break;
case 4:
if ($case4 == "on") {
$password .= $symbols[mt_rand(0, 24)];
} else {
$i--;
}
break;
}
}
return $password;
}
if ($_GET['action'] == "send" and isset($_POST['email']) and isset($_POST['ulogin'])) {
$email = gs_html($_POST['email']);
$ulogin = gs_html($_POST['ulogin']);
$code = md5(gs_html($_POST["code"]));
if (!mysql_num_rows(mysql_query("SELECT * FROM `captcha` WHERE sid = '" . $sid . "' AND code = '" . $code . "'"))) {
print "<p class=\"er\">" . $lang['er_05'] . "</p>";
} elseif (preg_match("/^[a-z0-9_.-]{1,20}@(([a-z0-9-]+\\.)+(com|net|org|mil|edu|gov|arpa|info|biz|[a-z]{2})|[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3})\$/is", $email)) {
$sql = 'SELECT `login`, `pass`, `status` FROM `users` WHERE `mail` = "' . $email . '" AND `login` = "' . $ulogin . '" LIMIT 1';
$rs = mysql_query($sql);
$a = mysql_fetch_array($rs);
$s = $a['status'];
if (!$a) {
print '<p class="er">' . $lang['er_06'] . '</p>';
} else {
$case1 = on;
$case2 = on;
$case3 = on;
$case4 = off;
$num1 = 8;
if (!$name) {
print '<p class="er">Введите название</p>';
} else {
mysql_query("UPDATE bonus SET name = '" . $name . "', sum = " . $sum . ", refsum = " . $refsum . " WHERE id = " . intval($_GET['id']) . " LIMIT 1");
print '<p class="erok">Изменения сохранены!</p>';
}
}
// Сохраняем настройки
if ($_GET['act'] == "seveset") {
if ($_POST['cfgRefPerc']) {
mysql_query("UPDATE `settings` SET `data` = '" . intval($_POST['cfgRefPerc']) . "' WHERE `cfgname` = 'cfgRefPerc' LIMIT 1");
}
if ($_POST['refname']) {
mysql_query("UPDATE `settings` SET `data` = '" . gs_html($_POST['refname']) . "' WHERE `cfgname` = 'refname' LIMIT 1");
}
$file = addslashes(gs_html($_FILES['banner']['name']));
$type = substr(strrchr($file, "."), 1);
if ($file) {
$sql = mysql_query("INSERT INTO `promo` (`type`) values ('" . $type . "')");
$bname = mysql_insert_id() . "." . $type;
copy($_FILES['banner']['tmp_name'], "../img/promo/" . $bname);
print "<p class=\"erok\">ПРОМО-материал добавлен!</p>";
} else {
print "<p class=\"er\">Вы не указали архив или файл для загрузки!</p>";
}
print '<p class="erok">Изменения сохранены!</p>';
}
?>
<script language="javascript" type="text/javascript" src="files/alt.js"></script>
<FIELDSET>
<?php
if ($_GET['ip']) {
?>
<table class="tbl">
<tr>
<th><strong>Дата</strong></th>
<th><strong>Страница</strong></th>
<th><strong>IP</strong></th>
<th><strong>ID</strong></th>
<th><strong>Логин</strong></th>
</tr>
<?php
$idlist = "";
$sql = "SELECT * FROM `loghistory` WHERE ip = '" . gs_html($_GET['ip']) . "' ORDER BY id DESC LIMIT 100";
$rs = mysql_query($sql);
while ($a = mysql_fetch_array($rs)) {
$sql2 = 'SELECT * FROM `users` WHERE id = ' . $a['user_id'] . ' LIMIT 1';
$rs_u = mysql_query($sql2);
$a2 = mysql_fetch_array($rs_u);
if (!substr_count($idlist, "|" . $a['user_id'] . "|")) {
print "<tr>\n\t<td>" . date("d.m.Y H:i:s", $a['date']) . "</td>\n\t<td>" . $a['action'] . "</td>\n\t<td>" . $a['ip'] . "</td>\n\t<td>" . $a['user_id'] . "</td>\n\t<td><a href=\"?p=edit_user&id=" . $a['user_id'] . "\">" . $a2['login'] . "</a></td>\n</tr>";
$idlist .= "|" . $a['user_id'] . "|";
}
}
?>
</table>
<?php
} elseif ($_GET['id']) {
<?php
include "../../config.php";
include "../../includes/functions.php";
if ($status == 1) {
$f = gs_html($_GET['f']);
if (!$f) {
print "<html><head><script language=\"javascript\">alert('Вы не указали какую страницу необходимо удалить'); top.location.href='../?p=pages';</script></head></html>";
} else {
mysql_query("DELETE FROM pages WHERE path = '" . $f . "' LIMIT 1");
print "<html><head><script language=\"javascript\">alert('Страница удалена!'); top.location.href='../?p=pages';</script></head></html>";
}
} else {
include "../../includes/errors/404.php";
}
$get_user_info = mysql_query("SELECT `pe` FROM `users` WHERE `id` = " . $user_id . " LIMIT 1");
$row = mysql_fetch_array($get_user_info);
$upe = $row['pe'];
$pass_1 = $_POST['pass_1'];
$pass_2 = $_POST['pass_2'];
$email = gs_html($_POST['email']);
$icq = gs_html($_POST['icq']);
$pm = gs_html($_POST['pm']);
$pe = gs_html($_POST['pe']);
$skype = gs_html($_POST['skype']);
$currency = intval($_POST['currency']);
$phone = gs_html($_POST['phone']);
$social = gs_html($_POST['social']);
$bankName = gs_html($_POST['bankName']);
$bankCardNumber = gs_html($_POST['bankCardNumber']);
$bankUserName = gs_html($_POST['bankUserName']);
if ($upm) {
$pm = $upm;
}
if ($upe) {
$pe = $upe;
}
if ($mycurrency != 1) {
$currency = $currency;
}
if (!$email) {
echo '<p class="er">' . $lang['er_09'] . '</p>';
} else {
if ($pass_1 != $pass_2) {
echo '<p class="er">' . $lang['er_11'] . '</p>';
} else {
<?php
include "config.php";
include "includes/functions.php";
$m = gs_html($_GET['m']);
$h = gs_html($_GET['h']);
if (!$m || !$h) {
print '<script language="JavaScript">
<!--
alert(\'Error link\');
top.location.href=\'/\';
//-->
</script>';
} else {
$query = "SELECT `login`, `mail` FROM `users` WHERE `mail` = '" . $m . "' LIMIT 1";
$result = mysql_query($query);
$row = mysql_fetch_array($result);
if (!$row['mail']) {
print '<script language="JavaScript">
<!--
alert(\'No mail\');
top.location.href=\'/\';
//-->
</script>';
} elseif ($h != gs_md5($licKEY, $row['login'] . $row['mail'])) {
print '<script language="JavaScript">
<!--
alert(\'Error activate link\');
top.location.href=\'/\';
//-->
</script>';
return 0;
}
}
// Конец данной функции
$folder = "";
$title = "";
$body = "";
$keywords = "";
$description = "";
$lite = "";
$action = $_GET['action'];
if ($action == "add") {
$folder = gs_html(strtolower($_POST['folder']));
$title = gs_html($_POST['title']);
$keywords = gs_html($_POST['keywords']);
$description = gs_html($_POST['description']);
$type = intval($_POST['type']);
$part = intval($_POST['part']);
$nbsp = "";
if (!$folder || !$title) {
print "<p class=\"er\">Заполните поля обязательные для заполнения</p>";
} elseif (preg_match("[а-яА-Я]", $folder)) {
print "<p class=\"er\">В ссылке разрешены символы только латинского алфавита!</p>";
} elseif (sch_special_chars($folder) != 0) {
print "<p class=\"er\">В ссылке запрещены спецсимволы!</p>";
} elseif ($folder == "admin" || $folder == "files" || $folder == "img" || $folder == "includes" || $folder == "tpl" || $folder == "modules" || $folder == "captcha") {
print "<p class=\"er\">Невозможно создать страницу с данным именем!</p>";
} elseif (mysql_num_rows(mysql_query("SELECT * FROM `pages` WHERE `path` = '" . $folder . "'"))) {
print "<p class=\"er\">Страница с таким именем уже существует!</p>";
} else {
$sql = "INSERT INTO `pages` (`path`, `title`, `keywords`, `description`, `type`, `part`) VALUES ('" . $folder . "', '" . $title . "', '" . $keywords . "', '" . $description . "', 1, " . $part . ")";
<?php
defined('ACCESS') or die;
if ($login) {
if ($_GET['pay'] == "no") {
print '<p class="er">' . $lang['er_15'] . '</p>';
}
if ($_GET['conf']) {
print '<p class="erok">' . $lang['er_16'] . '</p>';
$conf = intval($_GET['conf']);
$purse = gs_html($_POST["purse"]);
mysql_query("UPDATE enter SET status = 1, purse = '" . $purse . "' WHERE id = " . $conf . " LIMIT 1");
} elseif ($_GET['action'] == 'save') {
$sum = sprintf("%01.2f", str_replace(',', '.', $_POST['sum']));
$ps = intval($_POST['ps']);
if ($sum < 0.1 || $sum > 1000000) {
print '<p class="er">' . $lang['er_17'] . '</p>';
} elseif ($ps < 1) {
print '<p class="er">' . $lang['er_18'] . '</p>';
} else {
// Форма пополнения
if ($ps == 1) {
// PM
$sql = 'INSERT INTO `enter` (`sum`, `date`, `login`, `paysys`) VALUES (' . $sum . ', ' . time() . ', "' . $login . '", "PerfectMoney")';
mysql_query($sql);
$lid = mysql_insert_id();
if (cfgSET('cfgSSL') == "on") {
$http = "https";
} else {
$http = "http";
}
<?php
defined('ACCESS') or die;
$user = trim(gs_html($_POST["user"]));
$password = trim($_POST['pass']);
$get_pass = mysql_query("SELECT `id`, `login`, `pass`, `status`, `active` FROM `users` WHERE login = '******' LIMIT 1");
$row = mysql_fetch_array($get_pass);
$id = $row['id'];
$login = $row['login'];
$user_password = $row['pass'];
$status = $row['status'];
$active = $row['active'];
if (!$user || !$password) {
$er = "";
include "tpl/login.php";
} elseif (gs_md5($licKEY, $password) != $user_password || !$login) {
$er = 1;
$login = '';
include "tpl/login.php";
} elseif ($status == 4) {
print "<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\"><script language=\"javascript\">alert('" . $lang['loginblock'] . "'); top.location.href=\"/\";</script></head><body></body></html>";
} elseif ($active != 0) {
$er = 2;
$login = '';
include "tpl/login.php";
} else {
$_SESSION['user'] = $login;
$time = time();
mysql_query("UPDATE `users` SET ip = '" . $userip . "', go_time = " . $time . " WHERE login = '******' LIMIT 1");
mysql_query("INSERT INTO `logip` (`user_id`, `ip`, `date`) VALUES (" . $id . ", '" . $userip . "', " . $time . ")");
print "<html><head><script language=\"javascript\">top.location.href=\"/deposits/\";</script></head><body></body></html>";
<?php
defined('ACCESS') or die;
$id = intval($_GET['id']);
if ($_GET['go'] == "go") {
$subject = gs_html($_POST['subject']);
$text = addslashes($_POST['text']);
$subject_en = gs_html($_POST['subject_en']);
$text_en = addslashes($_POST['text_en']);
if (!$subject) {
print "<p class=\"er\">Укажите тему новости!</p>";
} elseif (!$text) {
print "<p class=\"er\">Введите текст новости!</p>";
} else {
$sql = "UPDATE news SET subject = '" . $subject . "', msg = '" . $text . "', subject_en = '" . $subject_en . "', msg_en = '" . $text_en . "' WHERE id = " . $id . " LIMIT 1";
$result = mysql_query($sql);
print "<p class=\"erok\">Новость отредактирована!</p>";
}
}
$get_news = "SELECT * FROM news WHERE id = " . $id . " LIMIT 1";
$query_result = mysql_query($get_news);
$row = mysql_fetch_array($query_result);
$subject = $row['subject'];
$text = $row['msg'];
$subject_en = $row['subject_en'];
$text_en = $row['msg_en'];
?>
<script type="text/javascript" src="editor/tiny_mce_src.js"></script>
<script type="text/javascript">
tinyMCE.init({
print "<div class=\"pages\">" . $pervpage . $page2left . $page1left . " <b>" . $page . "</b> " . $page1right . $page2right . $nextpage . "</div>";
}
}
$p = intval($_GET['p']);
topics_list($p, 10, $status);
if ($login) {
// Форма добавления комментариев
?>
<div class="form-container add-comment-form">
<form action="/reviews/?action=send" method="post" name="msg_form">
<div class="form-field">
<label>Текст сообщения:</label>
<textarea name="text" rows="4">
<?php
print gs_html(substr($_POST['text'], 0, 10000));
?>
</textarea>
</div>
<div class="comment-bt">
<div class="pull-left radio-bt">
<label>
<input class="check" type="radio" name="radio" value="1" checked />
<i class="fa fa-thumbs-up" title="Положительный отзыв"></i>
<span>положительно</span>
</label>
<label>
<input class="check" type="radio" name="radio" value="2" />
<i class="fa fa-thumbs-down" title="Отрицательный отзыв"></i>
<span>отрицательно</span>
<?php
defined('ACCESS') or die;
print $body;
if ($login) {
if (cfgSET('cfgTrans') == "off") {
print '<p class="er">' . $lang['er_23'] . '</p>';
} else {
if ($_GET['action'] == "yes") {
$name = gs_html($_POST['name']);
$sum = sprintf("%01.2f", str_replace(',', '.', $_POST['sum']));
$percent = intval($_POST['percent']);
if (!$name) {
print '<p class="er">' . $lang['er_24'] . '</p>';
} elseif (!$sum) {
print '<p class="er">' . $lang['er_25'] . '</p>';
} elseif ($sum < 0.01) {
print '<p class="er">' . $lang['er_17'] . ' ' . $moneycurr . '</p>';
} elseif (!mysql_num_rows(mysql_query("SELECT login, mail FROM users WHERE login = '******' OR mail = '" . $name . "'"))) {
print '<p class="er">' . $lang['er_26'] . '!</p>';
} else {
if (cfgSET('cfgTransPercent') > 0 && $percent == 2) {
$sum_in = sprintf("%01.2f", $sum - $sum / 100 * cfgSET('cfgTransPercent'));
$sum_out = $sum;
} elseif (cfgSET('cfgTransPercent') > 0 && $percent == 3) {
$sum_in = sprintf("%01.2f", $sum - $sum / 100 * cfgSET('cfgTransPercent') / 2);
$sum_out = sprintf("%01.2f", $sum + $sum / 100 * cfgSET('cfgTransPercent') / 2);
} else {
$sum_in = $sum;
$sum_out = sprintf("%01.2f", $sum + $sum / 100 * cfgSET('cfgTransPercent'));
}
<?php
defined('ACCESS') or die;
print $body;
if ($_GET['action'] == "save") {
$ulogin = gs_html($_POST['ulogin']);
$pass = $_POST['pass'];
$repass = $_POST['repass'];
$email = gs_html($_POST['email']);
$code = gs_html($_POST["code"]);
$skype = gs_html($_POST["skype"]);
$icq = gs_html($_POST["icq"]);
$pm = gs_html($_POST["pm"]);
$pe = gs_html($_POST["pe"]);
$yes = intval($_POST['yes']);
if (!$ulogin || !$pass || !$repass || !$email || !$yes) {
$error = "<p class=\"er\">" . $lang['obyazalovka'] . "</p>";
} elseif (strlen($ulogin) > 20 || strlen($ulogin) < 3) {
$error = "<p class=\"er\">" . $lang['er_10'] . "</p>";
} elseif ($pass != $repass) {
$error = "<p class=\"er\">" . $lang['er_11'] . "</p>";
} elseif (!mysql_num_rows(mysql_query("SELECT * FROM `captcha` WHERE sid = '" . $sid . "' AND code = '" . md5($code) . "'")) && cfgSET('regcaptcha') == "on") {
$error = "<p class=\"er\">" . $lang['er_05'] . "</p>";
} elseif (!preg_match("/^[a-z0-9_.-]{1,20}@(([a-z0-9-]+\\.)+(com|net|org|mil|edu|gov|arpa|info|biz|[a-z]{2})|[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3})\$/is", $email)) {
$error = "<p class=\"er\">" . $lang['er_09'] . "</p>";
} elseif (mysql_num_rows(mysql_query("SELECT login FROM users WHERE login = '******'"))) {
$error = "<p class=\"er\">" . $lang['er_12'] . "</p>";
} elseif (mysql_num_rows(mysql_query("SELECT mail FROM users WHERE mail = '" . $email . "'"))) {
$error = "<p class=\"er\">" . $lang['er_13'] . "!</p>";
} else {
$time = time();
$name = htmlspecialchars($_POST['name'], ENT_QUOTES, '');
$minsum = sprintf("%01.2f", $_POST['minsum']);
$maxsum = sprintf("%01.2f", $_POST['maxsum']);
$percent = sprintf("%01.4f", $_POST['percent']);
$period = intval($_POST['period']);
$days = intval($_POST['days']);
$back = intval($_POST['back']);
$bonusdeposit = sprintf("%01.2f", $_POST['bonusdeposit']);
$bonusbalance = sprintf("%01.2f", $_POST['bonusbalance']);
$weekend = intval($_POST['weekend']);
$close = intval($_POST['close']);
$close_percent = sprintf("%01.2f", $_POST['close_percent']);
if ($name && $minsum && $percent && $days) {
mysql_query("UPDATE plans SET close = " . $close . ", close_percent = " . $close_percent . ", back = " . $back . ", name = '" . $name . "', minsum = " . $minsum . ", maxsum = " . $maxsum . ", percent = " . $percent . ", period = " . $period . ", days = " . $days . ", bonusdeposit = " . $bonusdeposit . ", bonusbalance = " . $bonusbalance . ", weekend = " . $weekend . " WHERE id = " . intval($_GET['id']) . " LIMIT 1");
print "<p class=\"erok\">Новые данные сохранены!</p>";
$file = addslashes(gs_html($_FILES['img']['name']));
$type = substr(strrchr($file, "."), 1);
if ($file && $type == "png") {
mysql_query("UPDATE plans SET img = " . intval($_GET['id']) . " WHERE id = " . intval($_GET['id']) . " LIMIT 1");
$bname = intval($_GET['id']) . ".png";
copy($_FILES['img']['tmp_name'], "../img/depoico/" . $bname);
print "<p class=\"erok\">Изображение добавлено!</p>";
} else {
print "<p class=\"warn\">Вы не указали файл изображения для загрузки, или он не PNG!</p>";
}
} else {
print '<p class="er">Заполните все поля</p>';
}
}
$get_terif = mysql_query("SELECT * FROM plans WHERE id = " . intval($_GET['id']) . " LIMIT 1");
$row = mysql_fetch_array($get_terif);
print '<p class="warn">—айт отключен и недоступен дл¤ остальных пользователей!</p>';
}
$cusers = mysql_num_rows(mysql_query("SELECT `id` FROM `users` WHERE `balance` != 0")) + cfgSET('fakeactiveusers');
$money = cfgSET('fakewithdraws');
$query = "SELECT `sum` FROM `output` WHERE `status` = 2";
$result = mysql_query($query);
while ($row = mysql_fetch_array($result)) {
$money = $money + $row['sum'];
}
$depmoney = cfgSET('fakedeposits');
$query = "SELECT `sum` FROM `deposits` WHERE `status` = 0";
$result = mysql_query($query);
while ($row = mysql_fetch_array($result)) {
$depmoney = $depmoney + $row['sum'];
}
$ref = gs_html($_GET[cfgSET('refname')]);
if ($ref) {
mysql_query("UPDATE users SET clx = clx + 1 WHERE login = '******' LIMIT 1");
}
?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1251" />
<link href="/files/favicon.ico" type="image/x-icon" rel="shortcut icon" />
<title><?php
print $title;
?>
</title>
<meta name="keywords" content="<?php
print $keywords;
?>
<?php
defined('ACCESS') or die;
if (!$login) {
print "<p class=\"er\">Для обращения в Службу технической поддержки, Вам необходимо авторизироваться</p>";
} else {
if ($_GET[action] == "send") {
$to = gs_html(str_replace("'", "", substr($_POST['to'], 0, 30)));
$subj = gs_html(str_replace("'", "", substr($_POST['subj'], 0, 50)));
$textform = gs_html(str_replace("'", "", substr($_POST['textform'], 0, 102400)));
$type = intval($_POST['type']);
$fid = intval($_POST['fid']);
$prioritet = intval($_POST['prioritet']);
if (!$to || !$textform) {
print "<p class=\"er\">Заполните все поля!</p>";
} else {
if (!$subj) {
$subj = "Без темы";
}
$row = mysql_fetch_array(mysql_query("SELECT id, login, mail FROM users WHERE login = '******' LIMIT 1"));
$toid = intval($row[id]);
$toname = $row['login'];
if ($toid) {
if ($user_id == 1) {
$st = 1;
} else {
$st = 0;
}
if ($fid) {
mysql_query("UPDATE msgs SET status = " . $st . " WHERE id = " . $fid . " LIMIT 1");
}
<li><a href="?p=withdrawal"><img align="texttop" src="images/out_ico.png" alt=""> Вывод средств [ <?php
print mysql_num_rows(mysql_query("SELECT `id` FROM `output` WHERE `status` = 0"));
?>
]</a></li>
</ul>
<ul class="menu">
<li><a href="?p=blacklist"><img align="texttop" src="images/blacklist_ico.png" alt=""> Черный список IP</a></li>
<li><a href="?p=logip"><img align="texttop" src="images/monip_ico.png" alt=""> Мониторинг IP</a></li>
<li><a href="?p=logauth"><img align="texttop" src="images/logip_ico.png" alt=""> Лог авторизаций</a></li>
<li><a href="?p=logpages"><img align="texttop" src="images/logpage_ico.png" alt=""> Лог посещений</a></li>
</ul>
<div class="clear"></div>
<div id="content">
<?php
$p = gs_html($_GET['p']);
if (!$p) {
include "modules/index.php";
} elseif (file_exists("modules/" . $p . ".php")) {
include "modules/" . $p . ".php";
} else {
include "modules/error.php";
}
?>
</div>
</div>
<div id="footer">© 2014 - <?php
print date(Y);
?>
<a href="#" target="_blank">SWEEPSTARTS</a><br />Все права защищены!</div>
</body>
if (cfgSET('cfgPercentOut')) {
$sum = sprintf("%01.2f", $r2['sum'] + $r2['sum'] / (100 - $cfgPercentOut) * $cfgPercentOut);
} else {
$sum = $r2['sum'];
}
mysql_query('UPDATE `users` SET balance = balance + ' . $sum . ' WHERE id = ' . $user_id . ' LIMIT 1');
mysql_query('UPDATE `output` SET status = 6 WHERE id = ' . intval($_GET['cancel']) . ' LIMIT 1');
print '<p class="erok">Заявка отменена, средства возвращены на баланс</p>';
} else {
print '<p class="er">Невозможно отменить заявку</p>';
}
}
if ($_GET['action'] == 'save') {
$sum = sprintf("%01.2f", str_replace(',', '.', $_POST['sum']));
$ps = intval($_POST['ps']);
$purse = gs_html($_POST['purse']);
if (!$purse && $ps == 1) {
$purse = $r['pm'];
} elseif (!$purse && $ps == 2) {
$purse = $r['pe'];
} elseif (!$purse && $ps == 3) {
$purse = $r['bankName'] . ' ' . $r['bankCardNumber'];
}
if ($sum <= 0) {
print '<p class="er">Введите корректную сумму (от ' . cfgSET('cfgMinOut') . ' до ' . cfgSET('cfgMaxOut') . ' ' . $moneycurr . ')!</p>';
} elseif ($sum < cfgSET('cfgMinOut') || $sum > cfgSET('cfgMaxOut')) {
print '<p class="er">За один раз разрешено выводить от ' . cfgSET('cfgMinOut') . ' до ' . cfgSET('cfgMaxOut') . ' ' . $moneycurr . '!</p>';
} elseif ($r['balance'] < $sum) {
print '<p class="er">У Вас нет столько денег на счету!</p>';
} elseif (cfgSET('cfgCountOut') != 0 && cfgSET('cfgCountOut') <= mysql_num_rows(mysql_query("SELECT * FROM output WHERE login = '******' AND (status = 2 OR status = 0) AND date > " . (time() - 86400)))) {
print '<p class="er">Вы на сегодня исчерпали свой лимит заявок на вывод средств. Попробуйте пожалуйста завтра.</p>';