inc_top.asp

此程序是一个个人主页创造程序,该程序无插件,无任何恶意程序.

<%
'#############################################################
'#      中国在线--极酷论坛 ver.2001 3.0
'#
'#  版权所有: 中国在线 (ChinaXP.Net)
'#
'#  制作人  : 周周 (SeeYa!)
'#
'#
'#  主页地址: http://www.ChinaXP.net/    中国在线
'#	      http://www.ChinaXP.Net/bbs/    中国在线--极酷论坛
'#
'#############################################################

dim mLev, strLoginStatus,whereSql

function remoteIP()
	remoteIP = Request.ServerVariables("HTTP_X_FORWARDED_FOR")
	if remoteIP = "" then
		remoteIP = Request.ServerVariables("REMOTE_ADDR")
	end if
end function

set my_Conn = Server.CreateObject("ADODB.Connection")
my_Conn.Open strConnString

if (strAuthType = "nt") then
	call NTauthenticate()
	if (ChkAccountReg() = "1") then
		call NTUser()
	end if
end if

strDBNTUserName = Request.Cookies(strUniqueID & "User")("Name")
strDBNTFUserName = Request.Form("Name")
if strAuthType = "nt" then
	strDBNTUserName = Session(strCookieURL & "userID")
	strDBNTFUserName = Session(strCookieURL & "userID")
end if

SELECT CASE Request.Form("Method_Type")
	CASE "login"
		SELECT CASE ChkUser2(strDBNTFUserName, Request.Form("Password"))
			CASE 1, 2, 3, 4
				Call DoCookies(Request.Form("SavePassword"))
				strLoginStatus = 1
			CASE else
				strLoginStatus = 0
			end SELECT
	CASE "logout"
		Call ClearCookies()
			'delete user if exists
			SQL = "DELETE FROM " & strTablePrefix & "ONLINE WHERE " & strTablePrefix & "ONLINE.UserID = '" & strDBNTUserName & "'"
			my_conn.Execute SQL
			SQL = "DELETE FROM " & strTablePrefix & "ONLINE WHERE " & strTablePrefix & "ONLINE.UserID = '" & remoteIP() & "Guest" & "'"
			my_Conn.Execute SQL
end SELECT

mLev = cint(ChkUser2(strDBNTUserName, Request.Cookies(strUniqueID & "User")("Pword")))
if request.serverVariables("PATH_INFO") <> (strCookieURL & "admin_login.asp") then
	if (Application("down") AND mLev <> 4) then
		response.redirect "mods/down.asp"
	end if
end if

Response.Write	"<html>" & vbcrlf & vbcrlf & _
		"<head>" & vbcrlf & _
		"<title>" & strForumTitle & "</title>" & vbcrlf & _
		"<meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">" & vbcrlf & _
		"<meta name=""copyright"" content=""中国在线－－极酷论坛(www.ChinaXP.Net)"">" & vbcrlf

%>
<script language="JavaScript">
<!-- hide from JavaScript-challenged browsers
function openWindow(url) {
	popupWin = window.open(url,'new_page','width=400,height=400');
}
function openWindow2(url) {
	popupWin = window.open(url,'new_page','width=400,height=450')
}
function openWindow3(url) {
  popupWin = window.open(url,'new_page','width=400,height=450,scrollbars=yes')
}
function openWindow4(url) {
  popupWin = window.open(url,'new_page','width=400,height=525')
}
function openWindow5(url) {
popupWin = window.open(url,'new_page','width=400,height=500,scrollbars=1')
}
function openAdminWindow(url) {
	popupWin = window.open(url,'new_page','width=400,height=400');
	return false;
}
function openpollWindow(url) {
	popupWin = window.open(url,'new_page','width=300,height=400')
}
function openAnnounceWindow(url) {
	popupWin = window.open(url,'new_page','width='+(window.screen.availWidth/1.5)+',height=400,left='+(window.screen.availWidth-window.screen.availWidth/1.5-10)+',top=0,scrollbars=1')
}
// done hiding -->
</script>
<style type=text/css>
<!--
A:link		{color:<% Response.Write strLinkColor %>;text-decoration:<% Response.Write strLinkTextDecoration %>;}
A:visited	{color:<% Response.Write strVisitedLinkColor %>;text-decoration:<% Response.Write strVisitedTextDecoration %>;}
A:hover		{color:<% Response.Write strHoverFontColor %>;text-decoration:<% Response.Write strHoverTextDecoration %>;}
A:active	{color:<% Response.Write strActiveLinkColor %>;text-decoration:<% Response.Write strVisitedTextDecoration %>;}
input.radio	{background: <% Response.Write  strPopUpTableColor %>; color:#000000}
font		{ FONT-size: 9pt; line-height: 13pt; FONT-FAMILY:<% Response.Write strDefaultFontFace %>}
font_size	{ FONT-size: 9pt; line-height: 13pt; FONT-FAMILY:<% Response.Write strDefaultFontFace %>}
SELECT		{ FONT-size: 9pt; line-height: 13pt; FONT-FAMILY:<% Response.Write strDefaultFontFace %>; BACKGROUND-COLOR: #efefef}
table		{ FONT-size: 9pt; line-height: 13pt; FONT-FAMILY:<% Response.Write strDefaultFontFace %>}
td		{ FONT-size: 9pt; line-height: 13pt; FONT-FAMILY:<% Response.Write strDefaultFontFace %>}
textarea	{ BACKGROUND-COLOR: #efefef; BORDER-BOTTOM: 1px double; BORDER-LEFT: 1px double; BORDER-RIGHT: 1px double; BORDER-TOP: 1px double; COLOR: #000000; font-size: 9pt ;FONT-FAMILY:<% Response.Write strDefaultFontFace %>}
.Coolinput	{ BACKGROUND-COLOR: <% Response.Write  strPopUpTableColor %>; BORDER-BOTTOM: 1px double; BORDER-LEFT: 1px double; BORDER-RIGHT: 1px double; BORDER-TOP: 1px double; COLOR: #000000; font-size: 9pt; FONT-FAMILY:<% Response.Write strDefaultFontFace %>}
INPUT		{ BACKGROUND-COLOR: <% Response.Write  strPopUpTableColor %>; CURSOR: HAND; BORDER-TOP-WIDTH: 1px; PADDING-RIGHT: 1px; PADDING-LEFT: 1px; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 9pt; FONT-FAMILY: "<% Response.Write strDefaultFontFace %>"; BORDER-LEFT-COLOR: #cccccc; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #cccccc; PADDING-BOTTOM: 1px; BORDER-TOP-COLOR: #cccccc; PADDING-TOP: 1px; HEIGHT: 18px; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #cccccc}
BODY		{ FONT-FAMILY: 宋体; FONT-SIZE: 9pt; SCROLLBAR-HIGHLIGHT-COLOR: buttonface; SCROLLBAR-SHADOW-COLOR: buttonface; SCROLLBAR-3DLIGHT-COLOR: buttonhighlight; SCROLLBAR-TRACK-COLOR: #eeeeee; SCROLLBAR-DARKSHADOW-COLOR: buttonshadow }
//-->
</style>
<% If intSideMenu = 1 then %>
<!-- include file="popout_script.asp"-->
<% End if %>
<% If intPollMentor = 1 then %>
<!--#include file="inc_pollmentor.asp"-->
<% End If %>
</HEAD>
<%
'################ 获得 Forum Title & Topic Title ####################

if True then

	if Request.QueryString("FORUM_ID") <> "" then
		set rs_forum = Server.CreateObject("ADODB.RecordSet")
		'## Forum_SQL - Get the Forum Title
		strSql = "SELECT " & strTablePrefix & "FORUM.F_SUBJECT  "
		strSql = strSql & " FROM " & strTablePrefix & "FORUM "
		strSql = strSql & " WHERE " & strTablePrefix & "FORUM.FORUM_ID = " & Request.QueryString("FORUM_ID")

		set rs_forum = my_Conn.Execute (StrSql)
		strSubForumTitle = rs_forum("F_SUBJECT")
		rs_forum.close
		set rs_forum = nothing
	end if

	if Request.QueryString("TOPIC_ID") <> "" then
		set rs_topic = Server.CreateObject("ADODB.RecordSet")
		'## Forum_SQL - Get the Topic Title
		strSql = "SELECT " & strTablePrefix & "TOPICS.T_SUBJECT "
		strSql = strSql & " FROM " & strTablePrefix & "TOPICS "
		strSql = strSql & " WHERE " & strTablePrefix & "TOPICS.TOPIC_ID = " & Request.QueryString("TOPIC_ID")

		set rs_topic = my_Conn.Execute (StrSql)
		strTopicTitle = rs_topic("T_SUBJECT")
		rs_topic.close
		set rs_topic = nothing
	end if
end if

'####################################################################
%>

<%
' WHOS ONLINE SCRIPT
Dim strOnlinePathInfo, strOnlineQueryString, strOnlineLocation
Dim strOnlineUser, strOnlineDate, strOnlineCheckInTime, strOnlineTimedOut
Dim strOnlineUsersCount, strOnlineGuestsCount, strOnlineMembersCount
Dim strOnlineGuestUserIP

' ******************************************************
' ADD HERE WHAT YOU WANT THE PREFIX OF YOUR COOKIE TO BE
' it will either be 'strCookieURL' or 'strUniqueID'
strTempCookieType = strUniqueID
' ******************************************************

'### LETS GET WHAT PAGE THEY ARE ON
strOnlinePathInfo = Request.ServerVariables("Path_Info")
strOnlineQueryString = Request.QueryString

' ### 检查在线人员所在的位置
' TRY AND FIND OUT WHAT PAGE THEY ARE ON
If lCASE(Right(strOnlinePathInfo, 9)) = "forum.asp" Then
	strOnlineLocation = "<a href=""Link.asp?FORUM_ID=" & Request.QueryString("FORUM_ID") & """>" & strSubForumTitle & "</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 9)) = "topic.asp" Then
	strOnlineLocation = "查看主题 “<a href=""Link.asp?TOPIC_ID=" & Request.QueryString("TOPIC_ID") & """>" & strTopicTitle & "</a>”"
ElseIf lCASE(Right(strOnlinePathInfo, 11)) = "default.asp" Then
	strOnlineLocation = "<a href=""default.asp"">论坛首页</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 8)) = "post.asp" Then
	If Request.QueryString("method") = "Reply" Then
		strOnlineLocation = "回复主题 “<a href=""Link.asp?TOPIC_ID=" & Request.QueryString("TOPIC_ID") & """>" & ChkString(strTopicTitle,"title") & "</a>”"
	ElseIf Request.QueryString("method") = "TopicQuote" Then
		strOnlineLocation = "在 <a href=""Link.asp?FORUM_ID=" & Request.QueryString("FORUM_ID") & """>" & ChkString(strSubForumTitle,"title") & "</a> 准备以引用方式回复主题！"
	ElseIf Request.QueryString("method") = "Topic" Then
		strOnlineLocation = "在 <a href=""Link.asp?FORUM_ID=" & Request.QueryString("FORUM_ID") & """>" & strSubForumTitle & "</a> 准备发表新主题！"
	Else
		strOnlineLocation = "不知道在做什么？失踪了……"
	End If
ElseIf lCASE(Right(strOnlinePathInfo, 10)) = "active.asp" Then
	strOnlineLocation = "<a href=""active.asp"">浏览最新文章</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 11)) = "members.asp" Then
	strOnlineLocation = "<a href=""members.asp"">浏览论坛会员列表</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 10)) = "search.asp" Then
	strOnlineLocation = "<a href=""search.asp"">好像准备搜寻什么东西似的</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 7)) = "faq.asp" Then
	strOnlineLocation = "<a href=""faq.asp"">正在查看帮助说明</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 15)) = "pop_profile.asp" Then
	If Request.QueryString("mode") = "Display" Then
		strOnlineLocation = "<a href=""pop_profile.asp?" & strOnlineQueryString & """>正在修改个人资料</a>"
	Else
		strOnlineLocation = "个人资料"
	End If
ElseIf lCASE(Right(strOnlinePathInfo, 11)) = "pm_view.asp" Then
	strOnlineLocation = "<a href=""pm_view.asp"">正在查看悄悄话收件箱</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 14)) = "pm_options.asp" Then
	strOnlineLocation = "<a href=""pm_view.asp"">查看悄悄话参数设置</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 12)) = "bookmark.asp" Then
	strOnlineLocation = "<a href=""privatesend.asp"">正在查看收藏夹</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 15)) = "privatesend.asp" Then
	strOnlineLocation = "<a href=""privatesend.asp"">正在发送悄悄话</a>"
ElseIf lCASE(Right(strOnlinePathInfo, 16)) = "active_users.asp" Then
	strOnlineLocation = "<a href=""active_users.asp"">正在查看在线人员列表</a>"
ElseIf CInt(Instr(strOnlinePathInfo, "admin_")) > 0  Then
	strOnlineLocation = "忙着呢！正在管理区内设置论坛！"
Else
	strOnlineLocation = "不知道在哪里？失踪了……"
End If

' FIND OUT IF THEY ARE A GUEST, OR A USER
if Request.Cookies(strTempCookieType & "User")("Name") = "" then
	strOnlineUser = "Guest"
else
	strOnlineUser = Request.Cookies(strTempCookieType & "User")("Name")
end if

strOnlineUserIP = remoteIP()

' LETS ENCODE THIS INFO
strOnlineUser = OnlineSQLencode(strOnlineUser)
strOnlineLocation = OnlineSQLencode(strOnlineLocation)

' SET WHEN TO TIMEOUT THE USER
' DO THIS IN SECONDS
strOnlineDate = DateToStr(Date)
strOnlineCheckInTime = DateToStr(Now())

strOnlineTimedOut = strOnlineCheckInTime - 720		'time out the user after 12 minutes ( 720 seconds )

strSql = "SELECT " & strTablePrefix & "ONLINE.UserID, " & strTablePrefix & "ONLINE.UserIP, " & strTablePrefix & "ONLINE.LastChecked"
strSql = strSql & " FROM " & strTablePrefix & "ONLINE "
strSql = strSql & " WHERE " & strTablePrefix & "ONLINE.UserIP='" & strOnlineUserIP & "' AND " & strTablePrefix & "ONLINE.UserID='" & strOnlineUser & "'"

Set rsWho =  my_Conn.Execute (strSql)

if rsWho.eof or rsWho.bof then

	strUserAgentInfo = Request.Servervariables("HTTP_USER_AGENT")
	strUserAgentArr = Split(strUserAgentInfo, ";")

	strTempUserInfo1 = strUserAgentArr(1)
	if Instr(strTempUserInfo1, "MSIE") > 0 then
		strTempUserInfo1 = Replace(strTempUserInfo1, "MSIE", "Internet Explorer")
	end if
	strTempUserInfo2 = trim(Left(strUserAgentArr(2), Len(strUserAgentArr(2))-1))
	if InStr(strUserAgentInfo, "Mozilla/4.0 (compatible;") > 0 and strTempUserInfo2 = "Windows NT 5.0" then