Untitled

<?php
function get_constants()
{
    global $database;
    $q = "select * from constants";
    if (!$r = $database->query($q))
        exit('<h1>Constants Error</h1>');
    return mysql_fetch_assoc($r);
}
function initialize()
{
    global $constants, $database;
    if (isset($_GET['lngg']))
        $lngg = $_GET['lngg'];
    elseif (isset($_SESSION['lngg']))
        $lngg = $_SESSION['lngg'];
    else
        $lngg = $constants['prefix'];
    if ($lngg == 'ar_' || $lngg == 'en_') {
        $_SESSION['lngg'] = $lngg;
        define('PRE', $lngg);
    } else
        exit('<h1>Invalid Language</h1>');
    $q = "select file,direction from language where prefix='" . PRE . "'";
    if (!$r = $database->query($q))
        exit('<h1>Error Select Language</h1>');
    require_once($constants['lnggpth'] . mysql_result($r, 0, 'file'));
    define('ALIGN', mysql_result($r, 0, 'direction'));
    if (!defined('DFRE756GHTH34VCSADFEW3SD4SD2'))
        exit();
    if (isset($_GET['stylid']))
        $stylid = $_GET['stylid'];
    elseif (isset($_SESSION['stylid']) && !empty($_SESSION['stylid']))
        $stylid = $_SESSION['stylid'];
    else {
        $q = "select stylid from style where current='y'";
        if (!$r = $database->query($q))
            exit('<h1>Error Select Style</h1>');
        $stylid = mysql_result($r, 0, 'stylid');
    }
    if (filter_digit($stylid))
        $_SESSION['stylid'] = $stylid;
    else
        exit('<h1>Invalid Style</h1>');
    date_default_timezone_set('Asia/Damascus');
}
function get_settings()
{
    global $database;
    $q = "select * from " . PRE . "settings";
    if (!$r = $database->query($q))
        exit('<h1>Settings Error</h1>');
    $ar = mysql_fetch_assoc($r);
    return $ar;
}
function filter_digit($var)
{
    return ctype_digit($var);
}
function filter_alpha($var)
{
    return ctype_alpha($var);
}
function filter($var)
{
    $var = trim(strip_tags($var, '<p><br>'));
    $var = str_ireplace("'", '', $var);
    $var = str_ireplace('"', '', $var);
    $var = str_ireplace('..', '', $var);
    $var = str_ireplace('+', '', $var);
    $var = str_ireplace('/', '', $var);
    $var = str_ireplace('%', '', $var);
    $var = str_ireplace('0x', '', $var);
    $var = str_ireplace(')', '', $var);
    $var = str_ireplace('(', '', $var);
    $var = str_ireplace('}', '', $var);
    $var = str_ireplace('{', '', $var);
    $var = str_ireplace('ini', '', $var);
    $var = str_ireplace('base64', '', $var);
    $var = str_ireplace('eval', '', $var);
    return $var;
}
function filter_text($var)
{
    $var = str_ireplace('<script', '', $var);
    $var = str_ireplace('base64', '', $var);
    $var = str_ireplace('eval', '', $var);
    return $var;
}
function filter_stretch($var)
{
    return str_ireplace('Ü', '', $var);
}
function escape($var)
{
    return trim(htmlspecialchars($var));
}
function escape2($var)
{
    return trim(addslashes($var));
}
function strip_new_line($text)
{
    $text = str_ireplace('<p', ' <span', $text);
    $text = str_ireplace('<p>', ' <span>', $text);
    $text = str_ireplace('</p>', '</span>', $text);
    $text = str_ireplace('<br>', ' ', $text);
    $text = str_ireplace('<div', ' <span', $text);
    $text = str_ireplace('<div>', ' <span>', $text);
    $text = str_ireplace('</div>', '</span>', $text);
    $text = str_ireplace('<h1', ' <span', $text);
    $text = str_ireplace('<h1>', ' <span>', $text);
    $text = str_ireplace('</h1>', '</span>', $text);
    $text = str_ireplace('<h2', ' <span', $text);
    $text = str_ireplace('<h2>', ' <span>', $text);
    $text = str_ireplace('</h2>', '</span>', $text);
    $text = str_ireplace('<h3', ' <span', $text);
    $text = str_ireplace('<h3>', ' <span>', $text);
    $text = str_ireplace('</h3>', '</span>', $text);
    $text = str_ireplace('<h4', ' <span', $text);
    $text = str_ireplace('<h4', ' <span>', $text);
    $text = str_ireplace('</h4>', '</span>', $text);
    $text = str_ireplace('<h5', ' <span', $text);
    $text = str_ireplace('<h5>', ' <span>', $text);
    $text = str_ireplace('</h5>', '</span>', $text);
    $text = str_ireplace('<h6', ' <span', $text);
    $text = str_ireplace('<h6>', ' <span>', $text);
    $text = str_ireplace('</h6>', '</span>', $text);
    return $text;
}
function refill($var)
{
    if (isset($_POST[$var]))
        return escape($_POST[$var]);
    if (isset($_GET[$var]))
        return escape($_GET[$var]);
}
function encodeurl($var)
{
    return htmlentities(urlencode($var));
}
function filter_some_text($text)
{
    $text = strip_new_line($text);
    $text = str_replace(chr(10), ' ', $text);
    $text = str_replace(chr(13), ' ', $text);
    return $text;
}
function get_script_time($styl = '$Y-$m-$d $H:$i:$s', $pls = 0)
{
    global $constants;
    $ar       = explode('#', $constants['dttm']);
    $timedate = time() + $pls;
    if (isset($ar[0]))
        $timedate += $ar[0] * 60;
    if (isset($ar[1]))
        $timedate += $ar[1] * 60 * 60;
    if (isset($ar[2]))
        $timedate += $ar[2] * 24 * 60 * 60;
    if (isset($ar[3]))
        $timedate += $ar[3] * 30 * 24 * 60 * 60;
    if (isset($ar[4]))
        $timedate += $ar[4] * 365 * 30 * 24 * 60 * 60;
    if ($styl == 'unix_timestamp')
        return $timedate;
    $Y = date('Y', $timedate);
    $m = date('m', $timedate);
    $d = date('d', $timedate);
    $H = date('H', $timedate);
    $i = date('i', $timedate);
    $s = date('s', $timedate);
    eval("\$styl=\"$styl\";");
    return $styl;
}
function go_link()
{
    global $database, $language, $pg;
    if (!filter_digit($_GET['id']))
        return;
    if (!filter_alpha($_GET['kind']))
        return;
    switch ($_GET['kind']) {
        case 'advrtsmntlnk':
            $table = 'advertisement';
            $field = 'clicks';
            $id    = 'advrid';
            break;
        case 'imprtntstlnk':
            $table = 'importantsite';
            $field = 'clicks';
            $id    = 'imprtntid';
            break;
        case 'frndlystlnk':
            $table = 'friendlysite';
            $field = 'clicks';
            $id    = 'frndstid';
            break;
        default:
            return;
    }
    $q = "update " . PRE . "$table set $field=($field+1) where $id=" . $_GET['id'];
    if (!$r = $database->query($q))
        return;
    if (!isset($_SESSION[$_GET['kind']][$_GET['id']]))
        return;
    $link = escape($_SESSION[$_GET['kind']][$_GET['id']]);
    $pg->letter($language['NOTICEREDIRECT'] . '<p><a href="http://' . $link . '">' . $link . '</a><script language="javascript" type="text/javascript">location.href="http://' . $link . '"</script>');
}
function alert($message)
{
    echo '<script language="javascript" type="text/javascript">alert("' . $message . '");</script>';
    return false;
}
function is_banned()
{
    global $database, $pg, $language;
    $q = "select 1 from " . PRE . "banned where ip='{$_SERVER['REMOTE_ADDR']}'";
    if (!$r = $database->query($q))
        return;
    if (!mysql_num_rows($r))
        return;
    echo '<h1 style="height:200px">' . $language['YOUAREBANNED'] . '</h1>';
    $pg->show('Footer2');
    exit;
}
function page_sound()
{
    global $constants, $settings;
    if (empty($settings['sndfl']))
        return;
    $loop   = $settings['sndfllp'];
    $src    = $constants['cntntflpth'] . $settings['sndfl'];
    $extnsn = substr(strtolower(strrchr($settings['sndfl'], '.')), 1);
    if ($extnsn == 'rm' || $extnsn == 'ram')
        return '<object width=0 height=0 classid="clsid:CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA"><param name="autostart" value="true" /><param name="loop" value="' . $loop . '" /><param name="src" value="' . $src . '" /><embed width=0 height=0 src="' . $src . '" autostart="true" loop="' . $loop . '" hidden="true" type="audio/x-pn-realaudio-plugin"></object>';
    return '<object width=0 height=0 classid="clsid:22D6F312-B0F6-11D0-94AB-0080C74C7E95"><param name="autostart" value="true" /><param name="loop" value="' . $loop . '" /><param name="src" value="' . $src . '" /><embed width=0 height=0 src="' . $src . '" autostart="true" loop="' . $loop . '" hidden="true"></object>';
}
function online_now($sub = 0)
{
    global $language, $settings, $pg, $database;
    $page = basename($_SERVER['PHP_SELF']);
    $q    = "select count(ip) count,guest from " . PRE . "online" . ($sub ? " where file='$page'" : '') . " group by guest";
    if (!$r = $database->query($q))
        return;
    $guests = $users = 0;
    for (; $row = mysql_fetch_assoc($r);)
        $row['guest'] == 'y' ? $guests = $row['count'] : $users = $row['count'];
    $out = "<table cellpadding=1 celspacing=0><tr><td><span class=gray>{$language['USERS']} &nbsp;<span class=bold>$users</span>";
    $q   = "select u.user,g.name,g.color from " . PRE . "online o," . PRE . "user u," . PRE . "usergroup g where o.guest='n' and o.userid=u.userid and g.grpid=u.grpid" . ($sub ? " and o.file='$page'" : '') . " order by g.name";
    if ($r = $database->query($q)) {
        $out .= "<div style='padding:5px 25px'>";
        while ($row = mysql_fetch_assoc($r))
            $out .= "<span style='color:{$row['color']}' title='{$row['name']}'>{$row['user']}</span> &nbsp; ";
        $out .= '</div>';
    } else
        $out .= '<br>';
    mysql_free_result($r);
    $out .= "{$language['VISITORS']} &nbsp;<span class=bold>$guests</span>";
    if ($settings['flgonln'] == 'y') {
        $q = "select ip from " . PRE . "online where guest='y'" . ($sub ? " and file='$page'" : '');
        if ($r = $database->query($q)) {
            $guestflags = array();
            while ($row = mysql_fetch_assoc($r)) {
                $ipnumber = sprintf("%u", ip2long($row['ip']));
                $q        = "select code from ips where ipfrom<=$ipnumber and ipto>=$ipnumber";
                if ($rr = $database->query($q))
                    if (mysql_num_rows($rr))
                        $guestflags[] = mysql_result($rr, 0, 'code');
            }
            $guestflags = array_count_values($guestflags);
            $out .= "<div style='padding:5px 25px'>";
            foreach ($guestflags as $key => $val) {
                $q = "select * from countries where code='$key'";
                if ($r = $database->query($q))
                    if (mysql_num_rows($r) > 0)
                        $out .= "<span style='padding:2px' id=small>$val <img src='{$pg->flagspath}" . mysql_result($r, 0, 'code') . ".png' title='" . mysql_result($r, 0, 'cntry') . "'></span> ";
            }
            $out .= '</div>';
        }
        mysql_free_result($r);
    } else
        $out .= '<br>';
    $out .= "<img src='{$pg->imagespath}separator.gif'><br>{$language['ONLINETOTAL']}</span> &nbsp;<span class=bold>" . ($guests + $users) . "</span>";
    if (!$sub) {
        $out .= "<table cellpadding=1 cellspacing=0><tr><td colspan=2><img src='{$pg->imagespath}separator.gif'></td></tr><tr><td colspan=2>{$language['VISITORSCOUNT']} &nbsp;<span class=bold>{$settings['nmvstor']}</span></td></tr>";
        $q = "select count(*) from " . PRE . "user where state='y'";
        if ($r = $database->query($q))
            $out .= "<tr><td valign=top>{$language['COOUNT']} {$language['USERS']} &nbsp;<span class=bold>" . mysql_result($r, 0, 0) . '</span></td><td align=' . $pg->reverse . '><img src="' . $pg->generalpath . 'visitors.png"></td></tr>';
        $out .= '</table>';
    }
    $out .= '</td></tr></table>';
    return $out;
}
function show_countries($cntry = '', $name = 'cntry')
{
    global $pg, $language, $database;
    if (empty($cntry))
        if (isset($_POST['cntry']))
            $cntry = escape($_POST['cntry']);
        else {
            $ipnumber = sprintf("%u", ip2long($_SERVER['REMOTE_ADDR']));
            $q        = "select code from ips where ipfrom<=$ipnumber and ipto>=$ipnumber";
            if ($r = $database->query($q))
                if (mysql_num_rows($r))
                    $cntry = mysql_result($r, 0, 'code');
        }
    $out = "<select name='$name' onchange=update_flag(this,'flagimage$name');><option value=''>---<option value='sa'" . ($cntry == 'sa' ? ' selected' : '') . ">{$language['CNTRY1']}<option value='kw'" . ($cntry == 'kw' ? ' selected' : '') . ">{$language['CNTRY2']}<option value='bh'" . ($cntry == 'bh' ? ' selected' : '') . ">{$language['CNTRY3']}<option value='qa'" . ($cntry == 'qa' ? ' selected' : '') . ">{$language['CNTRY4']}<option value='ae'" . ($cntry == 'ae' ? ' selected' : '') . ">{$language['CNTRY5']}<option value='om'" . ($cntry == 'om' ? ' selected' : '') . ">{$language['CNTRY6']}<option value='ye'" . ($cntry == 'ye' ? ' selected' : '') . ">{$language['CNTRY7']}<option value='sy'" . ($cntry == 'sy' ? ' selected' : '') . ">{$language['CNTRY8']}<option value='lb'" . ($cntry == 'lb' ? ' selected' : '') . ">{$language['CNTRY9']}<option value='jo'" . ($cntry == 'jo' ? ' selected' : '') . ">{$language['CNTRY10']}<option value='ps'" . ($cntry == 'ps' ? ' selected' : '') . ">{$language['CNTRY11']}<option value='iq'" . ($cntry == 'iq' ? ' selected' : '') . ">{$language['CNTRY12']}<option value='eg'" . ($cntry == 'eg' ? ' selected' : '') . ">{$language['CNTRY13']}<option value='sd'" . ($cntry == 'sd' ? ' selected' : '') . ">{$language['CNTRY14']}<option value='ly'" . ($cntry == 'ly' ? ' selected' : '') . ">{$language['CNTRY15']}<option value='tn'" . ($cntry == 'tn' ? ' selected' : '') . ">{$language['CNTRY16']}<option value='dz'" . ($cntry == 'dz' ? ' selected' : '') . ">{$language['CNTRY17']}<option value='ma'" . ($cntry == 'ma' ? ' selected' : '') . ">{$language['CNTRY18']}<option value='mr'" . ($cntry == 'mr' ? ' selected' : '') . ">{$language['CNTRY19']}<option value='km'" . ($cntry == 'km' ? ' selected' : '') . ">{$language['CNTRY20']}<option value='dj'" . ($cntry == 'dj' ? ' selected' : '') . ">{$language['CNTRY21']}<option value='so'" . ($cntry == 'so' ? ' selected' : '') . ">{$language['CNTRY22']}<option value='bla'" . ($cntry == 'bla' ? ' selected' : '') . ">{$language['CNTRY23']}</select> <img id='flagimage$name' src='{$pg->flagspath}" . ($cntry ? $cntry : 'bla') . ".png'>";
    return $out;
}
function show_countries_without_select($cntry = '')
{
    global $pg, $language;
    $out = '';
    switch ($cntry) {
        case 'sa':
            $out = $language['CNTRY1'];
            break;
        case 'kw':
            $out = $language['CNTRY2'];
            break;
        case 'bh':
            $out = $language['CNTRY3'];
            break;
        case 'qa':
            $out = $language['CNTRY4'];
            break;
        case 'ae':
            $out = $language['CNTRY5'];
            break;
        case 'om':
            $out = $language['CNTRY6'];
            break;
        case 'ye':
            $out = $language['CNTRY7'];
            break;
        case 'sy':
            $out = $language['CNTRY8'];
            break;
        case 'lb':
            $out = $language['CNTRY9'];
            break;
        case 'jo':
            $out = $language['CNTRY10'];
            break;
        case 'ps':
            $out = $language['CNTRY11'];
            break;
        case 'iq':
            $out = $language['CNTRY12'];
            break;
        case 'eg':
            $out = $language['CNTRY13'];
            break;
        case 'sd':
            $out = $language['CNTRY14'];
            break;
        case 'ly':
            $out = $language['CNTRY15'];
            break;
        case 'tn':
            $out = $language['CNTRY16'];
            break;
        case 'dz':
            $out = $language['CNTRY17'];
            break;
        case 'ma':
            $out = $language['CNTRY18'];
            break;
        case 'mr':
            $out = $language['CNTRY19'];
            break;
        case 'km':
            $out = $language['CNTRY20'];
            break;
        case 'dj':
            $out = $language['CNTRY21'];
            break;
        case 'so':
            $out = $language['CNTRY22'];
            break;
        case 'bla':
            $out = $language['CNTRY23'];
    }
    ;
    $out .= " <img src='{$pg->url}{$pg->flagspath}" . ($cntry ? $cntry : 'bla') . ".png'>";
    return $out;
}
function send_email($subject, $from, $fromalias, $to, $letter, $error = '', $success = '', $headers = '', $mailer = DOMAIN, $priority = 3)
{
    global $settings, $language, $pg;
    if (empty($error))
        $error = $language['ERRORSENDEMAIL'];
    if (empty($success))
        $success = $language['SUCCESSSENDEMAIL'];
    if ($_SESSION['lngg'] == 'ar_') {
        $subject   = '=?windows-1256?B?' . base64_encode($subject) . '?=';
        $fromalias = '=?windows-1256?B?' . base64_encode($fromalias) . '?=';
    }
    if ($settings['emlknd'] == 'html') {
        $letter = $settings['preemail'] . $letter . '</body></html>';
        if (empty($headers))
            $headers = "MIME-Version: 1.0\r\n" . "Content-Type: text/html; charset=windows-1256\r\n" . "From: $fromalias <$from>\r\n" . "Reply-To: $from\r\n" . "To: $to\r\n" . "Return-Path: $from\r\n" . "X-Priority: $priority\r\n" . "X-Sender: Horizon Script\r\n" . "X-Mailer: $mailer PHP\r\n";
        if (!mail('', $subject, $letter, $headers))
            return $pg->letter($error, 'red');
    } else {
        $letter = str_ireplace('</tr>', "\n", $letter);
        $letter = str_replace('</td>', ' ', $letter);
        $letter = str_replace('<br>', "\n", $letter);
        $letter = strip_tags($letter);
        if (empty($headers))
            $headers = "From: $fromalias <$from>";
        if (!mail($to, $subject, $letter, $headers))
            return $pg->letter($error, 'red');
    }
    $pg->letter($success);
    return true;
}
function cookies()
{
    global $user;
    if (isset($_POST['saveme']) && $_POST['saveme'] == 'on') {
        $usercookie = $user->filter_user();
        setcookie('hrzncks02', $usercookie, time() + 2592000, '', '.' . DOMAIN);
    }
    if (isset($_POST['votenow']))
        setcookie('hrzncks022', 'Ok', time() + 3600, '', '.' . DOMAIN);
    if (isset($_POST['addsgntr']))
        setcookie('hrzncks023', 'Ok', time() + 3600, '', '.' . DOMAIN);
    if (isset($_POST['rank']))
        setcookie('hrzncks024', 'Ok', time() + 3600, '', '.' . DOMAIN);
}
function tell_friend()
{
    if (!isset($_GET['site']) || !isset($_GET['link']))
        return;
    $site = escape($_GET['site']);
    $link = escape($_GET['link']);
    $site = filter($site);
    $link = filter($link);
    $link = str_ireplace('http:', '', $link);
    return '<input type=hidden name=site value="' . $site . '"><input type=hidden name=link value="' . $link . '"><tr height=30><td></td><td>' . $site . '</td></tr>';
}
function send_to_friend()
{
    global $settings, $language, $pg;
    $email  = filter($_POST['email']);
    $letter = $settings['frndlttr'] . '<p>----------------------</p>' . escape2(nl2br($_POST['text'])) . $settings['sgntr'];
    eval("\$letter=\"$letter\";");
    send_email($language['EMAILFROMFRIEND'], $settings['email1'], $pg->sitename, $email, $letter);
    echo '<script language="javascript" type="text/javascript">setTimeout("close_portal_frame()",5000);</script>';
}
function prayer_now()
{
    global $database, $pg, $language;
    $usercode = '';
    if (isset($_POST['pryrcntry']))
        $usercode = substr($_POST['pryrcntry'], 0, 3);
    else {
        $ipnumber = sprintf("%u", ip2long($_SERVER['REMOTE_ADDR']));
        $q        = "select code from ips where ipfrom<=$ipnumber and ipto>=$ipnumber";
        if ($r = $database->query($q))
            if (mysql_num_rows($r))
                $usercode = mysql_result($r, 0, 'code');
    }
    $out = '<form action="' . $pg->pagename . '" method=post><table cellpadding=1 cellspacing=1><tr><td colspan=2>' . $language['COUNTRY'] . ' ' . show_countries($usercode, 'pryrcntry') . ' <input type=image name=pryr src="' . $pg->generalpath . 'view2.png" class=radio></td></tr><tr><tr><td colspan=2 class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>';
    switch ($usercode) {
        case 'sa':
            $out .= get_prayer('country=saudi_arabia&city=makkah&latitude=21.4200&longitude=39.8300&timezone=3&pmethod=4&dayLight=0', $language['MECCA']);
            $out .= get_prayer('country=saudi_arabia&city=madina&latitude=24.4527&longitude=39.6667&timezone=3&pmethod=4&dayLight=0', $language['MEDINA']);
            break;
        case 'kw':
            $out .= get_prayer('country=kuwait&city=kuwait00&latitude=29.3697&longitude=47.9783&timezone=3&pmethod=4&dayLight=0', $language['KUWAIT']);
            break;
        case 'bh':
            $out .= get_prayer('country=bahrain&city=manama02&latitude=26.2361&longitude=50.5831&timezone=3&pmethod=4&dayLight=0', $language['ALMANAMA']);
            break;
        case 'qa':
            $out .= get_prayer('country=qatar&city=doha01&latitude=25.2867&longitude=51.5333&timezone=3&pmethod=4&dayLight=0', $language['DOHA']);
            break;
        case 'ae':
            $out .= get_prayer('country=united_arab_emirates&city=dubai03&latitude=25.2522&longitude=55.2800&timezone=4&pmethod=4&dayLight=0', $language['DUBAI']);
            break;
        case 'om':
            $out .= get_prayer('country=oman&city=muscat&latitude=23.6133&longitude=58.5933&timezone=4&pmethod=4&dayLight=0', $language['MUSCAT']);
            break;
        case 'ye':
            $out .= get_prayer('country=yemen&city=sanaa16&latitude=15.3547&longitude=44.2067&timezone=3&pmethod=4&dayLight=0', $language['SANAA']);
            break;
        case 'sy':
            $out .= get_prayer('country=syria&city=damascus13&latitude=33.5000&longitude=36.3000&timezone=2&pmethod=4&dayLight=1', $language['DAMASCUS']);
            break;
        case 'lb':
            $out .= get_prayer('country=lebanon&city=beirut04&latitude=33.8719&longitude=35.5097&timezone=2&pmethod=1&dayLight=1', $language['BEIRUT']);
            break;
        case 'jo':
            $out .= get_prayer('country=jordan&city=amman11&latitude=31.9500&longitude=35.9333&timezone=2&pmethod=4&dayLight=1', $language['AMMAN']);
            break;
        case 'ps':
            $out .= get_prayer('country=palestine&city=jerusalem_region&latitude=31.7500&longitude=35.0000&timezone=2&pmethod=1&dayLight=1', $language['JERUSALEM']);
            break;
        case 'iq':
            $out .= get_prayer('country=iraq&city=baghdad07&latitude=33.3386&longitude=44.3939&timezone=3&pmethod=1&dayLight=0', $language['BAGHDAD']);
            break;
        case 'eg':
            $out .= get_prayer('country=egypt&city=cairo&latitude=30.0500&longitude=31.2500&timezone=2&pmethod=2&dayLight=0', $language['CAIRO']);
            break;
        case 'sd':
            $out .= get_prayer('country=sudan&city=khartoum29&latitude=15.5881&longitude=32.5342&timezone=3&pmethod=2&dayLight=0', $language['KHARTOUM']);
            break;
        case 'ly':
            $out .= get_prayer('country=libya&city=tripoli61&latitude=32.8925&longitude=13.1800&timezone=2&pmethod=2&dayLight=0', $language['TRIPOLI']);
            break;
        case 'tn':
            $out .= get_prayer('country=tunisia&city=tunis26&latitude=36.8028&longitude=10.1797&timezone=1&pmethod=1&dayLight=0', $language['TUNIS']);
            break;
        case 'dz':
            $out .= get_prayer('country=algeria&city=algiers01&latitude=36.7631&longitude=3.0506&timezone=1&pmethod=2&dayLight=0', $language['ALGIERS']);
            break;
        case 'ma':
            $out .= get_prayer('country=morocco&city=rabat24&latitude=34.0253&longitude=-6.8361&timezone=0&pmethod=1&dayLight=1', $language['RABAT']);
            break;
        case 'mr':
            $out .= get_prayer('country=mauritania&city=nouakchott&latitude=18.0864&longitude=-15.9753&timezone=0&pmethod=1&dayLight=0', $language['NOUAKCHOTT']);
            break;
        case 'so':
            $out .= get_prayer('country=somalia&city=mogadishu02&latitude=2.0667&longitude=45.3667&timezone=3&pmethod=1&dayLight=0', $language['MOGADISHU']);
            break;
    }
    ;
    $out .= '</table></form>';
    echo $out;
}
function get_prayer($url, $city)
{
    global $language, $pg;
    $url     = 'http://www.islamicfinder.org/prayer_service.php?simpleFormat=xml&dhuhrInterval=1&maghribInterval=1&ishaTwilight=10&ishaInterval=30&fajrTwilight1=10&fajrTwilight2=10&state=&zipcode=&HanfiShafi=1&' . $url;
    $content = file_get_contents($url);
    if (empty($content))
        return;
    $out   = '<tr><td colspan=2 class=c id=green>' . $city . '</td></tr>';
    $start = strpos($content, '<hijri>') + 7;
    $end   = strpos($content, '</hijri>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td colspan=2 class=c id=gray>' . $var . '</td></tr>';
    $start = strpos($content, '<fajr>') + 6;
    $end   = strpos($content, '</fajr>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td width=65 id=gray><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['FAJR'] . '</td><td id=bold>' . $var . '</td></tr>';
    $start = strpos($content, '<sunrise>') + 9;
    $end   = strpos($content, '</sunrise>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td id=gray><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['SUNRISE'] . '</td><td id=bold>' . $var . '</td></tr>';
    $start = strpos($content, '<dhuhr>') + 7;
    $end   = strpos($content, '</dhuhr>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td id=gray><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['DHUHR'] . '</td><td id=bold>' . $var . '</td></tr>';
    $start = strpos($content, '<asr>') + 5;
    $end   = strpos($content, '</asr>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td id=gray><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['ASR'] . '</td><td id=bold>' . $var . '</td></tr>';
    $start = strpos($content, '<maghrib>') + 9;
    $end   = strpos($content, '</maghrib>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td id=gray><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['MAGHRIB'] . '</td><td id=bold>' . $var . '</td></tr>';
    $start = strpos($content, '<isha>') + 6;
    $end   = strpos($content, '</isha>', $start);
    $var   = substr($content, $start, $end - $start);
    $out .= '<tr><td id=gray><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['ISHA'] . '</td><td id=bold>' . $var . '</td></tr>';
    return $out;
}
function temperature_now()
{
    global $database, $pg, $language;
    $usercode = '';
    if (isset($_POST['tmprtrcntry']))
        $usercode = substr($_POST['tmprtrcntry'], 0, 3);
    else {
        $ipnumber = sprintf("%u", ip2long($_SERVER['REMOTE_ADDR']));
        $q        = "select code from ips where ipfrom<=$ipnumber and ipto>=$ipnumber";
        if ($r = $database->query($q))
            if (mysql_num_rows($r))
                $usercode = mysql_result($r, 0, 'code');
    }
    $out = '<form action="' . $pg->pagename . '" method=post><table cellpadding=1 cellspacing=1><tr><td>' . $language['COUNTRY'] . ' ' . show_countries($usercode, 'tmprtrcntry') . ' <input type=image name=tmprtr src="' . $pg->generalpath . 'view2.png" class=radio></td></tr><tr><tr><td class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>';
    switch ($usercode) {
        case 'sa':
            $out .= get_temperature('SAXX0013', $language['MECCA']);
            $out .= get_temperature('SAXX0014', $language['MEDINA']);
            $out .= get_temperature('SAXX0017', $language['RIYADH']);
            break;
        case 'kw':
            $out .= get_temperature('KUXX0003', $language['KUWAIT']);
            break;
        case 'bh':
            $out .= get_temperature('BAXX0001', $language['ALMANAMA']);
            break;
        case 'qa':
            $out .= get_temperature('QAXX0003', $language['DOHA']);
            break;
        case 'ae':
            $out .= get_temperature('AEXX0004', $language['DUBAI']);
            break;
        case 'om':
            $out .= get_temperature('MUXX0003', $language['MUSCAT']);
            break;
        case 'ye':
            $out .= get_temperature('YMXX0005', $language['SANAA']);
            break;
        case 'sy':
            $out .= get_temperature('SYXX0004', $language['DAMASCUS']);
            break;
        case 'lb':
            $out .= get_temperature('LEXX0003', $language['BEIRUT']);
            break;
        case 'jo':
            $out .= get_temperature('JOXX0002', $language['AMMAN']);
            break;
        case 'ps':
            $out .= get_temperature('ISXX0010', $language['JERUSALEM']);
            break;
        case 'iq':
            $out .= get_temperature('IZXX0008', $language['BAGHDAD']);
            break;
        case 'eg':
            $out .= get_temperature('EGXX0004', $language['CAIRO']);
            break;
        case 'sd':
            $out .= get_temperature('SUXX0002', $language['KHARTOUM']);
            break;
        case 'ly':
            $out .= get_temperature('LYXX0009', $language['TRIPOLI']);
            break;
        case 'tn':
            $out .= get_temperature('TSXX0010', $language['TUNIS']);
            break;
        case 'dz':
            $out .= get_temperature('AGXX0001', $language['ALGIERS']);
            break;
        case 'ma':
            $out .= get_temperature('MOXX0007', $language['RABAT']);
            break;
        case 'mr':
            $out .= get_temperature('MRXX0004', $language['NOUAKCHOTT']);
            break;
        case 'so':
            $out .= get_temperature('SOXX0002', $language['MOGADISHU']);
            break;
    }
    ;
    $out .= '</table></form>';
    echo $out;
}
function get_temperature($url, $city)
{
    global $language, $pg;
    $url     = 'http://weather.yahooapis.com/forecastrss?u=c&p=' . $url;
    $content = file_get_contents($url);
    if (empty($content))
        return;
    $start  = strpos($content, 'yweather:condition  text="') + 26;
    $end    = strpos($content, '"', $start);
    $cndtn  = ($end > $start ? substr($content, $start, $end - $start) : '-');
    $start  = strpos($content, 'code="') + 6;
    $end    = strpos($content, '"', $start);
    $pctr   = ($end > $start ? substr($content, $start, $end - $start) : 'blank');
    $out    = '<tr><td class=c><img src="' . $pg->weatherpath . $pctr . '.gif" title="' . $cndtn . '"></td></tr>';
    $start  = strpos($content, 'yweather:wind chill="') + 21;
    $end    = strpos($content, '"', $start);
    $tmprtr = ($end > $start ? substr($content, $start, $end - $start) : '-');
    $out .= '<tr><td class=c>' . $city . ' : <span id=gray>' . $tmprtr . '</span> ' . $language['PERCENT'] . '</td></tr>';
    return $out;
}
function moderator_options()
{
    global $language, $cntnt;
    $out = $language['CONTENTS'] . ' <select name=id>';
    $cntnt->set_all_contents();
    foreach ($cntnt->allcontents as $content)
        $out .= '<option value="' . $content['cntntid'] . '"' . ($content['state'] == 'n' ? ' id=red' : '') . '>' . $content['address'] . ($content['state'] == 'y' ? '' : ' | ' . $language['INACTIVATED']) . '</option>';
    $out .= '</select>';
    return $out;
}
function uploading()
{
    global $language, $pg;
    return '<table cellpadding=4 cellspacing=2 height=100 id=uploadimage style="display:none"><tr><td class=c id=gray valign=bottom>' . $language['UPLOADING'] . '</td></tr><tr><td class=c><img src="' . $pg->generalpath . 'uploading.gif" name="uploadimage"></td></tr></table>';
}
function statistics()
{
    global $database;
    $arr            = array();
    $arr['content'] = '';
    $q              = "select count(*) count,cc.name from " . PRE . "content c," . PRE . "category cc where c.ctgryid=cc.ctgryid and cc.state='y' and c.state='y' group by c.ctgryid";
    if (!$r = $database->query($q))
        return;
    while ($row = mysql_fetch_assoc($r))
        $arr['content'][] = $row;
    $q = "select count(*) from " . PRE . "contentreply where state='y'";
    if (!$r = $database->query($q))
        return;
    $arr['contentreply'] = mysql_result($r, 0, 0);
    $q                   = "select count(*) from " . PRE . "presentation where state='y'";
    if (!$r = $database->query($q))
        return;
    $arr['presentation'] = mysql_result($r, 0, 0);
    $q                   = "select count(*) from " . PRE . "guestbook where state='y'";
    if (!$r = $database->query($q))
        return;
    $arr['guestbook'] = mysql_result($r, 0, 0);
    $q                = "select sum(download) from " . PRE . "content";
    if (!$r = $database->query($q))
        return;
    $arr['totaldownload'] = mysql_result($r, 0, 0) == null ? 0 : mysql_result($r, 0, 0);
    $q                    = "select sum(dwnldtdy) from " . PRE . "content where today='" . get_script_time('$Y-$m-$d') . "'";
    if (!$r = $database->query($q))
        return;
    $arr['todaydownload'] = mysql_result($r, 0, 0) == null ? 0 : mysql_result($r, 0, 0);
    $q                    = "select count(*) from maillist";
    if (!$r = $database->query($q))
        return;
    $arr['email'] = mysql_result($r, 0, 0);
    global $language, $pg;
    $out = '<table cellpadding=0 celspacing=0><tr><td colspan=2 align=' . $pg->reverse . '><img src="' . $pg->generalpath . 'statistics.png"></td></tr>';
    if (is_array($arr['content']))
        foreach ($arr['content'] as $content)
            $out .= '<tr><td id=gray>' . $content['name'] . '</td><td id=bold>' . $content['count'] . '</td></tr>';
    $out .= '<tr><td id=gray>' . $language['REPLIESCOUNT'] . '</td><td id=bold>' . $arr['contentreply'] . '</td></tr><tr><td id=gray>' . $language['PRESENTATIONCOUNT'] . '</td><td id=bold>' . $arr['presentation'] . '</td></tr><tr><td id=gray>' . $language['GUESTBOOKCOUNT'] . '</td><td id=bold>' . $arr['guestbook'] . '</td></tr><tr><td id=gray>' . $language['TOTALDOWNLOAD'] . '</td><td id=bold>' . $arr['totaldownload'] . '</td></tr><tr><td id=gray>' . $language['TODAYDOWNLOAD'] . '</td><td id=bold>' . $arr['todaydownload'] . '</td></tr><tr><td id=gray>' . $language['EMAILCOUNT'] . '</td><td id=bold>' . $arr['email'] . '</td></tr></table>';
    echo $out;
}
function map()
{
    global $pg, $language, $database, $indxcntnt;
    echo '<div align=' . $pg->reverse . '><img src="' . $pg->generalpath . 'map.png"></div><table cellpadding=0 cellspacing=0><tr height=30><td id=gray valign=top><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['MAINLIST'] . '</td></tr><tr><td style="padding-' . $pg->align . ':15px">';
    foreach ($pg->links as $link)
        if ($link['prntlnk'] == 0)
            $pg->show_main_list1($link, -18, '', 2);
    echo '</td></tr><tr height=30><td><img src="' . $pg->imagespath . 'separator.gif"></td></tr><tr height=30><td id=gray valign=top><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['CONTENTS'] . '</td></tr><tr><td>';
    if (!$indxcntnt instanceof indexcontent)
        $indxcntnt = new indexcontent();
    $indxcntnt->categories = array();
    $indxcntnt->set_categories();
    foreach ($indxcntnt->categories as $ctgry)
        if (!$ctgry['prntctgry'])
            $indxcntnt->show_categories($ctgry, -18, '', 2);
    echo '</td></tr><tr height=30><td><img src="' . $pg->imagespath . 'separator.gif"></td></tr><tr height=30><td id=gray valign=top><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['USERLINKS'] . '</td></tr>';
    foreach ($pg->userlinks as $link)
        echo '<tr><td> &nbsp; &nbsp; <img src="' . $pg->imagespath . 'arrow2.gif"> <a href="' . $link['link'] . '">' . $link['address'] . '</a></td></tr>';
    echo '<tr><td> &nbsp; &nbsp; <img src="' . $pg->imagespath . 'arrow2.gif"> <a href="' . $_SERVER['REQUEST_URI'] . (strpos($_SERVER['REQUEST_URI'], '?') === false ? '?' : '&') . 'logout=">' . $language['EXITNOW'] . '</a></td></tr><tr height=30><td><img src="' . $pg->imagespath . 'separator.gif"></td></tr><tr height=30><td id=gray valign=top><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['VARIOUSLINKS'] . '</td></tr><tr><td> &nbsp; &nbsp;<img src="' . $pg->imagespath . 'arrow2.gif"> <a href="javascript:" onClick="open_portal_frame(\'tellfriend.php?link=' . $pg->url2 . '&site=' . $pg->sitename . '\',\'600\',\'450\',event)">' . $language['TELLFRIENDABOUTSITE'] . '</a></td></tr><tr><td> &nbsp; &nbsp;<img src="' . $pg->imagespath . 'arrow2.gif"> <a href="javascript:" onClick="if(navigator.appName==\'Microsoft Internet Explorer\') window.external.AddFavorite(\'' . $pg->url . '\',\'' . $pg->sitename . '\'); else window.sidebar.addPanel(\'' . $pg->sitename . '\',\'' . $pg->url . '\',\'\');">' . $language['ADDTOFAVORITES'] . '</a></td></tr><tr><td> &nbsp; &nbsp;<img src="' . $pg->imagespath . 'arrow2.gif"> <a href="javascript:" onClick="this.style.behavior=\'url(#default#homepage)\'; this.setHomePage(\'' . $pg->url . '\');">' . $language['MAKEUSHOMEPAGE'] . '</a></td></tr><tr height=30><td><img src="' . $pg->imagespath . 'separator.gif"></td></tr><tr height=30><td id=gray valign=top><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['STYLE'] . '</td></tr>';
    $q = "select * from style";
    if ($r = $database->query($q))
        if (mysql_num_rows($r))
            while ($styl = mysql_fetch_assoc($r))
                echo '<tr><td> &nbsp; &nbsp;<img src="' . $pg->imagespath . 'arrow2.gif"> <a href="index.php?stylid=' . $styl['stylid'] . '">' . escape($styl['name']) . '</a></td></tr>';
    echo '<tr height=30><td><img src="' . $pg->imagespath . 'separator.gif"></td></tr><tr height=30><td id=gray valign=top><img src="' . $pg->imagespath . 'arrow.gif"> ' . $language['LANGUAGE'] . '</td></tr>';
    $q = "select name,prefix from language";
    if ($r = $database->query($q))
        if (mysql_num_rows($r))
            while ($lngg = mysql_fetch_assoc($r))
                echo '<tr><td> &nbsp; &nbsp;<img src="' . $pg->imagespath . 'arrow2.gif"> <a href="index.php?lngg=' . $lngg['prefix'] . '">' . $lngg['name'] . '</a></td></tr>';
    echo '</table><br>';
}
function show_categories_for_search()
{
    global $language, $pg;
    $cntnt = new content();
    $cntnt->set_categories();
    if (!is_array($cntnt->categories))
        return;
    $out = '<tr><td></td><td><select name=ctgryid><option value="">-- ' . $language['ALL'] . ' --';
    foreach ($cntnt->categories as $ctgry)
        if (!$ctgry['prntctgry'])
            $out .= $cntnt->show_tree_for_select($ctgry, '');
    $out .= '</select></td></tr>';
    return $out;
}
function search_results()
{
    global $pg, $language, $database;
    $srch     = isset($_POST['searchtext2']) ? filter($_POST['searchtext2']) : filter($_POST['searchtext']);
    $arrysrch = explode(' ', $srch);
    if (!is_array($arrysrch))
        return;
    $rltnshp = filter($_POST['relationship']);
    $var     = $var2 = $var3 = $var4 = '';
    if ($rltnshp == 'or' || $rltnshp == 'and') {
        $rltnshp = ($rltnshp == 'or' ? '||' : '&&');
        foreach ($arrysrch as $srch) {
            $var .= "(c.address REGEXP '$srch' || c.text REGEXP '$srch' || g.name REGEXP '$srch' || u.user REGEXP '$srch' || c.guest REGEXP '$srch') $rltnshp ";
            $var2 .= "(name REGEXP '$srch' || text REGEXP '$srch') $rltnshp ";
            $var3 .= "(u.user REGEXP '$srch' || u.name REGEXP '$srch' || u.name2 REGEXP '$srch' || ug.name REGEXP '$srch') $rltnshp ";
            $var4 .= "(r.address REGEXP '$srch' || r.text REGEXP '$srch' || c.address REGEXP '$srch' || u.user REGEXP '$srch' || r.guest REGEXP '$srch') $rltnshp ";
        }
        $var  = substr($var, 0, -4);
        $var  = '(' . $var . ')';
        $var2 = substr($var2, 0, -4);
        $var2 = '(' . $var2 . ')';
        $var3 = substr($var3, 0, -4);
        $var3 = '(' . $var3 . ')';
        $var4 = substr($var4, 0, -4);
        $var4 = '(' . $var4 . ')';
    } else {
        $var  = "(c.address REGEXP '$srch' || c.text REGEXP '$srch' || g.name REGEXP '$srch' || u.user REGEXP '$srch' || c.guest REGEXP '$srch')";
        $var2 = "(name REGEXP '$srch' || text REGEXP '$srch')";
        $var3 = "(u.user REGEXP '$srch' || u.name REGEXP '$srch' || u.name2 REGEXP '$srch' || ug.name REGEXP '$srch')";
        $var4 = "(r.address REGEXP '$srch' || r.text REGEXP '$srch' || c.address REGEXP '$srch' || u.user REGEXP '$srch' || r.guest REGEXP '$srch')";
    }
    if (filter_digit($_POST['ctgryid']))
        $var .= " && c.ctgryid=" . $_POST['ctgryid'];
    $nmbr = 0;
    $out  = '';
    if (isset($_POST['contents'])) {
        $q = "select c.cntntid,c.address,c.text,c.guest,date_format(c.adddt,'%d/%m/%Y') adddt2,g.name,g.ctgryid,u.user from " . PRE . "content c left join " . PRE . "user u using(userid)," . PRE . "category g where c.ctgryid=g.ctgryid && $var" . (isset($_POST['day']) ? " && c.adddt between '{$_POST['year']}-{$_POST['month']}-{$_POST['day']} 00:00:00' and '{$_POST['year2']}-{$_POST['month2']}-{$_POST['day2']} 23:59:59'" : '') . " && c.state='y' and g.state='y' order by c.adddt desc";
        if ($r = $database->query($q))
            if (mysql_num_rows($r))
                while ($row = mysql_fetch_assoc($r)) {
                    $nmbr++;
                    $row['text'] = filter($row['text']);
                    foreach ($arrysrch as $srch) {
                        $row['address'] = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['address']);
                        $row['name']    = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['name']);
                        $row['user']    = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['user']);
                        $row['guest']   = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['guest']);
                        $row['text']    = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['text']);
                    }
                    $out .= '<tr><td width=3% rowspan=2 id=small valign=top>' . $nmbr . '.</td><td><img src="' . $pg->imagespath . 'arrow.gif"> <a href="content.php?id=' . $row['cntntid'] . '" target=_blank title="' . $language['SHOWWHOLE'] . '">' . $row['address'] . '</a></td><td align=' . $pg->reverse . '><img src="' . $pg->imagespath . 'arrow2.gif"> <a href="content.php?ctgryid=' . $row['ctgryid'] . '" target=_blank>' . $row['name'] . '</a></td></tr><tr><td colspan=2>' . substr($row['text'], 0, 400) . ' ... <a href="content.php?id=' . $row['cntntid'] . '" target=_blank title="' . $language['SHOWWHOLE'] . '" id=green>' . $language['MORE'] . '</a></td></tr><tr><td colspan=3 class=c id=gray>' . $language['ENTERDATE'] . ' <span id=small>' . $row['adddt2'] . '</span> &nbsp; ' . $language['OWNER'] . '  <span id=small>' . (empty($row['user']) ? $row['guest'] : $row['user']) . '</span></td></tr><tr><td colspan=3 class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>';
                }
    }
    if (isset($_POST['guestbook'])) {
        $q = "select gstid,name,text,cntry,date_format(adddt,'%d/%m/%Y') adddt2 from " . PRE . "guestbook where $var2" . (isset($_POST['day']) ? " && adddt between '{$_POST['year']}-{$_POST['month']}-{$_POST['day']} 00:00:00' and '{$_POST['year2']}-{$_POST['month2']}-{$_POST['day2']} 23:59:59'" : '') . " && state='y' order by adddt desc";
        if ($r = $database->query($q))
            if (mysql_num_rows($r))
                while ($row = mysql_fetch_assoc($r)) {
                    $nmbr++;
                    $row['text'] = filter($row['text']);
                    foreach ($arrysrch as $srch) {
                        $row['name'] = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['name']);
                        $row['text'] = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['text']);
                    }
                    $out .= '<tr><td width=3% rowspan=2 id=small valign=top>' . $nmbr . '.</td><td><img src="' . $pg->imagespath . 'arrow.gif"> <a href="guestbook.php" target=_blank title="' . $language['SHOWWHOLE'] . '">' . $row['name'] . '</a></td><td align=' . $pg->reverse . '>' . show_countries_without_select($row['cntry']) . '</td></tr><tr><td colspan=2>' . substr($row['text'], 0, 400) . ' ... <a href="guestbook.php" target=_blank title="' . $language['SHOWWHOLE'] . '" id=green>' . $language['MORE'] . '</a></td></tr><tr><td colspan=3 class=c id=gray>' . $language['ENTERDATE'] . ' <span id=small>' . $row['adddt2'] . '</span></td></tr><tr><td colspan=3 class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>';
                }
    }
    if (isset($_POST['users'])) {
        $q = "select u.userid,u.user,u.name,u.name2,u.cntry,date_format(u.dtrgstr,'%d/%m/%Y') dtrgstr2,ug.name gname from " . PRE . "user u," . PRE . "usergroup ug where ug.grpid=u.grpid && $var3" . (isset($_POST['day']) ? " && dtrgstr between '{$_POST['year']}-{$_POST['month']}-{$_POST['day']} 00:00:00' and '{$_POST['year2']}-{$_POST['month2']}-{$_POST['day2']} 23:59:59'" : '') . " && u.state='y' order by u.dtrgstr desc";
        if ($r = $database->query($q))
            if (mysql_num_rows($r))
                while ($row = mysql_fetch_assoc($r)) {
                    $nmbr++;
                    foreach ($arrysrch as $srch) {
                        $row['user']  = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['user']);
                        $row['name']  = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['name']);
                        $row['name2'] = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['name2']);
                        $row['gname'] = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['gname']);
                    }
                    $out .= '<tr><td width=3% rowspan=2 id=small valign=top>' . $nmbr . '.</td><td><img src="' . $pg->imagespath . 'arrow.gif"> <a href="users.php" target=_blank title="' . $language['SHOWWHOLE'] . '">' . $row['user'] . '</a></td><td align=' . $pg->reverse . '><img src="' . $pg->imagespath . 'arrow2.gif"> <a href="users.php" target=_blank title="' . $language['SHOWWHOLE'] . '">' . $row['gname'] . '</a></td></tr><tr><td colspan=2>' . $row['name'] . ' ' . $row['name2'] . '</td></tr><tr><td colspan=3 class=c id=gray>' . $language['REGISTERDATE'] . ' <span id=small>' . $row['dtrgstr2'] . '</span> &nbsp; ' . $language['COUNTRY'] . ' <span id=small>' . show_countries_without_select($row['cntry']) . '</span></td></tr><tr><td colspan=3 class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>';
                }
    }
    if (isset($_POST['replies'])) {
        $q = "select r.cntntid,r.address,r.text,r.guest,date_format(r.adddt,'%d/%m/%Y') adddt2,c.address caddress,u.user from " . PRE . "contentreply r left join " . PRE . "user u using(userid)," . PRE . "content c where c.cntntid=r.cntntid && $var4" . (isset($_POST['day']) ? " && r.adddt between '{$_POST['year']}-{$_POST['month']}-{$_POST['day']} 00:00:00' and '{$_POST['year2']}-{$_POST['month2']}-{$_POST['day2']} 23:59:59'" : '') . " && r.state='y' and c.state='y' order by r.adddt desc";
        if ($r = $database->query($q))
            if (mysql_num_rows($r))
                while ($row = mysql_fetch_assoc($r)) {
                    $nmbr++;
                    $row['text'] = filter($row['text']);
                    foreach ($arrysrch as $srch) {
                        $row['address']  = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['address']);
                        $row['caddress'] = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['caddress']);
                        $row['user']     = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['user']);
                        $row['guest']    = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['guest']);
                        $row['text']     = str_ireplace($srch, '<span id=red>' . $srch . '</span>', $row['text']);
                    }
                    $out .= '<tr><td width=3% rowspan=2 id=small valign=top>' . $nmbr . '.</td><td><img src="' . $pg->imagespath . 'arrow.gif"> <a href="content.php?id=' . $row['cntntid'] . '" target=_blank title="' . $language['SHOWWHOLE'] . '">' . $row['address'] . '</a></td><td align=' . $pg->reverse . '><img src="' . $pg->imagespath . 'arrow2.gif"> <a href="content.php?id=' . $row['cntntid'] . '" target=_blank>' . $row['caddress'] . '</a></td></tr><tr><td colspan=2>' . substr($row['text'], 0, 400) . ' ... <a href="content.php?id=' . $row['cntntid'] . '" target=_blank title="' . $language['SHOWWHOLE'] . '" id=green>' . $language['MORE'] . '</a></td></tr><tr><td colspan=3 class=c id=gray>' . $language['ENTERDATE'] . ' <span id=small>' . $row['adddt2'] . '</span> &nbsp; ' . $language['OWNER'] . ' <span id=small>' . (empty($row['user']) ? $row['guest'] : $row['user']) . '</span></td></tr><tr><td colspan=3 class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>';
                }
    }
    $out = '<table cellpadding=2 cellspacing=2><tr><td colspan=3 class=c id=blue>' . $language['SEARCHRESULTS'] . ' <span id=bold>' . $nmbr . '</span></td></tr><tr><td colspan=3 class=c><img src="' . $pg->imagespath . 'separator.gif"></td></tr>' . $out . '</table>';
    echo ($nmbr ? $out : '<center><p><span id=red>' . $language['DONTTHERESEARCHRESULTS'] . '</span></p><button id=button onClick="location.href=\'search.php\'">' . $language['RETURNTOSEARCH'] . '</button>');
}
?>