alert('Пожалуйста, не пытайтесь отредактировать HTML код.')"; } elseif(empty($_SESSION['roleid'])) { echo ""; } else { $_POST['num'] = (int)$_POST['num']; $Query = MySQL_Query("select * from `things` WHERE `num` = '{$_POST['num']}'"); $item = mysql_fetch_array($Query); if($item[price] > $MONEY) { echo ""; } elseif(SysSendMail($_SESSION['roleid'], "Магазин", "Покупка {$item[name]} за {$item[price]}.", $item[id], $item[count], $item[max_count], $item[octet], 32863, $item[expire_date], 0, 0, $item[mask], 0) == 0) { echo ""; $moneynow = $MONEY-$item[price]; MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$moneynow}' WHERE `users`.`id` = '{$_SESSION['id']}'"); $date = date("d.m.y H:i"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('1', '{$_SESSION['id']}', '{$_SESSION['roleid']}', 'Покупка {$item[name]}.', '{$date}', '-{$item[price]}')"); } else { echo ""; } } } if(isset($_GET['cat'])) { $cat = htmlentities($_GET['cat']); $cat = (int)$cat; $Query = MySQL_Query("select * from `things` WHERE `cat` = '{$cat}'"); } else { $Query = MySQL_Query("select * from `things`"); } $Query2 = MySQL_Query("SELECT * FROM `cats`"); while ($c = mysql_fetch_array($Query2)) { $namecat = base64_decode($c[name]); $CATS .= <<[{$namecat}] HTML; } while ($Thing = mysql_fetch_array($Query)) { $about = str_replace("<", "<", $Thing[about]); $about = str_replace(">", ">", $about); $Things .= <<{$Thing[name]}{$about}{$Thing[price]}

\n HTML; } $sock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP); if(!$sock) { die(socket_strerror(socket_last_error())); } if(socket_connect($sock, "127.0.0.1", "29400")) { socket_set_block($sock); $data = "\x8B\xD8\x08\x80\x00\x00\x01".pack("N", $_SESSION['id']); $sbytes = socket_send($sock, $data, 8192, 0); $rbytes = socket_recv($sock, $buf, 8192, 0); $strlarge = unpack( "H", substr( $buf, 2, 1 ) ); if(substr($strlarge[1], 0, 1) == "8") { $start = 12; } else { $start = 11; } $rolescount = unpack( "c", substr( $buf, $start, 1 ) ); $start = $start+1; for($MorzE=0; $i<$rolescount[1]; $i++) { $roleid = unpack( "N", substr( $buf, $start, 4 ) ); $start = $start+4; $namelarge = unpack( "c*", substr( $buf, $start, 1 ) ); $start = $start+1; $rolename = iconv( "UTF-16", "UTF-8", substr( $buf, $start, $namelarge[1] ) ); $start = $start+$namelarge[1]; if ($roleid[1] == $_SESSION['roleid']) { $select[$i] = ' selected="selected"'; } $roles_acc .= <<{$rolename}\n HTML; } socket_set_nonblock($sock); socket_close($sock); } else { die(socket_strerror(socket_last_error())); } include "shop.php"; echo $SHOP; if(isset($_POST['choice'])) { $ri = $_POST['role'] - $_SESSION['id']; if($ri > 15 || $ri < 0) { echo ""; } elseif(ereg("[^0-9]", $_POST['role'], $Txt)) { echo ""; } else { $_SESSION['roleid'] = $_POST['role']; } } } elseif($_GET['mod'] == "logout") { session_destroy(); echo ""; } elseif($_GET['mod']== 'pers'){ $sock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP); if(!$sock) { die(socket_strerror(socket_last_error())); } if(socket_connect($sock, "127.0.0.1", "29400")) { socket_set_block($sock); $data = "\x8B\xD8\x08\x80\x00\x00\x01".pack("N", $_SESSION['id']); $sbytes = socket_send($sock, $data, 8192, 0); $rbytes = socket_recv($sock, $buf, 8192, 0); $strlarge = unpack( "H", substr( $buf, 2, 1 ) ); if(substr($strlarge[1], 0, 1) == "8") { $start = 12; } else { $start = 11; } $rolescount = unpack( "c", substr( $buf, $start, 1 ) ); $start = $start+1; for($MorzE=0; $i<$rolescount[1]; $i++) { $roleid = unpack( "N", substr( $buf, $start, 4 ) ); $start = $start+4; $namelarge = unpack( "c*", substr( $buf, $start, 1 ) ); $start = $start+1; $rolename = iconv( "UTF-16", "UTF-8", substr( $buf, $start, $namelarge[1] ) ); $start = $start+$namelarge[1]; if ($roleid[1] == $_SESSION['roleid']) { $select[$i] = ' selected="selected"'; } $roles_acc .= <<{$rolename}\n HTML; } socket_set_nonblock($sock); socket_close($sock); } else { die(socket_strerror(socket_last_error())); } include "pers.php"; echo $PERS; if(isset($_POST['level'])) { if(empty($_SESSION['roleid'])) { echo ""; } else { include 'config.php'; $price2=$_POST['level']*$pricelvl; if($price2 > $MONEY) { echo ""; } else { $idpers=$_SESSION['roleid']; $lvl=$_POST['level']; if($lvl>0){ $buylvl=l__1($idpers,$lvl); if($buylvl) { echo ''; $moneynow = $MONEY-$price2; MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$moneynow}' WHERE `users`.`id` = '{$_SESSION['id']}'"); $date = date("d.m.y H:i"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('1', '{$_SESSION['id']}', '{$_SESSION['roleid']}', 'Покупка {$lvl} лвл.', '{$date}', '-{$price2}')");} else echo ""; } else echo ''; } } } if(isset($_POST['choice'])) { $ri = $_POST['role'] - $_SESSION['id']; if($ri > 15 || $ri < 0) { echo ""; } elseif(ereg("[^0-9]", $_POST['role'], $Txt)) { echo ""; } else { $_SESSION['roleid'] = $_POST['role']; } } } elseif($_GET['mod'] == "transfer") { if(isset($_POST['transfer'])) { $Query = MySQL_Query("select * from `users` WHERE `name`='{$_SESSION['login']}'"); $MONEY = MySQL_result($Query, 0, 'money'); $id = (int)$_POST['id']; $smoney = (int)$_POST['money']; if(empty($_POST['id']) || empty($_POST['money'])) { echo ""; } elseif(ereg("[^0-9]", $_POST['id'])) { echo ""; } elseif(ereg("[^0-9]", $_POST['money'])) { echo ""; } elseif($smoney > $MONEY) { echo ""; } elseif($smoney < 1) { echo ""; } elseif($id == $_SESSION['id']) { echo ""; } else { $Query = MySQL_Query("select * from `users` WHERE `ID`='{$id}'"); $MONEY2 = MySQL_result($Query, 0, 'money'); $moneynew1 = $MONEY-$smoney; $moneynew2 = $MONEY2+$smoney; MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$moneynew1}' WHERE `users`.`id` = '{$_SESSION['id']}'"); $date = date("d.m.y H:i"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('1', '{$_SESSION['id']}', '{$id}', 'Вы отправили‚ #{$id}.', '{$date}', '-{$smoney}')"); MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$moneynew2}' WHERE `users`.`id` = '{$id}'"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('0', '{$id}', '{$_SESSION['id']}', 'Вам пришло#{$_SESSION['id']}.', '{$date}', '{$smoney}')"); echo ""; } } include "transfer.php"; echo $TRANSFER; } elseif($_GET['mod'] == "chat") { include "lk.php"; if(isset($_POST['submit'])) { if(empty($_POST['message'])) { echo ""; exit; } if($MONEY < $krasnichat) { echo ""; exit; } if(empty($RESULT)) { $can = pack("C*",9); $roleid=pack("N*",$_SESSION['roleid']); $nyn = pack("C*",0); $negm = $_POST['negm']; $sm = "{$_POST['message']}{$negm}"; $sms = iconv("UTF-8", "UTF-16LE", $sm); $smsl = strlen($sms); if($smsl < 128) { $smsl = pack("C*", $smsl); } else { $smsl = pack("n*", $smsl + 32768); } $pack = $can.$nyn.$roleid.$smsl.$sms."\x00\x00"; $puck = pack("C*",strlen($pack)); $type = pack("C",120); $sock=socket_create(AF_INET,SOCK_STREAM,SOL_TCP); $sock2=socket_connect($sock,"127.0.0.1","29300"); socket_set_block($sock); $data = $type.$puck.$pack; $sbytes=socket_send($sock,$data,8192,0); $rbytes=socket_recv($sock,$buf,8192,0); socket_set_nonblock($sock); socket_close($sock); echo ""; $www1 = $MONEY-$krasnichat; MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$www1}' WHERE `users`.`id` = '{$_SESSION['id']}'"); $date = date("d.m.y H:i"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('1', '{$_SESSION['id']}', '{$_SESSION['roleid']}', 'RedChat.', '{$date}', '-{$krasnichat}')"); } else { echo ""; exit; } } $CHATIK = <<
Message:






HTML; $sock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP); if(!$sock) { die(socket_strerror(socket_last_error())); } if(socket_connect($sock, "127.0.0.1", "29400")) { socket_set_block($sock); $data = "\x8B\xD8\x08\x80\x00\x00\x01".pack("N", $_SESSION['id']); $sbytes = socket_send($sock, $data, 8192, 0); $rbytes = socket_recv($sock, $buf, 8192, 0); $strlarge = unpack( "H", substr( $buf, 2, 1 ) ); if(substr($strlarge[1], 0, 1) == "8") { $start = 12; } else { $start = 11; } $rolescount = unpack( "c", substr( $buf, $start, 1 ) ); $start = $start+1; for($MorzE=0; $i<$rolescount[1]; $i++) { $roleid = unpack( "N", substr( $buf, $start, 4 ) ); $start = $start+4; $namelarge = unpack( "c*", substr( $buf, $start, 1 ) ); $start = $start+1; $rolename = iconv( "UTF-16", "UTF-8", substr( $buf, $start, $namelarge[1] ) ); $start = $start+$namelarge[1]; if ($roleid[1] == $_SESSION['roleid']) { $select[$i] = ' selected="selected"'; } $roles_acc .= <<{$rolename}\n HTML; } socket_set_nonblock($sock); socket_close($sock); } else { die(socket_strerror(socket_last_error())); } include "up.php"; echo $BODY; } elseif($_GET['mod'] == "vote") { include "vote.php"; echo $VOTE; } elseif($_GET['mod'] == "lvl") { include "buylvl.php"; echo $LVL; } elseif($_GET['mod'] == "donat") { if(isset($_POST['donat'])) { $Query = MySQL_Query("select * from `users` WHERE `name`='{$_SESSION['login']}'"); $MONEY = MySQL_result($Query, 0, 'money'); $id = (int)$_POST['id']; $smoney = (int)$_POST['money']; if(empty($_POST['id']) || empty($_POST['money'])) { echo ""; } elseif(ereg("[^0-9]", $_POST['id'])) { echo ""; } elseif(ereg("[^0-9]", $_POST['money'])) { echo ""; } elseif($smoney > $MONEY) { echo ""; } elseif($smoney < 1) { echo ""; } elseif($id == $_SESSION['id']) { echo ""; } else { $Query = MySQL_Query("select * from `users` WHERE `ID`='{$id}'"); $MONEY2 = MySQL_result($Query, 0, 'money'); $moneynew1 = $MONEY-$smoney; $moneynew2 = $MONEY2+$smoney; MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$moneynew1}' WHERE `users`.`id` = '{$_SESSION['id']}'"); $date = date("d.m.y H:i"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('1', '{$_SESSION['id']}', '{$id}', 'Трансфер на счет #{$id}.', '{$date}', '-{$smoney}')"); MySQL_Query("UPDATE `{$MySQL_DB}`.`users` SET `money` = '{$moneynew2}' WHERE `users`.`id` = '{$id}'"); MySQL_Query("INSERT INTO `{$MySQL_DB}`.`logs` (`type`, `id1`, `id2`, `text`, `date`, `value`) VALUES ('0', '{$id}', '{$_SESSION['id']}', 'Трансфер со счета #{$_SESSION['id']}.', '{$date}', '{$smoney}')"); echo ""; } } include "transfer.php"; echo $TRANSFER; } else { $Query = MySQL_Query("select * from `logs` WHERE `id1` = '{$_SESSION['id']}'"); while ($Log = mysql_fetch_array($Query)) { if($Log[type] == "0") { $HISTORY[0] .= <<{$Log[date]}{$Log[value]}{$Log[text]}\n HTML; } if($Log[type] == "1") { $HISTORY[1] .= <<{$Log[date]}{$Log[value]}{$Log[text]}\n HTML; } } include "loged.php"; echo $LOGED; } } ?>