Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once('jangan/config.php');
- require_once('amir.php');
- $u_agent = $_SERVER['HTTP_USER_AGENT'];
- $ip = $_SERVER['REMOTE_ADDR'];
- $bk = file_get_contents("http://geoplugin.net/json.gp?ip=$ip");
- $bp = json_decode($bk,true);
- $region = $bp[geoplugin_region];
- $city = $bp[geoplugin_city];
- session_start();
- //tangkap data dari form login
- $username = $_POST['username'];
- $password = $_POST['password'];
- //untuk mencegah sql injection
- //kita gunakan mysql_real_escape_string
- $username = mysql_real_escape_string($username);
- $passworddd = mysql_real_escape_string($password);
- $password = $amir_class->encode($passworddd,'Bro Kalo Kurang Duit Bilang Tapi Ga Kek Gini Juga Cara nya Main Belakang Kek GINI KONTOOOOLLLLL ANJING LU SOK SOKANG JADI HECKER MEMEK');
- $kk = mysql_query("select * from log_login where username = '$username' and useragent = '$u_agent' and region ='$region' and status = 'Block'");
- if(mysql_num_rows($kk) > 0){
- $_SESSION['username'] = $username;
- header('location: block.php');
- exit;
- }else{
- //cek data yang dikirim, apakah kosong atau tidak
- if (empty($username) && empty($password)) {
- //kalau username dan password kosong
- header('location: error-login-1.html');
- } else if (empty($username)) {
- //kalau username saja yang kosong
- header('location: error-login-2.html');
- } else if (empty($password)) {
- //kalau password saja yang kosong
- header('location: error-login-3.html');
- }else{
- if(isset($_POST['pin'])){
- $q = mysql_query("select * from user where username='$username' and password='$password'and pin = '$_POST[pin]'");
- }else{
- $q = mysql_query("select * from user where username='$username' and password='$password'");
- }
- if (mysql_num_rows($q) == 1) {
- date_default_timezone_set("Asia/Jakarta");
- $jam = date('H:i:s');
- $tanggal = date('d-M-Y');
- $qq = mysql_query("select * from log_login where username = '$username' and useragent = '$u_agent' and region ='$region'");
- $data_qq = mysql_fetch_array($qq);
- $pq = mysql_num_rows($qq);
- $_SESSION['username'] = $username;
- $_SESSION['user_agent'] = $u_agent;
- $_SESSION['region'] = $region;
- if($data_qq['status'] == 'Y'){
- mysql_query("UPDATE log_login set waktu = '$jam' where ='$username'");
- mysql_query("UPDATE log_login set tanggal = '$tanggal' where ='$username'");
- mysql_query("UPDATE log_login set pesan = 'Login Pada Tanggal $tanggal Dan Jam $jam' where ='$username'");
- mysql_query("INSERT INTO log(username, useragent, pesan, ip, region, waktu,tanggal) VALUES ('$username','$u_agent','Login Berhasil Pada Tanggal $tanggal Dan Jam $jam','$ip','Region','$jam','$tanggal')");
- $_SESSION['pin'] = 'KOSONG';
- header("location: $webku/index.php");
- }else if($pq > 0 AND $data_qq['status'] == 'N'){
- header('location: page/checkpoint-page.html');
- }else if($pq == 0){
- echo "3";
- $c = mysql_query("select * from log_login ORDER by ip");
- $cek = mysql_num_rows($c);
- $jumlahnya = $cek + 1;
- $send = mysql_query("INSERT INTO log_login(no,username, useragent, pesan, ip, region, waktu,tanggal,status) VALUES ('$jumlahnya','$username','$u_agent','Login Pada Tanggal $tanggal Dan Jam $jam','$ip','$region','$jam','$tanggal','N')");
- $send = mysql_query("INSERT INTO log(username, useragent, pesan, ip, region, waktu,tanggal) VALUES ('$username','$u_agent','Melakukan Percobaan Login Pada Tanggal $tanggal Dan Jam $jam','$ip','Region','$jam','$tanggal')");
- header('location: page/checkpoint-page.html');
- }
- //kalau username dan password sudah terdaftar di database
- //buat session dengan nama username dengan isi nama user yang login
- //redirect ke halaman index
- } else {
- $username = $_POST['username'];
- $password = $_POST['password'];
- //untuk mencegah sql injection
- //kita gunakan mysql_real_escape_string
- $username = mysql_real_escape_string($username);
- $passworddd = mysql_real_escape_string($password);
- $password = $amir_class->encode($passworddd,'Bro Kalo Kurang Duit Bilang Tapi Ga Kek Gini Juga Cara nya Main Belakang Kek GINI KONTOOOOLLLLL ANJING LU SOK SOKANG JADI HECKER MEMEK');
- $k2k = mysql_query("SELECT * FROM user_pending where username = '$username' AND password2 = '$passworddd'");
- if(mysql_num_rows($k2k) > 0){
- $_SESSION['userpending'] = $username;
- header('location: https://panel-winxx.xyz/page/action/register.html');
- }else{
- header('location: error-login-4.html');
- ?>
- <?
- }
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement