Файл: phpfile/al.php
Строк: 198
<?
$query = "SELECT *
FROM `rukzak`WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `chit`='trava' and `odeto`='0'
" ;
$sql = mysql_query($query) or die(mysql_error()) ;
if (isset($_POST['him'])) //////блок самой алхимии
{
$count = sizeof($_POST) ;
$a = 0 ;
$r = array_values($_POST) ;
$tpm = 0 ;
$mpm = 0 ;
$hpm = 0 ;
while ($a <= $count)
{
if (isset($r[$a]))
{
if (is_numeric($r[$a]))
{
$query8 = "SELECT * FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `idrukzak`='" . mysql_real_escape_string($r[$a]) .
"' and `odeto`='0' and `chit`='trava'" ;
$sql8 = mysql_query($query8) or die(mysql_error()) ;
$row8 = mysql_fetch_assoc($sql8) ;
$k = mysql_num_rows($sql8) ;
if ($k == 0)
{
print "<center><div class="style_mess_no">Ошибка запроса!</div></center>" ;
exitt($row,$opredelenie) ;
}
$query = "SELECT * FROM `rostenia` WHERE `id`='" . mysql_real_escape_string($row8['tip']) .
"'" ;
$sql = mysql_query($query) or die(mysql_error()) ;
$row = mysql_fetch_assoc($sql) ;
$tpm += $row['tp'] ;
$mpm += $row['mp'] ;
$hpm += $row['hp'] ;
mysql_query("DELETE FROM `rukzak` WHERE `idrukzak` = '" .
mysql_real_escape_string($r[$a]) . "'and `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`=0 LIMIT 1") or die(mysql_error()) ;
}
;
}
;
$a++ ;
}
$query = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"'" ;
$sql = mysql_query($query) or die(mysql_error()) ;
$row = mysql_fetch_assoc($sql) ;
if($row['gild_apteka']==10){
$proc=((rand(1,50)/100)+1);
$tpm=round($tpm*$proc);
$mpm=round($mpm*$proc);
$hpm=round($hpm*$proc);}
$e = round($tpm * 1.3) ;
$e1 = round($hpm * 1.2) ;
$e2 = round($mpm * 1.1) ;
$cena = $e + $e1 + $e2 ;
$tz = mt_rand(1, 100) ;
$bonus = 0 ;
if ($row['polog'] == 'zamok')
{
$queryz = "SELECT * FROM `zamki` WHERE `klan`='" . mysql_real_escape_string($row['klan']) .
"' and `sewer`='" . mysql_real_escape_string($row['sevgorod']) .
"' and `wostok`='" . mysql_real_escape_string($row['wostokgorod']) . "' " ;
$sqlz = mysql_query($queryz) or die(mysql_error()) ;
if (mysql_num_rows($sqlz) == 1)
{
$rowz = mysql_fetch_assoc($sqlz) ;
$bonus = $rowz['alhimia'] ;
;
}
}
$r = 5 + (round(($row['alhimia'] + $bonus) / ($count - 1))) ;
if($pers_info['all_kraft']>time()){ $r=$r*($pers_info['all_kraft_par']/100+1);};
if ($r > 90)
{
$r = 90 ;
}
if($_SESSION['alhimik']==1){$r=$r*2;}
if ($r >= mt_rand(1, 100))
{
if($rowzakls[9]==0){
mysql_query( "UPdate `slava_pers` set `9`='1' WHERE `id_pers`='".$row['ID']."'") ;
$row['slava']+=300; $row['bank']+=200;
mysql_query( "UPdate `table1` set `slava`='".$row['slava']."',`bank`=".$row['bank']." WHERE `ID`='".$row['ID']."'") ;
$_SESSION['statusis']="Вы выполнили 9-е достижение";
;}
$r = mysql_query("select*from new_qwest_pers where name='" . $row['ID'] . "' and `5`='1' ");
if(mysql_num_rows($r)==1){
$rr=mysql_fetch_array($r);
$r2=mysql_query("select*from new_qwest_kolvo where name='".$row['ID']."' and qwest='5' and `kolvo`>'0'");
if(mysql_num_rows($r2)==1){
$rr2=mysql_fetch_array($r2);
}
$rr2['kolvo']--;$_SESSION['statusis']="Осталось создать ".$rr2['kolvo']." элей!<br>";
if($rr2['kolvo']<=0){
$_SESSION['statusis']="Вы создали 50 элей. Возращайтесь в гильдию!<br>";
mysql_query("update new_qwest_pers set `5`='2' where name='".$row['ID']."'");
;}mysql_query("update new_qwest_kolvo set kolvo='".$rr2['kolvo']."' where name='".$row['ID']."' and qwest='5'");
;}
$el = mt_rand(10000, 9999999) ;
mysql_query("INSERT INTO `tmp` ( `name`,`hp` , `mp` , `tp`,`apt`,`tip`, `cena` )
VALUES (
'" . mysql_real_escape_string($opredelenie) . "', '" . mysql_real_escape_string
($hpm) . "', '" . mysql_real_escape_string($mpm) . "', '" .
mysql_real_escape_string($tpm) . "', 'Эль','" . mysql_real_escape_string($el) .
"','" . mysql_real_escape_string($cena) . "'
)") or die(mysql_error()) ;
$elnaz = "Эль($hpm,$mpm,$tpm)" ;
mysql_query("INSERT INTO `rukzak` (`idrukzak`, `name` , `tip` , `nazvanie`,`try`,`time`,`sozdatel`,`lvl`,`chit`, `cena` )
VALUES ('','" . mysql_real_escape_string($opredelenie) . "', '" .
mysql_real_escape_string($el) . "', '" . mysql_real_escape_string($elnaz) .
"','','" . time() . "','" . mysql_real_escape_string($opredelenie) . "','','el','" . mysql_real_escape_string($cena) . "'
)") or die(mysql_error()) ;
print "<div class="chat_conteiner">Вы создали:<br>
$elnaz<br><a href=88.php?go=allab&plavit=00 style=color:green>Создать Эль</a>" ;
$querypp = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"'" ;
$sqlpp = mysql_query($querypp) or die(mysql_error()) ;
$rowpp = mysql_fetch_assoc($sqlpp) ;
$nt=4;
if($row['alhimia']>100){$nt=$row['alhimia']/25;}
$r1 = $row['alhimia'] / (($count - 1) * 5) + $nt ;
if($row['alhimia']>100){$nt=$row['alhimia']/10;}
if($_SESSION['alhimik']==1){$r1=$r1/2;}
$rtt1 = rand(1, $r1) ;
if ($rtt1 == 1)
{
$opitstar = $row['alhimia'] * 100 ;
$obshopit = $row['obshopit'] + $opitstar ;
$tekopit = $row['tekopit'] + $opitstar ;
print "<br>Вы повысили ваш навык <br><font color=red><b>Алхимии +1! Вы получили " .
htmlspecialchars($opitstar) . " опыта!</b></font>" ;
$row['alhimia']++ ;
$query = "UPDATE `table1` SET `alhimia`='" . mysql_real_escape_string($row['alhimia']) .
"',`obshopit`='" . mysql_real_escape_string($obshopit) . "',`tekopit`='" .
mysql_real_escape_string($tekopit) . "' WHERE `name`='" .
mysql_real_escape_string($opredelenie) . "' LIMIT 1 ;" ;
mysql_query($query) ;
$sql = mysql_query($query) or die(mysql_error()) ;
}
echo('</div>');
;
}
else
{
print "<center><div class="style_mess_no">Вы не смогли создать Эль!<br><a href=88.php?go=allab&plavit=00 style=color:green>Создать Эль</a></div></center>" ;
exitt($row,$opredelenie) ;
}
;
}
else
{
$count = sizeof($_POST) ;
if (($count - 1) > 40)
{
print "<center><div class="style_mess_no">Вы выбрали более 40 травы!<br><a href=88.php?go=allab style=color:green>Лаболатория</a></div></center>" ;
exitt($row,$opredelenie) ;
}
if ($count <= 1)
{
print "<center><div class="style_mess_no">Вы нечего не выбрали!<br><a href=88.php?go=allab&plavit=00 style=color:green>Создать Эль</a></div></center>" ;
exitt($row,$opredelenie) ;
}
print '<div class="chat_conteiner">Для создания эля вы выбрали вы выбрали:<br>' ;
//////////////////////////////////////////////////////////
$query1 = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"'" ;
$sql1 = mysql_query($query1) or die(mysql_error()) ;
$row1 = mysql_fetch_assoc($sql1) ;
/////////////////////////////////////////////////////////////////////////////
$bonus = 0 ;
if ($row['polog'] == 'zamok')
{
$queryz = "SELECT * FROM `zamki` WHERE `klan`='" . mysql_real_escape_string($row['klan']) .
"' and `sewer`='" . mysql_real_escape_string($row['sevgorod']) .
"' and `wostok`='" . mysql_real_escape_string($row['wostokgorod']) . "' " ;
$sqlz = mysql_query($queryz) or die(mysql_error()) ;
if (mysql_num_rows($sqlz) == 1)
{
$rowz = mysql_fetch_assoc($sqlz) ;
$bonus = $rowz['alhimia'] ;
;
}
}
$sans=$row1['alhimia']+$bonus;
$rt='';
$sans = round($sans / ($count - 1)) ;
//////////////////////////////
$a = 0 ;
$r = array_values($_POST) ;
print "<form name=form1 action=88.php?go=allab&plavit=0 method=post>" ;
while ($a <= $count)
{
if (isset($r[$a]))
{
if (is_numeric($r[$a]))
{
$query8 = "SELECT * FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `idrukzak`='" . mysql_real_escape_string($r[$a]) .
"' and `odeto`='0' and `chit`='trava'" ;
$sql8 = mysql_query($query8) or die(mysql_error()) ;
$row8 = mysql_fetch_assoc($sql8) ;
print "<input type=hidden name=$a value=" . htmlspecialchars($r[$a]) .
" /> <font color=red>" . htmlspecialchars($row8['nazvanie']) . "</font>," ;
}
;
}
;
$a++ ;
}
if($pers_info['all_kraft']>time()){
$sans=$sans*($pers_info['all_kraft_par']/100+1);};
if($_SESSION['alhimik']==1){$sans=$sans*2;}
if ($sans > 90)
{
$sans = 90 ;
}
print "<br>Шанс на удачную элексира $sans %</div><li><input class=select name=him type=submit value=Создать?></li>" ;
;
}
?>