function replaceBadChar(content) { content=delHtml(content); content = content.replace(//g, ">"); content = content.replace(/%27/g, ""); content = content.replace(/'/g, "‘"); content = content.replace(/\"/g, "“"); content = content.replace(/\*/g, ";"); content = content.replace(/and/g, ""); content = content.replace(/exec/g, ""); content = content.replace(/dbcc/g, ""); content = content.replace(/alter/g, ""); content = content.replace(/insert/g, ""); content = content.replace(/select/g, ""); content = content.replace(/update/g, ""); content = content.replace(/delete/g, ""); content = content.replace(/count/g, ""); content = content.replace(/master/g, ""); content = content.replace(/truncate/g, ""); content = content.replace(/char/g, ""); content = content.replace(/declare/g, ""); content = content.replace(/where/g, ""); content = content.replace(/set/g, ""); content = content.replace(/mid/g, ""); content = content.replace(/chr/g, ""); content = content.replace(/&/g, ""); return content; } function killMoreChar(str) { var regxp = /([\s]){2,1111}/g; return str.replace(regxp,"$1"); } function delHtml(str) { str=killMoreChar(str); str=str.replace(/<\/?[\s\S]*?>/g,""); str = str.replace(/'/g, "‘"); return str; } function replcaeHtmlLab(str) { var regxp = /[^\w\u4e00-\u9fa5]/g; return str.replace(regxp,"").replace(/\s/g,""); } function createSqlWord(str) { var strs = str.split(" "); var returnStr =""; for(var i=0;i