18cbe0a6 · 18cbe0a6 · 18cbe0a6 · 18cbe0a6 · 18cbe0a6 · 18cbe0a6
--- a/ext/js/forcedbanner_nf.js
+++ b/ext/js/forcedbanner_nf.js
+$( document ).ready( function()
+    {
+        var adFenster = new Array();
+        window.addEventListener("message", function(event)
+            {
+                if ( pageconfig['domain'] != event.origin )
+                {
+                    return;
+                }
+                console.log(event.data);
+                var art = event.data['art'],
+                    tan = event.data['tan'],
+                    action = event.data['action'];
+                if( 'adcheck' == action )
+                {
+                    console.log('okokok');
+                    adFenster[art][tan]['opened'] = true;
+                }
+            }   
+        );
+        function checkAdOk( art, tan )
+        {
+            console.log('checkadok');
+            if( false == adFenster[art][tan]['checked'] && false == adFenster[art][tan]['window'].closed )
+            {
+                var pdata = window.btoa(art) + '-' + window.btoa(tan)
+                adFenster[art][tan]['checked'] = true;
+                $.post( "ext/ap/ads.php",
+                    {
+                        'action': "checkAdOk",
+                        'art': art,
+                        'tan': tan
+                    },
+                    function(data, status)
+                    {
+                        window.open(pageconfig['domain']+'/adcheck.php?data='+pdata, art+'-'+tan, "height=120,width=200");
+                    }
+                );
+            }
+        }
+        /*
+        * if u do something wrong, sorry no matter which ad was active, invalidate 
+        */
+        function invalidateAd( art, tan )
+        {
+            console.log('invalidatead');
+            adFenster[art][tan]['checked'] = true;
+            var pdata = window.btoa(art) + '-' + window.btoa(tan)
+            $.post( "ext/ap/ads.php",
+                {
+                    'action': "invalidateAd"
+                },
+                function(data, status)
+                {
+                    window.open(pageconfig['domain']+'/adcheck.php?data='+pdata, art+'-'+tan, "height=120,width=200");
+                }
+            );
+        }
+        async function startAdCountdown( art, tan, sec )
+        {
+            console.log('startadcountdown');
+            let timer = setInterval( () =>
+                {
+                    console.log('checktimer');
+                    if( true == adFenster[art][tan]['checked'] )
+                    {
+                        clearInterval(timer);
+                    } else {
+                        if( document.hasFocus() )
+                        {
+                            invalidateAd( art, tan );
+                            clearInterval(timer);
+                        }
+                        if ( 'undefined' == adFenster[art][tan]['window'].closed || adFenster[art][tan]['window'].closed )
+                        {
+                            invalidateAd( art, tan );
+                            clearInterval(timer);
+                        }
+                    }
+                },
+                100
+            );
+            await sleep(sec * 1000);
+            checkAdOk( art, tan );
+        }
+        /*
+        * communicates with ad window, placing detection of actual click
+        */
+        function openAdWindow( art, tan, sec )
+        {
+            if ( 'undefined' == typeof adFenster[art] || (! adFenster[art] instanceof Array ) )
+            {
+                adFenster[art] = new Array();
+            }
+            if ( 'undefined' == typeof adFenster[art][tan] || (! adFenster[art][tan] instanceof Array ) )
+            {
+                adFenster[art][tan] = new Array();
+            }
+            if( ( 'undefined' == adFenster[art][tan]['window'] || null == adFenster[art][tan]['window'] ) || adFenster[art][tan]['window'].closed )
+            {
+                var data = window.btoa(art) + '-' + window.btoa(tan);
+                adFenster[art][tan]['window'] = window.open( pageconfig['domain'] + '/adclick.php?data='+data, "_blank" );
+                adFenster[art][tan]['window'].focus();
+                adFenster[art][tan]['opened'] = false;
+                adFenster[art][tan]['checked']= false;
+                console.log('meh');
+                adFenster[art][tan]['window'].onbeforeunload = function()
+                {   console.log('startadcountdowncall');
+                    startAdCountdown( art, tan, sec );
+                }
+            }
+        }
+        /*
+        * gets executed on click on ad
+        */
+        $( "#forcedbanner_display" ).on('click', function(e)
+            {
+                var elem = $( e.target ).closest( "li" );
+                var sec = elem.data('sec');
+                var tan = elem.data('tan');
+                var art = elem.data('art');
+                if (typeof tan !== typeof undefined && tan !== false)
+                {
+                    if (typeof art !== typeof undefined && art !== false)
+                    {
+                        if (typeof sec !== typeof undefined && sec !== false)
+                        {
+                            $(elem).remove();
+                            openAdWindow( art, tan, sec );
+                        }
+                    }
+                }
+            }
+        );
+        /*
+        * gets executed first, loads available ads and prepares the bootstrap <ul>-list for display
+        */
+        function loadAds( art )
+        {
+            $.post( "ext/ap/ads.php",
+                {
+                    'action': "getNewAdData",
+                    'adArt' : art
+                },
+                function(data, status)
+                {
+                    var useData = jQuery.parseJSON( data );
+                    if( 0 < useData.count )
+                    {
+                        $( "#forcedbanner_display" ).html('<ul class="list-group" id="forcedbanner_display_grp"></ul>');
+                        $( "#forcedBannerTmpl_list" ).tmpl( useData.data ).appendTo( $( "#forcedbanner_display ul" ) );
+                    }
+                }
+            );
+        }
+        $( "#loadAds_btn").on('click', function(e) { loadAds( 'forcedbanner' ) } );
+        loadAds( 'forcedbanner' );
+    }
+);
--- a/ext/js/jquery-3.3.1.min.js
+++ b/ext/js/jquery-3.3.1.min.js
--- a/ext/js/jquery.tmpl.js
+++ b/ext/js/jquery.tmpl.js
--- a/index.php
+++ b/index.php
@@ -14,7 +14,6 @@ if (!ini_get('display_errors')) {
 }
 require ('lib/datenbank.inc.php');
-db_connect();
 require ('lib/functions.lib.php');
 require ('lib/session.lib.php');
 require ('lib/run.inc.php');
@@ -28,7 +27,6 @@ if (!file_exists('content' . $_GET['content'] . '.php')) $_GET['content'] = '/er
 if ($_GET['content'] == '/intern/startseite') @require_once ('lib/texte/alt_startseitenpopup.txt');
 if ($_GET['content'] == '/betteln') @require_once ('lib/texte/alt_bettelseitenpopup.txt');
-$grundconfig = mysqli_fetch_array(db_query("SELECT seitenname,domain FROM ".$db_prefix."_seitenkonfig "));
 $start_reload = db_query("SELECT * FROM ".$db_prefix."_reloads WHERE uid = '".$_SESSION['uid']."' and tan = 'startseitenaufruf' and bis >= '".time()."'");
 if (mysqli_num_rows($start_reload) != 0) {
 	$start = mysqli_fetch_array($start_reload);
@@ -37,12 +35,10 @@ if (mysqli_num_rows($start_reload) != 0) {
 	$datetime = "2014-09-21 20:33:28";
 }
 $ts = strtotime($datetime);
-?>
+?><!DOCTYPE html>
-<!DOCTYPE html>
 <html lang='de'>
    <head>
-        <title><?php echo $seitenname;?></title>
+        <title><?php echo $pageconfig['seitenname'];?></title>
        <meta charset="UTF-8">
        <meta name="generator" content="vms-script">
        <meta name="Author" content="Designerscripte.net">
@@ -52,15 +48,19 @@ $ts = strtotime($datetime);
        <meta name="Robots" content="INDEX,FOLLOW">
 		<link rel="stylesheet" type="text/css" href="js/tcal.css" />
 		<link href="css/bootstrap.min.css" rel="stylesheet"> 
-		<script src="http://code.jquery.com/jquery-latest.js"></script>
+    <script src="ext/js/jquery-3.3.1.min.js"></script>
+    <script src="ext/js/jquery.tmpl.js"></script>
 		<script type="text/javascript" src="js/tcal.js"></script> 
-		<script language="JavaScript" src="js/slider.js"></script>
+		<script type="text/javascript" src="js/slider.js"></script>
-		<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js"></script>
+		<script type="text/javascript" src="js/bootstrap.min.js"></script>
-		<script src="js/bootstrap.min.js"></script>
+    <script type="text/javascript" src="ext/js/basics.js"></script>
 		<script type="text/javascript" src="js/start_countdown.js"></script>
    </head>
    <body>
+    <script>
+        var pageconfig = new Array();
+        pageconfig['domain'] = '<?php echo $pageconfig['domain']; ?>';
+    </script>
 	<?php 
 	if(!empty($meldung['meldung'])){
 	?>
@@ -107,11 +107,11 @@ $ts = strtotime($datetime);
 					<span class="icon-bar"></span>
 					<span class="icon-bar"></span>
 				</button>
-				<a class="navbar-brand" href="<?php echo $grundconfig['domain'];?>"><?php echo $grundconfig['seitenname'];?></a>
+				<a class="navbar-brand" href="<?php echo $pageconfig['domain'];?>"><?php echo $pageconfig['seitenname'];?></a>
 			</div>
 			<div id="navbar" class="navbar-collapse collapse">
 				<ul class="nav navbar-nav">
-					<li class="active"><a href="<?php echo $grundconfig['domain'];?>">Start</a></li>
+					<li class="active"><a href="<?php echo $pageconfig['domain'];?>">Start</a></li>
 					<?php if ($_SESSION['login'] != true) { ?>
 						<li><a href="?content=/intern/anmelden">Registrieren</a></li>
 						<li><a href="?content=/intern/daten">Passwort anfordern!</a></li>
@@ -126,7 +126,7 @@ $ts = strtotime($datetime);
 					<li class="dropdown">
 						<a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-haspopup="true" aria-expanded="false">Start <span class="caret"></span></a>
 						<ul class="dropdown-menu">
-                            <li><a href="<?php echo $domain;?>">Startseite</a></li>
+                            <li><a href="<?php echo $pageconfig['domain'];?>">Startseite</a></li>
                            <li><a href="?content=/news">News</a></li>
                            <li><a href="?content=/intern/mediadaten">Mediadaten</a></li>
                            <li><a href="?content=/intern/agbs">AGB</a></li>
@@ -152,7 +152,7 @@ $ts = strtotime($datetime);
 					<?php 
 					if(isset($_SESSION['admin'])){
 						if($_SESSION['admin'] == 1){
-							echo '<li><a href="'.$domain.'/adminforce/index.php\">Adminforce</a></li>';
+							echo '<li><a href="'.$pageconfig['domain'].'/adminforce/index.php\">Adminforce</a></li>';
 						}
 					}
 					?>
@@ -201,7 +201,3 @@ $ts = strtotime($datetime);
 	?>
    </body>
 </html>
-<?php
-db_close();
-if ($gzip_rate > 0) ob_end_flush();
-?>
--- a/install/index.php
+++ b/install/index.php
@@ -6,22 +6,21 @@ if(!isset($_GET['step'])){ $_GET['step'] = 0;}
 require('../lib/functions.lib.php');
 if(isset($_POST['datenbank_anlegen'])){
-	$inhalt = '
+	$inhalt = '<?php
-	<?php
 	define("DB_HOST","'.$_POST['host'].'");
 	define("DB_USER","'.$_POST['nutzername'].'");
 	define("DB_PASS","'.$_POST['passwort'].'");
-	define("DB_BASS","'.$_POST['db'].'");
+	define("DB_BASE","'.$_POST['db'].'");
 	define("PREFIX","'.$_POST['prefix'].'");
+  $db_prefix = "'.$_POST['prefix'].'";
 	//Passwort zusatz
 	define("PW_ZUSATZ","'. create_code(5) .'");
 	// Verschlsselungspasswort
 	define("VER_SCHLUESSEL","'. create_code(16) .'");
-	?>
+	?>';
-	';
 	$datei = fopen("../lib/db_config.php","w");
 	fwrite($datei, $inhalt,100000);
@@ -373,105 +372,6 @@ if(!isset($_GET['step'])){ $_GET['step'] = 0;}
 require('../lib/functions.lib.php');
-if(isset($_POST['datenbank_anlegen'])){
-	$inhalt = '
-	<?php
-	$db_host = "'.$_POST['host'].'";
-	// Mysql User
-	$db_user = "'.$_POST['nutzername'].'";
-	// Mysql PW
-	$db_pass = "'.$_POST['passwort'].'";
-	// Datenbank
-	$db_base = "'.$_POST['db'].'";
-	//Datenbank Prefix
-	$db_prefix = "'.$_POST['prefix'].'";
-	//Passwort zusatz
-	$pw_zusatz = '. create_code(5) .';
-	// Verschlüsselungspasswort
-	$ver_schluessel = '. create_code(16) .';
-	//Datenbankverbindung herstellen
-	$sql_open = @mysqli_connect($db_host, $db_user, $db_pass, $db_base) or die(\'Verbindung zum Mysql Server fehlgeschlagen! <br>Tipp: <a href="http://www.vms-tutorial.de/wiki//Lib/Functions">http://www.vms-tutorial.de/wiki//Lib/Functions</a>\');
-	$sql_base = @mysqli_select_db($sql_open,$db_base) or die("Keine oder falsche Datenbank gewählt! Tipp: <br><a href=\'http://www.vms-tutorial.de/wiki//Lib/Functions\'>http://www.vms-tutorial.de/wiki//Lib/Functions</a>");
-	/**
-	 * db_connect()
-	 *
-	 * @author designerscripte.net
-	 * @category system Database
-	 * @version 2.5.0
-	 * @example db_query("SELECT `field` FROM `table` WHERE `field` = `value` ");
-	 * @param mixed $sql_tag
-	 * @return 0 bei Fehler Mysql_resource.
-	 *
-	 */
-	function db_query($sql_tag) {
-		global $count_query,$sql_open;
-		$count_query++;
-		$fargs = func_get_args();
-		if (!empty($fargs)) {
-			$vargs = array();
-			foreach($fargs as $key => $arg) {
-				$vargs[$key] = mysqli_real_escape_string($sql_open,$arg);
-			}
-			array_shift($vargs);
-			if (!empty($vargs))$sql_tag = vsprintf($sql_tag, $vargs);
-		}
-		if ($ret = mysqli_query($sql_open,$sql_tag)) {
-			return $ret;
-		}else {
-			return 0;
-		}
-	}
-	function pw_erstellen($pw){
-		global $pw_zusatz;
-		$pw_er = hash("sha256",$pw.$pw_zusatz);
-		return $pw_er;
-	}
-	/**
-	 * db_close()
-	 *
-	 * @author designerscripte.net
-	 * @category system Database
-	 * @version 2.5.0
-	 * @example db_close();
-	 * @return die(\'\'); bei fehler nichts bei erfolg
-	 */
-	function db_close() {
-		global $sql_open;
-		@mysqli_close($sql_open) or die(\'Konnte die Verbindung mit Datenbank nicht schliessen!\');
-	}
-	$daten = mysqli_fetch_array(db_query("SELECT domain,seitenname,waehrung,betreibermail,cron_pw FROM ".$db_prefix."_seitenkonfig "));
-	// Domain (ohne Slash am Ende)
-	$domain = $daten[\'domain\'];
-	// Seitenname
-	$seitenname = $daten[\'seitenname\'];
-	// Seitenwährung
-	$waehrung = $daten[\'waehrung\'];
-	// ID vom Admin
-	$admin_id = 1;
-	// Adminmail
-	$betreibermail = $daten[\'betreibermail\'];
-	// Passwort für Crons
-	$cron_pw = $daten[\'cron_pw\'];
-	// beliebiger Alphanumerischer String hilft beim Schutz vor Autoklickern
-	$percode = \'551c3d4318d668cc2b00d02b40d1e6cd282817c2be65d401ed0cff2e6b\';
-	/* Globale Variablen nichts ändern */
-	$ip = $_SERVER[\'REMOTE_ADDR\'];
-	?>
-	';
-	$datei = fopen("../lib/datenbank.inc.php","w");
-	fwrite($datei, $inhalt,100000);
-	fclose($datei);
-}
 if($_GET['step'] == 4 && $_GET['db'] == true){
 	require_once('../lib/datenbank.inc.php');

--- a/install/mysql.txt
+++ b/install/mysql.txt
@@ -694,3 +694,5 @@ MODIFY `id` tinyint(1) NOT NULL AUTO_INCREMENT,AUTO_INCREMENT=30;
 ALTER TABLE `vms_rallyorte`
 MODIFY `id` int(11) NOT NULL AUTO_INCREMENT,AUTO_INCREMENT=8;
+ALTER TABLE `vms_gebuchte_werbung` ADD `id` BIGINT(1) UNSIGNED NOT NULL AUTO_INCREMENT FIRST, ADD PRIMARY KEY (`id`); 
--- a/lib/class/chat.class.php
+++ b/lib/class/chat.class.php
@@ -2,10 +2,9 @@
 class chatClass{
    public static function getRestChatLines($id){
-		global $db_host,$db_user,$db_pass,$db_base;
 		$arr = array();
 		$jsonData = '{"results":[';
-		$db_connection = new mysqli( $db_host, $db_user, $db_pass, $db_base);
+		$db_connection = new mysqli( DB_HOST, DB_USER, DB_PASS, DB_BASE );
 		$db_connection->query( "SET NAMES 'UTF8'" );
 		$statement = $db_connection->prepare( "SELECT id, absender, nachricht, time FROM vms_chat WHERE id > ? ");
 		$statement->bind_param( 'i', $id);
@@ -27,8 +26,7 @@ class chatClass{
    }
    public static function setChatLines( $chattext, $usrname, $color) {
-		global $db_host,$db_user,$db_pass,$db_base;
+		$db_connection = new mysqli( DB_HOST, DB_USER, DB_PASS, DB_BASE );
-		$db_connection = new mysqli( $db_host, $db_user, $db_pass, $db_base);
 		$db_connection->query( "SET NAMES 'UTF8'" );
 		$statement = $db_connection->prepare( "INSERT INTO chat( usrname, color, chattext) VALUES(?, ?, ?)");
 		$statement->bind_param( 'sss', $usrname, $color, $chattext);
@@ -37,4 +35,4 @@ class chatClass{
 		$db_connection->close();
    }
 }
 ?>
\ No newline at end of file
--- a/lib/datenbank.inc.php
+++ b/lib/datenbank.inc.php
-	<?php
+<?php
-	$db_host = "localhost";
-	// Mysql User
+require_once( __DIR__ .'/db_config.php' );
-	$db_user = "vms_suee2";
+require_once( __DIR__ .'/../class/database.php' );
-	// Mysql PW
-	$db_pass = "lTxyJyZtmSQvaV6M";
-	// Datenbank
-	$db_base = "vms_suee2";
-	//Datenbank Prefix
-	$db_prefix = "vms";
-	//Passwort zusatz
-	$pw_zusatz = 'fg65en';
-	// Verschlüsselungspasswort
-	$ver_schluessel = 'libh5476H6G4v0TB';
-	//Datenbankverbindung herstellen
-	$sql_open = @mysqli_connect($db_host, $db_user, $db_pass, $db_base) or die('Verbindung zum Mysql Server fehlgeschlagen! <br>Tipp: <a href="http://www.vms-tutorial.de/wiki//Lib/Functions">http://www.vms-tutorial.de/wiki//Lib/Functions</a>');
-	$sql_base = @mysqli_select_db($sql_open,$db_base) or die("Keine oder falsche Datenbank gewhlt! Tipp: <br><a href='http://www.vms-tutorial.de/wiki//Lib/Functions'>http://www.vms-tutorial.de/wiki//Lib/Functions</a>");
+//Datenbankverbindung herstellen
+$sql_open = @mysqli_connect( DB_HOST, DB_USER, DB_PASS, DB_BASE ) or die('Verbindung zum Mysql Server fehlgeschlagen! <br>Tipp: <a href="http://www.vms-tutorial.de/wiki//Lib/Functions">http://www.vms-tutorial.de/wiki//Lib/Functions</a>');
+// why?:
+$sql_base = @mysqli_select_db($sql_open, DB_BASE ) or die("Keine oder falsche Datenbank gewhlt! Tipp: <br><a href='http://www.vms-tutorial.de/wiki//Lib/Functions'>http://www.vms-tutorial.de/wiki//Lib/Functions</a>");
+// please use global $database, $GLOBALs['database'] or pass $database to class/function
+// avoid cluttering the code with silly singleton calls, except when really needed,
+// for example when connectiong to a different database, thank you
+$database = Database::get(
+                array(
+                    'type' => 'mysql',
+                    'host' => DB_HOST,
+                    'name' => DB_BASE,
+                    'user' => DB_USER,
+                    'pass' => DB_PASS,
+                )
+            );
 	/**
 	 * db_connect()
 	 *
@@ -50,10 +52,50 @@
 		}
 	}
+/*
+* taken from  nieprzeklinaj at gmail dot com
+* http://php.net/manual/de/mysqli-stmt.bind-result.php
+*/
+function db_fetch($result)
+{   
+    $array = array();
+    if($result instanceof mysqli_stmt)
+    {
+        $result->store_result();
+        $variables = array();
+        $data = array();
+        $meta = $result->result_metadata();
+        while($field = $meta->fetch_field())
+            $variables[] = &$data[$field->name]; // pass by reference
+        call_user_func_array(array($result, 'bind_result'), $variables);
+        $i=0;
+        while($result->fetch())
+        {
+            $array[$i] = array();
+            foreach($data as $k=>$v)
+                $array[$i][$k] = $v;
+            $i++;
+            // don't know why, but when I tried $array[] = $data, I got the same one result in all rows
+        }
+    }
+    elseif($result instanceof mysqli_result)
+    {
+        while($row = $result->fetch_assoc())
+            $array[] = $row;
+    }
+    return $array;
+}
 	function pw_erstellen($pw){
-		global $pw_zusatz;
+		$pw_er = hash("sha256",$pw. PW_ZUSATZ );
-		$pw_er = hash("sha256",$pw.$pw_zusatz);
 		return $pw_er;
 	}
@@ -70,5 +112,4 @@
 		global $sql_open;
 		@mysqli_close($sql_open) or die('Konnte die Verbindung mit Datenbank nicht schliessen!');
 	}
-	?>
+?>
--- a/lib/functions.lib.php
+++ b/lib/functions.lib.php
 <?php
-// Komprimierung der Ausgabe zwischen 0 & 10 wobei 0 die Komprimierung der Ausgabe deaktiviert Empfohlener Wert: 1
+if( isset($database) )
-	$gzip_rate = 0;
+{
+    require_once( __DIR__ . '/../class/campaigns.php' );
+    require_once( __DIR__ . '/../class/stats.php' );
+    $campaigns = new Campaigns($database);
+    $stats     = new Stats($database);
+} else {
+    throw new Exception( 'Please include lib/datenbank.inc.php before lib/functions.lib.php' );
+}
 /**
 * create_code()
@@ -170,13 +178,6 @@ function bilanz ($ein,$aus,$gruppe,$name) {
 }
-// GZip
-if ($gzip_rate > 0) {
-    ini_set('zlib.output_compression_level', $gzip_rate);
-    if (ereg("gzip", getenv("HTTP_ACCEPT_ENCODING"))) ob_start("ob_gzhandler");
-    else ob_start();
-}
 // Datum im Facebook Stil 
 function niceDate($timestamp) 
 { 
@@ -289,18 +290,16 @@ function geoIP($ip){
 }
 function versch($text){
-	global $ver_schluessel;
 	$iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB); 
    $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND); 
-    $crypted = mcrypt_encrypt(MCRYPT_RIJNDAEL_256, $ver_schluessel, $text, MCRYPT_MODE_ECB, $iv);
+    $crypted = mcrypt_encrypt(MCRYPT_RIJNDAEL_256, VER_SCHLUESSEL, $text, MCRYPT_MODE_ECB, $iv);
 	return $crypted;
 }
 function entsch($text){
-	global $ver_schluessel;
 	$iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB); 
    $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND); 
-	$encrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_256, $ver_schluessel, $text, MCRYPT_MODE_ECB, $iv);
+	$encrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_256, VER_SCHLUESSEL, $text, MCRYPT_MODE_ECB, $iv);
 	return $encrypted;
 }

--- a/lib/funktionen/chat.php
+++ b/lib/funktionen/chat.php
@@ -23,7 +23,7 @@ if($error == 0){
 				$verguetung = $daten['sb_verguetung']/2;
 				kontobuchung ('+', $verguetung/2, create_code(14), $_SESSION['uid'],'Chatverg&uuml;tung');
 				$error = 0; $meldung = 'Da du deinen Adblocker an hast, bekommst du nicht die ganze Chat Verg&uuml;tung.<br>
-																Du bekommst nur '. number_format($verguetung/2,2,',','.').' '.$waehrung.' anstatt die vollen '. number_format($verguetung,2,',','.').' '.$waehrung.'.';
+																Du bekommst nur '. number_format($verguetung/2,2,',','.').' '.$pageconfig['waehrung'].' anstatt die vollen '. number_format($verguetung,2,',','.').' '.$pageconfig['waehrung'].'.';
 			}else{
 				kontobuchung ('+', $daten['sb_verguetung'], create_code(14), $_SESSION['uid'],'Chatverg&uuml;tung');
 				$error = 0; $meldung = 'Chat Verg&uuml;tung erhalten.';

--- a/lib/funktionen/konto/anmelden.php
+++ b/lib/funktionen/konto/anmelden.php
@@ -87,10 +87,10 @@ if (!isset($ak)) $ak = "";
 															)");
        $email_message = 'Hallo ' . $_POST['nickname'] . ',
-    	Du hast Dich soeben erfolgreich bei ' . $seitenname . ' angemeldet.
+    	Du hast Dich soeben erfolgreich bei ' . $pageconfig['seitenname'] . ' angemeldet.
    	Bitte aktiviere jetzt Deinen Account, klicke dazu bitte auf den
-    	Aktivierungslink: ' . $domain . '/?content=/intern/aktivieren&ak=' . $ak . '
+    	Aktivierungslink: ' . $pageconfig['domain'] . '/?content=/intern/aktivieren&ak=' . $ak . '
    	----------------------------------------------------------
    	Kontonummer: ' . $uid . '
@@ -101,11 +101,11 @@ if (!isset($ak)) $ak = "";
    	uns teilnehmen.
    	Mit freundlichen Gren
-    	Das ' . $seitenname . ' Team
+    	Das ' . $pageconfig['seitenname'] . ' Team
    	';
-        usermail($_POST['emailadresse'], "$seitenname Accountaktivierung", $email_message, '"' . $seitenname . '" <' . $betreibermail . '>');
+        usermail($_POST['emailadresse'], $pageconfig['seitenname']." Accountaktivierung", $email_message, '"' . $pageconfig['seitenname'] . '" <' . $betreibermail . '>');
        $anmeldeok = "true";
    }
 	$meldung = meldung($error,$meldung);
 ?>
\ No newline at end of file
--- a/lib/session.lib.php
+++ b/lib/session.lib.php
@@ -4,6 +4,7 @@ Datei : session.lib.php
 Änderungen in dieser Datei nur dann vornehmen wenn Sie wissen was Sie tun!
 */
 @session_start();
+$ip = (isset($_SERVER['REMOTE_ADDR'])) ? $_SERVER['REMOTE_ADDR'] : '127.0.0.1';
 // Variabeln definieren
 if(isset($_POST['checkid'])){
 	if (!isset($_SESSION['login'])) $_SESSION['login'] = "";
@@ -16,8 +17,8 @@ if(isset($_POST['checkid'])){
 	if (!isset($_GET['logout'])) $_GET['logout'] = "";
 	if (!isset($_GET['ref'])) $_GET['ref'] = "0";
 }
+if( ( !isset($_SESSION['werber']) || ("0" == $_SESSION['werber']) ) && isset($_GET['ref']) )
-if ($_SESSION['werber'] == "0") $_SESSION['werber'] = (int)$_GET['ref'];
+    $_SESSION['werber'] = (int)$_GET['ref'];
 // Seiteneinstellungen laden...
 $pageconfig = mysqli_fetch_array(db_query("SELECT * FROM " . $db_prefix . "_seitenkonfig LIMIT 1"));
@@ -28,11 +29,11 @@ if ($pageconfig['wartung'] == 1 && $_SESSION['uid'] != $admin_id) {
    $_SESSION['uid'] = "";
    $_SESSION['passwort'] = "";
    $_SESSION['login'] = "";
-    header ("location: " . $domain . "/wartung.php");
+    header ("location: " . $pageconfig['domain'] . "/wartung.php");
    die();
 }
 // Login
-if ($_POST['checkid'] == 'Login' && $_POST['nickname'] && $_POST['passwort']) {
+if (isset($_POST['checkid']) && $_POST['checkid'] == 'Login' && $_POST['nickname'] && $_POST['passwort']) {
    $_POST['nickname'] = addslashes($_POST['nickname']);
 	$pw = pw_erstellen($_POST['passwort']);
@@ -61,7 +62,7 @@ WHERE u.nickname='" . $_POST['nickname'] . "' OR u.uid = '". $_POST['nickname']
            $_SESSION['uid'] = $login_check['uid'];
            $_SESSION['passwort'] = $login_check['passwort'];
            $_SESSION['login'] = "true";
-            header ("location: " . $domain);
+            header ("location: " . $pageconfig['domain']);
            die();
        }
        // Wenn User gesperrt wurde!
@@ -76,10 +77,10 @@ WHERE u.nickname='" . $_POST['nickname'] . "' OR u.uid = '". $_POST['nickname']
        $_GET['content'] = '/error/kein_zutritt';
    }
 } else {
-    if ($_POST['checkid'] == 'Login') $_GET['content'] = '/error/kein_zutritt';
+    if (isset($_POST['checkid']) && $_POST['checkid'] == 'Login') $_GET['content'] = '/error/kein_zutritt';
 }
 // Autologin
-if ($_SESSION['login'] != 'true' && isset($_COOKIE['autologin']) && isset($_COOKIE['uid']) && isset($_COOKIE['passwort'])) {
+if ( (isset($_SESSION['login']) && $_SESSION['login'] != 'true') || ( isset($_COOKIE['autologin']) && isset($_COOKIE['uid']) && isset($_COOKIE['passwort'])) ) {
    $_COOKIE['uid'] = (int)$_COOKIE['uid'];
    $_COOKIE['passwort'] = addslashes ($_COOKIE['passwort']);
@@ -95,18 +96,18 @@ if ($_SESSION['login'] != 'true' && isset($_COOKIE['autologin']) && isset($_COOK
    }
 }
 // Logout
-if ($_GET['logout'] == 'true') {
+if (isset($_GET['logout']) && $_GET['logout'] == 'true') {
    setCookie('uid', '', time() - 86400 * 30);
    setCookie('passwort', '', time() - 86400 * 30);
    setCookie('autologin', '', time() - 86400 * 30);
    $_SESSION['uid'] = "";
    $_SESSION['passwort'] = "";
    $_SESSION['login'] = "";
-    header ("location: " . $domain);
+    header ("location: " . $pageconfig['domain']);
    die();
 }
 if (isset ($_SESSION['uid']) && isset ($_SESSION['passwort']) && !empty ($_SESSION['uid']) && !empty ($_SESSION['passwort'])) {
    db_query ("UPDATE " . $db_prefix . "_kontodaten SET last_active = " . time() . " WHERE uid = " . $_SESSION['uid'] . " AND passwort = '" . $_SESSION['passwort'] . "' LIMIT 1");
 }
 ?>
\ No newline at end of file
--- a/lib/weristonline.php
+++ b/lib/weristonline.php
 <?php
 $zeit = (5 * 60); // Sekunden seit der letzten Aktivität
-$np = $domain . '/?content=/nickpage&amp;id='; // Nickpagelink
+$np = $pageconfig['domain'] . '/?content=/nickpage&amp;id='; // Nickpagelink
 // verhindern, dass die Datei direkt aufgerufen wird
 if (!function_exists ("db_query")) die ("Kein Direktaufruf");
@@ -26,4 +26,4 @@ else {
 }
 ?>
\ No newline at end of file
--- a/pcheck.php
+++ b/pcheck.php
 <?php
+require ( 'lib/datenbank.inc.php' );
 require_once ('lib/functions.lib.php');
 //Variablen vordefinieren
@@ -10,9 +11,6 @@ if (!isset($_GET['auszahlen']))	       $_GET['auszahlen']	= "false";
 $_GET['uid'] = (int)$_GET['uid'];
 $_GET['tan'] = addslashes ($_GET['tan']);
-//DB Verbindung herstellen
-db_connect();
 $mail =  mysqli_fetch_assoc(db_query("SELECT e.start,e.aufendhalt,e.status,e.uid,v.verdienst FROM ".$db_prefix."_paidmails_empfaenger e
                                                                              LEFT JOIN ".$db_prefix."_paidmails_versendet v ON v.tan = e.tan
                                                                              WHERE e.tan='".$_GET['tan']."' AND e.uid=".$_GET['uid']." AND e.gueltig > ".time()." LIMIT 1"));
@@ -38,7 +36,7 @@ if ($_GET['auszahlen']!='true') {
        bilanz(0,$mail['verdienst']);
    	db_query("UPDATE ".$db_prefix."_paidmails_empfaenger SET status=1 WHERE tan='".$_GET['tan']."' and uid=".$_GET['uid']." LIMIT 1");
    	db_query("UPDATE ".$db_prefix."_paidmails_versendet SET bestaedigt=bestaedigt+1 WHERE tan='".$_GET['tan']."'  LIMIT 1");
-    	$headmsg = $mail['verdienst'].' '.$waehrung.' gutgeschrieben!';
+    	$headmsg = $mail['verdienst'].' '.$pageconfig['waehrung'].' gutgeschrieben!';
 	} else {
        $headmsg = 'Wartezeit umgangen! Paidmail ungültig!';
        db_query("UPDATE ".$db_prefix."_paidmails_empfaenger SET status=2 WHERE tan='".$_GET['tan']."' and uid=".$_GET['uid']." LIMIT 1");
@@ -61,4 +59,3 @@ echo '
        </table>
    </body>
 </html>';
-db_close();
\ No newline at end of file
--- a/pclick.php
+++ b/pclick.php
 <?php
+require ( 'lib/datenbank.inc.php' );
 require_once ('lib/functions.lib.php');
-db_connect();
 $_GET['uid'] = (int)$_GET['uid'];
 $_GET['tan'] = addslashes ($_GET['tan']);
@@ -18,5 +18,3 @@ echo '
            <frame name="werbung" src="'.$mail['ziel'].'" scrolling="auto" frameborder="0">
        </frameset>
 </html>';
-db_close();
--- a/pl.php
+++ b/pl.php
-<?
+<?php
-@require_once ('lib/functions.lib.php');
+require_once ( __DIR__ . '/lib/datenbank.inc.php' );
-@db_connect();
+require_once ( __DIR__ . '/lib/functions.lib.php' );
-@require_once ('lib/session.lib.php');
+require_once ( __DIR__ . '/lib/session.lib.php' );
-if (!isset($_GET['art']))		$_GET['art']		= "";
-if (!isset($text['tan']))		$text['tan']		= "";
-if (!isset($text['ziel']))	$text['ziel']		= "";
-$text = mysqli_fetch_array(db_query("SELECT * FROM ".$db_prefix."_gebuchte_werbung WHERE tan='".$_GET['tan']."'"));
-?>
+$kampdaten = $campaigns->getByTanAndType( $_GET['tan'], 'paidlink' );
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
+?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
 <html>
 <head>
-	<title>Paidlink by <?=$seitenname;?></title>
+  <title>Paidlink by <?php echo $pageconfig['seitenname']; ?></title>
 </head>
 <frameset rows="25,*" border="0">
-<frame name="abuse" src="topframe_text.php?tan=<?=$text['tan'];?>" scrolling="no" frameborder="0">
+<frame name="abuse" src="topframe_text.php?tan=<?php echo $kampdaten->tan; ?>" scrolling="no" frameborder="0">
-<frame name="werbung" src="<?=$text['ziel'];?>" scrolling="auto" frameborder="0">
+<frame name="werbung" src="<?php echo $kampdaten->ziel;?>" scrolling="auto" frameborder="0">
 </frameset>
 </body>
 </html>
-<?db_close();?>
--- a/top_forcedbanner.php
+++ b/top_forcedbanner.php
 <?php
-require ('lib/datenbank.inc.php');
+require_once ( __DIR__ . '/lib/datenbank.inc.php' );
-require_once ('lib/functions.lib.php');
+require_once ( __DIR__ . '/lib/functions.lib.php' );
-require_once ('lib/session.lib.php');
+require_once ( __DIR__ . '/lib/session.lib.php' );
-if (!isset($_GET['art']))		$_GET['art']		= "";
-if (!isset($forced['tan']))		$forced['tan']		= "";
-if (!isset($forced['ziel']))	        $forced['ziel']		= "";
-//Tan absichern
+$kampdaten = $campaigns->getByTanAndType( $_GET['tan'], 'forcedbanner' );
-$_GET['tan'] = addslashes ($_GET['tan']);
+if( false !== $kampdaten )
+{
-$forced = mysqli_fetch_assoc(db_query("SELECT ziel,tan FROM ".$db_prefix."_gebuchte_werbung WHERE tan='".$_GET['tan']."' LIMIT 1"));
 echo '<!DOCTYPE>
 <html>
 <head>
-	<title>Forcedklick by '.$seitenname.'</title>
+	<title>Forcedklick by '.$pageconfig['seitenname'].'</title>
 </head>
 <frameset rows="30,*" border="0">
-<frame src="topframe_forced.php?tan='.$forced['tan'].'" scrolling="no" frameborder="0">
+<frame src="topframe_forced.php?tan='.$kampdaten->tan.'" scrolling="no" frameborder="0">
-<frame src="'.$forced['ziel'].'" scrolling="auto" frameborder="0">
+<frame src="'.$kampdaten->ziel.'" scrolling="auto" frameborder="0">
 </frameset>
 </html>';
-db_close();
\ No newline at end of file
+}
--- a/topframe_forced.php
+++ b/topframe_forced.php
 <?php
-require ('lib/datenbank.inc.php');
+require_once ( __DIR__ . '/lib/datenbank.inc.php' );
-require_once ('lib/functions.lib.php');
+require_once ( __DIR__ . '/lib/functions.lib.php' );
-require ('lib/session.lib.php');
+require_once ( __DIR__ . '/lib/session.lib.php' );
 // Variabeln definieren
 if (!isset($headmsg)) $headmsg = "";
 if (!isset($puk)) $puk = "";
@@ -11,70 +12,74 @@ if (!isset($_GET['art'])) $_GET['art'] = "";
 if (!isset($_GET['puk'])) $_GET['puk'] = "";
 if (!isset($_GET['auszahlen'])) $_GET['auszahlen'] = "false";
 if (!isset($_SESSION['uid'])) $_SESSION['uid'] = "";
-if (!isset($forced['ziel'])) $forced['ziel'] = "";
-if (!isset($forced['aufendhalt'])) $forced['aufendhalt'] = "";
+$percode = 'abc123lalala';
-if (!isset($forced['tan'])) $forced['tan'] = "";
 // Nur weiter wenn eingeloggt
 if ($_SESSION['login'] != 'true' || $_SESSION['uid'] <= 0) die('Bitte einloggen!');
-//DB Verbindung herstellen
+$zeit = time();
-// Tan sichern
-$_GET['tan'] = mysqli_real_escape_string ($sql_open,$_GET['tan']);
 // Werbedaten auslesen! Fixed
-$kamp = db_query ("SELECT t1.* FROM " . $db_prefix . "_gebuchte_werbung t1
+$kampdaten = $campaigns->getIsClickableByTanAndType( $_GET['tan'], 'forcedbanner', $ip, $_SESSION['uid'], $zeit );
-                               LEFT JOIN " . $db_prefix . "_reloads t2 ON (t1.tan=t2.tan AND (t2.uid=" . $_SESSION['uid'] . " or t2.ip='" . $ip . "') AND t2.bis > " . time() . ")
-                               WHERE t1.tan = '" . $_GET['tan'] . "' AND t2.tan IS NULL AND t1.werbeart = 'forcedbanner' AND t1.menge >=1 AND t1.status = 1 AND t1.sponsor != " . $_SESSION['uid'] . " LIMIT 1");
 // Reloadprüfen
-if (mysqli_num_rows($kamp)) {
+if ( false !== $kampdaten )
-    $forced = mysqli_fetch_assoc($kamp);
+{
-    $wartezeit = $forced['aufendhalt'];
+    $wartezeit = $kampdaten->aufendhalt;
-    $headmsg = 'Vergütung in ' . $forced['aufendhalt'] . ' Sek.!';
+    $headmsg = 'Verg&uuml;tung in ' . $kampdaten->aufendhalt . ' Sek.!';
-    if ($_GET['auszahlen'] != 'true') {
+    if ($_GET['auszahlen'] != 'true')
-        $puk = md5($_SESSION['uid'] . $forced['aufendhalt'] . date("d.m.Y", time()) . $percode);
+    {
-        $_SESSION['earlies_payout' . $_GET['tan']] = time() + $wartezeit - 1;
+        $puk = md5( $_SESSION['uid'] . $kampdaten->aufendhalt . date("d.m.Y", $zeit) . $percode );
+        $_SESSION['earlies_payout' . $_GET['tan']] = $zeit + $wartezeit - 1;
    }
-} else {
+}
+else
+{
    $headmsg = 'Banner noch im Reload!';
    $force_error = 'true';
 }
 // User bezahlen und Reload schreiben
-if ($_GET['auszahlen'] == 'true' && $force_error != 'true' && $_GET['puk'] == md5($_SESSION['uid'] . $forced['aufendhalt'] . date("d.m.Y", time()) . $percode) && time() >= $_SESSION['earlies_payout' . $_GET['tan']]) {
+if ( $_GET['auszahlen'] == 'true' && $force_error != 'true' && $_GET['puk'] == md5($_SESSION['uid'] . $kampdaten->aufendhalt . date("d.m.Y", $zeit) . $percode) && $zeit >= $_SESSION['earlies_payout' . $_GET['tan']] )
+{
+    db_query("UPDATE ".$db_prefix."_kontodaten  SET klicks = klicks + 1, kv = kv + ".$kampdaten->verdienst.", fc_klicks = fc_klicks + 1 WHERE uid = '".$_SESSION['uid']."'"); // Hier Zusatz für Fakeschutz  
+    kontobuchung ('+', $kampdaten->verdienst, create_code(14), $_SESSION['uid'], 1, 'Forcedbannerverdienst');
+    refumsatz ($kampdaten->verdienst, $_SESSION['uid']);
+    rallysystem ($_SESSION['uid'], '1', $kampdaten->verdienst);
+    bilanz($kampdaten->preis, $kampdaten->verdienst,'Werbebereich','Forcedbannerklick');
+    $new_reload = $zeit + $kampdaten->reload;
-    db_query("UPDATE ".$db_prefix."_kontodaten  SET klicks = klicks + 1, kv = kv + ".$forced['verdienst'].", fc_klicks = fc_klicks + 1 WHERE uid = '".$_SESSION['uid']."'"); // Hier Zusatz für Fakeschutz  
+    db_query("INSERT INTO " . $db_prefix . "_reloads (ip,uid,tan,bis) VALUES ('" . $ip . "'," . $_SESSION['uid'] . ",'" . $kampdaten->tan . "'," . $new_reload . ")");
-    kontobuchung ('+', $forced['verdienst'], create_code(14), $_SESSION['uid'], 1, 'Forcedbannerverdienst');
+    $campaigns->decreaseAvailCountById( $kampdaten->id, 1 );
-	refumsatz ($forced['verdienst'], $_SESSION['uid']);
-    rallysystem ($_SESSION['uid'], '1', $forced['verdienst']);
-    bilanz($forced['preis'], $forced['verdienst'],'Werbebereich','Forcedbannerklick');
-    $new_reload = time() + $forced['reload'];
-    db_query("INSERT INTO " . $db_prefix . "_reloads (ip,uid,tan,bis) VALUES ('" . $ip . "'," . $_SESSION['uid'] . ",'" . $forced['tan'] . "'," . $new_reload . ")");
-    db_query("UPDATE " . $db_prefix . "_gebuchte_werbung SET menge = menge - 1 WHERE tan='" . $_GET['tan'] . "'");
    $_SESSION['earlies_payout' . $_GET['tan']] = '';
-    $headmsg = $forced['verdienst'] . ' ' . $waehrung . ' erhalten!';
+    $headmsg = $kampdaten->verdienst . ' ' . $pageconfig['waehrung'] . ' erhalten!';
-} elseif ($_GET['auszahlen'] == 'true' && time() < $_SESSION['earlies_payout' . $_GET['tan']]) {
+}
+elseif( $_GET['auszahlen'] == 'true' && $zeit < $_SESSION['earlies_payout' . $_GET['tan']] )
+{
    $headmsg = 'Wartezeit umgangen.';
-} elseif ($_GET['auszahlen'] == 'true' && $force_error != 'true') {
+}
+elseif( $_GET['auszahlen'] == 'true' && $force_error != 'true' )
+{
    $headmsg = 'Pin abgelaufen';
 }
+?><!DOCTYPE HTML />
-db_close();
-echo'<!DOCTYPE HTML />
 <html>
    <head>
    <meta charset="UTF-8">
-    <link rel="stylesheet" href="css/bframe.css" type="text/css">';
+    <link rel="stylesheet" href="css/bframe.css" type="text/css">
-    if ($wartezeit >= 0 && $_GET['auszahlen'] != 'true') echo '<meta http-equiv="refresh" content="' . $wartezeit . ';url=topframe_forced.php?auszahlen=true&tan=' . $forced['tan'] . '&puk=' . $puk . '">';
+    <?php
-    echo '
+    if ($wartezeit >= 0 && $_GET['auszahlen'] != 'true')
+        echo '<meta http-equiv="refresh" content="' . $wartezeit . ';url=topframe_forced.php?auszahlen=true&tan=' . $kampdaten->tan . '&puk=' . $puk . '">';
+    ?>
    </head>
    <body>
        <table width="100%" cellpadding="0" cellspacing="0" border="0" align="left">
            <tr>
-                <td align="left" width="50%"><b>'.$seitenname.' ist für den Inhalt nicht verantwortlich.</b></td>
+                <td align="left" width="50%"><b><?php echo $pageconfig['seitenname']; ?> ist f&uuml;r den Inhalt nicht verantwortlich.</b></td>
-                <td align="right" width="50%"><b>'.$headmsg.'</b>&nbsp;&nbsp;&nbsp;&nbsp;</td>
+                <td align="right" width="50%"><b><?php echo $headmsg; ?></b>&nbsp;&nbsp;&nbsp;&nbsp;</td>
            </tr>
        </table>
    </body>
-</html>';
+</html>
--- a/topframe_text.php
+++ b/topframe_text.php
-<?
+<?php
-@require_once ('lib/functions.lib.php');
+require_once ( __DIR__ . '/lib/datenbank.inc.php' );
-@require_once ('lib/session.lib.php');
+require_once ( __DIR__ . '/lib/functions.lib.php' );
+require_once ( __DIR__ . '/lib/session.lib.php' );
 // Variabeln definieren
 if (!isset($headmsg))				$headmsg				= "";
@@ -11,67 +12,79 @@ if (!isset($_GET['art']))			$_GET['art']			= "";
 if (!isset($_GET['puk']))			$_GET['puk']			= "";
 if (!isset($_GET['auszahlen']))		$_GET['auszahlen']		= "false";
 if (!isset($_SESSION['uid']))		$_SESSION['uid']		= "";
-if (!isset($text['ziel']))		$text['ziel']			= "";
-if (!isset($text['aufendhalt']))	$text['aufendhalt']	= "";
-if (!isset($text['tan']))			$text['tan']			= "";
-// Werbedaten auslesen
+$percode = 'woistnurdiezeit?';
-$text = mysqlifetch_array(db_query("SELECT * FROM ".$db_prefix."_gebuchte_werbung WHERE tan='".$_GET['tan']."' and werbeart = 'paidlinks' and status = '1' LIMIT 1"));
+$zeit = time();
+$kampdaten = $campaigns->getIsClickableByTanAndType( $_GET['tan'], 'paidlinks', $ip, $_SESSION['uid'], $zeit );
 // Reloadprfen
-if ($text) {
+if ( false !== $kampdaten )
-	// userreloadsperre eingefgt
+{
-	$reloads = db_query("SELECT * FROM ".$db_prefix."_reloads WHERE (uid='".$_SESSION['uid']."' or ip='".$ip."') and tan='".$text['tan']."' and bis > ".time()."");
+    $wartezeit = $kampdaten->aufendhalt;
-	if (!mysqlinum_rows($reloads)) {
+    $headmsg = 'Verg&uuml;tung in ' . $kampdaten->aufendhalt . ' Sek.!';
-	$wartezeit = $text['aufendhalt'];
+    if ($_GET['auszahlen'] != 'true')
-	$headmsg = 'Vergtung in '.$text['aufendhalt'].' Sek.!';
+    {
-	$puk = md5($_SESSION['uid'].''.$text['aufendhalt'].''.date("H",time()));
+        $puk = md5( $_SESSION['uid'] . $kampdaten->aufendhalt . date("d.m.Y", $zeit) . $percode );
-	} else {
+        $_SESSION['earlies_payout' . $kampdaten->tan] = $zeit + $wartezeit - 1;
-	$headmsg = 'Paillink noch im Reload!';
+    }
-	$force_error = 'true';
+}
-	}
+else
-} else {
+{
-$headmsg = 'Werbetan nicht bekannt!';
+    $headmsg = 'Paidlink noch im Reload!';
-$force_error = 'true';
+    $force_error = 'true';
 }
 // User bezahlen und Reload schreiben
-if ( $_GET['auszahlen'] == 'true' && $force_error != 'true' && $_GET['puk'] == md5($_SESSION['uid'].''.$text['aufendhalt'].''.date("H",time())) ) {
+if ( $_GET['auszahlen'] == 'true' && $force_error != 'true' && $_GET['puk'] == md5( $_SESSION['uid'] . $kampdaten->aufendhalt . date("d.m.Y", $zeit) . $percode) && $zeit >= $_SESSION['earlies_payout' . $_GET['tan']] )
-if ($_SESSION['uid'] >= 1) {
+{
-kontobuchung ('+', $text['verdienst'], create_code(14), $_SESSION['uid'], 1, 'Textlinkklickverdienst');
+    if ($_SESSION['uid'] >= 1)
-refumsatz ($text['verdienst'],$_SESSION['uid']);
+    {
-aktivralley ($text['verdienst'],$_SESSION['uid']);
+        kontobuchung( '+', $kampdaten->verdienst, create_code(14), $_SESSION['uid'], 1, 'Textlinkklickverdienst' );
-bilanz($text['preis'], $text['verdienst'],'Werbebereich','Textlinkklick');
+        refumsatz( $kampdaten->verdienst, $_SESSION['uid'] );
-klickralley ();
+        aktivralley( $kampdaten->verdienst, $_SESSION['uid'] );
-$new_reload = time()+$text['reload'];
+        bilanz( $kampdaten->preis, $kampdaten->verdienst, 'Werbebereich', 'Textlinkklick' );
-db_query("INSERT INTO ".$db_prefix."_reloads (ip,uid,tan,bis) VALUES ('".$ip."','".$_SESSION['uid']."','".$text['tan']."','".$new_reload."')");
+        klickralley();
-db_query("UPDATE ".$db_prefix."_gebuchte_werbung SET menge = menge - 1 WHERE tan='".$_GET['tan']."'");
-db_query("UPDATE ".$db_prefix."_kontodaten  SET textlinks = textlinks + 1, tlv = tlv + ".$text['verdienst']." WHERE uid = '".$_SESSION['uid']."'");
+        $new_reload = $zeit+$kampdaten->reload;
-$headmsg = $text['verdienst'].' '.$waehrung.' erhalten!';
-} else {
+        db_query("INSERT INTO ".$db_prefix."_reloads (ip,uid,tan,bis) VALUES ('" . $ip . "','" . $_SESSION['uid'] . "','" . $kampdaten->tan . "','" . $new_reload . "')");
-$headmsg = 'Leider bist Du nicht eingeloggt!';
+        $campaigns->decreaseAvailCountById( $kampdaten->id, 1 );
+        db_query("UPDATE ".$db_prefix."_kontodaten  SET textlinks = textlinks + 1, tlv = tlv + ". $kampdaten->verdienst ." WHERE uid = '".$_SESSION['uid']."'");
+        $_SESSION['earlies_payout' . $_GET['tan']] = '';
+        $headmsg = $kampdaten->verdienst . ' '. $pageconfig['waehrung'].' erhalten!';
+    }
+    else
+    {
+        $headmsg = 'Leider bist du nicht eingeloggt!';
+    }
 }
-} else {
+elseif( $_GET['auszahlen'] == 'true' && $zeit < $_SESSION['earlies_payout' . $_GET['tan']] )
-if ($_GET['auszahlen'] == 'true' && $force_error != 'true') $headmsg = 'Pin abgelaufen!';
+{
+    $headmsg = 'Wartezeit umgangen.';
 }
-?>
+elseif( $_GET['auszahlen'] == 'true' && $force_error != 'true' )
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
+{
+    $headmsg = 'Pin abgelaufen';
+}
+?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
 <html>
 <head>
 <link rel="stylesheet" href="/css/bframe.css" type="text/css">
-<?
+<?php
-if ($wartezeit>=0 && $_GET['auszahlen'] != 'true') {
+if ( $wartezeit>=0 && $_GET['auszahlen'] != 'true' )
-echo '
+{
-<meta http-equiv="refresh" content="'.$wartezeit.';url=topframe_text.php?art='.$_GET['art'].'&auszahlen=true&tan='.$text['tan'].'&puk='.$puk.'">
+    echo '<meta http-equiv="refresh" content="'.$wartezeit.';url=topframe_text.php?art='.$_GET['art'].'&auszahlen=true&tan=' . $kampdaten->tan . '&puk='.$puk.'">';
-';
 }
 ?>
 </head>
 <body bgcolor="#c0c0c0" topmargin="0" leftmargin="0">
 <table width="100%" cellpadding="0" cellspacing="0" border="0" align="left">
 <tr>
-<td align="left" width="50%"><b><?=$seitenname;?> ist fr den Inhalt nicht verantwortlich.</b></td>
+<td align="left" width="50%"><b><?php echo $pageconfig['seitenname']; ?> ist f&uuml;r den Inhalt nicht verantwortlich.</b></td>
-<td align="right" width="50%"><b><?=$headmsg;?></b>&nbsp;&nbsp;&nbsp;&nbsp;</td>
+<td align="right" width="50%"><b><?php echo $headmsg;?></b>&nbsp;&nbsp;&nbsp;&nbsp;</td>
 </tr>
 </table>
 </body>
No results found