//综合医院列表
function Hospitallist(pageIndex)
{
    var cityId=QueryString("city");
    var provinceId=QueryString("provinceId");
    var url="Process.aspx?city="+cityId+"&provinceId="+provinceId+"&pageIndex="+pageIndex;    
    if(IsTcmh(url)){return;}//防sql注入
    var id=$("divTypeName");
    var id1=$("middle");
    AjaxProcess(url,id,id1);
}
var xmlHttp;
function CreateXmlHttp()
{
    try{xmlHttp=new ActiveXObject("Msxml2.XMLHTTP");}
    catch(e){try{xmlHttp=new ActiveXObject("Microsoft.XMLHTTP");}
    catch(e){try{xmlHttp=new XMLHttpRequest();}
    catch(e){xmlHttp=false;}}}
}
///xmlHttp处理
function AjaxProcess(url,id,id1)
{
    CreateXmlHttp();    
    xmlHttp.open("POST",url);
    xmlHttp.onreadystatechange=function()
    {
        if(xmlHttp.readyState==4)
        {
            if(xmlHttp.responseText.indexOf("<# 5izd #>")!=-1)
            {
                id.innerHTML=xmlHttp.responseText.split("<# 5izd #>")[0];
                id1.innerHTML=xmlHttp.responseText.split("<# 5izd #>")[1];
            }
            else
            {
                window.location.href="/BUG.aspx";
            }        
        }           
    }
    xmlHttp.send(null);
}
function AddressAjaxProcess(url,id,id1,id2)
{
    CreateXmlHttp();    
    xmlHttp.open("POST",url);
    xmlHttp.onreadystatechange=function()
    {
        if(xmlHttp.readyState==4)
        {            
            id.innerHTML=xmlHttp.responseText.split('|')[0];
            id1.innerHTML=xmlHttp.responseText.split('|')[1];      
            id2.innerHTML=xmlHttp.responseText.split('|')[2];
            Search(1);                                            
        }          
    }
    xmlHttp.send(null);
}
//综合页搜索
function SearchDefault()
{    
    var keyWord=escape($("txtKeyWord").value);
     if(trim(keyWord)=="")
    {
        alert("请输入关键字!");
        return;
    }  
    var province=$("hidProvince").value;   
    var city=$("ddlCity").value;
    var county=$("ddlCounty").value;
    var village=$("ddlVillage").value; 
    var url="List.aspx?keyword="+keyWord+"&province="+province+"&city="+city+"&county="+county+"&village="+village;
    if(IsTcmh(url)){return;}//防sql注入   
    document.write("数据加载中,请稍候...");
    window.location.href=url;   
}
function SearchDataBing(province,city,county,village,keyWord)
{    
    $("hidProvince").value=province;
    $("txtKeyWord").value=keyWord;
    var idCity=$("divCity");
    var idCounty=$("divCounty");
    var idVillage=$("divVillage");   
    var url="../UserControl/AddressProcess.aspx?action=all&province="+province+"&city="+city+"&county="+county+"&village="+village;
    if(IsTcmh(url)){return;}//防sql注入
    AddressAjaxProcess(url,idCity,idCounty,idVillage);
    
      
}
function Search(pageIndex)
{
    var keyWord=escape(trim($("txtKeyWord").value));
     if(trim(keyWord)=="")
    {
        alert("请输入关键字!");
        return;
    }         
    var province=$("hidProvince").value;   
    var city=$("ddlCity").value;
    var county=$("ddlCounty").value;
    var village=$("ddlVillage").value;
    var id=$("divTypeName");
    var id1=$("middle");
    var url="Process.aspx?city="+city+"&provinceId="+province+"&countyId="+county+"&villageId="+village+"&keyword="+keyWord+"&pageIndex="+pageIndex;   
    if(IsTcmh(url)){return;}//防sql注入
    AjaxProcess(url,id,id1);  
}
function ltrim(s){ return s.replace( /^\s*/, ""); }//去左空格; 
function rtrim(s){ return s.replace( /\s*$/, ""); }//去右空格; 
function trim(s){ return rtrim(ltrim(s)); }//去左右空格;

//------------sql防注入
function  IsTcmh(oField)
{
    oField=unescape(oField);
    re=/;|#|([\s\b+()]*select|update|insert|delete|declare|@|exec|dbcc|alter|drop|create|backup|if|else|end|and|or|add|set|open|close|use|begin|return|as|go|exists)[\s\b+]/i; 
    var e = re.test(oField);
    if(e) {
    
    location.href="../bug.aspx";//请更换提示页
    return true;
    }else
    {
        return false;
    }
}