jlpeifer

I maintain a Debian-based Web server. It runs DirectAdmin for shared hosting purposes. I perform backups of my clients' data and download those backups (tar.gz format) to a local computer for safe-keeping. The local computer storing the backup files runs ESET Internet Security software. Yesterday during a routine system scan ESET threw a warning and flagged a PHP file that was located inside one of those backup files. It was identified by ESET as "PHP/PhpShell.NBD trojan". The file itself is called defauls.php and contains 1 line of code that is 175 characters long. I'd like to share the contents of that file here, but my gut says I'll get wrist-slapped for sharing code that might be malicious. Can anyone advise how I can get help interpreting this PHP file and what danger it might pose (I've located it on my Web server and have isolated it)?