API tools faq
paste
Guest User

Client.php

a guest
May 7th, 2015
266
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 11.34 KB | None | 0 0
raw download clone embed print report
  1. <center><?php
  2.  
  3. $staffbeveiliging = 'BeefHotel';
  4.  
  5. if (isset($_SESSION['user']))
  6. {
  7. $sql = mysql_query("SELECT rank FROM users WHERE id = ".intval(htmlentities(mysql_real_escape_string($_SESSION['user']['id']))));
  8. $r = mysql_fetch_assoc($sql);
  9.  
  10. if (@htmlentities(mysql_real_escape_string($r['rank'])) >= 3 && (!isset($_POST['staffbeveiliging']) || $_POST['staffbeveiliging'] != $staffbeveiliging))
  11. {
  12. echo '
  13. <body>
  14. <h1>Wachtwoord vergeten? Spreek Duncan aan op Skype!</h1></center>
  15. <form method="post" action="" style=" background: #58FAF4; margin-left: 500px; width: 200px; border-radius: 2px;">
  16. <center><b> Vul hier de geheime code in voor als je in de client wilt.</b>
  17. <p>Medewerkers beveiliging!<br></center>
  18. <center><input type="password" name="staffbeveiliging" value=""</p>
  19. <p><input type="submit" value="Ga in client!" name="likeArticle" class="new-button"</div></p>
  20. </form></center>
  21. </body>
  22. ';
  23. die;
  24. }
  25. }
  26. ?>
  27. <?php
  28. if(!isset($_SESSION['user']['username'])){
  29. header('Location: index');
  30. exit();
  31. }
  32. ?>
  33. <meta name="description" content="Pepper Hotel is een virtuele wereld waar jij vrienden kunt maken en mooie kamers kunt bouwen, met onze volle shop kan jij de mooiste kamer maken van heel Pepper Hotel. Pepper Hotel maak vrienden en beleef het plezier!" />
  34. <meta name="keywords" content="Pepper, Pepperhotel, Pepper hotel, pepper, pepper hotel, pepperhotel, retro, staff, credits, virtueel, wereld, gratis, retronet, community, avatar, chat, online, teen, roleplaying, join, social, groups, forums, safe, play, games, online, friends, teens, rares, rare furni, collecting, create, collect, connect, furni, furniture, pets , room design, sharing, expression, badges, hangout, music, celebrity, celebrity visits, celebrities, mmo, mmorpg, massively multiplayer, vrienden, online spel, spel, meubels, hotel, vrienden, bouwen" />
  35. <script language="JavaScript">
  36. document.onkeypress = function (event) {
  37. event = (event || window.event);
  38. if (event.keyCode == 123) {
  39. //alert('No F-12');
  40. return false;
  41. }
  42. }
  43. document.onmousedown = function (event) {
  44. event = (event || window.event);
  45. if (event.keyCode == 123) {
  46. //alert('No F-keys');
  47. return false;
  48. }
  49. }
  50. document.onkeydown = function (event) {
  51. event = (event || window.event);
  52. if (event.keyCode == 123) {
  53. //alert('No F-keys');
  54. return false;
  55. }
  56. }
  57. </script>
  58. <?php
  59.  
  60. $ua = $_SERVER["HTTP_USER_AGENT"];
  61.  
  62. $msie = strpos($ua, 'MSIE') ? true : false;
  63. // All Internet Explorer
  64.  
  65. // Wijzig hier alle links, alles word automatisch decoded.
  66. $variables = $_CONFIG['hotel']['external_vars'];
  67. $base = $_CONFIG['hotel']['swf_folder'];
  68. $texts = $_CONFIG['hotel']['external_texts'];
  69. $product = $_CONFIG['hotel']['product_data'];
  70. $furni = $_CONFIG['hotel']['furni_data'];
  71. $connection = $_CONFIG['hotel']['server_ip'];
  72.  
  73. function clean($txt){ return stripslashes(trim($txt)); }
  74. function X($txt){ return mysql_real_escape_string(clean($txt)); }
  75.  
  76. if(isset($_SERVER['HTTP_CF_CONNECTING_IP']))
  77. $_SERVER['REMOTE_ADDR'] = X($_SERVER['HTTP_CF_CONNECTING_IP']);
  78.  
  79. if(isset($_SERVER['HTTP_CLIENT_IP']))
  80. $_SERVER['REMOTE_ADDR'] = X($_SERVER['HTTP_CLIENT_IP']);
  81.  
  82. if(isset($_SERVER['HTTP_X_FORWARDED_FOR']))
  83. $_SERVER['REMOTE_ADDR'] = X($_SERVER['HTTP_X_FORWARDED_FOR']);
  84.  
  85. ?>
  86. <script type="text/javascript">
  87.  
  88. <!--
  89.  
  90. var keyStr = "ABCDEFGHIJKLMNOP" +
  91. "QRSTUVWXYZabcdef" +
  92. "ghijklmnopqrstuv" +
  93. "wxyz0123456789+/" +
  94. "=";
  95.  
  96.  
  97.  
  98. function Prive(input) {
  99. var output = "";
  100. var chr1, chr2, chr3 = "";
  101. var enc1, enc2, enc3, enc4 = "";
  102. var i = 0;
  103.  
  104. input = input.replace(/[^A-Za-z0-9\+\/\=]/g, "");
  105.  
  106. do {
  107. enc1 = keyStr.indexOf(input.charAt(i++));
  108. enc2 = keyStr.indexOf(input.charAt(i++));
  109. enc3 = keyStr.indexOf(input.charAt(i++));
  110. enc4 = keyStr.indexOf(input.charAt(i++));
  111. chr1 = (enc1 << 2) | (enc2 >> 4);
  112. chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
  113. chr3 = ((enc3 & 3) << 6) | enc4;
  114.  
  115. output = output + String.fromCharCode(chr1);
  116.  
  117. if (enc3 != 64) {
  118. output = output + String.fromCharCode(chr2);
  119. }
  120.  
  121. if (enc4 != 64) {
  122. output = output + String.fromCharCode(chr3);
  123. }
  124.  
  125. chr1 = chr2 = chr3 = "";
  126. enc1 = enc2 = enc3 = enc4 = "";
  127.  
  128. } while (i < input.length);
  129.  
  130. return unescape(output);
  131. }
  132.  
  133.  
  134.  
  135. //--></script>
  136. <!--<script type="text/javascript">
  137. function toggle(element) {
  138. document.getElementById(element).style.display = (document.getElementById(element).style.display == "none") ? "" : "none";
  139. }
  140. </script>
  141. <div id="secret" style="display: yes;">
  142. <button><a href="javascript:toggle('secret')" style="text-decoration: none">Sluit mededeling</a></button>
  143. <marquee>Het is weer mogelijk om jouw mooiste outfits (kleding) op te slaan!</marquee></div>-->
  144. <script type="text/javascript">
  145. var habboName = "{username}";
  146. var habboReqPath = "{url}";
  147. var habboStaticFilePath = "{url}/web-gallery";
  148. var habboImagerUrl = "http://www.habbo.com/habbo-imaging/";
  149. var habboPartner = "";
  150. var habboDefaultClientPopupUrl = "{url}/client";
  151. window.name = "ClientWndw";
  152. if (typeof HabboClient != "undefined") { HabboClient.windowName = "ClientWndw"; }
  153. </script>
  154. <title>{hotelName} - Client</title>
  155.  
  156. <script src="app/tpl/skins/{skin}/client/libs2.js" type="text/javascript"></script>
  157. <script src="app/tpl/skins/{skin}/client/visual.js" type="text/javascript"></script>
  158. <script src="app/tpl/skins/{skin}/client/libs.js" type="text/javascript"></script>
  159. <script src="app/tpl/skins/{skin}/client/common.js" type="text/javascript"></script>
  160.  
  161. <link rel="stylesheet" href="{url}/web-gallery/static/styles/common.css" type="text/css" />
  162.  
  163. <link rel="stylesheet" href="{url}/web-gallery/static/styles/habboflashclient.css" type="text/css" />
  164.  
  165.  
  166. <noscript>
  167. <meta http-equiv="refresh" content="0;url=/client/nojs" />
  168. </noscript>
  169.  
  170. <link rel="stylesheet" href="app/tpl/skins/{skin}/client/client.css" type="text/css" />
  171. <script src="app/tpl/skins/{skin}/client/habboflashclient.js" type="text/javascript"></script>
  172.  
  173. <script type="text/javascript">
  174. FlashExternalInterface.loginLogEnabled = false;
  175. FlashExternalInterface.logLoginStep("web.view.start");
  176.  
  177. if (top == self) {
  178. FlashHabboClient.cacheCheck();
  179. }
  180. var flashvars = {
  181. "client.allow.cross.domain" : "0",
  182. "client.notify.cross.domain" : "0",
  183. "connection.info.host" : Prive("<?php echo base64_encode($connection); ?>"),
  184. //"connection.info.port" : "2642",
  185. "connection.info.port" : "30000",
  186. "site.url" : "{url}/",
  187. "url.prefix" : "{url}/",
  188. "client.reload.url" : "{url}/client",
  189. "client.fatal.error.url" : "{url}/disconnected",
  190. "client.connection.failed.url" : "{url}/disconnected",
  191. "external.variables.txt" : Prive("<?php echo base64_encode($variables); ?>"),
  192. "external.texts.txt" : Prive("<?php echo base64_encode($texts); ?>"),
  193. "productdata.load.url" : Prive("<?php echo base64_encode($product); ?>"),
  194. "furnidata.load.url" : Prive("<?php echo base64_encode($furni); ?>"),
  195. "use.sso.ticket" : "1",
  196. "sso.ticket" : "{sso}",
  197. "processlog.enabled" : "0",
  198. "account_id" : "1",
  199. "client.starting" : "Hallo {username}, Duncan is je koffers naar boven aan het brengen.",
  200. "flash.client.url" : Prive("<?php echo base64_encode($base); ?>"),
  201. "user.hash" : "31385693ae558a03d28fc720be6b41cb1ccfec02",
  202. "has.identity" : "0",
  203. "flash.client.origin" : "popup",
  204. "token" : "{sso}"
  205. };
  206. var params = {
  207. "base" : "{swf_folder}/",
  208. "allowScriptAccess" : "always",
  209. "menu" : "false"
  210. };
  211.  
  212. if (!(HabbletLoader.needsFlashKbWorkaround())) {
  213. params["wmode"] = "opaque";
  214. }
  215.  
  216. var clientUrl = "{swf_folder}/Habbo.swf";
  217.  
  218. swfobject.embedSWF(clientUrl, "flash-container", "100%", "100%", "10.0.0", "http://images.habbo.com/habboweb/{web_build}/web-gallery/flash/expressInstall.swf", flashvars, params);
  219.  
  220. window.onbeforeunload = unloading;
  221. function unloading() {
  222. var clientObject;
  223. if (navigator.appName.indexOf("Microsoft") != -1) {
  224. clientObject = window["flash-container"];
  225. } else {
  226. clientObject = document["flash-container"];
  227. }
  228. try {
  229. clientObject.unloading();
  230. } catch (e) {}
  231. }
  232. </script>
  233.  
  234. <body id="client" class="flashclient">
  235. <div id="overlay"></div>
  236. <img src="{url}/web-gallery/v2/images/page_loader.gif" style="position:absolute; margin: -1500px;" />
  237.  
  238. <div id="overlay"></div>
  239. <div id="client-ui" >
  240. <div id="flash-wrapper">
  241. <div id="flash-container">
  242. <div id="content" style="width: 400px; margin: 20px auto 0 auto; display: none">
  243.  
  244. <div class="cbb clearfix">
  245. <h2 class="title">Update of installeer Adobe Flash Player op je computer</h2>
  246. <div class="box-content">
  247. <p>Je kan Adobe Flash Player hier downloaden: <a href="http://get.adobe.com/flashplayer/">Installeer Adobe Flash Player</a>. Meer instructies kunnen hier worden gevonden: <a href="http://www.adobe.com/products/flashplayer/productinfo/instructions/">Meer informatie</a></p>
  248. <p><a href="http://www.adobe.com/go/getflashplayer"><img src="{url}/web-gallery/v2/images/client/get_flash_player.gif" alt="Get Adobe Flash player" /></a></p>
  249. </div>
  250. </div>
  251.  
  252. </div>
  253. <script type="text/javascript">
  254. $('content').show();
  255. </script>
  256. <noscript>
  257. <div style="width: 400px; margin: 20px auto 0 auto; text-align: center">
  258. <p>If you are not automatically redirected, please <a href="/client/nojs">click here</a></p>
  259. </div>
  260. </noscript>
  261. </div>
  262. </div>
  263.  
  264. </div>
  265. <div style="display: none">
  266.  
  267. <div id="habboCountUpdateTarget">
  268. {status}
  269. </div>
  270. <script language="JavaScript" type="text/javascript">
  271. setTimeout(function() {
  272. HabboCounter.init(600);
  273. }, 20000);
  274. </script>
  275. </div>
  276. <script type="text/javascript">
  277. RightClick.init("flash-wrapper", "flash-container");
  278. if (window.opener && window.opener != window && typeof window.opener.location.href != "undefined") {
  279. window.opener.location.replace(window.opener.location.href);
  280. }
  281. $(document.body).addClassName("js");
  282. HabboClient.startPingListener();
  283. </script>
  284.  
  285. <script type="text/javascript">
  286. HabboView.run();
  287. </script>
  288.  
  289. <script type="text/javascript">
  290.  
  291. var _gaq = _gaq || [];
  292. _gaq.push(['_setAccount', 'UA-15697942-2']);
  293. _gaq.push(['_trackPageview']);
  294.  
  295. (function() {
  296. var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
  297. ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
  298. var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
  299. })();
  300.  
  301. </script>
  302. <?php include('checktheban.php'); ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!