API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Nov 30th, 2018
157
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.36 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. require_once('jangan/config.php');
  3. require_once('amir.php');
  4. $u_agent = $_SERVER['HTTP_USER_AGENT'];
  5. $ip = $_SERVER['REMOTE_ADDR'];
  6. $bk = file_get_contents("http://geoplugin.net/json.gp?ip=$ip");
  7.  
  8. $bp = json_decode($bk,true);
  9. $region = $bp[geoplugin_region];
  10. $city = $bp[geoplugin_city];
  11. session_start();
  12.  
  13. //tangkap data dari form login
  14. $username = $_POST['username'];
  15. $password = $_POST['password'];
  16. //untuk mencegah sql injection
  17. //kita gunakan mysql_real_escape_string
  18. $username = mysql_real_escape_string($username);
  19. $passworddd = mysql_real_escape_string($password);
  20. $password = $amir_class->encode($passworddd,'Bro Kalo Kurang Duit Bilang Tapi Ga Kek Gini Juga Cara nya Main Belakang Kek GINI KONTOOOOLLLLL ANJING LU SOK SOKANG JADI HECKER MEMEK');
  21.  
  22. $kk = mysql_query("select * from log_login where username = '$username' and useragent = '$u_agent' and region ='$region' and status = 'Block'");
  23. if(mysql_num_rows($kk) > 0){
  24. $_SESSION['username'] = $username;
  25. header('location: block.php');
  26. exit;
  27. }else{
  28. //cek data yang dikirim, apakah kosong atau tidak
  29. if (empty($username) && empty($password)) {
  30. //kalau username dan password kosong
  31. header('location: error-login-1.html');
  32.  
  33. } else if (empty($username)) {
  34. //kalau username saja yang kosong
  35. header('location: error-login-2.html');
  36.  
  37. } else if (empty($password)) {
  38. //kalau password saja yang kosong
  39. header('location: error-login-3.html');
  40. }else{
  41.  
  42. if(isset($_POST['pin'])){
  43. $q = mysql_query("select * from user where username='$username' and password='$password'and pin = '$_POST[pin]'");
  44. }else{
  45. $q = mysql_query("select * from user where username='$username' and password='$password'");
  46. }
  47. if (mysql_num_rows($q) == 1) {
  48. date_default_timezone_set("Asia/Jakarta");
  49.  
  50. $jam = date('H:i:s');
  51. $tanggal = date('d-M-Y');
  52.  
  53. $qq = mysql_query("select * from log_login where username = '$username' and useragent = '$u_agent' and region ='$region'");
  54. $data_qq = mysql_fetch_array($qq);
  55. $pq = mysql_num_rows($qq);
  56. $_SESSION['username'] = $username;
  57. $_SESSION['user_agent'] = $u_agent;
  58. $_SESSION['region'] = $region;
  59. if($data_qq['status'] == 'Y'){
  60.  
  61. mysql_query("UPDATE log_login set waktu = '$jam' where ='$username'");
  62. mysql_query("UPDATE log_login set tanggal = '$tanggal' where ='$username'");
  63. mysql_query("UPDATE log_login set pesan = 'Login Pada Tanggal $tanggal Dan Jam $jam' where ='$username'");
  64. mysql_query("INSERT INTO log(username, useragent, pesan, ip, region, waktu,tanggal) VALUES ('$username','$u_agent','Login Berhasil Pada Tanggal $tanggal Dan Jam $jam','$ip','Region','$jam','$tanggal')");
  65. $_SESSION['pin'] = 'KOSONG';
  66. header("location: $webku/index.php");
  67. }else if($pq > 0 AND $data_qq['status'] == 'N'){
  68.  
  69. header('location: page/checkpoint-page.html');
  70. }else if($pq == 0){
  71. echo "3";
  72. $c = mysql_query("select * from log_login ORDER by ip");
  73. $cek = mysql_num_rows($c);
  74. $jumlahnya = $cek + 1;
  75. $send = mysql_query("INSERT INTO log_login(no,username, useragent, pesan, ip, region, waktu,tanggal,status) VALUES ('$jumlahnya','$username','$u_agent','Login Pada Tanggal $tanggal Dan Jam $jam','$ip','$region','$jam','$tanggal','N')");
  76. $send = mysql_query("INSERT INTO log(username, useragent, pesan, ip, region, waktu,tanggal) VALUES ('$username','$u_agent','Melakukan Percobaan Login Pada Tanggal $tanggal Dan Jam $jam','$ip','Region','$jam','$tanggal')");
  77. header('location: page/checkpoint-page.html');
  78.  
  79. }
  80. //kalau username dan password sudah terdaftar di database
  81. //buat session dengan nama username dengan isi nama user yang login
  82.  
  83.  
  84. //redirect ke halaman index
  85.  
  86. } else {
  87.  
  88. $username = $_POST['username'];
  89. $password = $_POST['password'];
  90. //untuk mencegah sql injection
  91. //kita gunakan mysql_real_escape_string
  92. $username = mysql_real_escape_string($username);
  93. $passworddd = mysql_real_escape_string($password);
  94. $password = $amir_class->encode($passworddd,'Bro Kalo Kurang Duit Bilang Tapi Ga Kek Gini Juga Cara nya Main Belakang Kek GINI KONTOOOOLLLLL ANJING LU SOK SOKANG JADI HECKER MEMEK');
  95. $k2k = mysql_query("SELECT * FROM user_pending where username = '$username' AND password2 = '$passworddd'");
  96. if(mysql_num_rows($k2k) > 0){
  97. $_SESSION['userpending'] = $username;
  98. header('location: https://panel-winxx.xyz/page/action/register.html');
  99. }else{
  100. header('location: error-login-4.html');
  101. ?>
  102. <?
  103. }
  104. }
  105. }
  106. }
  107. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!