Файл: phpfile/auth_s.php
Строк: 106
<h1>Регистрация</h1><div class="hr"></div><?
/* Определяем текущую дату */
$cdate = date("Y-m-d H:i:s") ;
$login = $_SESSION['imeni'] ;
$password = '1';
$id_yandex=$_SESSION['soc'];
unset($_SESSION['soc']);
$d ='01' ;
$mes = '01' ;
$god = '1990' ;
$osebe ='';
$email = '';
$i = preg_match('/^[0-9A-Za-z]+$/', $login) ;
if ($i != 0)
{
print "" ;
}
else
{
print "Неверные символы в Нике!" ;
print "<br><a href=index.php>назад</a>";
exit;
}
$loginlen = strlen($login) ;
$query = "SELECT COUNT(*) AS `counter`
FROM `users` where `login`='" . mysql_real_escape_string($login) .
"'" ;
$sql = mysql_query($query) or die(mysql_error()) ;
$row = mysql_fetch_assoc($sql) ;
$elements = $row['counter'] ;
if ($elements > 0)
{
print "Такой ник занят, попробуйте другой" ;print "<br><a href=index.php?id=auth>назад</a>";
exit;
}
$rrr = $login ;
$datarogden = "$d-$mes-$god" ;
SetCookie("my_cookie", "$rrr", 0x6FFFFFFF) ;
$_SESSION['name'] = $login ;
//////////////////////////////////////
///////////////////////////////////////////////////////
////////////////////////////////////////////////////////
/////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////
$rgj=0;
if (isset($_SESSION['ref'])){
$refer=mysql_real_escape_string($_SESSION['ref']);
mysql_query("INSERT INTO `referal` ( `id` , `idpers` , `referal` )
VALUES (
'', '$refer', '$login'
);")or die(mysql_error()) ;
$rgj=1
;}
$password = md5(md5($password) . '8tf*') ;
mysql_query("INSERT INTO `users` SET `login`='" . mysql_real_escape_string($login) .
"',`password`='',`mail`='',`telafon`='' ,`pass`='0',`yandex_id`='$id_yandex'") or die(mysql_error()) ;
$p=0;
$query1 = "INSERT INTO $table1 SET name='" . mysql_real_escape_string($login) .
"', sever='0',
wostok='0',hpall='50',mp='50',mpall='50',tp='50',
tpall='50',
blok='10',
otragenie='10',
znanija='10',
sila='50',
lovkost='50',
ataka='50',
zashita='50',
alhimia='10',
travnik='10',
ohotnik='10',
potroshital='10',
artfizik='10',
staratel='10',
rudokop='10',
orugejnik='10',
enchayz='10',
digger='10',
skornjak='10',
ykroshenie='10',
orugie='0',
brohja='0',
shit='0',
sapogi='0',
shlem='0',
rukavici='0',
plash='0',
slot1='0',slot4='0',slot5='0',
hp='50', polog1='505',
slot2='0',
slot3='0',
tekopit='0',
obshopit='0',
lvl='1',
zoloto='1000',cent='500',
dosleduushego='8',`tema`='10',
drogdenie ='" . mysql_real_escape_string($datarogden) . "',
polmmg ='" . mysql_real_escape_string($_SESSION['polm']) . "',
osebe='" . mysql_real_escape_string($osebe) . "',
registracija='" . mysql_real_escape_string($cdate) . "',
bank='2000',
kuznec ='10',podtvergdenie='0'
,referal='$rgj',namein='" . mysql_real_escape_string($login) .
"'
,`klas_table`='zakl_obivatel',`pod_klas`='Обыватель',`podklass`='0',
`partner`='$p'
" ;
mysql_query($query1) or die(mysql_error()) ;
mysql_query("INSERT INTO `a36667_element`.`obychen_q` (
`id` ,
`id_pers` ,
`1`
)
VALUES (
NULL , '$login', '0'
);");
mysql_query("
INSERT INTO `a36667_element`.`zvoin` (`name` ,
`1` ,
`2` ,
`3` ,
`4` ,
`5` ,
`6` ,
`7` ,
`8` ,
`9` ,
`10` ,
`11` ,
`12` ,
`13` ,
`14` ,
`15` ,
`16` ,
`17` ,
`18` ,
`19` ,
`20` ,
`21` ,
`22` ,
`23` ,
`24` ,
`25` ,
`26` ,
`27` ,
`28` ,
`29` ,
`30` ,
`31` ,
`32` ,
`33` ,
`34` ,
`35` ,
`36` ,
`37` ,
`38` ,
`39` ,
`40` ,
`41` ,
`42` ,
`43` ,
`44` ,
`45` ,
`46` ,
`47` ,
`48` ,
`49` ,
`50` ,
`51` ,
`52` ,
`53` ,
`54` ,
`55` ,
`56` ,
`57` ,
`58` ,
`59` ,
`60` ,
`61` ,
`62` ,
`63` ,
`64` ,
`65` ,
`66`
)
VALUES ('$login', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', ''
);");
mysql_query("INSERT INTO `color_kard` ( `id` , `id_pers` , `1` , `2` , `3` , `4` , `5` , `6` , `7` , `8` , `9` , `s` , `w` , `status` )
VALUES (
'', '$login', '', '', '', '', '', '', '', '', '', '', '', ''
);");
mysql_query("INSERT INTO `a36667_element`.`pers_info` (
`id` ,
`name` ,
`info_img`,`site` ,`karta`
)
VALUES (
'' , '$login', '','" . mysql_real_escape_string(@$_SESSION['site'])."' ,'1'
);");
////////////////////////////////////ip
$hhh = mysql_real_escape_string($_SERVER['REMOTE_ADDR']) ;
mysql_query(" INSERT INTO `iptimepers` (
`ip` ,
`name` ,
`time`
)
VALUES (
'$hhh', '$login', '" . time() . "'
);") or die(mysql_error()) ;
mysql_query("INSERT INTO `goroda_pers` ( `id` , `name` , `g1` , `g2` , `g3` , `g4` , `g5` , `g6` , `g7` , `g8` , `g9` )
VALUES (
'', '$login', '', '', '', '', '', '', '', '', ''
);");
mysql_query("INSERT INTO `time_online` ( `id` , `name` , `everyday` , `all` )
VALUES (
'', '$login', '', ''
);
")or die(mysql_error()) ;;
/* Выполняем запрос. Если произойдет ошибка - вывести ее. */
$krow=mysql_query("select ID from table1 where name='$login'");
$kID=mysql_fetch_array($krow);
mysql_query("INSERT INTO `klad_otkrit` (`id`, `id_pers`, `zashita`, `lovkost`, `sila`, `ataka`, `razum`, `intelekt`, `hpall`, `mpall`, `tpall`) VALUES (NULL, '".$kID['ID']."', '', '', '', '', '', '', '', '', '');");
/* Закрываем соединение */
function generate_password()
{
$number = 8 ;
$arr = array('a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm',
'n', 'o', 'p', 'r', 's', 't', 'u', 'v', 'x', 'y', 'z', 'A', 'B', 'C', 'D', 'E',
'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P', 'R', 'S', 'T', 'U', 'V',
'X', 'Y', 'Z', '1', '2', '3', '4', '5', '6', '7', '8', '9', '0', ) ;
// Генерируем пароль
$passka = "" ;
for ($i = 0; $i < $number; $i++)
{
// Вычисляем случайный индекс массива
$index = rand(0, count($arr) - 1) ;
$passka .= $arr[$index] ;
}
return $passka ;
}
$musor = generate_password() ;
$UA = $_SERVER['HTTP_USER_AGENT'] ;
$rrr = md5($login . $musor . $UA) ;
$_COOKIE['my_cookie'] = $rrr ;
SetCookie("my_cookie", "$rrr", 0x6FFFFFFF) ;
mysql_query("UPDATE `table1` SET `kokie`='$rrr', `salt`='$musor',`ua`='$UA', auth='1' WHERE `name`='" .
mysql_real_escape_string($login) . "';") or die(mysql_error()) ;
header("location:88.php?go=do");
$query = "SELECT * from `game_setup`";
$sql = mysql_query($query) or die(mysql_error());
$row_se = mysql_fetch_assoc($sql);
$row_se['all']++;
mysql_query("update `game_setup` set `all`='".$row_se['all']."'") ;
mysql_close() ;
?>