Untitled

<?php
session_start();
include_once"includes/db_connect.php";
if (strip_tags($_GET['logout']) == "yes"){
session_destroy();
}elseif (isset($_SESSION['username'])){
header("Location: play.php");
exit();
}

if ($_POST['Submit'] && strip_tags($_POST['username']) && strip_tags($_POST['password'])){
$username = addslashes(strip_tags($_POST['username']));
$password = addslashes(strip_tags($_POST['password']));

$ip = $REMOTE_ADDR;


$sql = mysql_query("SELECT * FROM users WHERE username='$username' AND password='$password' AND activated='1' LIMIT 1");


$login_check = mysql_num_rows($sql);

$inf = mysql_fetch_object($sql);

if ($login_check == '0'){

$message="You could not be logged in";

}elseif ($login_check != "0"){


if ($login_check > '0'){

if ($inf->status == "Dead"){

include_once"dead.php";

exit();


}

if ($inf->status == "Banned"){

$encoded=md5(strtolower($username));

header("Location: ipban.php?banned=$username&encoded=$encoded");

exit();


}


        $_SESSION['username'] = $inf->username;


        $timestamp = time()+70;

        mysql_query("UPDATE users SET online='$timestamp' WHERE username='$username'");


        mysql_query("UPDATE users SET l_ip='$ip' WHERE username='$username'");


        header("Location: play.php");


} else {

    $message= "Something went wrong...<br />";


}}}


$timenow=time();

$select = mysql_query("SELECT * FROM users WHERE online > '$timenow' ORDER by id");

$num = mysql_num_rows($select);

while ($i = mysql_fetch_object($select))

$reg = mysql_num_rows(mysql_query("SELECT id FROM users"));

$iti=mysql_fetch_object(mysql_query("SELECT * FROM site_stats WHERE id='1'"));

$most=$iti->online;

$mostdate=$iti->date_online;

$dead= mysql_num_rows(mysql_query("SELECT username FROM users WHERE status = 'Dead'"));

$alive= mysql_num_rows(mysql_query("SELECT username FROM users WHERE status = 'Alive'"));

$result11111 = mysql_query("SELECT money FROM users WHERE userlevel ='0'");

    $moneytot = 0;

    while($row=mysql_fetch_array($result11111)){

        $moneytot+=$row[0]+$row[1];

    }

        $nums=mysql_num_rows($result11111);

    $per_user = round($moneytot / $nums);
?> <?

                $timenow=time();

$select = mysql_query("SELECT * FROM users WHERE online > '$timenow' ORDER by id");

$num = mysql_num_rows($select);

while ($i = mysql_fetch_object($select))
 ?>


<style>
<!--
.lbutton{
font-weight: bold;
font-family: Verdana;
font-size: 11px;
color: #FFFFFF;
border:1px solid black;
height:19px;
background: #669900;
}
.Table22 { border-width: 1px;
border-style: solid;
border-color:#666}
td { border: 0px; }
-->
</style>


<html>
<head>
<link rel="stylesheet" href="includes/in.css" type="text/css">

<title>Sicilian Society :: Home</title>

<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

</head>
<body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
<div align="center">
<form name="form1" method="post" action="">
  <p>&nbsp;</p>
<p>&nbsp;</p>
<table width="800" height="500" border="0" align="center" cellpadding="0" cellspacing="0" background="images/indexbg.jpg">
<tr>
  <td><p align="center"><strong><font size="2" color="#FFFFFF">Login</font></strong><br>
    </p>
  <table bgcolor="#444444" class="Table22" align="center" cellpadding="0" cellspacing="0" border="0">


<tr>
  <td colspan="2"><center><font color="#fff000"><b>Game will be re-opening soon!</b></font></center><?php echo "<font color=#669900><b>$message"; ?>
    <div align="center"></div></td>

</tr>
<tr>
<td width="175"><font color="#FFFFFF"><div align="right"><b>Username:</b></div></font></td>
<td width="281"><div align="left">
  <input name="username" type="text" class="textbox" id="username" value="" maxlength="40" />
</div></td>
</tr>

<tr>
<td><font color="#FFFFFF"><div align="right"><b>Password:</b></div></font></td>
<td><div align="left">
  <input name="password" type="password" class="textbox" id="password" value="" size="20" maxlength="40">
</div></td>
</tr>

<tr>
<td colspan="2"><div align="center">
  <p><br>
      <input type="submit" name="Submit" id="Submit" class="lbutton" value="Enter!" />
  </p>
  <p><img border="0" src="images/browsers.png" width="244" height="49"></p>
  <p><font color="#FFFFFF"><a href="register.php">Register</a> - <a href="lost.php">Lost Password</a> - <a href="stats.php">Statistics</a></font></p>
  <p><br>
  </p>
</div></td>
</tr>
</table>

  <p align="center"><font color="#FFFFFF">By entering Sicilian Society you agree to our</font><a href="TOS.php"><font color="#669900"> TOS</font></a></p>
  <div align="center">
  <p><a href="register.php"><b></a></p>
</div>