<% Response.Buffer=True %> <% '-------------------------------------------------------------------- ' Microsoft ADO ' ' (c) 1996-1998 Microsoft Corporation. All Rights Reserved. ' ' ' ' ADO constants include file for VBScript ' '-------------------------------------------------------------------- '---- CursorTypeEnum Values ---- Const adOpenForwardOnly = 0 Const adOpenKeyset = 1 Const adOpenDynamic = 2 Const adOpenStatic = 3 '---- CursorOptionEnum Values ---- Const adHoldRecords = &H00000100 Const adMovePrevious = &H00000200 Const adAddNew = &H01000400 Const adDelete = &H01000800 Const adUpdate = &H01008000 Const adBookmark = &H00002000 Const adApproxPosition = &H00004000 Const adUpdateBatch = &H00010000 Const adResync = &H00020000 Const adNotify = &H00040000 Const adFind = &H00080000 Const adSeek = &H00400000 Const adIndex = &H00800000 '---- LockTypeEnum Values ---- Const adLockReadOnly = 1 Const adLockPessimistic = 2 Const adLockOptimistic = 3 Const adLockBatchOptimistic = 4 '---- ExecuteOptionEnum Values ---- Const adRunAsync = &H00000010 Const adAsyncExecute = &H00000010 Const adAsyncFetch = &H00000020 Const adAsyncFetchNonBlocking = &H00000040 Const adExecuteNoRecords = &H00000080 '---- ConnectOptionEnum Values ---- Const adAsyncConnect = &H00000010 '---- ObjectStateEnum Values ---- Const adStateClosed = &H00000000 Const adStateOpen = &H00000001 Const adStateConnecting = &H00000002 Const adStateExecuting = &H00000004 Const adStateFetching = &H00000008 '---- CursorLocationEnum Values ---- Const adUseServer = 2 Const adUseClient = 3 '---- DataTypeEnum Values ---- Const adEmpty = 0 Const adTinyInt = 16 Const adSmallInt = 2 Const adInteger = 3 Const adBigInt = 20 Const adUnsignedTinyInt = 17 Const adUnsignedSmallInt = 18 Const adUnsignedInt = 19 Const adUnsignedBigInt = 21 Const adSingle = 4 Const adDouble = 5 Const adCurrency = 6 Const adDecimal = 14 Const adNumeric = 131 Const adBoolean = 11 Const adError = 10 Const adUserDefined = 132 Const adVariant = 12 Const adIDispatch = 9 Const adIUnknown = 13 Const adGUID = 72 Const adDate = 7 Const adDBDate = 133 Const adDBTime = 134 Const adDBTimeStamp = 135 Const adBSTR = 8 Const adChar = 129 Const adVarChar = 200 Const adLongVarChar = 201 Const adWChar = 130 Const adVarWChar = 202 Const adLongVarWChar = 203 Const adBinary = 128 Const adVarBinary = 204 Const adLongVarBinary = 205 Const adChapter = 136 Const adFileTime = 64 Const adDBFileTime = 137 Const adPropVariant = 138 Const adVarNumeric = 139 '---- FieldAttributeEnum Values ---- Const adFldMayDefer = &H00000002 Const adFldUpdatable = &H00000004 Const adFldUnknownUpdatable = &H00000008 Const adFldFixed = &H00000010 Const adFldIsNullable = &H00000020 Const adFldMayBeNull = &H00000040 Const adFldLong = &H00000080 Const adFldRowID = &H00000100 Const adFldRowVersion = &H00000200 Const adFldCacheDeferred = &H00001000 Const adFldKeyColumn = &H00008000 '---- EditModeEnum Values ---- Const adEditNone = &H0000 Const adEditInProgress = &H0001 Const adEditAdd = &H0002 Const adEditDelete = &H0004 '---- RecordStatusEnum Values ---- Const adRecOK = &H0000000 Const adRecNew = &H0000001 Const adRecModified = &H0000002 Const adRecDeleted = &H0000004 Const adRecUnmodified = &H0000008 Const adRecInvalid = &H0000010 Const adRecMultipleChanges = &H0000040 Const adRecPendingChanges = &H0000080 Const adRecCanceled = &H0000100 Const adRecCantRelease = &H0000400 Const adRecConcurrencyViolation = &H0000800 Const adRecIntegrityViolation = &H0001000 Const adRecMaxChangesExceeded = &H0002000 Const adRecObjectOpen = &H0004000 Const adRecOutOfMemory = &H0008000 Const adRecPermissionDenied = &H0010000 Const adRecSchemaViolation = &H0020000 Const adRecDBDeleted = &H0040000 '---- GetRowsOptionEnum Values ---- Const adGetRowsRest = -1 '---- PositionEnum Values ---- Const adPosUnknown = -1 Const adPosBOF = -2 Const adPosEOF = -3 '---- enum Values ---- Const adBookmarkCurrent = 0 Const adBookmarkFirst = 1 Const adBookmarkLast = 2 '---- MarshalOptionsEnum Values ---- Const adMarshalAll = 0 Const adMarshalModifiedOnly = 1 '---- AffectEnum Values ---- Const adAffectCurrent = 1 Const adAffectGroup = 2 Const adAffectAll = 3 Const adAffectAllChapters = 4 '---- ResyncEnum Values ---- Const adResyncUnderlyingValues = 1 Const adResyncAllValues = 2 '---- CompareEnum Values ---- Const adCompareLessThan = 0 Const adCompareEqual = 1 Const adCompareGreaterThan = 2 Const adCompareNotEqual = 3 Const adCompareNotComparable = 4 '---- FilterGroupEnum Values ---- Const adFilterNone = 0 Const adFilterPendingRecords = 1 Const adFilterAffectedRecords = 2 Const adFilterFetchedRecords = 3 Const adFilterPredicate = 4 Const adFilterConflictingRecords = 5 '---- SearchDirectionEnum Values ---- Const adSearchForward = 1 Const adSearchBackward = -1 '---- PersistFormatEnum Values ---- Const adPersistADTG = 0 Const adPersistXML = 1 '---- StringFormatEnum Values ---- Const adStringXML = 0 Const adStringHTML = 1 Const adClipString = 2 '---- ConnectPromptEnum Values ---- Const adPromptAlways = 1 Const adPromptComplete = 2 Const adPromptCompleteRequired = 3 Const adPromptNever = 4 '---- ConnectModeEnum Values ---- Const adModeUnknown = 0 Const adModeRead = 1 Const adModeWrite = 2 Const adModeReadWrite = 3 Const adModeShareDenyRead = 4 Const adModeShareDenyWrite = 8 Const adModeShareExclusive = &Hc Const adModeShareDenyNone = &H10 '---- IsolationLevelEnum Values ---- Const adXactUnspecified = &Hffffffff Const adXactChaos = &H00000010 Const adXactReadUncommitted = &H00000100 Const adXactBrowse = &H00000100 Const adXactCursorStability = &H00001000 Const adXactReadCommitted = &H00001000 Const adXactRepeatableRead = &H00010000 Const adXactSerializable = &H00100000 Const adXactIsolated = &H00100000 '---- XactAttributeEnum Values ---- Const adXactCommitRetaining = &H00020000 Const adXactAbortRetaining = &H00040000 '---- PropertyAttributesEnum Values ---- Const adPropNotSupported = &H0000 Const adPropRequired = &H0001 Const adPropOptional = &H0002 Const adPropRead = &H0200 Const adPropWrite = &H0400 '---- ErrorValueEnum Values ---- Const adErrInvalidArgument = &Hbb9 Const adErrNoCurrentRecord = &Hbcd Const adErrIllegalOperation = &Hc93 Const adErrInTransaction = &Hcae Const adErrFeatureNotAvailable = &Hcb3 Const adErrItemNotFound = &Hcc1 Const adErrObjectInCollection = &Hd27 Const adErrObjectNotSet = &Hd5c Const adErrDataConversion = &Hd5d Const adErrObjectClosed = &He78 Const adErrObjectOpen = &He79 Const adErrProviderNotFound = &He7a Const adErrBoundToCommand = &He7b Const adErrInvalidParamInfo = &He7c Const adErrInvalidConnection = &He7d Const adErrNotReentrant = &He7e Const adErrStillExecuting = &He7f Const adErrOperationCancelled = &He80 Const adErrStillConnecting = &He81 Const adErrNotExecuting = &He83 Const adErrUnsafeOperation = &He84 '---- ParameterAttributesEnum Values ---- Const adParamSigned = &H0010 Const adParamNullable = &H0040 Const adParamLong = &H0080 '---- ParameterDirectionEnum Values ---- Const adParamUnknown = &H0000 Const adParamInput = &H0001 Const adParamOutput = &H0002 Const adParamInputOutput = &H0003 Const adParamReturnValue = &H0004 '---- CommandTypeEnum Values ---- Const adCmdUnknown = &H0008 Const adCmdText = &H0001 Const adCmdTable = &H0002 Const adCmdStoredProc = &H0004 Const adCmdFile = &H0100 Const adCmdTableDirect = &H0200 '---- EventStatusEnum Values ---- Const adStatusOK = &H0000001 Const adStatusErrorsOccurred = &H0000002 Const adStatusCantDeny = &H0000003 Const adStatusCancel = &H0000004 Const adStatusUnwantedEvent = &H0000005 '---- EventReasonEnum Values ---- Const adRsnAddNew = 1 Const adRsnDelete = 2 Const adRsnUpdate = 3 Const adRsnUndoUpdate = 4 Const adRsnUndoAddNew = 5 Const adRsnUndoDelete = 6 Const adRsnRequery = 7 Const adRsnResynch = 8 Const adRsnClose = 9 Const adRsnMove = 10 Const adRsnFirstChange = 11 Const adRsnMoveFirst = 12 Const adRsnMoveNext = 13 Const adRsnMovePrevious = 14 Const adRsnMoveLast = 15 '---- SchemaEnum Values ---- Const adSchemaProviderSpecific = -1 Const adSchemaAsserts = 0 Const adSchemaCatalogs = 1 Const adSchemaCharacterSets = 2 Const adSchemaCollations = 3 Const adSchemaColumns = 4 Const adSchemaCheckConstraints = 5 Const adSchemaConstraintColumnUsage = 6 Const adSchemaConstraintTableUsage = 7 Const adSchemaKeyColumnUsage = 8 Const adSchemaReferentialConstraints = 9 Const adSchemaTableConstraints = 10 Const adSchemaColumnsDomainUsage = 11 Const adSchemaIndexes = 12 Const adSchemaColumnPrivileges = 13 Const adSchemaTablePrivileges = 14 Const adSchemaUsagePrivileges = 15 Const adSchemaProcedures = 16 Const adSchemaSchemata = 17 Const adSchemaSQLLanguages = 18 Const adSchemaStatistics = 19 Const adSchemaTables = 20 Const adSchemaTranslations = 21 Const adSchemaProviderTypes = 22 Const adSchemaViews = 23 Const adSchemaViewColumnUsage = 24 Const adSchemaViewTableUsage = 25 Const adSchemaProcedureParameters = 26 Const adSchemaForeignKeys = 27 Const adSchemaPrimaryKeys = 28 Const adSchemaProcedureColumns = 29 Const adSchemaDBInfoKeywords = 30 Const adSchemaDBInfoLiterals = 31 Const adSchemaCubes = 32 Const adSchemaDimensions = 33 Const adSchemaHierarchies = 34 Const adSchemaLevels = 35 Const adSchemaMeasures = 36 Const adSchemaProperties = 37 Const adSchemaMembers = 38 '---- SeekEnum Values ---- Const adSeekFirstEQ = &H1 Const adSeekLastEQ = &H2 Const adSeekAfterEQ = &H4 Const adSeekAfter = &H8 Const adSeekBeforeEQ = &H10 Const adSeekBefore = &H20 '---- ADCPROP_UPDATECRITERIA_ENUM Values ---- Const adCriteriaKey = 0 Const adCriteriaAllCols = 1 Const adCriteriaUpdCols = 2 Const adCriteriaTimeStamp = 3 '---- ADCPROP_ASYNCTHREADPRIORITY_ENUM Values ---- Const adPriorityLowest = 1 Const adPriorityBelowNormal = 2 Const adPriorityNormal = 3 Const adPriorityAboveNormal = 4 Const adPriorityHighest = 5 '---- CEResyncEnum Values ---- Const adResyncNone = 0 Const adResyncAutoIncrement = 1 Const adResyncConflicts = 2 Const adResyncUpdates = 4 Const adResyncInserts = 8 Const adResyncAll = 15 '---- ADCPROP_AUTORECALC_ENUM Values ---- Const adRecalcUpFront = 0 Const adRecalcAlways = 1 %> <% Dim cnnSimple Dim rstSimple Dim strDBPath Dim objDC DIm objRS Dim cnnDBEdit, rstDBEdit Dim strSQL, strSQL2 Dim strLogin Dim strPassword Dim strUsername, strWriteup, MyConnect1 Dim strPword Dim iID, iRecordID, strRecordNumber, i, j Dim strEmail Dim strDateAdded Dim strToday1 strToday1 = Date() strToday2 = strToday1 + "1" strSite = "roisports.com" strEmail = "support@roisports.com" strSiteTitle = "ROI SPORTS PICKS" strCapperID = "1" Dim CONN_STRING CONN_STRING = "Provider=SQLOLEDB;Data Source=209.132.230.30;User Id=hgc-06;Password=rizzle-06; Initial Catalog=atsbets;" If Session("Valid") <> "" Then strHandicapperID = Session("HandicapperID") strName = Session("Name") strEmail = Session("Email") strWebsite = Session("Website") End If If Session("Member") <> "" Then iClientID = Session("ClientID") strFull_Name = Session("Full_Name") strNewsletter = Session("Newsletter") strIP = Session("IPAddress") End If If Request.QueryString("R") <> "" Then Session("R") = Request.QueryString("R") strR = Session("R") End If %> <% strIPA = Request.ServerVariables("REMOTE_ADDR") strSQL = "SELECT * FROM BannedIPs Where IP = '"&strIPA&"';" Set rstDBEdit = Server.CreateObject("ADODB.Recordset") rstDBEdit.Open strSQL, CONN_STRING, adOpenForwardOnly, adLockReadOnly, adCmdText If not rstDBEdit.EOF Then Response.Write("The Handicapping Police Security team has identified potential fraudulent activity associated with this account. To unblock your account and access this service you will need to send an email to this site or Handicapping Police at info@handicappingpolice.com with your email and a phone number where you can be contacted. Thank you.

To unblock your account and access this service you will need to send an email to this site or Handicapping Police with your email and a phone number where you can be contacted. Thank you.
") Response.End Else End If rstDBEdit.Close Set rstDBEdit = Nothing %> <% dim badwords str = request.servervariables("QUERY_STRING") if verify(str) = false or (request.querystring("preview")="true") then Set myMail=CreateObject("CDO.Message") myMail.Subject="Possible Injection Attempt" myMail.From="hgcteam@capfox.com" myMail.To="hgcteam@capfox.com" Dim body for each item in request.servervariables body = body & item & "=" & request.servervariables(item) & vbcrlf next 'for each item in request.params 'body = body & item & "=" & request.params(item) & vbcrlf 'next myMail.TextBody="This is a SQL Injection Hack Attempt. Heres the details. " & vbcrlf & vbcrlf & body if request.querystring("preview")="true" then response.write("
" & myMail.textbody & "
") set myMail=nothing else myMail.Send set myMail=nothing response.redirect("http://www.google.com") end if end if 'response.write(verify(str) &"
") 'response.write(str &"
") 'response.write(request.servervariables.count) 'for each item in request.servervariables 'response.write(item & "=" & request.servervariables(item) & "
") 'next function verify(s) 'convert the querystring to lowercase s = lcase(s) ' badwords - a list of disallowed keywords in the url badwords= "select insert update delete drop -- table alter cast convert exec chr( union DECLARE CURSOR FETCH declare" ' create an array list of each back word r = split(badwords, " ") ' loop through the bad words and return false if it is present. for i =0 to ubound(r) if instr(s, r(i)) > 0 then verify = false 'instr(s, r(i)) exit function end if next ' If the badword was not found then set verified to = True verify=true end function %> <% Response.Buffer=True %> <% '-------------------------------------------------------------------- ' Microsoft ADO ' ' (c) 1996-1998 Microsoft Corporation. All Rights Reserved. ' ' ' ' ADO constants include file for VBScript ' '-------------------------------------------------------------------- '---- CursorTypeEnum Values ---- Const adOpenForwardOnly = 0 Const adOpenKeyset = 1 Const adOpenDynamic = 2 Const adOpenStatic = 3 '---- CursorOptionEnum Values ---- Const adHoldRecords = &H00000100 Const adMovePrevious = &H00000200 Const adAddNew = &H01000400 Const adDelete = &H01000800 Const adUpdate = &H01008000 Const adBookmark = &H00002000 Const adApproxPosition = &H00004000 Const adUpdateBatch = &H00010000 Const adResync = &H00020000 Const adNotify = &H00040000 Const adFind = &H00080000 Const adSeek = &H00400000 Const adIndex = &H00800000 '---- LockTypeEnum Values ---- Const adLockReadOnly = 1 Const adLockPessimistic = 2 Const adLockOptimistic = 3 Const adLockBatchOptimistic = 4 '---- ExecuteOptionEnum Values ---- Const adRunAsync = &H00000010 Const adAsyncExecute = &H00000010 Const adAsyncFetch = &H00000020 Const adAsyncFetchNonBlocking = &H00000040 Const adExecuteNoRecords = &H00000080 '---- ConnectOptionEnum Values ---- Const adAsyncConnect = &H00000010 '---- ObjectStateEnum Values ---- Const adStateClosed = &H00000000 Const adStateOpen = &H00000001 Const adStateConnecting = &H00000002 Const adStateExecuting = &H00000004 Const adStateFetching = &H00000008 '---- CursorLocationEnum Values ---- Const adUseServer = 2 Const adUseClient = 3 '---- DataTypeEnum Values ---- Const adEmpty = 0 Const adTinyInt = 16 Const adSmallInt = 2 Const adInteger = 3 Const adBigInt = 20 Const adUnsignedTinyInt = 17 Const adUnsignedSmallInt = 18 Const adUnsignedInt = 19 Const adUnsignedBigInt = 21 Const adSingle = 4 Const adDouble = 5 Const adCurrency = 6 Const adDecimal = 14 Const adNumeric = 131 Const adBoolean = 11 Const adError = 10 Const adUserDefined = 132 Const adVariant = 12 Const adIDispatch = 9 Const adIUnknown = 13 Const adGUID = 72 Const adDate = 7 Const adDBDate = 133 Const adDBTime = 134 Const adDBTimeStamp = 135 Const adBSTR = 8 Const adChar = 129 Const adVarChar = 200 Const adLongVarChar = 201 Const adWChar = 130 Const adVarWChar = 202 Const adLongVarWChar = 203 Const adBinary = 128 Const adVarBinary = 204 Const adLongVarBinary = 205 Const adChapter = 136 Const adFileTime = 64 Const adDBFileTime = 137 Const adPropVariant = 138 Const adVarNumeric = 139 '---- FieldAttributeEnum Values ---- Const adFldMayDefer = &H00000002 Const adFldUpdatable = &H00000004 Const adFldUnknownUpdatable = &H00000008 Const adFldFixed = &H00000010 Const adFldIsNullable = &H00000020 Const adFldMayBeNull = &H00000040 Const adFldLong = &H00000080 Const adFldRowID = &H00000100 Const adFldRowVersion = &H00000200 Const adFldCacheDeferred = &H00001000 Const adFldKeyColumn = &H00008000 '---- EditModeEnum Values ---- Const adEditNone = &H0000 Const adEditInProgress = &H0001 Const adEditAdd = &H0002 Const adEditDelete = &H0004 '---- RecordStatusEnum Values ---- Const adRecOK = &H0000000 Const adRecNew = &H0000001 Const adRecModified = &H0000002 Const adRecDeleted = &H0000004 Const adRecUnmodified = &H0000008 Const adRecInvalid = &H0000010 Const adRecMultipleChanges = &H0000040 Const adRecPendingChanges = &H0000080 Const adRecCanceled = &H0000100 Const adRecCantRelease = &H0000400 Const adRecConcurrencyViolation = &H0000800 Const adRecIntegrityViolation = &H0001000 Const adRecMaxChangesExceeded = &H0002000 Const adRecObjectOpen = &H0004000 Const adRecOutOfMemory = &H0008000 Const adRecPermissionDenied = &H0010000 Const adRecSchemaViolation = &H0020000 Const adRecDBDeleted = &H0040000 '---- GetRowsOptionEnum Values ---- Const adGetRowsRest = -1 '---- PositionEnum Values ---- Const adPosUnknown = -1 Const adPosBOF = -2 Const adPosEOF = -3 '---- enum Values ---- Const adBookmarkCurrent = 0 Const adBookmarkFirst = 1 Const adBookmarkLast = 2 '---- MarshalOptionsEnum Values ---- Const adMarshalAll = 0 Const adMarshalModifiedOnly = 1 '---- AffectEnum Values ---- Const adAffectCurrent = 1 Const adAffectGroup = 2 Const adAffectAll = 3 Const adAffectAllChapters = 4 '---- ResyncEnum Values ---- Const adResyncUnderlyingValues = 1 Const adResyncAllValues = 2 '---- CompareEnum Values ---- Const adCompareLessThan = 0 Const adCompareEqual = 1 Const adCompareGreaterThan = 2 Const adCompareNotEqual = 3 Const adCompareNotComparable = 4 '---- FilterGroupEnum Values ---- Const adFilterNone = 0 Const adFilterPendingRecords = 1 Const adFilterAffectedRecords = 2 Const adFilterFetchedRecords = 3 Const adFilterPredicate = 4 Const adFilterConflictingRecords = 5 '---- SearchDirectionEnum Values ---- Const adSearchForward = 1 Const adSearchBackward = -1 '---- PersistFormatEnum Values ---- Const adPersistADTG = 0 Const adPersistXML = 1 '---- StringFormatEnum Values ---- Const adStringXML = 0 Const adStringHTML = 1 Const adClipString = 2 '---- ConnectPromptEnum Values ---- Const adPromptAlways = 1 Const adPromptComplete = 2 Const adPromptCompleteRequired = 3 Const adPromptNever = 4 '---- ConnectModeEnum Values ---- Const adModeUnknown = 0 Const adModeRead = 1 Const adModeWrite = 2 Const adModeReadWrite = 3 Const adModeShareDenyRead = 4 Const adModeShareDenyWrite = 8 Const adModeShareExclusive = &Hc Const adModeShareDenyNone = &H10 '---- IsolationLevelEnum Values ---- Const adXactUnspecified = &Hffffffff Const adXactChaos = &H00000010 Const adXactReadUncommitted = &H00000100 Const adXactBrowse = &H00000100 Const adXactCursorStability = &H00001000 Const adXactReadCommitted = &H00001000 Const adXactRepeatableRead = &H00010000 Const adXactSerializable = &H00100000 Const adXactIsolated = &H00100000 '---- XactAttributeEnum Values ---- Const adXactCommitRetaining = &H00020000 Const adXactAbortRetaining = &H00040000 '---- PropertyAttributesEnum Values ---- Const adPropNotSupported = &H0000 Const adPropRequired = &H0001 Const adPropOptional = &H0002 Const adPropRead = &H0200 Const adPropWrite = &H0400 '---- ErrorValueEnum Values ---- Const adErrInvalidArgument = &Hbb9 Const adErrNoCurrentRecord = &Hbcd Const adErrIllegalOperation = &Hc93 Const adErrInTransaction = &Hcae Const adErrFeatureNotAvailable = &Hcb3 Const adErrItemNotFound = &Hcc1 Const adErrObjectInCollection = &Hd27 Const adErrObjectNotSet = &Hd5c Const adErrDataConversion = &Hd5d Const adErrObjectClosed = &He78 Const adErrObjectOpen = &He79 Const adErrProviderNotFound = &He7a Const adErrBoundToCommand = &He7b Const adErrInvalidParamInfo = &He7c Const adErrInvalidConnection = &He7d Const adErrNotReentrant = &He7e Const adErrStillExecuting = &He7f Const adErrOperationCancelled = &He80 Const adErrStillConnecting = &He81 Const adErrNotExecuting = &He83 Const adErrUnsafeOperation = &He84 '---- ParameterAttributesEnum Values ---- Const adParamSigned = &H0010 Const adParamNullable = &H0040 Const adParamLong = &H0080 '---- ParameterDirectionEnum Values ---- Const adParamUnknown = &H0000 Const adParamInput = &H0001 Const adParamOutput = &H0002 Const adParamInputOutput = &H0003 Const adParamReturnValue = &H0004 '---- CommandTypeEnum Values ---- Const adCmdUnknown = &H0008 Const adCmdText = &H0001 Const adCmdTable = &H0002 Const adCmdStoredProc = &H0004 Const adCmdFile = &H0100 Const adCmdTableDirect = &H0200 '---- EventStatusEnum Values ---- Const adStatusOK = &H0000001 Const adStatusErrorsOccurred = &H0000002 Const adStatusCantDeny = &H0000003 Const adStatusCancel = &H0000004 Const adStatusUnwantedEvent = &H0000005 '---- EventReasonEnum Values ---- Const adRsnAddNew = 1 Const adRsnDelete = 2 Const adRsnUpdate = 3 Const adRsnUndoUpdate = 4 Const adRsnUndoAddNew = 5 Const adRsnUndoDelete = 6 Const adRsnRequery = 7 Const adRsnResynch = 8 Const adRsnClose = 9 Const adRsnMove = 10 Const adRsnFirstChange = 11 Const adRsnMoveFirst = 12 Const adRsnMoveNext = 13 Const adRsnMovePrevious = 14 Const adRsnMoveLast = 15 '---- SchemaEnum Values ---- Const adSchemaProviderSpecific = -1 Const adSchemaAsserts = 0 Const adSchemaCatalogs = 1 Const adSchemaCharacterSets = 2 Const adSchemaCollations = 3 Const adSchemaColumns = 4 Const adSchemaCheckConstraints = 5 Const adSchemaConstraintColumnUsage = 6 Const adSchemaConstraintTableUsage = 7 Const adSchemaKeyColumnUsage = 8 Const adSchemaReferentialConstraints = 9 Const adSchemaTableConstraints = 10 Const adSchemaColumnsDomainUsage = 11 Const adSchemaIndexes = 12 Const adSchemaColumnPrivileges = 13 Const adSchemaTablePrivileges = 14 Const adSchemaUsagePrivileges = 15 Const adSchemaProcedures = 16 Const adSchemaSchemata = 17 Const adSchemaSQLLanguages = 18 Const adSchemaStatistics = 19 Const adSchemaTables = 20 Const adSchemaTranslations = 21 Const adSchemaProviderTypes = 22 Const adSchemaViews = 23 Const adSchemaViewColumnUsage = 24 Const adSchemaViewTableUsage = 25 Const adSchemaProcedureParameters = 26 Const adSchemaForeignKeys = 27 Const adSchemaPrimaryKeys = 28 Const adSchemaProcedureColumns = 29 Const adSchemaDBInfoKeywords = 30 Const adSchemaDBInfoLiterals = 31 Const adSchemaCubes = 32 Const adSchemaDimensions = 33 Const adSchemaHierarchies = 34 Const adSchemaLevels = 35 Const adSchemaMeasures = 36 Const adSchemaProperties = 37 Const adSchemaMembers = 38 '---- SeekEnum Values ---- Const adSeekFirstEQ = &H1 Const adSeekLastEQ = &H2 Const adSeekAfterEQ = &H4 Const adSeekAfter = &H8 Const adSeekBeforeEQ = &H10 Const adSeekBefore = &H20 '---- ADCPROP_UPDATECRITERIA_ENUM Values ---- Const adCriteriaKey = 0 Const adCriteriaAllCols = 1 Const adCriteriaUpdCols = 2 Const adCriteriaTimeStamp = 3 '---- ADCPROP_ASYNCTHREADPRIORITY_ENUM Values ---- Const adPriorityLowest = 1 Const adPriorityBelowNormal = 2 Const adPriorityNormal = 3 Const adPriorityAboveNormal = 4 Const adPriorityHighest = 5 '---- CEResyncEnum Values ---- Const adResyncNone = 0 Const adResyncAutoIncrement = 1 Const adResyncConflicts = 2 Const adResyncUpdates = 4 Const adResyncInserts = 8 Const adResyncAll = 15 '---- ADCPROP_AUTORECALC_ENUM Values ---- Const adRecalcUpFront = 0 Const adRecalcAlways = 1 %> <% Dim cnnSimple Dim rstSimple Dim strDBPath Dim objDC DIm objRS Dim cnnDBEdit, rstDBEdit Dim strSQL, strSQL2 Dim strLogin Dim strPassword Dim strUsername, strWriteup, MyConnect1 Dim strPword Dim iID, iRecordID, strRecordNumber, i, j Dim strEmail Dim strDateAdded Dim strToday1 strToday1 = Date() strToday2 = strToday1 + "1" strSite = "roisports.com" strEmail = "support@roisports.com" strSiteTitle = "ROI SPORTS PICKS" strCapperID = "1" Dim CONN_STRING CONN_STRING = "Provider=SQLOLEDB;Data Source=209.132.230.30;User Id=hgc-06;Password=rizzle-06; Initial Catalog=atsbets;" If Session("Valid") <> "" Then strHandicapperID = Session("HandicapperID") strName = Session("Name") strEmail = Session("Email") strWebsite = Session("Website") End If If Session("Member") <> "" Then iClientID = Session("ClientID") strFull_Name = Session("Full_Name") strNewsletter = Session("Newsletter") strIP = Session("IPAddress") End If If Request.QueryString("R") <> "" Then Session("R") = Request.QueryString("R") strR = Session("R") End If %> <% strIPA = Request.ServerVariables("REMOTE_ADDR") strSQL = "SELECT * FROM BannedIPs Where IP = '"&strIPA&"';" Set rstDBEdit = Server.CreateObject("ADODB.Recordset") rstDBEdit.Open strSQL, CONN_STRING, adOpenForwardOnly, adLockReadOnly, adCmdText If not rstDBEdit.EOF Then Response.Write("The Handicapping Police Security team has identified potential fraudulent activity associated with this account. To unblock your account and access this service you will need to send an email to this site or Handicapping Police at info@handicappingpolice.com with your email and a phone number where you can be contacted. Thank you.

To unblock your account and access this service you will need to send an email to this site or Handicapping Police with your email and a phone number where you can be contacted. Thank you.
") Response.End Else End If rstDBEdit.Close Set rstDBEdit = Nothing %> <% dim badwords str = request.servervariables("QUERY_STRING") if verify(str) = false or (request.querystring("preview")="true") then Set myMail=CreateObject("CDO.Message") myMail.Subject="Possible Injection Attempt" myMail.From="hgcteam@capfox.com" myMail.To="hgcteam@capfox.com" Dim body for each item in request.servervariables body = body & item & "=" & request.servervariables(item) & vbcrlf next 'for each item in request.params 'body = body & item & "=" & request.params(item) & vbcrlf 'next myMail.TextBody="This is a SQL Injection Hack Attempt. Heres the details. " & vbcrlf & vbcrlf & body if request.querystring("preview")="true" then response.write("
" & myMail.textbody & "
") set myMail=nothing else myMail.Send set myMail=nothing response.redirect("http://www.google.com") end if end if 'response.write(verify(str) &"
") 'response.write(str &"
") 'response.write(request.servervariables.count) 'for each item in request.servervariables 'response.write(item & "=" & request.servervariables(item) & "
") 'next function verify(s) 'convert the querystring to lowercase s = lcase(s) ' badwords - a list of disallowed keywords in the url badwords= "select insert update delete drop -- table alter cast convert exec chr( union DECLARE CURSOR FETCH declare" ' create an array list of each back word r = split(badwords, " ") ' loop through the bad words and return false if it is present. for i =0 to ubound(r) if instr(s, r(i)) > 0 then verify = false 'instr(s, r(i)) exit function end if next ' If the badword was not found then set verified to = True verify=true end function %>
NFL NCAAF NBA NCAAB MLB
Home Philosophy Team FAQ Contact Us Exchange Links Related Links
Reference Center
NFL Information:
  Matchups - Odds Standings - Scores
NCAAF Information:
  Matchups - Odds
Standings - Scores
NBA Information:
  Matchups - Odds Standings - Scores
NCAAB Information:
  Matchups - Odds Standings - Scores
MLB Information:
  Matchups - Odds Standings - Scores

Advertisement:

Sports Betting Picks & Sports Betting Odds, Lines & Scores - all from Oddsboard.com

<% strYesterday = Date()-1 strSQL3 = "SELECT * FROM Picks1 WHERE CapperID = '"&strCapperID&"' And GameDate = '"&strYesterday&"' Order by Sport;" Set rstDBEdit3 = Server.CreateObject("ADODB.Recordset") rstDBEdit3.Open strSQL3, CONN_STRING, adOpenKeyset, adLockOptimistic, adCmdText If Not rstDBEdit3.EOF Then J = rstDBEdit3.RecordCount rstDBEdit3.MoveFirst For i=1 to J If rstDBEdit3.Fields("Result").Value <> "" Then strTeam1 = rstDBEdit3.Fields("Team1").Value strTeam2 = rstDBEdit3.Fields("Team2").Value strSQL4 = "SELECT * FROM Logos WHERE TeamID="&strTeam1& ";" Set rstDBEdit4 = Server.CreateObject("ADODB.Recordset") rstDBEdit4.Open strSQL4, CONN_STRING, adOpenKeyset, adLockOptimistic, adCmdText strSQL5 = "SELECT * FROM Logos WHERE TeamID="&strTeam2& ";" Set rstDBEdit5 = Server.CreateObject("ADODB.Recordset") rstDBEdit5.Open strSQL5, CONN_STRING, adOpenKeyset, adLockOptimistic, adCmdText strResult = rstDBEdit3.Fields("Result") If strResult = "Loss" Then strResult = ""&rstDBEdit3.Fields("Result")&"" strArrow = "" ElseIf strResult = "Win" Then strResult = ""&rstDBEdit3.Fields("Result")&"" strArrow = "" Else strResult = ""&rstDBEdit3.Fields("Result")&"" strArrow = "-" End If strString = "    "&strArrow &" "&rstDBEdit4.Fields("Team").Value &" @ "&rstDBEdit5.Fields("Team").Value&" "&rstDBEdit3.Fields("TeamPick")&" "&rstDBEdit3.Fields("PickLine")&" "&strResult&"     " strString1 = strString1 + strString End If rstDBEdit3.MoveNext Next End If rstDBEdit3.Close Set rstDBEdit3 = Nothing 'Response.Write strString1 %>

Welcome to ROI Sports

Return on Investment Sports is an advanced sports handicapping service for the serious sports investor. Our service utilizes a research analysis approach, combined with the latest computer technology and professional sports handicappers, to provide a product that yields the highest possible return on investment for our clients. This product is sold individually at our sports pages in the form of the ROI Insider Play.

Our service boldly displays our performance on this site, including real time daily ticker updates of every ROI Insider Play. It is important all of our visitors are able to track our records, and fully understand the value only found at ROI Sports, prior to becoming a client. We are confident our willingness to reveal our performance will demonstrate our legitimacy and commitment to helping our clients make money.

We encourage all of our visitors to utilize the free valuable resources located on our site. These include in-depth sports databases, odds, schedules and much more. This is only a sample of the amount of information ROI Sports generates everyday prior to offering a ROI Insider Play. Thank you for visiting our service. We are looking forward to having you as a future client.

© ROI Sports

ROI Sports Records
<% strWinCount = 0 strLossCount = 0 strPushCount = 0 strUnits = 0 strPercent = 0 set rstStats = server.createobject("ADODB.Recordset") strStats = "select * from temprecords1 where handicapperid='" & strCapperID & "' and daterange like 'Yesterday' and sport like 'All'" rstStats.open strStats, CONN_STRING, adOpenForwardOnly, adLockReadOnly, adCmdText strWinCount = rstStats.fields("win") strLossCount = rstStats.fields("loss") strPushCount = rstStats.fields("push") strUnits = rstStats.fields("units") strPercent = rstStats.fields("per") rstStats.close set rstStats = nothing %>
Yesterday's Results
Record Percent Units
<%= strWinCount %>-<%= strLossCount %> <% If strPushCount <> 0 Then %> -<%= strPushCount %> <% End If %> <%= strPercent %>% <%= strUnits %>
<% strWinCount = 0 strLossCount = 0 strPushCount = 0 strUnits = 0 strPercent = 0 set rstStats = server.createobject("ADODB.Recordset") strStats = "select * from temprecords1 where handicapperid='" & strCapperID & "' and daterange like 'Last 7' and sport like 'All'" rstStats.open strStats, CONN_STRING, adOpenForwardOnly, adLockReadOnly, adCmdText strWinCount = rstStats.fields("win") strLossCount = rstStats.fields("loss") strPushCount = rstStats.fields("push") strUnits = rstStats.fields("units") strPercent = rstStats.fields("per") rstStats.close set rstStats = nothing %>
Last 7 Day's Results
Record Percent Units
<%= strWinCount %>-<%= strLossCount %> <% If strPushCount <> 0 Then %> -<%= strPushCount %> <% End If %> <%= strPercent %>% <%= strUnits %>
<% strWinCount = 0 strLossCount = 0 strPushCount = 0 strUnits = 0 strPercent = 0 set rstStats = server.createobject("ADODB.Recordset") strStats = "select * from temprecords1 where handicapperid='" & strCapperID & "' and daterange like 'Last 30' and sport like 'All'" rstStats.open strStats, CONN_STRING, adOpenForwardOnly, adLockReadOnly, adCmdText strWinCount = rstStats.fields("win") strLossCount = rstStats.fields("loss") strPushCount = rstStats.fields("push") strUnits = rstStats.fields("units") strPercent = rstStats.fields("per") rstStats.close set rstStats = nothing %>
Last 30 Day's Results
Record Percent Units
<%= strWinCount %>-<%= strLossCount %> <% If strPushCount <> 0 Then %> -<%= strPushCount %> <% End If %> <%= strPercent %>% <%= strUnits %>
For Detailed Records
Click Here

Member Login
Login
Password:
Not a Member? Become a member for FREE! Click here to join.