register.asp

此程序是一个个人主页创造程序,该程序无插件,无任何恶意程序.

<%
'#############################################################
'#      中国在线--极酷论坛 ver.2001 3.0
'#
'#  版权所有: 中国在线 (ChinaXP.Net)
'#
'#  制作人  : 周周 (SeeYa!)
'#
'#
'#  主页地址: http://www.ChinaXP.net/    中国在线
'#	      http://www.ChinaXP.Net/bbs/    中国在线--极酷论坛
'#
'#############################################################
%>
<!--#INCLUDE FILE="config.asp" -->
<!--#INCLUDE FILE="inc_functions.asp" -->
<!--#INCLUDE FILE="inc_top.asp" -->
<%
' 检查字符是否为数字类型
function isInteger(para)
	on error resume next
	dim str
	dim l,i
	if isNUll(para) then
		isInteger=false
		exit function
	end if
	str=cstr(para)
	if trim(str)="" then
		isInteger=false
		exit function
	end if
	l=len(str)
	for i=1 to l
		if mid(str,i,1)>"9" or mid(str,i,1)<"0" then
			isInteger=false
			exit function
		end if
	next
	isInteger=true
	if err.number<>0 then err.clear
end function
%>
<% '################################## %>
	<TD width="70%" align="left" valign="top">
<TABLE border="0" width="85%" align=center>
  <TR>
    <TD width="33%" align="left" nowrap><font face="<% Response.Write strDefaultFontFace %>" size="<% Response.Write strDefaultFontSize %>"><a href="default.asp"><img src="<% =strImageURL %>icon_folder_open.gif" alt="返回论坛首页" border="0">&nbsp;<% =strForumTitle %></a>
<BR><img src="<%=strImageURL %>icon_bar.gif" border="0"><img src="<% =strImageURL %>icon_folder_open.gif" border="0">&nbsp;<a href="policy.asp">服务条款和声明</a>
<BR><img src="<%=strImageURL %>icon_blank.gif" border="0"><img src="<%=strImageURL %>icon_bar.gif" border="0"><img src="<% =strImageURL %>icon_folder_open_topic.gif" border="0">&nbsp;<% =strForumTitle %>会员注册
</FONT></TD>
  </TR>
</TABLE>
</TD>
</TR>
</TABLE>
<% '################################## %>

<%
if Request.QueryString("mode") <> "DoIt" then
	if strAuthType = "nt" and ChkAccountReg = "1" then
%>
<p align="center"><font face="<% =strDefaultFontFace %>" size=<% =strDefaultFontSize %>><b>这个帐号不　要注册</b></font></p>
<table align="center">
  <tr>
    <td>
    <ul>
      <li>此NT使用者帐号已经注册</li>
    </ul>
    </td>
  </tr>
</table>
<!--#INCLUDE FILE="inc_adv.asp" -->
<!--#INCLUDE FILE="inc_footer.asp" -->
<%
		Response.End
	end if			

	call ShowForm

else
	Err_Msg = ""

	If strAutoLogon <> 1 then	
		if Trim(Request.Form("Name")) = "" then
			Err_Msg = Err_Msg & "<li>你必须输入姓名，并不能全部使用空格;</li>"
		end if
	end if

	'## Forum_SQL
	strSql = "SELECT M_NAME FROM " & strMemberTablePrefix & "MEMBERS "
	strSql = strSql & " WHERE M_NAME = '" & Trim(Request.Form("Name")) &"'"

	set rs = my_Conn.Execute (strSql)

	if rs.BOF and rs.EOF then
		'## Do Nothing
	else
		Err_Msg = Err_Msg & "<li>这个用户名已有人使用，请选择其他名称;</li>"
	end if
	rs.close
	set rs = nothing

	if strBadWordFilter = 1 then
		chkNameBadWords(Request.Form("Name"))
	end if

	if not IsValidString(Request.Form("Name")) then
		Err_Msg = Err_Msg & "<li><font color=red> !#$%^&*()=+{}[]|\;:/?,&gt;&lt; 字符不能出现在用户名里，请重新输入;</font></li>"
	end if

	'## NT authentication no additional password needed
	if strAuthType = "db" then
		if Trim(Request.Form("Password")) = "" then
			Err_Msg = Err_Msg &  "<li>你必须输入密码;</li>"
		end if
		if Len(Request.Form("Password")) > 20 then
			Err_Msg = Err_Msg & "<li>密码不能超过20个字符;</li>"
		end if
		if Request.Form("Password") <> Request.Form("Password2") then
			Err_Msg = Err_Msg & "<li>两次输入的密码不同;</li>"
		end if
	end if

	If strAutoLogon <> 1 then
		if Request.Form("Email") = "" then
			Err_Msg = Err_Msg & "<li>必须填写邮件地址;</li>"
		end if
		if EmailField(Request.Form("Email")) = 0 then
			Err_Msg = Err_Msg & "<li>必须填写正确的邮件地址;</li>"
		end if
	end if

	if (lcase(left(Request.Form("Homepage"), 7)) <> "http://") and (lcase(left(Request.Form("Homepage"), 8)) <> "https://") and (Request.Form("Homepage") <> "") then
		Err_Msg = Err_Msg & "<li>你必须在网址前加上 <b>http://</b> 或者 <b>https://</b></li>"
	end if
	if strAuthType = "nt" and ChkAccountReg = "true" then
		Err_Msg = Err_Msg & "<li>NT用户帐号已经注册;</li>"
	end if

' ########## www.wormcn.net 自定义表情图片 ##########
	if Trim(Request("MyFace"))<>"" then
		if (lcase(left(Request("MyFace"), 7)) <> "http://") and (lcase(left(Request("MyFace"), 8)) <> "https://") and (Request("MyFace") <> "") then
			Err_Msg = Err_Msg & "<li>你必须在表情图片的网址前加上 <b>http://</b> 或者 <b>https://</b></li>"
		else
			regPhoto_URL = Trim(Request("MyFace"))
		end if

		if Request("width")="" or Request("height")="" then
			Err_Msg = Err_Msg & "<li>请输入图片的宽度和高度。</li>"
		elseif not isInteger(Request("width")) or not isInteger(Request("height")) then
			Err_Msg = Err_Msg & "<li>你输入的表情图片高度不合法，<b>必须是数字</b></li>"
		elseif Request("width")<20 or Request("width")>80 then
			Err_Msg = Err_Msg & "<li>你输入的表情图片宽度不能小于 <b>20</b> 或者大于 <b>80</b></li>"
		elseif Request("height")<20 or Request("height")>80 then
			Err_Msg = Err_Msg & "<li>你输入的表情图片高度不能小于 <b>20</b> 或者大于 <b>80</b></li>"
		else
			regPhoto_Width = Trim(Request("width"))
			regPhoto_Height = Trim(Request("height"))
		end if
	else
		if Trim(Request("PHOTO_URL")) <> "" and lcase(trim(Request("PHOTO_URL"))) <> "http://" and Trim(lcase(Request("PHOTO_URL"))) <> "https://" then
			regPhoto_URL = ChkString(Request("Photo_URL"),"url")
		else
			regPhoto_URL = " "
		end if
	end if
' ########## www.wormcn.net 自定义表情图片 ##########

	if strUniqueEmail = "1" then

		'## Forum_SQL
		strSql = "SELECT M_EMAIL FROM " & strMemberTablePrefix & "MEMBERS "
		strSql = strSql & " WHERE M_EMAIL = '" & Trim(Request.Form("Email")) &"'"

		set rs = my_Conn.Execute (strSql)

		if rs.BOF and rs.EOF then
			'## Do Nothing
		else
			Err_Msg = Err_Msg & "<li>此邮件地址已经有人使用，请重新输入</li>"
		end if
		rs.close
		set rs = nothing
	end if
	if Len(Request.Form("Sig")) > 255 then
		Err_Msg = Err_Msg & "<li>个人签名不能超过255个字符 "
		Err_Msg = Err_Msg & "现在共有 <b>" & Len(Request.Form("Sig")) & "</b> 个字符</li>"
	end if
	if Err_Msg = "" then
		if Request.Form("Homepage") <> "" and lcase(Request.Form("Homepage")) <> "http://" and lcase(Request.Form("Homepage")) <> "https://" and lcase(Request.Form("Homepage")) <> "file:///" then
			regHomepage = Request.Form("Homepage")
		else
			regHomepage = " "
		end if

		'## Forum_SQL
		strSql = "INSERT INTO " & strMemberTablePrefix & "MEMBERS "
		strSql = strSql & "(M_NAME"
		if strAuthType = "nt" then
			strSql = strSql & ", M_USERNAME"
		end if

		strSql = strSql & ", M_PASSWORD"
		strSql = strSql & ", M_EMAIL"
		' ############# Hide Email Mod #############
		strSql = strSql & ", M_HIDE_EMAIL"
		' ##########################################
		strSql = strSql & ", M_DATE"
		strSql = strSql & ", M_COUNTRY"
		strSql = strSql & ", M_SIG"
		strSql = strSql & ", M_YAHOO"
		strSql = strSql & ", M_ICQ"
		strSql = strSql & ", M_AIM"
		strSql = strSql & ", M_POSTS"
		strSql = strSql & ", M_HOMEPAGE"
		strSql = strSql & ", M_LASTHEREDATE"
		strSql = strSql & ", M_STATUS"
		strSql = strSql & ", M_LEVEL"
		' ############# Ban IP Mod  ################
		strSql = strSql & ", M_LAST_IP"
		strSql = strSql & ", M_IP"
		' ############# 屏蔽用户 IP ################
		strSql = strSql & ", M_FIRSTNAME"
		strSql = strSql & ", M_LASTNAME"
		strsql = strsql & ", M_CITY"
		strsql = strsql & ", M_STATE"
		strsql = strsql & ", M_PHOTO_URL"
		' ############# 会员自定义表情图片大小 ###############
		if regPhoto_Width<>"" then
			strsql = strsql & ", M_FACE_WIDTH"
		end if
		if regPhoto_Height<>"" then
			strsql = strsql & ", M_FACE_HEIGHT"
		end if
		' ############# 会员自定义表情图片大小 ###############
		if strFavLinks = "1" then
			strsql = strsql & ", M_LINK1"
			strSql = strSql & ", M_LINK2"
		end if
		strSql = strsql & ", M_AGE"
		strSql = strSql & ", M_MARSTATUS"
		strSql = strsql & ", M_SEX"
		strSql = strSql & ", M_OCCUPATION"
		strSql = strSql & ", M_BIO"
		strSql = strSql & ", M_HOBBIES"
		strsql = strsql & ", M_LNEWS"
		strSql = strSql & ", M_QUOTE"
		'########################### PM RECEIVE #####################
		strSql = strSql & ", M_PMRECEIVE"
		'########################### PM RECEIVE #####################
		'########################### PM NEW MEMBER #####################
		strSql = strSql & ", M_PMEMAIL"
		'########################### PM NEW MEMBER #####################
		strSql = strSql & ") "
		strSql = strSql & " VALUES ("
		If strAutoLogon = "1" then
			strSql = strSql & "'" & Session(strCookieURL & "strNTUserFullName") & "'"
		Else
			strSql = strSql & "'" & ChkString(Request.Form("Name"),"name") & "'"
		end if
		if strAuthType = "nt" then
			strSql = strSql & ", " & "'" & strDBNTUserName & "'"
		end if
		strSql = strSql & ", " & "'" & ChkString(Request.Form("Password"),"password") & "'"
		strSql = strSql & ", " & "'" & ChkString(Request.Form("Email"),"email") & "'"
		' ############### Hide Email Mod ###############
		strSql = strSql & ", " & "'" & ChkString(Request.Form("HideMail"),"") & "'"
		' ##############################################
		strSql = strSql & ", " & "'" & DateToStr(strForumTimeAdjust) & "'"
		strSql = strSql & ", " & "'" & ChkString(Request.Form("Country"),"name") & "'"
		strSql = strSql & ", " & "'" & ChkString(Request.Form("Sig"),"message") & "'"
		strSql = strSql & ", " & "'" & ChkString(Request.Form("YAHOO"),"name") & "'"
		strSql = strSql & ", " & "'" & ChkString(Request.Form("ICQ"),"number") & "'"
		strSql = strSql & ", " & "'" & ChkString(Request.Form("AIM"),"name") & "'"
		strSql = strSql & ", " & "0"
		strSql = strSql & ", " & "'" & ChkString(regHomepage,"url") & "'"
		strSql = strSql & ", " & "'" & DateToStr(strForumTimeAdjust) & "'"
		strSql = strSql & ", " & "1"
		' ############# Member Level ###############
		strSql = strSql & ", " & "1"
		' ############### 屏蔽用户 IP ###############
		strSql = strSql & ", '" & Request.ServerVariables("REMOTE_ADDR") & "'"
		strSql = strSql & ", '" & Request.ServerVariables("REMOTE_ADDR") & "'"
		' ############### 屏蔽用户 IP ###############
		if strfullName = "1" then
			strSql = strSql & ", '" & ChkString(Request.Form("FirstName"),"") & "'"
			strSql = strSql & ", '" & ChkString(Request.Form("LastName"),"") & "'"
		else
			strSql = strSql & ", ' '"
			strSql = strSql & ", ' '"
		end if
		if strCity = "1" then
			strsql = strsql & ", '" & ChkString(Request.Form("City"),"") & "'"
		else
			strsql = strsql & ", ''"
		end if
		if strState = "1" then
			strsql = strsql & ", '" & ChkString(Request.Form("State"),"") & "'"