Hỏiai fix giùm cái chatbox này vs

<?php
define('_IN_JOHNCMS', 1);
$rootpath = '';
require('incfiles/core.php');
if (isset($_POST['msg'])) {
   $msg = isset($_POST['msg']) ? mb_substr(trim($_POST['msg']), 0, 5000) : '';
   $flood = functions::antiflood();
   if ($ban['1'] || $ban['13'])
       $error[] = $lng['access_forbidden'];
   if ($flood)
       $error = $lng['error_flood'] . ' ' . $flood . '&#160;' . $lng['seconds'];
   if (!$error) {
       $req = mysql_query("SELECT * FROM `guest` WHERE `user_id` = '$user_id' ORDER BY `time` DESC");
       $res = mysql_fetch_array($req);
       if ($res['text'] == $msg) {
           exit;
       }
$ban = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_ban_users` WHERE `user_id` = '" . $datauser['id'] . "' AND `ban_time` > '" . time() . "'"), 0);
if($ban > 0){
  exit;
}
   }
 
    // Вставляем сообщение в базу
 
if($user_id){
if($loai ==0){
//--BOT AUTO--//
include 'converse/bot.php';
include 'converse/ban.php';
include 'converse/botavatar.php';
include 'converse/thayphan.php';
include 'converse/showinfo.php';
include 'converse/botchat.php';
include 'converse/simsim.php';
//--DEL CHAT--//
/*Mod auto xóa chatbox by pkoolvn*/
$idbot=256;
if($rights>=5 || $datauser['id'] == 4963) {
if(preg_match('|#xoa|',$msg) || preg_match('|#pkoolvn|',$msg) || preg_match("|#del|",$msg)) {
 
mysql_query("DELETE FROM `guest`");
 
mysql_query("UPDATE `users` SET `total_on_site` = '$totalonsite', `lastdate` = " . time() . " WHERE `id` = '$idbot'");
}
}
mysql_query("INSERT INTO `guest` SET `user_id`='".$user_id."', `text`='" . mysql_real_escape_string($msg) . "', `time`='".time()."'");
if($datauser['kichhoat'] == 1){
$idbot = 100;
//mod nhan qua by pkoolvn//
if(preg_match('|67654367666665|',$msg) || preg_match('|uuyfgjhffhhffdguhvcddghhf|',$msg) || preg_match("|pjh53256666|",$msg)) {
$timeset = time() + 24 * 3600;
if($datauser['timenhanqua'] < time()){
$bot = "Chúc mừng @$login nhận được 1 hộp quà noel vào vật phẩm để mở hộp quà";
mysql_query("UPDATE `users` SET `timenhanqua` = '{$timeset}', `hopqua`=`hopqua`+1 WHERE `id` = '{$datauser['id']}'");
} else {
$bot = "@$login bạn đã nhận quà 24h sau khi nhận mới nhận được tiếp";
}
$bot=html_entity_decode($bot,ENT_QUOTES,'UTF-8');
$time = time()+10;
mysql_query("INSERT INTO `guest` SET
`adm` = '$admset',
`time` = '$time',
`user_id` = '$idbot',
`name` = 'Puaru',
`text` = '" . mysql_real_escape_string($bot) . "',
`ip` = '60543201',
`browser` = 'Iphone 4'
");
mysql_query("UPDATE `users` SET `total_on_site` = '$totalonsite', `lastdate` = " . time() . " WHERE `id` = '$idbot'");
}
}
if(preg_match('|Giang sinh an lanh|',$msg) || preg_match('|giang sinh an lanh|',$msg) || preg_match("|Giang Sinh An Lanh|",$msg) || preg_match("|GIANG SINH AN LANH|",$msg)) {
mysql_query("UPDATE `users` SET `timnoel` = '0', `okenoel`='1'  WHERE `id` = '{$datauser['id']}'");
}
 
if(preg_match('|Happy new year|',$msg) || preg_match('|HAPPY NEW YEAR|',$msg) || preg_match("|happy new year|",$msg) || preg_match("|Happy New Year|",$msg)) {
if($user_id == $datauser['id']){
echo'<META HTTP-EQUIV="refresh" CONTENT="0; URL=/">';
}
 
$timeph = time() + 300;
mysql_query("UPDATE `users` SET `timephaohoa` = '{$timeph}'  WHERE `id` = '{$datauser['id']}'");
}
if($loai ==1){
if ($datauser['vips']==1) {
if($datauser['xu'] >=10000){
mysql_query("INSERT INTO `wnew` SET `user`='".$user_id."', `text`='" . mysql_real_escape_string($msg) . "', `time`='".time()."'");
mysql_query("UPDATE users SET `xu` = `xu` -10000 WHERE id = $user_id");
} else {
echo 'Không đủ tiền!';
}
} else {
echo 'Bạn không phải là <b> VIP </b>';
}
}
}
       if ($user_id) {
          $postguest = $datauser['postguest'] + 1;
          mysql_query("UPDATE `users` SET `postguest` = '$postguest', `lastpost` = '" . time() . "',`lastdate`='" . time() . "' WHERE `id` = '$user_id'");
       }
 
   }
}
$total = mysql_result(mysql_query("SELECT COUNT(*) FROM `guest` WHERE `adm`='0'"), 0);
  if ($total) {
        $req = mysql_query("SELECT `guest`.*, `guest`.`id` AS `gid`, `users`.`lastdate`, `users`.`id`, `users`.`rights`, `users`.`name`
                    FROM `guest` LEFT JOIN `users` ON `guest`.`user_id` = `users`.`id`
                    WHERE `guest`.`adm`='0' ORDER BY `time` DESC LIMIT ".(!$is_mobile ? 7 : 6).""); 
echo '<div class="forumtxt">';
        while ($gres = mysql_fetch_assoc($req)) {
        $post = $gres['text'];
        $post = functions::checkout($gres['text'], 1, 1);
        if ($set_user['smileys'])
          $post = functions::smileys($post, $gres['rights'] ? 1 : 0);
          echo'<div class="forumtext">';
echo'<table cellpadding="0" cellspacing="0" width="99%" border="0" style="table-layout:fixed;word-wrap: break-word;">
<tr><td width="60px;" class="blog-avatar">';
if($gres['id'] == 7){
echo '<img class="avatar_bv" src="http://images3.wikia.nocookie.net/__cb20111116180029/marvelvscapcom/images/c/c0/Cap_america_final_justice.gif" width="100" height="200" title="'.$gres['name'].'"/></span>';
} else {
if (file_exists(($rootpath.'files/users/avatar/'.$gres['id'].'.png'))) {
echo '<img class="avatar_bv"  src="../avatar/'.$gres['id'].'.png" width="60" height="60" title="'.$gres['name'].'"/></span>';
}
else
{
echo '<img class="avatar_bv" src="../avatar/'.$gres['id'].'.png" width="60" height="60" title="'.$gres['name'].'"/></span>';
}
}
echo'</td><td style="vertical-align: bottom;"><table cellpadding="0" cellspacing="0"><tbody>
<tr><td class="current-blog" rowspan="2" style=""><div class="blog-bg-left">';
echo'<img src="/giaodien/images/left-blog.png"></div>';
echo (time() > $gres['lastdate'] + 300 ? ' <img style="vertical-align:middle;" title="offline" src="/images/off.png" alt="offline"/> ' : '<img style="vertical-align:middle;" title="online" src="/images/on.png" alt="online"/>');
$pkoolvn = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE id = '$gres[id]'"),0);
$pkoolvn = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE id = '$gres[id]'"),0);
 
 
if($pkoolvn['id'] == 6 || $pkoolvn['id'] == 2618) {
echo' <i class="admin">';}
$icon = $pkoolvn['icon'];
echo'<a href="javascript:tag(\'@\', \''.$pkoolvn['id'].' \', \'\')"><b><font color="003366">'.nick($pkoolvn['id']).'</font></b></a>';
 
if($pkoolvn['chuc']){
echo'<b><font color="red"> - '.$pkoolvn['chuc'].'</b></font>';
}
if($pkoolvn['danhhieu']){
echo'</br><font color="green">Danh hiệu: </font> <font color="e50b3e">'.$pkoolvn['danhhieu'].'</font>';
}
echo' </i></strong></font></font></font></strong></span></span></strong></span></strong></marquee>';
if($pkoolvn['chuchay'] != NULL){
echo'<marquee behavior="alternate"><marquee width="150"><font color="red"><b><i>'.htmlspecialchars($pkoolvn['chuchay']).'</i></b></font></marquee></marquee>';
}
$ban = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_ban_users` WHERE `user_id` = '" . $pkoolvn['id'] . "' AND `ban_time` > '" . time() . "'"), 0);
echo'<div class="text">';
$check = functions::checkout($gres['text'], 1, 0); 
$url = $check;
if($pkoolvn['kichhoat'] <= 0){
      echo'*****bài viết bị ẩn do tài khoản chưa kích hoạt*****<br><br>';
      } else if($ban > 0){
echo'*****bài viết bị ẩn do tài khoản bị khóa*****<br><br>';
} else if(preg_match('|.jpg|',$url)|| preg_match('|.bmp|',$url)|| 
preg_match('|.png|',$url)|| preg_match('|.gq|',$url)|| preg_match('|.PNG|',$url)|| preg_match('|.JPG|',$url)||
preg_match('|.jpg|',$url)||
preg_match('|.GQ|',$url)||
preg_match('|.PNG|',$url)||
preg_match('|.jpeg|',$url)||
preg_match('|.Jpg|',$url)||
preg_match('|youtube|',$url)||
preg_match('|.gif|',$url)) { 
          echo ':troll:<br><br>';
      } else {
if($pkoolvn['id'] == 6 || $pkoolvn['id'] == 293){
echo'<b><font color="red">'.$post.'<br/><br/></font></b>';
} else {
echo''.$post.'<br/><br/>';
}
}
echo '<i><span style="font-size:9px;color:#777;float:right"> ('.functions::thoigian($gres['time']).')</span></i>'; 
echo'</div></div></td></tr></tbody></table></td></tr></tbody></table>';
echo'</div>';
++$i;
}
} else {
echo '<div class="menu"><p>' . $lng['guestbook_empty'] . '</p></div>';
}
 
 
?>