Файл: www/config.php
Строк: 349
<?php
$t = microtime(1);
if (!isset($_GET['err']))error_reporting(0);
ob_start();
session_start();
$sess=session_id();
$db_host='localhost';
$db_user='name111';
$db_pass='111111';
$db_base='name111';
$db_conn=mysql_connect($db_host,$db_user,$db_pass) or die('Сайт временно недоступен');
mysql_select_db($db_base,$db_conn) or die('Сайт временно недоступен');
mysql_unbuffered_query("SET NAMES utf8",$db_conn);
$rand=rand(000,999);
$time=time();
##############
function antihack($msg){
$msg=addslashes($msg);
$msg=stripslashes($msg);
$msg=trim($msg);
return $msg;
}
if(isset($_GET)){foreach($_GET as $key=>$value){$_GET[$key]=antihack($value);}}
if(isset($_POST)){foreach($_POST as $key=>$value){$_POST[$key]=antihack($value);}}
################
$set=mysql_fetch_array(mysql_query('SELECT * FROM `set_sys`'));
function online($oid){
$stat=array('<font color="red">(Off)</font>','<font color="lime">(On)</font>');
$st=mysql_num_rows(mysql_query("SELECT * FROM `users` WHERE `sess`<>'' AND `reload`>'".(time()-1200)."' AND `id`='$oid'"));
return $stat[$st];}
function graph_rating($pol,$otr){
$sto=$pol+$otr;
if($sto!=0){
$odin=$sto/100;
$proc=$pol/$odin;
$proc=ceil($proc);
$rating='<img src="/image/rating/'.$proc.'.gif">';
}else{
$rating='<img src="/image/rating/50.gif">';}
return $rating;}
$user=false;
function get_user($uid) {
return mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE `id`='".abs(intval($uid))."'"));
if ($user[id]<1) return get_user(2817);
}
header('cache-control: public');
//Авторизация по кукам
if(isset($_COOKIE['uid']) && isset($_COOKIE['pass'])) {
$temp_u=get_user($_COOKIE['uid']);
if(md5(md5($temp_u['pass']))==$_COOKIE['pass']) $user=$temp_u;
else {
setcookie ("pass", "", time() - 10000);
setcookie ("uid", "", time() - 10000);
header("Location: /enter.php");
}
}else if(isset($_SESSION['uid']))$user=get_user($_SESSION['uid']);
function plural($n, $form1, $form2, $form5)
{
$n = abs($n) % 100;
$n1 = $n % 10;
if ($n > 10 && $n < 20) return $form5;
if ($n1 > 1 && $n1 < 5) return $form2;
if ($n1 == 1) return $form1;
return $form5;
}
function div($div){
$div=htmlspecialchars($div);
global $user;
echo '<?xml version="1.0" encoding="utf-8"?>';
echo '<!DOCTYPE html PUBLIC "-//WAPFORUM//DTD XHTML Mobile 1.0//EN" "http://www.wapforum.org/DTD/xhtml-mobile10.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="ru">
<head>
<link rel="stylesheet" href="/style/'.($user?$user['style']:1).'/style.css" type="text/css">
<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon">';
echo '<title>'.$div.'</title></head><body>';include 'mgames2.php';
$res=mysql_query('SELECT * FROM `adver` ORDER BY `time`');
$a=mysql_num_rows($res);
if(!$a==0){
echo '<div class="reklama">';
while($lin=mysql_fetch_array($res)){
if($lin['time'] <= time()){
mysql_query('DELETE FROM `adver` WHERE `id`='.$lin['id']);}
echo '<a href="'.htmlspecialchars($lin['name_url']).'">'.htmlspecialchars($lin['name']).'</a><br/>';}
echo '</div>';}
echo '<div class="a">';
echo '<div class="b"><b>'; new_privat(); echo '</b>'.$div.'</div>';
echo '<div class="g">';
return 1;
}
function on_time($string){
if($string>=60){
if($string>=3600){
if($string>=86400){
$day=floor($string/86400);
$hours=floor(($string/3600)-$day*24);
return $day.' дн '.$hours.' ч';
}else{
$hours=floor(($string/3600)-$day*24);
$min=floor(($string-$hours*3600-$day*86400)/60);
$sec=$string-($min*60+$hours*3600+$day*86400);
return $hours.' ч '.$min.' мин';}
}else{
$min=floor(($string-$hours*3600-$day*86400)/60);
return $min.' мин';}
}else{
$sec=$string-($min*60+$hours*3600+$day*86400);
return $sec.' сек';}}
function data($ta){
$ta=date("j F Y H:i",$ta);
$ta=str_replace("January","Янв",$ta);
$ta=str_replace("February","Фев",$ta);
$ta=str_replace("March","Март",$ta);
$ta=str_replace("May","Мая",$ta);
$ta=str_replace("April","Апр",$ta);
$ta=str_replace("June","Июнь",$ta);
$ta=str_replace("July","Июль",$ta);
$ta=str_replace("August","Авг",$ta);
$ta=str_replace("September","Сен",$ta);
$ta=str_replace("October","Окт",$ta);
$ta=str_replace("November","Нояб",$ta);
$ta=str_replace("December","Дек",$ta);
return $ta;}
function img_preg($bb)
{
return '<img src="http://'.$_SERVER['HTTP_HOST'].'/" alt="img" />';
}
function bb($bb){
$bb=preg_replace("#[quote](.*?)[/quote]#is","<div class=quote>\1</div>",$bb);
$bb=preg_replace("#[title](.*?)[/title]#is","<div class=title>\1</div>",$bb);
$bb=preg_replace("#!!!(.*?)!!!#is","<div class=cit>\1</div>",$bb);
$bb=preg_replace("#[red](.*?)[/red]#is","<font color=red>\1</font>",$bb);
$bb=preg_replace("#[blue](.*?)[/blue]#is","<font color=blue>\1</font>",$bb);
$bb=preg_replace("#[yellow](.*?)[/yellow]#is","<font color=yellow>\1</font>",$bb);
$bb=preg_replace("#[green](.*?)[/green]#is","<font color=green>\1</font>",$bb);
$bb=preg_replace("#[lime](.*?)[/lime]#is","<font color=lime>\1</font>",$bb);
$bb=preg_replace("#[black](.*?)[/black]#is","<font color=black>\1</font>",$bb);
$bb=preg_replace("#[white](.*?)[/white]#is","<font color=white>\1</font>",$bb);
$bb=preg_replace("#[fuchsia](.*?)[/fuchsia]#is","<font color=fuchsia>\1</font>",$bb);
$bb=preg_replace("#[spoiler=(.+?)](.+?)[/spoiler]#is", "<spoiler=\1>\2</b>", $bb );
$bb=preg_replace("#[b](.+?)[/b]#is", "<b>\1</b>", $bb );
$bb=preg_replace("#[c](.+?)[/c]#is", "<p align=center>\1</p>", $bb );
$bb=preg_replace("#[marq](.+?)[/marq]#is", "<marquee>\1</marquee>", $bb );
$bb=preg_replace("#[right](.+?)[/right]#is", "<p align=right>\1</p>", $bb );
$bb=preg_replace("#[left](.+?)[/left]#is", "<p align=left>\1</p>", $bb );
$bb=preg_replace("#[big](.+?)[/big]#is", "<big>\1</big>", $bb );
$bb=preg_replace("#[sub](.+?)[/sub]#is", "<sub>\1</sub>", $bb );
$bb=preg_replace("#[i](.+?)[/i]#is", "<i>\1</i>", $bb );
$bb=preg_replace("#[u](.+?)[/u]#is", "<u>\1</u>", $bb );
$bb=preg_replace("#[s](.+?)[/s]#is", "<s>\1</s>", $bb );
$bb=preg_replace('#[br](.+?)#is', '1<br/>1', $bb);
$bb = preg_replace('#[url=(.*?)](.*?)[/url]#si', '<a href="1">2</a>', $bb);
$bb=preg_replace('~http://([^ rnt`'"]+)(s|$)~iu', '<a href="http://1">http://1</a>', $bb);
$bb=preg_replace("~[img](.*?)[/img]~", "<img src=\1 alt=img></img>", $bb);
$bb=preg_replace("#[silver](.*?)[/silver]#is","<font color=silver>\1</font>",$bb);
return $bb;}
function navi($page,$count_page,$link,$get,$nid){
if($count_page>1){
echo '<div class="msg1">';
if($page-1>=1){
echo '<a href="'.$link.'p='.($page-1).'"><<пред</a>';
}else{
}
if($page>1 and $page+1<=$count_page){echo '|';}
if($page+1<=$count_page){
echo '<a href="'.$link.'p='.($page+1).'">след>></a>';
}else{
}
echo '<br/>';
if($page-2>=1)
echo '<a href="'.$link.'p=1">1</a>..';
for($i=$page-1;$i<=$page+3;$i++){
if($i>=1 and $i<=$count_page){
if($i==$page)
echo '<b>'.$page.'</b>';
else
echo '<a href="'.$link.'p='.$i.'">'.$i.'</a>';
if($i!=$count_page)
echo '..';}}
if($page+4<=$count_page)
echo '<a href="'.$link.'p='.$count_page.'">'.$count_page.'</a>';
if($count_page>=5){
echo '<form method="GET" action="'.$link.'">
<input type="hidden" name="'.$get.'" value="'.$nid.'">
Стр. <input type="text" name="p" size="2">
<input type="submit" value=">>"></form>';}
echo '</div>';}}
function smiles($mes){
$q=mysql_query("SELECT `name`,`file`,`id_cat` FROM `smile`");
while($r=mysql_fetch_array($q)){
$d=mysql_fetch_array(mysql_query("SELECT * FROM `smile_cat` WHERE `id`='$r[2]'"));
$mes=str_replace($r[0],'<img src="/smile/'.$d['dir'].'/'.$r[1].'" alt="'.$r[0].'">',$mes);}
return $mes;}
$ip=false;
if(isset($_SERVER['HTTP_X_FORWARDED_FOR']) && $_SERVER['HTTP_X_FORWARDED_FOR']!='127.0.0.1' && preg_match("#^([0-9]{1,3}).([0-9]{1,3}).([0-9]{1,3}).([0-9]{1,3})$#",$_SERVER['HTTP_X_FORWARDED_FOR']))
{
$ip2['xff']=$_SERVER['HTTP_X_FORWARDED_FOR'];
$ipa[] = $_SERVER['HTTP_X_FORWARDED_FOR'];
}
if(isset($_SERVER['HTTP_CLIENT_IP']) && $_SERVER['HTTP_CLIENT_IP']!='127.0.0.1' && preg_match("#^([0-9]{1,3}).([0-9]{1,3}).([0-9]{1,3}).([0-9]{1,3})$#",$_SERVER['HTTP_CLIENT_IP']))
{
$ip2['cl']=$_SERVER['HTTP_CLIENT_IP'];
$ipa[] = $_SERVER['HTTP_CLIENT_IP'];
}
if(isset($_SERVER['REMOTE_ADDR']) && preg_match("#^([0-9]{1,3}).([0-9]{1,3}).([0-9]{1,3}).([0-9]{1,3})$#",$_SERVER['REMOTE_ADDR']))
{
$ip2['add']=$_SERVER['REMOTE_ADDR'];
$ipa[] = $_SERVER['REMOTE_ADDR'];
}
$ip=$ipa[0];
$iplong =ip2long($ip);
if (isset($_SERVER['HTTP_USER_AGENT']))
{
$ua=$_SERVER['HTTP_USER_AGENT'];
$ua=strtok($ua, '/');
$ua=strtok($ua, '('); // оставляем только то, что до скобки
$ua=preg_replace('#[^a-z_./ 0-9-]#iu', null, $ua); // вырезаем все "левые" символы
// Опера мини тоже посылает данные о телефоне :)
if (isset($_SERVER['HTTP_X_OPERAMINI_PHONE_UA']) && preg_match('#Opera#i',$ua))
{
$ua_om=$_SERVER['HTTP_X_OPERAMINI_PHONE_UA'];
$ua_om=strtok($ua_om, '/');
$ua_om=strtok($ua_om, '(');
$ua_om=preg_replace('#[^a-z_. 0-9-]#iu', null, $ua_om);
$ua='Opera Mini ('.$ua_om.')';
}
}else $ua='Нет данных';
$timescc=time()-1200;
mysql_query("UPDATE `users` SET `link`='', `link1`='', `link2`='', `link3`='', `link4`='' WHERE `reload`<'$timescc'");
if(isset($user)){
$last=mysql_fetch_array(mysql_query("SELECT `reload` FROM `users` WHERE `id`='$user[id]'"));
$temp_time=time()-$last[0];
if($temp_time<60*10){
mysql_query("UPDATE `users` SET `online`=`online`+'$temp_time' WHERE `id`='$user[id]'");
}else{
mysql_query("UPDATE `users` SET `time2`='".time()."' WHERE `id`='$user[id]'");
mysql_query("UPDATE `friends` SET `time_last`='".time()."' WHERE `id_fr`='$user[id]'");}
$qqq=mysql_query("SELECT * FROM `users` WHERE `id`='$user[id]'");
$aut=$user;
mysql_query("UPDATE `users` SET `sess`='$sess', `ip`='$ip', `ua`='$ua', `reload`='".time()."' WHERE `id`='$user[id]'");
}else{
mysql_query("UPDATE `users` SET `reload`='".time()."' WHERE `id`='$user[id]'");
}
function admin(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==1){return 1;}else{return 0;}}
function mod_chat(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==2){return 1;}else{return 0;}}
function mod_for(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==3){return 1;}else{return 0;}}
function mod_pic(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==4){return 1;}else{return 0;}}
function mod_obm(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==5){return 1;}else{return 0;}}
function mod_them(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==6){return 1;}else{return 0;}}
function mod_fj(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==7){return 1;}else{return 0;}}
function mod_maf(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==8){return 1;}else{return 0;}}
function mod_mch(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==9){return 1;}else{return 0;}}
function mod_fas(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==10){return 1;}else{return 0;}}
function adm_zg(){ global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==11){return 1;}else{return 0;}}
function vid(){
global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==12){return 1;}else{return 0;}}
function mod_andr(){
global $user;
$r=mysql_fetch_array(mysql_query("SELECT `key` FROM `users` WHERE `id`='$user[id]'"));
if($r[0]==13){return 1;}else{return 0;}}
function new_privat(){
global $user;
if($user){
$in_new_pochta=mysql_num_rows(mysql_query("select * from `pochta` WHERE `komu_id` = '".$user['id']."' and `status` = '1' and `save` = '0'"));
if($in_new_pochta){
echo '<a href="/mail/in.php" class="ls">'.($in_new_pochta>0?$in_new_pochta." ".plural($in_new_pochta,'новое сообщение','новых сообщения','новых сообщений'):"Новое сообщение").'</a><br/>';}
return 1;
}
}
$mi=mysql_fetch_array(mysql_query("SELECT MAX(id) FROM `ban` WHERE `id_user`='$aut[id]'"));
$ba=mysql_fetch_array(mysql_query('SELECT * FROM `ban` WHERE `id`='.$mi[0]));
if(time()<$ba['time_o']){
if($_SERVER['SCRIPT_NAME']!='/ban/index.php')
header('Location: /ban/?rnd='.$rand);}
function trans($strr){
$strr=strtr($strr, array('yo' => 'ё', 'jo' => 'ё', 'zh' => 'ж', 'ch' => 'ч', 'sh' => 'ш', 'sch' => 'щ', 'yi' => 'ы', 'ye' => 'э', 'yu' => 'ю', 'ju' => 'ю', 'ya' => 'я', 'ja' => 'я', "''" => 'ь', 'a' => 'а', 'b' => 'б', 'v' => 'в', 'g' => 'г', 'd' => 'д', 'e' => 'е', '*' => 'ж', 'z' => 'з', 'i' => 'и', 'j' => 'й', 'k' => 'к', 'l' => 'л', 'm' => 'м', 'n' => 'н', 'o' => 'о', 'p' => 'п', 'r' => 'р', 's' => 'с', 't' => 'т', 'u' => 'у', 'f' => 'ф', 'h' => 'х', 'x' => 'х', 'c' => 'ц', '4' => 'ч', "'" => "ь", 'q' => 'ь', 'y' => 'ы', 'YO' => 'Ё', 'JO' => 'Ё', 'ZH' => 'Ж', 'CH' => 'Ч', 'SH' => 'Ш', 'SCH' => 'Щ', 'YI' => 'Ы', 'YE' => 'Э', 'YU' => 'Ю', 'JU' => 'Ю', 'YA' => 'Я', 'JA' => 'Я', 'A' => 'А', 'B' => 'Б', 'V' => 'В', 'G' => 'Г', 'D' => 'Д', 'E' => 'Е', 'Z' => 'З', 'I' => 'И', 'J' => 'Й', 'K' => 'К', 'L' => 'Л', 'M' => 'М', 'N' => 'Н', 'O' => 'О', 'P' => 'П', 'R' => 'Р', 'S' => 'С', 'T' => 'Т', 'U' => 'У', 'F' => 'Ф', 'H' => 'Х', 'X' => 'Х', 'C' => 'Ц', 'Q' => 'Ь', 'Y' => 'Ы'));
return $strr;}
function strlen2($stra){
$rus=array('й', 'ц', 'у', 'к', 'е', 'н', 'г', 'ш', 'щ', 'з', 'х', 'ъ', 'ф', 'ы', 'в', 'а', 'п', 'р', 'о', 'л', 'д', 'ж', 'э', 'я', 'ч', 'с', 'м', 'и', 'т', 'ь', 'б', 'ю', 'Й', 'Ц', 'У', 'К', 'Е', 'Н', 'Г', 'Ш', 'Щ', 'З', 'Х', 'Ъ', 'Ф', 'Ы', 'В', 'А', 'П', 'Р', 'О', 'Л', 'Д', 'Ж', 'Э', 'Я', 'Ч', 'С', 'М', 'И', 'Т', 'Ь', 'Б', 'Ю');
return strlen(str_replace($rus, '0', $stra));}
function br($msg,$br='<br/>'){
return preg_replace("#((<br( ?/?)>)|n|r)+#i",$br, $msg);}
function output($text){
$text=br(bb(smiles(htmlspecialchars(stripslashes($text)))));
return $text;}
function mysql_s($m) {return mysql_real_escape_string($m);}
if($user){
$record_site=mysql_fetch_array(mysql_query("SELECT * FROM `record_site`"));
$count_ur=mysql_num_rows(mysql_query("SELECT * FROM `users` WHERE `sess`<>'' AND `reload`>'".($time-1200)."'"));
if($record_site['user_count']<$count_ur){
mysql_query("UPDATE `record_site` SET `user_count`='$count_ur', `user_time`='".time()."'");}
$count_ct=mysql_num_rows(mysql_query("SELECT `id` FROM `users` WHERE `link1`<>''"));
if($record_site['chat_count']<$count_ct){
mysql_query("UPDATE `record_site` SET `chat_count`='$count_ct', `chat_time`='".time()."'");}
$count_fr=mysql_num_rows(mysql_query("SELECT `id` FROM `users` WHERE `link2`<>''"));
if($record_site['forum_count']<$count_fr){
mysql_query("UPDATE `record_site` SET `forum_count`='$count_fr', `forum_time`='".time()."'");}
$count_blg=mysql_num_rows(mysql_query("SELECT `id` FROM `users` WHERE `link3`<>''"));
if($record_site['blog_count']<$count_blg){
mysql_query("UPDATE `record_site` SET `blog_count`='$count_blg', `blog_time`='".time()."'");}
$count_mgame=mysql_num_rows(mysql_query("SELECT * FROM `users` WHERE `link`='OnLine игра [<a href=/mf/>Мафия</a>]'"));
if($record_site['online_count']<$count_mgame){
mysql_query("UPDATE `record_site` SET `online_count`='$count_mgame', `online_time`='".time()."'");}
}
if(!$user)unset($aut);
function msg($msg)
{
echo '<div class="msg">'.$msg.'</div>';
}
//функция вывода сообщений
?>