Server IP : 66.29.132.124 / Your IP : 3.17.175.191 Web Server : LiteSpeed System : Linux business141.web-hosting.com 4.18.0-553.lve.el8.x86_64 #1 SMP Mon May 27 15:27:34 UTC 2024 x86_64 User : wavevlvu ( 1524) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/wavevlvu/ |
Upload File : |
----------- SCAN REPORT ----------- TimeStamp: Tue, 19 Apr 2022 19:02:22 -0400 (/usr/sbin/cxs --clamdsock /var/clamd --dbreport --defapache nobody --doptions Mv --exploitscan --nofallback --filemax 50000 --noforce --html --ignore /etc/cxs/cxs.ignore.manual --options mMOLfSGchexdnwZDRru --noprobability --qoptions Mv --report /home/wavevlvu/scanreport-wavevlvu-2022-04-19T23:02:22.061690.txt --sizemax 1000000 --ssl --summary --sversionscan --timemax 30 --unofficial --user wavevlvu --virusscan --vmrssmax 2000000 --xtra /etc/cxs/cxs.xtra.manual) Scanning /home/wavevlvu: '/home/wavevlvu/access-logs' # Symlink to [/etc/apache2/logs/domlogs/wavevlvu] '/home/wavevlvu/.cpanel/live-engine-connector-IAjCtkwCTj.sock' # Socket '/home/wavevlvu/.nc_plugin/hidden' # World writeable directory '/home/wavevlvu/.softaculous/installations.php' # Universal decode regex match = [universal decoder] '/home/wavevlvu/adediranglobalresources.com/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/adediranglobalresources.com/wp-content/plugins/revslider/admin/views/builder.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/adediranglobalresources.com/wp-content/plugins/vc-extensions-bundle/testimonialcarousel/vc-extensions-testimonialcarousel.php' # Universal decode regex match = [universal decoder] '/home/wavevlvu/adediranglobalresources.com/wp-content/plugins/woocommerce/vendor/maxmind-db/reader/ext/maxminddb.c' # Suspicious file type [application/x-c] '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/2022' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/2022/01' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/2022/02' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/2022/03' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/2022/04' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/essential-grid' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/essential-grid/templates' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/js_composer' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/wc-logs' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/woocommerce_uploads' # World writeable directory '/home/wavevlvu/adediranglobalresources.com/wp-content/uploads/wpcf7_uploads' # World writeable directory '/home/wavevlvu/ahiira.com/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/ceeliacosmetics.com/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/diixa.com/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/diixa.com/wp-content/plugins/google-listings-and-ads/vendor/google/gax/src/Transport/GrpcTransport.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/diixa.com/wp-content/plugins/google-listings-and-ads/vendor/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571k1.php' # Universal decode regex match = [universal decoder] '/home/wavevlvu/diixa.com/wp-content/plugins/google-site-kit/google-site-kit.php' # Script version check [OLD] [Site Kit by Google v1.50.0 < v1.70.0] '/home/wavevlvu/diixa.com/wp-content/plugins/google-site-kit/includes/Core/Assets/Assets.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/diixa.com/wp-content/plugins/jetpack/jetpack.php' # Script version check [OLD] [Jetpack v10.6 < v10.7] '/home/wavevlvu/diixa.com/wp-content/plugins/mailpoet/mailpoet.php' # Script version check [OLD] [MailPoet 3 (New) v3.80.0 < v3.84.1] '/home/wavevlvu/diixa.com/wp-content/plugins/revslider/admin/views/builder.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/diixa.com/wp-content/plugins/revslider/includes/external-sources.class.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/diixa.com/wp-content/plugins/revslider/includes/external/facebook.class.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/diixa.com/wp-content/plugins/revslider/includes/external/instagram.class.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/diixa.com/wp-content/plugins/woocommerce/woocommerce.php' # Script version check [OLD] [WooCommerce v6.2.2 < v6.3.1] '/home/wavevlvu/diixa.com/wp-content/plugins/woocommerce/vendor/maxmind-db/reader/ext/maxminddb.c' # Suspicious file type [application/x-c] '/home/wavevlvu/diixa.com/wp-content/uploads' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2019' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2019/01' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/01' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/02' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/03' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/04' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/07' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/09' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/11' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2020/12' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/01' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/03' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/04' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/05' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/06' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/07' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/08' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/09' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/10' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/11' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2021/12' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2022' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2022/01' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2022/02' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2022/03' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/2022/04' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/elementor' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/elementor/css' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/elementor/thumbs' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/mailpoet' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/mailpoet/cache' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/merlin-wp' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/wc-logs' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/woocommerce_uploads' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/woocommerce_uploads/2021' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/woocommerce_uploads/2021/12' # World writeable directory '/home/wavevlvu/diixa.com/wp-content/uploads/wpcf7_uploads' # World writeable directory '/home/wavevlvu/diixa.com.ng/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/diixa.wave.ng/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/diixang.wave.ng/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/events.book24.ng/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/mail/wave.ng/contact/.spam/new/1642450888.M466705P601835.premium58.web-hosting.com,S=537843,W=545247' # ClamAV detected virus = [Win.Packed.Pwsx-9936836-0] '/home/wavevlvu/mail/wave.ng/contact/.spam/new/1643277115.M897765P3639775.premium58.web-hosting.com,S=522461,W=529650' # ClamAV detected virus = [Win.Packed.Malwarex-9937720-0] '/home/wavevlvu/nigeriatourismfestival.com/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] # Scan Timeout (30 secs) while processing: '/home/wavevlvu/public_html/wordpress-5.8.2.zip' '/home/wavevlvu/public_html/wp-content/plugins/mplugin.php_disabled' # Known exploit = [Fingerprint Match] [PHP WP Exploit [P1968]] '/home/wavevlvu/public_html/wp-content/plugins/ad-inserter/ad-inserter.php' # Script version check [OLD] [Ad Inserter v2.7.5 < v2.7.12] '/home/wavevlvu/public_html/wp-content/plugins/ad-inserter/includes/google-api/vendor/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571k1.php' # Universal decode regex match = [universal decoder] '/home/wavevlvu/public_html/wp-content/plugins/google-site-kit/includes/Core/Assets/Assets.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/public_html/wp-content/plugins/wp-optimize/vendor/rosell-dk/htaccess-capability-tester/src/Testers/RequestHeaderTester.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/public_html/wp-content/plugins/wp-optimize/vendor/rosell-dk/htaccess-capability-tester/src/Testers/ServerSignatureTester.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/public_html/wp-content/uploads' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2019' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2019/01' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2022' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2022/01' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2022/02' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2022/03' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/2022/04' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/sb-instagram-feed-images' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/wordpress-popular-posts' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/wpcf7_uploads' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/wpforms' # World writeable directory '/home/wavevlvu/public_html/wp-content/uploads/wpforms/cache' # World writeable directory '/home/wavevlvu/public_html/wp-includes/version.php' # Script version check [OLD] [Wordpress v5.8.2 < v5.9.3] '/home/wavevlvu/tayoadediranfoundation.com/wp-content/plugins/cmb2/init.php' # Script version check [OLD] [CMB2 v2.9.0 < v2.10.1] '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2019' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2019/05' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2022' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2022/01' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2022/02' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2022/03' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/2022/04' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/elementor' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/elementor/css' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/wc-logs' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/woocommerce_uploads' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-content/uploads/wpcf7_uploads' # World writeable directory '/home/wavevlvu/tayoadediranfoundation.com/wp-includes/version.php' # Script version check [OLD] [Wordpress v5.8.4 < v5.9.3] '/home/wavevlvu/tmp/awstats/ssl/awstats032022.wave.ng.txt' # ClamAV detected virus = [YARA.r57shell_php_php.UNOFFICIAL] '/home/wavevlvu/vim.ng/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/wavetalentnaija.com/about.php' # Decode regex match = [decode regex: 6] # (decoded file [advanced decoder: 9 (depth: 1)]) Known exploit = [Fingerprint Match] [PHP Shell Exploit [P1425]] '/home/wavevlvu/wavetalentnaija.com/wp-content/plugins/revslider/admin/views/builder.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/wavetalentnaija.com/wp-content/plugins/revslider/includes/external-sources.class.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/wavetalentnaija.com/wp-content/plugins/revslider/includes/external/facebook.class.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/wavetalentnaija.com/wp-content/plugins/revslider/includes/external/instagram.class.php' # Regular expression match = [\*[A-Za-z0-9]{12,130}\*] '/home/wavevlvu/wavetalentnaija.com/wp-content/plugins/woocommerce/includes/admin/class-wc-admin-menus.php' # Universal decode regex match = [universal decoder] '/home/wavevlvu/wavetalentnaija.com/wp-content/plugins/woocommerce/vendor/maxmind-db/reader/ext/maxminddb.c' # Suspicious file type [application/x-c] '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2010' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2010/11' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2021' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2021/05' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2021/08' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2021/09' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2021/10' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2021/11' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2022' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/2022/04' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/elementor' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/elementor/css' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/elementor/thumbs' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/wc-logs' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/woocommerce_uploads' # World writeable directory '/home/wavevlvu/wavetalentnaija.com/wp-content/uploads/wpcf7_uploads' # World writeable directory ----------- SCAN SUMMARY ----------- Scanned directories: 13390 Scanned files: 233419 Ignored items: 622 Suspicious matches: 154 Viruses found: 3 Fingerprint matches: 12 Data scanned: 11669.44 MB Scan peak memory: 299640 kB Scan time/item: 0.013 sec Scan time: 3185.689 sec