<?php
$nickname = trim(mysql_escape_string(htmlspecialchars($_POST['nickname'])));
$nickname = str_replace('$', '$$', $nickname);
$reason = trim(mysql_escape_string(htmlspecialchars($_POST['reason'])));
$reason = str_replace('$', '$$', $reason);
$kick = intval($_POST['time']);

$q = mysql_query("SELECT `id` FROM `chat_users` WHERE `nickname` = '".$nickname."';");
if(mysql_num_rows($q) == 0)
{
echo "user  not Found.<br/>\n";
break;
}
else
{
$uid = mysql_result($q, 0);
}

if($uid == 1 && $id != 1)
{
echo "This user is the main  administrator.<br/>\n";
echo "Dnt hav previlage to do this.<br/>\n";
break;
}
if($uid == 2 && $id != 2)
{
echo "This user is the main  administrator.<br/>\n";
echo "Dnt hav previlage to do this.<br/>\n";
break;
}

if($kick == 0)
{
echo "cnt kick fr 0 secs!<br/>\n";
break;
}
if(empty($reason))
{
echo "Empty reason!<br/>\n";
break;
}
$q = mysql_query("SELECT `nickname` FROM `chat_users` WHERE `id` = '".$id."';");
$moder = mysql_result($q, 0);
$q = mysql_query("UPDATE `chat_users` SET `kick` = '".($kick + time())."', `reason` = '".$reason."', `moder` = '".$moder."' WHERE `nickname` = '".$nickname."';");
echo "$nickname kick fr $kick seconds!<br/>\n";

$date = date("d-m-y H:i:s");
$query = mysql_query("SELECT `nickname` FROM `chat_users` WHERE `id` = '".$id."';");
$moder = mysql_result($query, 0);
$q = mysql_query("INSERT INTO `chat_logs` VALUES(0, '".$moder."', 1, '".$nickname."', '".$reason."', '".$date."', ".time().");"); 
?>