Webshell Akmal archtte id

Directory: C:\MyData\WWW\asc365\ <%@LANGUAGE="VBSCRIPT" CODEPAGE="936"%> <%Session.CodePage=936%> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <title>ASC365</title> <style type="text/css"> <!-- .STYLE2 { font-size: 12px; color: #FF0000; } .STYLE3 {color: #FF0000} .STYLE5 {color: #0080FF} --> </style> <script language="JavaScript" type="text/javascript"> function uppic() { TT1=document.change.TT1.value; if(TT1!="") { TT2=document.change.TT2.value; var re1=/(?=.*\d)(?=.*[a-zA-Z])(?=.*[\W_])^.{13,}$/; if (!re1.test(TT2)) { alert("�������������֣�Ӣ����ĸ,�����ַ����ҳ��ȳ���13λ"); document.change.TT2.focus(); return false; } TT1=document.change.TT1.value; if(TT2==TT1) { alert("����û���޸�"); document.change.TT3.focus(); return false; } TT3=document.change.TT3.value; if(TT2!=TT3) { alert("�����������벻����"); document.change.TT3.focus(); return false; } } return true; } </script> </head> <body> <div align="center"> <% Thispage ="http://" & Request.ServerVariables("SERVER_NAME") & ":" & Request.ServerVariables("Server_Port") & Request.ServerVariables("URL") set fs=Server.CreateObject("Scripting.FileSystemObject") 'Response.write "<p align='center'><b><font color='#0000FF' size='5'> ASC365 Canada Company Website Backstage Management System</font></b></P>" '--------------------------------------------- Function YYMMDD(YMD) Y_Y = DatePart("yyyy",YMD) M_M = DatePart("m",YMD) : If Len(M_M) < 2 Then M_M = "0" & M_M D_D = DatePart("d",YMD) : If Len(D_D) < 2 Then D_D = "0" & D_D H_H = DatePart("h",YMD) : If Len(H_H) < 2 Then H_H = "0" & H_H N_N = DatePart("n",YMD) : If Len(N_N) < 2 Then N_N = "0" & N_N S_S = DatePart("s",YMD) : If Len(S_S) < 2 Then S_S = "0" & S_S YYMMDD = Y_Y & M_M & D_D & H_H & N_N & S_S end function '--------------------------------------------- %> <p align="center"><b><font color="#0000FF" size="5"> ASC365 Canada Company Website Backstage Management System</font></b><BR><BR>������ʱ�䣺<font color="#FF0000" size="3"><%=now()%></font> ���׶�ʱ�䣺<font color="#FF0000" size="3"><%=DateAdd("h",2,now())%></font></P> <table border="0" width="800" height="24" align="center"> <form method="post" action="<%=thispage%>"> <tr> <td height="24" width="790"> <p align="center"> password:<input type="password" name="T1235" size="20"> CheckNumber:<input name="txt_check" type="text" size=6 maxlength=4 class="input"><img src="checkcode.asp " alt="��֤��,�������?����ˢ����֤��" height="10" style="cursor : pointer;" onClick="this.src='checkcode.asp?t='+(new Date().getTime());" > <input type="submit" value="Log In" name="H34">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <input type="submit" value="Log Out" name="H33"> </td> </tr> </form> </table> <% Time_pass_Modify="" login_CheckCode=Request.Form("txt_check") if login_CheckCode=CStr(session("validateCode")) then XXxy=trim(request.form("T1235")) FFFFFF=0 NNNNNN="" '--------------------------------------------- Temp=Server.MapPath("..\..\..\ASC365_CWZ\Web\WebAdmin\PW_Admin_Inf") If fs.FileExists(Temp)=True then Set f=fs.OpenTextFile(Temp,1) do while f.AtEndOfStream = false YY=Trim(f.ReadLine) if len(YY)>0 and left(YY,2)<>"//" then str=Split(YY,"|") if Trim(str(0))=left(XXxy,3) and len(Trim(str(3)))>0 then if Lcase(Trim(str(1)))="y" then if Trim(str(0))&Trim(str(3))=XXxy then '���ֹ�˾��̨-3��������-4 FFFFFF=1 NNNNNN=Trim(str(2)) Session("username")=Trim(str(2)) Time_pass_Modify= Trim(str(6)) '���ֹ�˾��̨6��������7 if Time_pass_Modify = "" then Time_pass_Modify = DateAdd("m",-6,now()) end if session("Time_pass_Modify") = Time_pass_Modify else FFFFFF=0 NNNNNN="" end if end if exit do end if end if loop f.Close: Set f=Nothing end if '--------------------------------------------- ' Set f=fs.OpenTextFile(Server.MapPath("AuthCode"), 1) ' do while f.AtEndOfStream = false ' YY=Trim((f.ReadLine)) ' if left(YY,3)="@@@" then ' temp=Split(YY,"#") ' Webpassed=trim(temp(1)) ' ' Response.write Webpassed & "<br>" ' end if ' if left(YY,3)="$$$" then ' temp=Split(YY,"#") ' Pagename=trim(temp(1)) ' ' Response.write Pagename & "<br>" ' end if ' ' if left(YY,3)="***" then ' temp=split(YY,"#") ' if XXxy= trim(temp(1)) then FFFFFF=1 ' end if ' loop ' f.Close: Set f=Nothing end if if (request.form("H34")="Log In" or len(XXxy)>0) and FFFFFF=1 then '--------------------------------------------- RQ=YYMMDD(DateAdd("h",15,now())) RQ=left(RQ,8) Temp=Server.MapPath("..\..\Admin\HTDLJL") '��̨��¼��¼Ŀ¼ If fs.FolderExists(Temp) <> true Then set fm1=fs.CreateFolder(Temp) set fm1=nothing end if Temp=Server.MapPath("..\..\Admin\HTDLJL") & "\" & left(RQ,6) '��̨��¼��¼Ŀ¼����һ��һ���ļ� WW=NNNNNN & "|" & Request.ServerVariables("REMOTE_ADDR") & "|" & DateAdd("h",15,now()) & "|���׶๫˾" set f=fs.OpenTextFile(Temp,8,true) f.WriteLine WW f.Close set f=Nothing '--------------------------------------------- session("Webpassed")="%asc365com%" Session.Timeout=500 end if if request.form("H33")="Log Out" then session("Webpassed")="" end if if session("Webpassed")<>"%asc365com%" then Response.write "<p align='center'><font color='#FF0000'> Please input correct password, enter the system.</font></P>" Response.End end if 'response.write(Session("Time_pass_Modify")&"|"&DateDiff("m",Session("Time_pass_Modify"),now())&"</br>") if IsDate(Session("Time_pass_Modify")) then if DateDiff("m",Session("Time_pass_Modify"),now()) >= 6 then Dim oldpass(100,10) o_i=0 Temp=server.MapPath("../../../ASC365_CWZ/Web/Webadmin/PW_Admin_Inf") set f=fs.OpenTextFile(Temp,1) do while f.AtEndOfStream=false str=f.ReadLine if left(str,2)<>"//" then str11=split(str,"|") for j=0 to 7 oldpass(o_i,j)=str11(j) next o_i=o_i+1 end if loop f.close set f=nothing Dim passDetail(18) p_i=1 dd=0 tt=0 if request.Form("submit")="submit" then for i=1 to 18 passDetail(i)=trim(request.Form("TT"&i)) next if passDetail(1)<>"" then tt=tt+1 bianma=request.Form("bianma") for i=0 to o_i-1 if bianma=oldpass(i,0) then if oldpass(i,3)=passDetail(1) and passDetail(1)<>"" then oldpass(i,3)=passDetail(2) oldpass(i,6) = now() dd=dd+1 end if end if next if dd=tt and dd>0 then Temp=server.MapPath("../../../ASC365_CWZ/Web/Webadmin/PW_Admin_Inf") set f=fs.OpenTextFile(Temp,2) for i=0 to o_i-1 ww="" for j=0 to 7 ww=ww&oldpass(i,j)&"|" next f.WriteLine(ww) next f.close set f=nothing end if end if %> <form id=change name=change method="post" action="" onsubmit="return uppic()"> <table width="1200" style="text-align:left; margin-top:50px" cellpadding="0" border="1" cellspacing="0"> <tr> <th align="center" height="40" colspan="3">���������޸�</th> </tr> <tr> <td align="center" height="40" colspan="3"><span class="STYLE5">��ע�⣬��̨���벻�������˱��롣����������֣��ַ��������ַ������ܰ������ַ���"|","#"�������볤��Ҫ����13λ���޸���Ӧ��̨�����룬������ԭʼ���롣</span></td> </tr> <tr> <td width="382" height="40"><div align="right">���˱��룺</div></td> <td colspan="2"><input type="text" name="bianma" value="<%=bianma%>" size="6"> <span class="STYLE3"><strong> *</strong></span></td> </tr> <tr> <td width="382" height="40"><div align="right">����̨���룺</div></td> <td width="285"><input type="text" name="TT1" id="TT1" value="<%=passDetail(1)%>" /> <span class="STYLE2">������</span></td> <td width="525"><input type="password" name="TT2" value="<%=passDetail(2)%>" /> <input type="password" name="TT3" value="<%=passDetail(3)%>" /> <span class="STYLE2">�����룬��������</span></td> </tr> <tr> <th align="center" height="40" colspan="3"><input type="submit" name="submit" value="submit" /></th> </tr> <% if dd*1 = 0 and tt*1 = 1 then %> <tr> <th align="center" height="40" colspan="3"><span class="STYLE3">���������������������</span></th> </tr> <% end if %> </table> </form> <% if dd*1 = 1 then Session("Time_pass_Modify") = "" response.Redirect("admin.asp") end if Response.End end if end if session("asc365allpassword")="8879365" Session.Timeout=500 ID=Request.Querystring("ID") '------------------------------���ܼ�������-------------------------------- dim Namee(50) Set f=fs.OpenTextFile(Server.MapPath("PanelLanguage"), 1) do while f.AtEndOfStream = false WW=trim(f.ReadLine) if left(WW,2)<>"//" and len(ww)>3 then y=left(ww,2) y=int(y) Namee(y)=right(ww,len(ww)-3) end if loop f.Close Set f=Nothing %> <br> <font face="Verdana"><b> <a target="_blank" href="../../Port.asp">Store</a>&nbsp;&nbsp;&nbsp;&nbsp; <a target="_blank" href="../Webpage/index.asp">Website</a>&nbsp;&nbsp;&nbsp;&nbsp; <a target="_blank" href="Help.asp">Help</a>&nbsp;&nbsp;&nbsp;&nbsp; <a target="_blank" href="http://tdneon.easycgi.com/ASC365/WorkReport/WorkReport.asp">Note</a></b></font><br><br><br> <a href="changepass.asp" target="_blank">�޸�����</a> <%'--------------------------------------------------------------------- %> <table border="1" width="1000" height="16" bordercolor="#666666" style="border-collapse: collapse"> <tr> <td height="16" width="1000"> <% FileNmaee="Bwltest1.Bwl" If request.form ("Bw2")="Note" then set f=fs.CreateTextFile(Server.MapPath(FileNmaee),true) DD=request.form("S9") f.write(DD) f.close set f=nothing end if If (fs.FileExists(Server.MapPath(FileNmaee)))=true then Set f=fs.OpenTextFile(Server.MapPath(FileNmaee), 1) do while f.AtEndOfStream = false WW=trim(f.ReadLine) if len(WW)<>0 then WW91 =ww91& WW &chr(13)&chr(10) loop else set f=fs.CreateTextFile(Server.MapPath(FileNmaee),true) f.write("") end if f.Close Set f=Nothing %> <table border="0" width="998" height="84"> <tr> <form method="post" action=""> <td height="84" width="928"><textarea rows="7" name="S9" cols="150" style="font-size: 12px; font-family: Verdana"><%=ww91%></textarea>&nbsp;</td> <td height="84" width="60"><input type="submit" value="Note" name="Bw2"></td> </form> </table> </td> </tr> </table> <%'----------------------------------------------------------------------%> <table border="1" width="1002" height="94" style="border-left-color: #666666; border-top-color: #666666"> <tr> <td height="80" width="185" valign="top"> <%'------------------------------------------------%> <form method="POST" action="<%=thispage%>"> <table border="0" width="185" height="40" style="border-collapse: collapse" bordercolor="#666666"> <% n=1 for i= 1 to 50 m=n if len(m)=1 then m="0"& m %> <tr> <% if i mod 2= 0 then %> <td height="15" width="175" bgcolor="#EEFFFF"> <% else %> <td height="15" width="175" bgcolor="#EEEEEE"> <% end if %> <p align="center"> <input type="password" name="<%="T" & n %>" size="10" style="font-size: 10px; font-family: Verdana"> <input type="submit" value="<%=m%>" name="<%="B"& n %>"><br> <font size="2" face="Verdana"><%=Namee(n)%><% n=n+1%></font></td> </tr> <% next %> </table> </form> </td> <%'------------------------------------------------%> <td height="82" width="793"valign="top"> <%'------------------------------------------------ dim TD(50) for i= 1 to 50 TD(i)=request.form("T" & i) if len(TD(i))<>0 then Set f=fs.OpenTextFile(Server.MapPath("Password"), 1) do while f.AtEndOfStream = false WW=trim(f.ReadLine) WW=replace(WW," ","") if left(WW,1)<>"/" or left(WW,1)<>"\"then x=left(WW,2) 'response.write x &"<br>" m=i if len(m)=1 then m="0"& m m=trim(m) 'response.write m &"<br>" if m=x then '-------------------------------- mm=0 for j= 1 to len(ww) y=mid(ww,j,1) if y="/" then mm=(mm*1)+1 next temp=split(ww,"/") FFF=0 for z= 1 to mm if temp(z)= trim(TD(i)) then FFF=i 'response.write FFF & "<br>" end if next '-------------------------------- end if end if loop f.Close:Set f=Nothing end if next 'if FFF=1 then Server.Execute("1_CheckNewOrder.asp") '����1�� �鿴�Ƿ����µĶ��� if FFF=1 or ID="B01" then Server.Execute("01_DeliveryYT.asp") '����1�� ֪ͨ���� 'if FFF=2 then Server.Execute("2_AnswerQuestion.asp") '����2���鿴�Ƿ�������ش� if FFF=2 or ID="B02" then Server.Execute("02_Store.asp") '����2���鿴��� if FFF=3 or ID="B3" then Server.Execute("3_CustomerListing.asp") '����3���г����пͻ� 'if FFF=4 or ID="B4" then Server.Execute("4_Memo.asp") '����4�� ����¼ if FFF=4 or ID="B4" then Server.Execute("04_INFSearch.asp") '����4�� ��Ʒ��Ϣ��ѯ if FFF=5 or ID="B5" then Server.Execute("5_SuperAdmin.asp") '����5����������Ա if FFF=6 or ID="B06" then Server.Execute("06_Store.asp") '����6����ѯ��桢���� if FFF=7 or ID="B7" then Server.Execute("07_DeliveryYT.asp") '����7�������û��������� if FFF=8 or ID="B8" then Server.Execute("../../../ASC365_YYT/WEB/Webadmin/41Refund.asp") '����8���˿�ҵ�� 'if FFF=9 or ID="B9" then Server.Execute("9_SaleCheck.asp") '����9�����۲鿴 if FFF=10 or ID="B10" then Server.Execute("10_Cangku.asp") '����10�� ��ˮ�� if FFF=11 or ID="B11" then Server.Execute("11_WebPorductListing.asp") '����11����վ��Ʒ�б� 'if FFF=12 or ID="B12" then Server.Execute("12_WebProductPrice.asp") '����12�� ��վ��Ʒ�۸�1 ���ܲ�ȫ 'if FFF=13 or ID="B13" then Server.Execute("13_StoreProductList.asp") '����13�� �г����в�Ʒ if FFF=14 or ID="B14" then Server.Execute("14_StoreAdmin.asp") '����14�� �ֿ����Ա if FFF=15 or ID="B15" then Server.Execute("15_StoreEdit.asp") '����15�� �ֿ�༭ if FFF=16 or ID="B16" then Server.Execute("16_SupplierView.asp") '����16�� ��ѯ��Ʒ��Ϣ 'if FFF=17 or ID="B17" then Server.Execute("17_SupplierView.asp") '����17�� ��Ʒ���۱��� if FFF=18 or ID="B18" then Server.Execute("18_TiaoKulist.asp") '����18�� �����̲鿴 if FFF=19 or ID="B19" then Server.Execute("20_Onebaobiao.asp") '����20�� �����۸��� if FFF=20 or ID="B20" then Server.Execute("20_baobiao.asp") if FFF=21 or ID="B21" then Server.Execute("21_SearchProduct.asp") '����21�� ������Ʒ 'if FFF=22 or ID="B22" then Server.Execute("22_ProductsSearch.asp") '����22�� ��Ʒ������ 'if FFF=23 or ID="B23" then Server.Execute("23_SearchCustomer.asp") '����23�� �ͻ�������ʷ���� 'if FFF=24 or ID="B24" then Server.Execute("24_SetCustomer.asp") '����24�� �����ͻ����� 'if FFF=25 or ID="B25" then Server.Execute("25_SendEmail.asp") '����25�� ��ͻ����巢��Email if FFF=26 or ID="B26" then Server.Execute("26_SupplierProduct.asp") '����26�� ����������� if FFF=27 or ID="B27" then Server.Execute("27_ReceivingProduct.asp") '����27�� �յ�������� if FFF=28 or ID="B28" then Server.Execute("28_Chukoubaoguan.asp") '����28�� ���ڱ��� 'if FFF=29 or ID="B29" then Server.Execute("29_Store.asp") '����29�� ��������Ϣ if FFF=30 or ID="B30" then Server.Execute("30_panku.asp") '����30�� ����ˮ�� 'if FFF=31 or ID="B31" then Server.Execute("31_MoneyHistory.asp") '����31�� ����������嵥 if FFF=32 or ID="B32" then Server.Execute("32_PurchaseListPrice.asp") '����32�� �²�Ʒ���� 'if FFF=33 or ID="B33" then Server.Execute("33_DaliyMoney.asp") '����33�� �޸�����ˮ����Ŀ 'if FFF=34 or ID="B34" then Server.Execute("34_DaliyListing.asp") '����34�� ����ձ����ϴ� if FFF=35 or ID="B35" then Server.Execute("35_haoping.asp") '����35�� ����ձ����ѯͳ�� 'if FFF=36 or ID="B36" then Server.Execute("36_SupplierProduct.asp") '����36�� �쳵����������� 'if FFF=37 or ID="B37" then Server.Execute("37_ReceivingProduct.asp") '����37�� �쳵�յ�������� 'if FFF=38 or ID="B38" then Server.Execute("38_SupplyCheck.asp") '����38�� �յ������ѯ���� 'if FFF=39 or ID="B39" then Server.Execute("39_DeliveryYT.asp") '����39�� ��̨���۷������� if FFF=42 or ID="B42" then Server.Execute("42_Zuhe.asp") '����39�� ��̨���۷������� if FFF=43 or ID="B43" then Server.Execute("43_EbayItem.asp") '����39�� ��̨���۷������� 'if FFF=40 or ID="B40" then Server.Execute("40_DeliveryYT.asp") '����40�� ��̨��E�ʱ������۷������� if FFF=44 or ID="B44" then Server.Execute("44_CPJBXX.asp") '����44�����Ʋ�Ʒ�Ļ�����Ϣ����ã� 'if FFF=45 or ID="B45" then Server.Execute("45_HowtoOrder.asp") '����45������������Ʒ 'if FFF=46 or ID="B46" then Server.Execute("46_CustomerEmailChange.asp") '����46���û������ʼ���ַ 'if FFF=47 or ID="B47" then Server.Execute("47_NewCustomerSignUp.asp") '����47�����û�ע�� 'if FFF=48 or ID="B48" then Server.Execute("48_forgetPassword.asp") '����48�������û��������� 'if FFF=49 or ID="B49" then Server.Execute("49_PostedNewMessage.asp") '����49���ش�ͻ�����ʱ�����͵��� 'if FFF=50 or ID="B50" then Server.Execute("50_SetCustomer.asp") '����50�� �����¿ͻ���վ ��׼��ʽ %> <%'######################### ����19�� ��վ��Ʒ�б�%> <%'------------------------------------------------%> </td> </tr> </table> <%Set fs=Nothing%> <script type="text/javascript"> var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www."); document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E")); </script> <script type="text/javascript"> try { var pageTracker = _gat._getTracker("UA-15831267-1"); pageTracker._trackPageview(); } catch(err) {}</script> </div> </body> </html>