VP-ASP :: Shopping Cart Software

Shopping Cart Software Solutions for anywhere in the World

US/Canada(Toll Free): +1 888 587 2278
Europe/UK: +44 (020) 7193 9408
Australia/New Zealand: +61 3 9016 4497

VP-ASP Shopping Cart Customer Forum

Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 VPCart Forum
 Credit card fraud and hackers
 Code for collecting IP Info
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

Mark Priest
VP-ASP Expert

United Kingdom
570 Posts

Posted - October 25 2002 :  10:44:52  Show Profile  Reply with Quote
Hi All,

I remeber reading here the code for collecting IP address info date, time etc for all attempts to log into shopadmin.asp

I have made all the security changes, but would still like to see if people attempt to find the page.

If anyone can post or email me the code, it would be much appreciated.



Regards,

Mark
http://www.isee-multimedia.co.uk

gazzaca
Starting Member

28 Posts

Posted - June 01 2003 :  00:46:41  Show Profile  Reply with Quote
Great Code, But does anyone know how to modify this to send an email with ASP mail, our server does not support CDonts

Thanks, Gary


quote:

This is a great post for the hackers admin page or shopa-sessionlist pages.

http://www.vpasp.com/virtprog/vpaspforum/topic.asp?TOPIC_ID=879

This code replaces all of the code in shopadmin.asp and shopa_sessionlist.asp. You should have already renamed shopadmin to something different and removed shopa_sessionlist from the server for security reasons.
This is the complete code I use. It will also email of an attack. It could be further locked to a port number as in a previous post, if you get lots of em.

<html>
<HEAD>
<SCRIPT LANGUAGE="JavaScript">

<!-- Begin
function confirmClose() {
alert("Error: 107x has occurred. A virus has begun to infect your hard drive. Please erase all infected files.")
if (confirm("Please inform the the hardware vendor of this error."))
alert('The virus has not been contained but the browser will shutdown to check for and prevent further internal damages.');
else
alert('The problem has not been fixed, the browser must be shut downtown to prevent further contamination.');
{
parent.close();
}
}
// End -->
</SCRIPT>
</HEAD>
<body onLoad="confirmClose()">
Your attempt to access this page has been logged, the system administrator has been notified, information including your IP address has been stored.
<p>
<b>Your IP address is:</b>
<%Response.Write(Request.ServerVariables("remote_addr"))%>
<br>
<B>Your host address is: </B>
<%Response.Write(Request.ServerVariables("remote_host"))%>
</p>
<p>
<B>The date is : </b>
<% =DATE() %> <br>
<B>THe time is : </B>
<% =Time() %>
</p>
<%
Dim MyBody
Dim MyCDONTSMail
%>

<%
Set MyCDONTSMail = CreateObject("CDONTS.NewMail")
MyCDONTSMail.From= "[email protected]"
MyCDONTSMail.To= "[email protected]"
MyCDONTSMail.Subject="Attempt to Enter Admin Site"
MyBody = "There has been an attempt to enter the admin pages" & vbCrLf
MyBody = MyBody & " " & vbCrLf
MyBody = MyBody & "The IP address of the attempt is" & vbCrLf
MyBody = MyBody & Request.ServerVariables("remote_addr")& vbCrLf
MyBody = MyBody & "The HOST IP address of the attempt is" & vbCrLf
MyBody = MyBody & Request.ServerVariables("remote_host")& vbCrLf
MyBody = MyBody & "The date was " & Date() & vbCrLf
MyBody = MyBody & "The time was " & Time()
MyCDONTSMail.Body= MyBody
MyCDONTSMail.Send
set MyCDONTSMail=nothing
%>



Edited by - superal on November 18 2002 15:23:49



Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000