Location: PHPKode > projects > MGB OpenSource Guestbook > admin/spam.inc.php
<?php
	/*
	MGB 0.6.x - OpenSource PHP and MySql Guestbook
	Copyright (C) 2004 - 2011 Juergen Grueneisl - http://www.m-gb.org/

	This program is free software; you can redistribute it and/or modify
	it under the terms of the GNU General Public License as published by
	the Free Software Foundation; either version 2 of the License, or
	(at your option) any later version.

	This program is distributed in the hope that it will be useful,
	but WITHOUT ANY WARRANTY; without even the implied warranty of
	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	GNU General Public License for more details.

	You should have received a copy of the GNU General Public License
	along with this program; if not, write to the Free Software
	Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
	*/

	// ============ //
	// spam.inc.php //
	// ============ //
	//
	// ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ //
	
	// make sure nobody has direct access to this script
	if (!defined('ADMINISTRATION'))
		{
		include ("error.html");
		die();
		}
	else
		{
		if(check_rights($_GET['action'], $_SESSION['ID']))
			{
			// load config, settings and language files
			require ("../includes/config.inc.php");
			require ("../includes/load_settings.inc.php");
			require ("../language/".$settings['language_path']."/lang_admin.php");
			// load templates
			$content_spam = mgb_load_template("admin", "default", "spam");

			// set number of site to "1" if it is "0"
			if(!isset($_GET['p'])) { $_GET['p'] = 1; }

			$_POST['dropbox'] = cleanstr($_POST['dropbox']);

			if(isset($_POST['dropbox']) AND $_POST['dropbox'] == 1) // Delete all spam entries
				{
				mgb_sql_connect("TRUNCATE ".$db['prefix']."spam", "Error while deleting all spam entries.", 0);
				}
			elseif(isset($_POST['dropbox']) AND $_POST['dropbox'] == 2) // No spam but let them deactivated
				{
				$result = mgb_sql_connect("SELECT * FROM ".$db['prefix']."spam", "Error while loading entries from ".$db['prefix']."spam.", 1);
				for($i = 0; $i < mysql_num_rows($result); $i++)
					{
					$spam_entry[$i] = mysql_fetch_array($result);
					// store entries in entries table
					mgb_sql_connect("INSERT INTO ".$db['prefix']."entries (
										name,
										city,
										email,
										icq,
										aim,
										msn,
										hp,
										message,
										comment,
										ip,
										timestamp,
										user_notification,
										user_show_email,
										checked,
										isspam
										) values (
										'".$spam_entry[$i]['name']."',
										'".$spam_entry[$i]['city']."',
										'".$spam_entry[$i]['email']."',
										'".$spam_entry[$i]['icq']."',
										'".$spam_entry[$i]['aim']."',
										'".$spam_entry[$i]['msn']."',
										'".$spam_entry[$i]['hp']."',
										'".$spam_entry[$i]['message']."',
										'',
										'".$spam_entry[$i]['ip']."',
										'".$spam_entry[$i]['timestamp']."',
										'".$spam_entry[$i]['user_notification']."',
										'".$spam_entry[$i]['user_show_email']."',
										'0',
										'0'
										)", "Error while saving data into ".$db['prefix']."entries", 0);
					}
				// delete all entries from spam table
				mgb_sql_connect("TRUNCATE ".$db['prefix']."spam", "Error while deleting all spam entries.", 0);
				}
			elseif(isset($_POST['dropbox']) AND $_POST['dropbox'] == 3) // No spam and activate them
				{
				$result = mgb_sql_connect("SELECT * FROM ".$db['prefix']."spam", "Error while loading entries from ".$db['prefix']."spam.", 1);
				for($i = 0; $i < mysql_num_rows($result); $i++)
					{
					$spam_entry[$i] = mysql_fetch_array($result);
					// store entries in entries table
					mgb_sql_connect("INSERT INTO ".$db['prefix']."entries (
										name,
										city,
										email,
										icq,
										aim,
										msn,
										hp,
										message,
										comment,
										ip,
										timestamp,
										user_notification,
										user_show_email,
										checked,
										isspam
										) values (
										'".$spam_entry[$i]['name']."',
										'".$spam_entry[$i]['city']."',
										'".$spam_entry[$i]['email']."',
										'".$spam_entry[$i]['icq']."',
										'".$spam_entry[$i]['aim']."',
										'".$spam_entry[$i]['msn']."',
										'".$spam_entry[$i]['hp']."',
										'".$spam_entry[$i]['message']."',
										'',
										'".$spam_entry[$i]['ip']."',
										'".$spam_entry[$i]['timestamp']."',
										'".$spam_entry[$i]['user_notification']."',
										'".$spam_entry[$i]['user_show_email']."',
										'1',
										'0'
										)", "Error while saving data into ".$db['prefix']."entries", 0);
					}
				// delete all entries from spam table
				mgb_sql_connect("TRUNCATE ".$db['prefix']."spam", "Error while deleting all spam entries.", 0);
				}
			elseif(isset($_POST['dropbox']) AND $_POST['dropbox'] == 4) // Put all IPs on banlist
				{
				$entry_counter = 0;
				$result = mgb_sql_connect("SELECT ip, timestamp FROM ".$db['prefix']."spam", "Error while loading ips from ".$db['prefix']."spam.", 1);
				for($j = 0; $j < mysql_num_rows($result); $j++)
					{
					$spam_entry[$j] = mysql_fetch_array($result);
					$counter = 0;
					$banned_ips = mgb_sql_connect("SELECT banned_ip FROM ".$db['prefix']."banlist_ips", "Error while loading banned ips from ".$db['prefix']."banlist_ips.", 1);
					for($i = 0; $i < mysql_num_rows($banned_ips); $i++)
						{
						$ips[$i] = mysql_fetch_array($banned_ips);
						// put ip on ip banlist if it is not already in there
						if($spam_entry[$j]['ip'] == $ips[$i]['banned_ip'])
							{
							$counter++;
							}
						}
					if($counter == 0)
						{
						mgb_sql_connect("INSERT INTO ".$db['prefix']."banlist_ips ( ID , banned_ip , timestamp ) VALUES ( NULL , '".$spam_entry[$j]['ip']."' , '".$spam_entry[$j]['timestamp']."' );", "Error while saving data into ".$db['prefix']."banlist_ips", 0);
						$entry_counter++;
						}
					elseif($counter >= 2)
						{
						echo "Mehrfacher Eintrag: ".$spam_entry[$j]['ip']." !!<br>";
						}
					// delete all entries from spam table
					// mgb_sql_connect("TRUNCATE ".$db['prefix']."spam", "Error while deleting all spam entries.", 0);
					}
				if($entry_counter > 0)
					{
					echo $entry_counter." IPs wurden aktualisiert!";
					}
				}
			elseif(isset($_POST['dropbox']) AND $_POST['dropbox'] == 5) // Put all emails on banlist
				{
				$entry_counter = 0;
				$result = mgb_sql_connect("SELECT email, timestamp FROM ".$db['prefix']."spam", "Error while loading emails from ".$db['prefix']."spam.", 1);
				for($j = 0; $j < mysql_num_rows($result); $j++)
					{
					$spam_entry[$j] = mysql_fetch_array($result);
					$counter = 0;
					$banned_emails = mgb_sql_connect("SELECT banned_email FROM ".$db['prefix']."banlist_emails", "Error while loading banned emails from ".$db['prefix']."banlist_emails.", 1);
					for($i = 0; $i < mysql_num_rows($banned_emails); $i++)
						{
						$emails[$i] = mysql_fetch_array($banned_emails);
						// put email on email banlist if it is not already in there
						if($spam_entry[$j]['email'] == $emails[$i]['banned_email'])
							{
							$counter++;
							}
						}
					if($counter == 0)
						{
						mgb_sql_connect("INSERT INTO ".$db['prefix']."banlist_emails ( ID , banned_email , timestamp ) VALUES ( NULL , '".$spam_entry[$j]['email']."' , '".$spam_entry[$j]['timestamp']."' );", "Error while saving data into ".$db['prefix']."banlist_emails", 0);
						$entry_counter++;
						}
					elseif($counter >= 2)
						{
						echo "Mehrfacher Eintrag: ".$spam_entry[$j]['email']." !!<br>";
						}
					// delete all entries from spam table
					// mgb_sql_connect("TRUNCATE ".$db['prefix']."spam", "Error while deleting all spam entries.", 0);
					}
				if($entry_counter > 0)
					{
					echo $entry_counter." eMails wurden aktualisiert!";
					}
				}
			elseif(isset($_POST['dropbox']) AND $_POST['dropbox'] == 6) // Put all domains on banlist
				{
				$entry_counter = 0;
				$result = mgb_sql_connect("SELECT email, timestamp FROM ".$db['prefix']."spam", "Error while loading emails from ".$db['prefix']."spam.", 1);
				for($j = 0; $j < mysql_num_rows($result); $j++)
					{
					$spam_entry[$j] = mysql_fetch_array($result);
					$counter = 0;
					$user_domain = $spam_entry[$j]['email'];
					$user_domain = explode("@", $user_domain);
					$banned_domains = mgb_sql_connect("SELECT banned_domain FROM ".$db['prefix']."banlist_domains", "Error while loading banned domains from ".$db['prefix']."banlist_domains.", 1);
					for($i = 0; $i < mysql_num_rows($banned_domains); $i++)
						{
						$domains[$i] = mysql_fetch_array($banned_domains);
						// put domain on domain banlist if it is not already in there
						if($user_domain[1] == $domains[$i]['banned_domain'])
							{
							$counter++;
							}
						}
					if($counter == 0)
						{
						mgb_sql_connect("INSERT INTO ".$db['prefix']."banlist_domains ( ID , banned_domain , timestamp ) VALUES ( NULL , '".$user_domain[1]."' , '".$spam_entry[$j]['timestamp']."' );", "Error while saving data into ".$db['prefix']."banlist_emails", 0);
						$entry_counter++;
						}
					elseif($counter >= 2)
						{
						echo "Mehrfacher Eintrag: ".$user_domain[1]." !!<br>";
						}
					// delete all entries from spam table
					// mgb_sql_connect("TRUNCATE ".$db['prefix']."spam", "Error while deleting all spam entries.", 0);
					}
				if($entry_counter > 0)
					{
					echo $entry_counter." Domains wurden aktualisiert!";
					}
				}

			if(isset($_GET['id']))
				{
				if(isset($_GET['spam_action']))
					{
					if($_GET['spam_action'] == 'delete')
						{
						mgb_sql_connect("DELETE FROM `".$db['prefix']."spam` WHERE ID=".$_GET['id']." LIMIT 1", "Error while deleting a single spam entry.", 0);
						}
					elseif($_GET['spam_action'] == 'nospam_deactivate')
						{
						$result = mgb_sql_connect("SELECT name, city, email, icq, aim, msn, hp, message, ip, timestamp, user_notification, user_show_email FROM ".$db['prefix']."spam WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while loading an entry from spam table", 1);
						while ($spam_entry = mysql_fetch_array($result))
							{
							mgb_sql_connect("INSERT INTO ".$db['prefix']."entries (
												name,
												city,
												email,
												icq,
												aim,
												msn,
												hp,
												message,
												comment,
												ip,
												timestamp,
												user_notification,
												user_show_email,
												checked,
												isspam
												) values (
												'".$spam_entry['name']."',
												'".$spam_entry['city']."',
												'".$spam_entry['email']."',
												'".$spam_entry['icq']."',
												'".$spam_entry['aim']."',
												'".$spam_entry['msn']."',
												'".$spam_entry['hp']."',
												'".$spam_entry['message']."',
												'',
												'".$spam_entry['ip']."',
												'".$spam_entry['timestamp']."',
												'".$spam_entry['user_notification']."',
												'".$spam_entry['user_show_email']."',
												'0',
												'0'
												)", "Error while saving data into ".$db['prefix']."entries", 0);
							}
						// delete the entry from spam table
						mgb_sql_connect("DELETE FROM `".$db['prefix']."spam` WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while deleting an entry from spam table.", 0);
						}
					elseif($_GET['spam_action'] == 'nospam')
						{
						$result = mgb_sql_connect("SELECT name, city, email, icq, aim, msn, hp, message, ip, timestamp, user_notification, user_show_email FROM ".$db['prefix']."spam WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while loading an entry from spam table", 1);
						while ($spam_entry = mysql_fetch_array($result))
							{
							mgb_sql_connect("INSERT INTO ".$db['prefix']."entries (
												name,
												city,
												email,
												icq,
												aim,
												msn,
												hp,
												message,
												comment,
												ip,
												timestamp,
												user_notification,
												user_show_email,
												checked,
												isspam
												) values (
												'".$spam_entry['name']."',
												'".$spam_entry['city']."',
												'".$spam_entry['email']."',
												'".$spam_entry['icq']."',
												'".$spam_entry['aim']."',
												'".$spam_entry['msn']."',
												'".$spam_entry['hp']."',
												'".$spam_entry['message']."',
												'',
												'".$spam_entry['ip']."',
												'".$spam_entry['timestamp']."',
												'".$spam_entry['user_notification']."',
												'".$spam_entry['user_show_email']."',
												'1',
												'0'
												)", "Error while saving data into ".$db['prefix']."entries", 0);
							}
						// delete the entry from spam table
						mgb_sql_connect("DELETE FROM `".$db['prefix']."spam` WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while deleting an entry from spam table.", 0);
						}
					elseif($_GET['spam_action'] == 'add_to_permanent_ip_banlist')
						{
						$result = mgb_sql_connect("SELECT ip, timestamp FROM ".$db['prefix']."spam WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while loading IP from spam table", 1);
						while ($spam_entry = mysql_fetch_array($result))
							{
							$banned_ips = mgb_sql_connect("SELECT banned_ip FROM ".$db['prefix']."banlist_ips", "Error while loading banned ips from ".$db['prefix']."banlist_ips.", 1);
							for($i = 0; $i < mysql_num_rows($banned_ips); $i++)
								{
								$ips[$i] = mysql_fetch_array($banned_ips);
								// put ip on ip banlist if it is not already in there
								if($spam_entry['ip'] == $ips[$i]['banned_ip'])
									{
									$counter++;
									}
								}
							if($counter == 0)
								{
								mgb_sql_connect("INSERT INTO ".$db['prefix']."banlist_ips ( ID, banned_ip, timestamp ) values ( NULL, '".$spam_entry['ip']."', '".$spam_entry['timestamp']."' )", "Error while saving data into ".$db['prefix']."banlist_ips", 0);
								echo $spam_entry['ip']." wurde zur IPliste hinzugef&uuml;gt!";
								}
							}
						// delete the entry from spam table
						// mgb_sql_connect("DELETE FROM `".$db['prefix']."spam` WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while deleting an entry from spam table.", 0);
						}
					elseif($_GET['spam_action'] == 'add_to_permanent_email_banlist')
						{
						$result = mgb_sql_connect("SELECT email, timestamp FROM ".$db['prefix']."spam WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while loading email from spam table", 1);
						while ($spam_entry = mysql_fetch_array($result))
							{
							$banned_emails = mgb_sql_connect("SELECT banned_email FROM ".$db['prefix']."banlist_emails", "Error while loading banned emails from ".$db['prefix']."banlist_emails.", 1);
							for($i = 0; $i < mysql_num_rows($banned_emails); $i++)
								{
								$emails[$i] = mysql_fetch_array($banned_emails);
								// put email on email banlist if it is not already in there
								if($spam_entry['email'] == $emails[$i]['banned_email'])
									{
									$counter++;
									}
								}
							if($counter == 0)
								{
								mgb_sql_connect("INSERT INTO ".$db['prefix']."banlist_emails ( ID, banned_email, timestamp ) values ( NULL, '".$spam_entry['email']."', '".$spam_entry['timestamp']."' )", "Error while saving data into ".$db['prefix']."banlist_emails", 0);
								echo $spam_entry['email']." wurde zur E-Mailliste hinzugef&uuml;gt!";
								}
							}
						// delete the entry from spam table
						// mgb_sql_connect("DELETE FROM `".$db['prefix']."spam` WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while deleting an entry from spam table.", 0);
						}
					elseif($_GET['spam_action'] == 'add_to_permanent_domain_banlist')
						{
						$result = mgb_sql_connect("SELECT email, timestamp FROM ".$db['prefix']."spam WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while loading email from spam table", 1);
						while ($spam_entry = mysql_fetch_array($result))
							{
							$user_domain = explode("@", $spam_entry['email']);
							$banned_domains = mgb_sql_connect("SELECT banned_domain FROM ".$db['prefix']."banlist_domains", "Error while loading banned domains from ".$db['prefix']."banlist_domains.", 1);
							for($i = 0; $i < mysql_num_rows($banned_domains); $i++)
								{
								$domains[$i] = mysql_fetch_array($banned_domains);
								// put domain on domain banlist if it is not already in there
								if($user_domain[1] == $domains[$i]['banned_domain'])
									{
									$counter++;
									}
								}
							if($counter == 0)
								{
								mgb_sql_connect("INSERT INTO ".$db['prefix']."banlist_domains ( ID, banned_domain, timestamp ) values ( NULL, '".$user_domain[1]."', '".$spam_entry['timestamp']."' )", "Error while saving data into ".$db['prefix']."banlist_domains", 0);
								echo $user_domain[1]." wurde zur Domainliste hinzugef&uuml;gt!";
								}
							}
						// delete the entry from spam table
						// mgb_sql_connect("DELETE FROM `".$db['prefix']."spam` WHERE ID=".secure_value($_GET['id'])." LIMIT 1", "Error while deleting an entry from spam table.", 0);
						}
					}

				// send an email to user
				if(isset($_GET['notify']) AND $_GET['notify'] == 1)
					{
					$result = mgb_sql_connect("SELECT name, email, message FROM ".$db['prefix']."entries WHERE id=".secure_value($_GET['id'])." LIMIT 1", "Error while getting information about the user to send an email.", 1);
					$data = mysql_fetch_array($result);
					$name = $data['name'];
					$email = $data['email'];
					$message = $data['message'];
					
					$date = date("d"."/"."m"."/"."Y");
					$time = date("H".":"."i");
				
					$url_to_gb = "http://".$settings['h_domain'].$settings['gb_path']."index.php";
					
					$lang['sendmail_user_notification_title'] = format_mail(repl_uml($lang['sendmail_user_notification_title'], $charset), $name, $date, $time, xhtmlbr2nl($message), $settings['h_domain'], $url_to_gb, "", "", "", "", "", "");
					$settings['sendmail_user_notification_text'] = format_mail(repl_uml($settings['sendmail_user_notification_text'], $charset), $name, $date, $time, xhtmlbr2nl($message), $settings['h_domain'], $url_to_gb, "", "", "", "", "", "");
				
					$mail_header = "content-type: text/plain; charset=".$charset."\n";
					$mail_header .= "from: ".$settings['admin_gbemail'];
					
					if (!empty($email))
						{
						if(@mail($email, $lang['sendmail_user_notification_title'], $settings['sendmail_user_notification_text'], $mail_header))
							{
							$sendemail_successfull = 1;
							}
						else
							{
							$sendemail_successfull = 0;
							}
						}
					}
				}

			// get total number of entries
			$results = mgb_sql_connect("SELECT COUNT(ID) FROM ".$db['prefix']."spam", "Error while counting spam entries.", 1);
			$total = @mysql_result($results, 0); 

			// compute how many pages there are
			$p = ($total / 20);

			if ($p <= 1)
				{
				$p = 0;
				if ($total > 1)
					{
					$how_many_entries = "<span class=\"admin\">".$total."&nbsp;".$lang['entries']."</span>";
					}
				elseif ($total == 0)
					{
					$how_many_entries = "<span class=\"admin\">".$lang['no_spam_entries']."</span>";
					}
				else
					{
					$how_many_entries = "<span class=\"admin\">".$total."&nbsp;".$lang['entry']."</span>";
					}
				}
			else
				{
				$p = ceil($p);
				$how_many_entries = "<span class=\"admin\">".$total."&nbsp;".$lang['entries_on_pages']."</span>";
				}
			
			$load_start = ($_GET['p'] * 20) - 20;
			$load_end = 20;

			$pages_total = ceil($p);

			if ($_GET['p'] == 1)
				{
				$sf_forwards = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=".($_GET['p'] + 1).$sid."\" title=\"".$lang['page_forwards']."\">".$lang['page_forwards_symbol']."</a>";
				$sf_pagenumber = $_GET['p'];
				if ($pages_total >= 3 )
					{
					$sf_last = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=".$pages_total."\" title=\"".$lang['page_last']."\">".$lang['page_last_symbol']."</a>";
					}
				}

			if ($_GET['p'] > 1)
				{
				if (($pages_total >= 3) AND ($_GET['p'] > 2))
					{
					$sf_first = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=1".$sid."\" title=\"".$lang['page_first']."\">".$lang['page_first_symbol']."</a>";
					}
				$sf_backwards = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=".($_GET['p'] - 1).$sid."\" title=\"".$lang['page_backwards']."\">".$lang['page_backwards_symbol']."</a>";
				$sf_pagenumber = $_GET['p'];
				$sf_forwards = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=".($_GET['p'] + 1).$sid."\" title=\"".$lang['page_forwards']."\">".$lang['page_forwards_symbol']."</a>";
				if (($pages_total >= 3) AND ($_GET['p'] < ($pages_total - 1)))
					{
					 $sf_last = "&nbsp;<a class=\"admin\" href=\"admin.php?action=spam&amp;p=".$pages_total.$sid."\" title=\"".$lang['page_last']."\">".$lang['page_last_symbol']."</a>";
					}
				}

			if ($_GET['p'] == $pages_total)
				{
				if ($pages_total >= 3)
					{
					$sf_first = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=1".$sid."\" title=\"".$lang['page_first']."\">".$lang['page_first_symbol']."</a>";
					}
				$sf_backwards = "<a class=\"admin\" href=\"admin.php?action=spam&amp;p=".($_GET['p'] - 1).$sid."\" title=\"".$lang['page_backwards']."\">".$lang['page_backwards_symbol']."</a>";
				$sf_pagenumber = $_GET['p'];
				$sf_forwards = "";
				}

			if ($pages_total <= 0)
				{
				$content_scrolling_function = "<br><br>";
				}

			// load guestbook entries
			$result = mgb_sql_connect("SELECT ID, name, message, ip, email, hp, comment, timestamp, counter FROM ".$db['prefix']."spam ORDER BY counter DESC LIMIT $load_start, $load_end", "Error while loading guestbook entries.", 1);

			$counter = 0;

			for($i = 0; $i < mysql_num_rows($result); $i++)
				{
				$entry[$i] = mysql_fetch_array($result);
				$counter++;
				}

			if ($counter <= 1)
				{
				if ($_GET['p'] == 1)
					{
					$add_page_nr = NULL;
					}
				else
					{
					$add_page_nr = "&amp;p=".($_GET['p'] - 1);
					}
				}
			else
				{
				$add_page_nr = "&amp;p=".$_GET['p'];
				}

			// fill entry template with content
			require ("../includes/functions.inc.php");

			if(!isset($entry)) { $entry = NULL; }

			for($i = 0; $i < count($entry); $i++)
				{
				$page_entry[$i] = $content_spam;

				if($entry[$i]['ip'] == NULL) { $entry[$i]['ip'] = "-"; }
				if($entry[$i]['comment'] == NULL) { $entry[$i]['comment'] = "-"; }

				// wordwrap: if message contains words longer than $settings['wordwrap'] they will
				// be broken into two or more strings. If $settings['wordwrap'] == 0, function is off
				// this method taken from http://de.php.net/manual/en/function.wordwrap.php#64517
				// will luckily not affect html tags

				$entry[$i]['message'] = textWrap($entry[$i]['message'], 45);
				$entry[$i]['comment'] = textWrap($entry[$i]['comment'], 45);

				// convert bbcodes
				$entry[$i]['message'] = bbcode_format($entry[$i]['message'], "adminpanel");
				$entry[$i]['comment'] = bbcode_format($entry[$i]['comment'], "adminpanel");

				// fill template with entry (strings)
				$page_entry[$i] = template("ENTRY_COUNTER", $entry[$i]['counter'], $page_entry[$i]);

				$time_in_list = time() - $entry[$i]['timestamp'];
				if($time_in_list <= 7200)
					{
					$time_in_list = $time_in_list / 60;
					$timecode = "&nbsp;".$lang['time_minutes'];
					}
				elseif($time_in_list <= 86400)
					{
					$time_in_list = $time_in_list / 3600;
					$timecode = "&nbsp;".$lang['time_hours'];
					}
				elseif($time_in_list <= 2592000)
					{
					$time_in_list = $time_in_list / 86400;
					$timecode = "&nbsp;".$lang['time_days'];
					}
				elseif($time_in_list <= 31104000)
					{
					$time_in_list = $time_in_list / 2592000;
					$timecode = "&nbsp;".$lang['time_months'];
					}
				elseif($time_in_list > 31104000)
					{
					$time_in_list = $time_in_list / 1;
					$timecode = "&nbsp;".$lang['time_years'];
					}

				if ($entry[$i]['counter'] >= 3)
					{
					$page_entry[$i] = template("ENTRY_NAME", "<span style='color: #ff0000'>".substr($entry[$i]['name'], 0, 20)."<br><br>{LANG_USER_BLOCKED}</span><br><br>Letzter Kontakt vor:<br>".ceil($time_in_list).$timecode, $page_entry[$i]);
					}
				else
					{
					$page_entry[$i] = template("ENTRY_NAME", substr($entry[$i]['name'], 0, 20)."<br><br>Letzter Kontakt vor:<br>".ceil($time_in_list).$timecode, $page_entry[$i]);
					}

				if(strlen($entry[$i]['hp']) > 50)
					{
					$entry[$i]['hp'] = substr($entry[$i]['hp'], 0, 50)." ... (gek&uuml;rzt)";
					}

				// get domain of entry
				$entry_domain = explode("@", $entry[$i]['email']);

				$page_entry[$i] = template("ENTRY_MESSAGE", $entry[$i]['message'], $page_entry[$i]);
				$page_entry[$i] = template("ENTRY_IP", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=add_to_permanent_ip_banlist".$add_page_nr.$sid."\" onClick=\"return confirm('{LANG_CONFIRM_ADD_TO_PERMANENT_IP_BLOCKLIST}'); submit();\" title=\"".$lang['spam_add_to_ip_banlist']."\">".$entry[$i]['ip']."</a>", $page_entry[$i]);
				$page_entry[$i] = template("ENTRY_EMAIL", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=add_to_permanent_email_banlist".$add_page_nr.$sid."\" onClick=\"return confirm('{LANG_CONFIRM_ADD_TO_PERMANENT_EMAIL_BLOCKLIST}'); submit();\"title=\"".$lang['spam_add_to_email_banlist']."\">".$entry[$i]['email']."</a>", $page_entry[$i]);
				$page_entry[$i] = template("ENTRY_DOMAIN", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=add_to_permanent_domain_banlist".$add_page_nr.$sid."\" onClick=\"return confirm('{LANG_CONFIRM_ADD_TO_PERMANENT_EMAIL_BLOCKLIST}'); submit();\"title=\"".$lang['spam_add_to_domain_banlist']."\">".$entry_domain[1]."</a>", $page_entry[$i]);
				$page_entry[$i] = template("ENTRY_HP", $entry[$i]['hp'], $page_entry[$i]);
				$page_entry[$i] = template("ENTRY_COMMENT", $entry[$i]['comment'], $page_entry[$i]);
				$page_entry[$i] = template("LANG_QUOTE", $lang['quote'], $page_entry[$i]);
				$page_entry[$i] = template("DELETE", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=delete".$add_page_nr.$sid."\" onClick=\"return confirm('{LANG_CONFIRM_DELETE}'); submit();\"><img class=\"icon\" src=\"templates/default/images/delete.png\" title=\"".$lang['delete_entry']."\" alt=\"".$lang['delete_entry']."\"></a>", $page_entry[$i]);
				$page_entry[$i] = template("SPAM_ADD_TO_BLOCKLISTS", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=spam_add_to_blocklists".$add_page_nr.$sid."\"><img class=\"icon\" src=\"templates/default/images/spam.png\" title=\"".$lang['spam_add_to_blocklists']."\" alt=\"".$lang['spam_add_to_blocklists']."\"></a>", $page_entry[$i]);
				$page_entry[$i] = template("NO_SPAM_DEACTIVATE", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=nospam_deactivate".$add_page_nr.$sid."\"><img class=\"icon\" src=\"templates/default/images/nospam2.png\" title=\"".$lang['nospam_deactivate_entry']."\" alt=\"".$lang['nospam_deactivate_entry']."\"></a>", $page_entry[$i]);
				$page_entry[$i] = template("NO_SPAM", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=nospam&amp;notify=".$entry[$i]['user_notification'].$add_page_nr.$sid."\"><img class=\"icon\" src=\"templates/default/images/nospam.png\" title=\"".$lang['nospam_entry']."\" alt=\"".$lang['nospam_entry']."\"></a>", $page_entry[$i]);
				$page_entry[$i] = template("REPORT_AS_NO_SPAM", "<a href=\"admin.php?action=spam&amp;id=".$entry[$i]['ID']."&amp;spam_action=report&amp;notify=".$entry[$i]['user_notification'].$add_page_nr.$sid."\"><img class=\"icon\" src=\"templates/default/images/report.png\" title=\"".$lang['report_entry']."\" alt=\"".$lang['report_entry']."\"></a>", $page_entry[$i]);

				if(!isset($page_include)) { $page_include = NULL; }
				$page_include .= $page_entry[$i];
				}
			}
		else
			{
			$page_include = "<span class=\"admin\">".$lang['errormessage4']."</span>";
			$content_scrolling_function = "<br>";
			}
		}
?>
Return current item: MGB OpenSource Guestbook