Файл: dvig/start.php
Строк: 24
<?
include './inc/baza.php';
include './inc/functional.php';
include './inc/profile.php';
include './inc/verx.php';
if($user) {
header('location: /');
exit;
}
//if(mysql_num_rows(mysql_query('SELECT * FROM `ban` WHERE `ip` = ''.$_SERVER['REMOTE_ADDR'].''')) != 0 OR mysql_num_rows(mysql_query('SELECT * FROM `users` WHERE `ip` = ''.$_SERVER['REMOTE_ADDR'].''')) != 0) { header('location: /'); exit; }
$ref = _string(_num($_GET['ref']));
$password = rand(1,999);
if(mysql_query('INSERT INTO `users` (`login`,
`password`) VALUEs ("Прохожий",
"'.$password.'")')) {
$id = mysql_insert_id();
if($ref) {
$ref_user = mysql_query('SELECT * FROM `users` WHERE `id` = "'.$ref.'"');
$ref_user = mysql_fetch_array($ref_user);
if($ref_user) {
mysql_query('INSERT INTO `ref` (`user`,
`ho`) VALUEs ("'.$ref_user['id'].'",
"'.$id.'")');
mysql_query("UPDATE `users` SET `g` = `g`+ '1000', `kris` = `kris` + '100' WHERE `id` = '$ref_user[id]'");
}
}
$user = mysql_query('SELECT * FROM `users` WHERE `id` = "'.$id.'"');
$user = mysql_fetch_array($user);
$_g = 10000000;
$_s = 10000000;
$_kris = 100000;
$_skill = 10;
$_r = rand(0,1);
$_SESSION['message']="<div class='h'>Добро пожаловать! </div>";
mysql_query('UPDATE `users` SET `hp` = "'.($user['vit'] * 4).'",
`mp` = "'.$user['mana'].'" WHERE `id` = "'.$id.'"');
mysql_query('UPDATE `users` SET `g` ="'.$_g.'",
`s` ="'.$_s.'" WHERE `id` = "'.$id.'"');
mysql_query('UPDATE `users` SET `r` ="'.$_r.'",
`r` ="'.$_r.'" WHERE `id` = "'.$id.'"');
mysql_query('UPDATE `users` SET `kris` ="'.$_kris.'",
`r` ="'.$_r.'" WHERE `id` = "'.$id.'"');
mysql_query('UPDATE `users` SET `skill` ="'.$_skill.'",
`skill` ="'.$_skill.'" WHERE `id` = "'.$id.'"');
mysql_query("DELETE FROM `users` where `level` = '0'");
setCookie('id', $user['id'], time() + 86400, '/');
setCookie('password', $password, time() + 86400, '/');
header('location: ?');
exit();
}
?>