广能起到多大用,大多都是被 ISP 劫持了,电商还要另外掏钱给这些无效流量。
icloudnet
2015-10-25 13:38:58 +08:00
没有 SSL 的网站劫持得如此容易
人家 Google 大力推广 HTTPS 不是闹着玩的
GeekTest
2015-10-25 16:49:53 +08:00
@icloudnet 国内运营商也在推广 HTTPS (斜眼
Khlieb
2015-10-25 18:26:58 +08:00
这不只是劫持了,简直是劫道的。

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

https://www.v2ex.com/t/230850

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX