Infected Website, what to do after the scans
-
I have several security plugins, and the ones I can get to scan, I’m not seeing any fix me buttons. Suggestions to which security tools will do this? Am I going to have to delete these inputs or files manually one by one? Please suggest next step, outside of a paid service. Thanks. Here’s the list of plugins
All in One WP security
Defender By WPMU DEV
iThemes Security
Quttera Web Malware Scanner
Shield Security by Shield Security
Wordfence SecurityI got this result from quttera
======================================================================= Quttera Web Malware Scanner plugin for WordPress Website Malware Scan Report Scanned Website: https://baileyswebservices.com Scan type: Internal Report generation time: 2022-05-18 02:27 Scan launch time: 2022-05-17 22:09 Scanned files: 143016 Clean: 142889 Potentially Suspicious: 70 Suspicious: 32 Malicious: 25 ? 2021 Quttera Ltd. All rights reserved. For any questions about this report: [email protected] ======================================================================= FILE: Real_Estate/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: Roofer/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: Tree_Cutter/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: baileyswebservices/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: training/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: wbailey/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: williambailey/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: wp-admin/error_log FILE_MD5: c27406be098cd70c8dee876aa8ad1187 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c27406be098cd70c8dee876aa8ad1187 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/error_log FILE_MD5: 69183de36de968098d9bdff9562f27e0 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 69183de36de968098d9bdff9562f27e0 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: Example_1/wp-admin/comment.php FILE_MD5: d9c370205b2e26e2d83a8482d483b0de SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: Example_1/wp-includes/kses.php FILE_MD5: 187d7aacb3746c63afc5b30d29692478 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: Example_1/wp-includes/cron.php FILE_MD5: f3530a0982275b714b7157ccee53569d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 7e76f075765eebe007162116b6701ba5 THREAT_NAME: Heur.PHP.Injection.gen THREAT: @include_once( ABSPATH . 'wp-cron.php' );... DETAILS: Detected potentially suspicious PHP instruction FILE: Real_Estate/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: Real_Estate/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: Real_Estate/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-admin/comment.php FILE_MD5: 82859e1c6a2cb266a26412bf19ad899f SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: Roofer/wp-includes/kses.php FILE_MD5: 22e5fb8526effeb683ffdccedabeae1a SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: Roofer/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/class-simplepie.php FILE_MD5: 2889d85cc1a44ac4a106edd19908eb1f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: Tree_Cutter/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: Tree_Cutter/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: baileyswebservices/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: baileyswebservices/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: old TreeCutter old/wp-admin/comment.php FILE_MD5: d9c370205b2e26e2d83a8482d483b0de SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: old TreeCutter old/wp-includes/kses.php FILE_MD5: 187d7aacb3746c63afc5b30d29692478 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: old TreeCutter old/wp-includes/cron.php FILE_MD5: f3530a0982275b714b7157ccee53569d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 7e76f075765eebe007162116b6701ba5 THREAT_NAME: Heur.PHP.Injection.gen THREAT: @include_once( ABSPATH . 'wp-cron.php' );... DETAILS: Detected potentially suspicious PHP instruction FILE: training/wp-admin/comment.php FILE_MD5: 82859e1c6a2cb266a26412bf19ad899f SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: training/wp-includes/kses.php FILE_MD5: 22e5fb8526effeb683ffdccedabeae1a SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: training/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/class-simplepie.php FILE_MD5: 2889d85cc1a44ac4a106edd19908eb1f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: wbailey/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: wbailey/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: wbailey/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: williambailey/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: williambailey/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: williambailey/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-cron.php FILE_MD5: 0cdc26ef7f3e46926d381ec9834b60d9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: wp-admin/includes/error_log FILE_MD5: 77b876bd5b2a05fb6e1fa2f05eb364b4 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 77b876bd5b2a05fb6e1fa2f05eb364b4 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-admin/maint/error_log FILE_MD5: 3d8c8ef226d1c0ab315c4ada9032d822 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 3d8c8ef226d1c0ab315c4ada9032d822 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-admin/network/error_log FILE_MD5: 6cc93af3d6be9f8e4e455b3ef0382333 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6cc93af3d6be9f8e4e455b3ef0382333 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-admin/user/error_log FILE_MD5: d59b3a6179fd575a4f54d8d5cb58c8dd SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: d59b3a6179fd575a4f54d8d5cb58c8dd THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/block-supports/error_log FILE_MD5: da97f1e07a759fe7ea259f633472fe91 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: da97f1e07a759fe7ea259f633472fe91 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/blocks/error_log FILE_MD5: e57fb4ba59b5d2568007cdda9d98f3b9 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: e57fb4ba59b5d2568007cdda9d98f3b9 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/customize/error_log FILE_MD5: 18312c568842f62e81a68580f63ad667 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 18312c568842f62e81a68580f63ad667 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/theme-compat/error_log FILE_MD5: 0cc7c8a5783d08b43d35af0cacc3b690 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0cc7c8a5783d08b43d35af0cacc3b690 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/widgets/error_log FILE_MD5: 908748e799cf11406967db3c38f08551 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 908748e799cf11406967db3c38f08551 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: Real_Estate/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: Real_Estate/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: Real_Estate/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: Real_Estate/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: Real_Estate/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: Roofer/wp-admin/includes/file.php FILE_MD5: b9e75c761e79e2d053d774eb411c9f10 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: d6a059b1a0e3c5c288a9aa10b1c9f65c THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: Roofer/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: dfd590a5fb25fb0ff3f3332f19b47f2a SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: dfd590a5fb25fb0ff3f3332f19b47f2a SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: Roofer/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 8571de0af4bd4c04901429f7e99a38ab SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 8571de0af4bd4c04901429f7e99a38ab SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: Roofer/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/SimplePie/Sanitize.php FILE_MD5: 758e6c9e8ca6a40766708eaa78d51297 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/SimplePie/Misc.php FILE_MD5: b6bc49c3c91ab0dc7d5ba0588272625e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/SimplePie/Misc.php FILE_MD5: b6bc49c3c91ab0dc7d5ba0588272625e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: Roofer/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: Tree_Cutter/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: Tree_Cutter/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: Tree_Cutter/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: Tree_Cutter/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: baileyswebservices/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: baileyswebservices/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: baileyswebservices/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: baileyswebservices/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: baileyswebservices/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: training/wp-admin/includes/file.php FILE_MD5: b9e75c761e79e2d053d774eb411c9f10 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: d6a059b1a0e3c5c288a9aa10b1c9f65c THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: training/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: dfd590a5fb25fb0ff3f3332f19b47f2a SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: dfd590a5fb25fb0ff3f3332f19b47f2a SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: training/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 8571de0af4bd4c04901429f7e99a38ab SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 8571de0af4bd4c04901429f7e99a38ab SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: training/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/SimplePie/Sanitize.php FILE_MD5: 758e6c9e8ca6a40766708eaa78d51297 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/SimplePie/Misc.php FILE_MD5: b6bc49c3c91ab0dc7d5ba0588272625e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/SimplePie/Misc.php FILE_MD5: b6bc49c3c91ab0dc7d5ba0588272625e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: training/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: wbailey/mackerel/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: wbailey/mackerel/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: wbailey/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: wbailey/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: wbailey/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: wbailey/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: williambailey/Resume/wp-admin/comment.php FILE_MD5: e7db8e72590338e9ceb5d5de73edee51 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: williambailey/Resume/wp-includes/kses.php FILE_MD5: 67f8587deb6c8cb2bcd2425d51ad53f0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: williambailey/Resume/wp-includes/class-simplepie.php FILE_MD5: a6c71848da47d8b8b6fec615f996b39c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: williambailey/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: williambailey/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: williambailey/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: williambailey/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: williambailey.dev/old/wp-admin/comment.php FILE_MD5: 104c8d24b80392820644a8c7fa5b406f SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: williambailey.dev/old/wp-includes/kses.php FILE_MD5: a0ce3e46f6de8253007774b252d6fd91 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 1878ef6458f83c701e06f12c76350c76 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace(//e... DETAILS: Detected malicious iframe injection FILE: williambailey.dev/old/wp-includes/class-wp-simplepie-sanitize-kses.php FILE_MD5: 00738237cc5ef54755e90ff6c65f0f18 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-includes/class-simplepie.php FILE_MD5: 2889d85cc1a44ac4a106edd19908eb1f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/akismet/readme.txt FILE_MD5: 1c77defcbb7e53cfa279b9de6bbf0ac8 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 1c77defcbb7e53cfa279b9de6bbf0ac8 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/akismet/class.akismet.php FILE_MD5: 973fbb42db8feda75a549390a41d119e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 973fbb42db8feda75a549390a41d119e THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/akismet/class.akismet-admin.php FILE_MD5: 28d87fd123fdff4671f79a790d1933c5 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 28d87fd123fdff4671f79a790d1933c5 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/akismet/akismet.php FILE_MD5: 1fe1c88f3b433d1edd614c9777807c87 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 1fe1c88f3b433d1edd614c9777807c87 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/elementor/readme.txt FILE_MD5: 31cabc374b41a4bd1c8107dcaab89cb4 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: wp-content/plugins/woocommerce-admin/changelog.txt FILE_MD5: 95a4e1b4d1a444d27d67e61f6968a1bd SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: wp-content/plugins/woocommerce-gateway-paypal-express-checkout/changelog.txt FILE_MD5: 4a87fc170be872388ebbdd9b0620eec9 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: wp-content/plugins/wpforo/readme.txt FILE_MD5: 388328f78714424598e1351aaeb3e53e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: wp-includes/Requests/Exception/error_log FILE_MD5: 9e67de537ec18d19631a04c17ebb41e1 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 9e67de537ec18d19631a04c17ebb41e1 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/Requests/Response/error_log FILE_MD5: db93ffd5ff74c49c48c7866981915602 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: db93ffd5ff74c49c48c7866981915602 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/rest-api/endpoints/error_log FILE_MD5: 6803cca092720cdcc2d461282e6916e6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6803cca092720cdcc2d461282e6916e6 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/namespaced/error_log FILE_MD5: 450ecc61e60d23145f87865c67c80c2d SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 450ecc61e60d23145f87865c67c80c2d THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: Roofer/wp-content/plugins/elementor/readme.txt FILE_MD5: 9e1b254584d4e404b9fa54d974a75c7d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: Tree_Cutter/wp-content/plugins/elementor/readme.txt FILE_MD5: 31cabc374b41a4bd1c8107dcaab89cb4 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: Tree_Cutter/wp-content/themes/oceanwp/changelog.md FILE_MD5: 7042876638f6ec89b833d32a003b2bfe SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: baileyswebservices/wp-content/plugins/elementor/readme.txt FILE_MD5: 31cabc374b41a4bd1c8107dcaab89cb4 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: baileyswebservices/wp-content/plugins/woocommerce-admin/changelog.txt FILE_MD5: 95a4e1b4d1a444d27d67e61f6968a1bd SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: baileyswebservices/wp-content/plugins/woocommerce-gateway-paypal-express-checkout/changelog.txt FILE_MD5: 4a87fc170be872388ebbdd9b0620eec9 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: baileyswebservices/wp-content/plugins/wpforo/readme.txt FILE_MD5: 388328f78714424598e1351aaeb3e53e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: old TreeCutter old/wp-content/plugins/jetpack/changelog.txt FILE_MD5: 7e48de9e6ebd163197c8d4ec3bd1fe59 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: training/wp-content/plugins/paid-member-subscriptions/readme.txt FILE_MD5: c910c1714ab0ce79243b4b32a782682d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: training/wp-content/plugins/woocommerce-gateway-paypal-express-checkout/changelog.txt FILE_MD5: 4a87fc170be872388ebbdd9b0620eec9 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: wbailey/mackerel/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: wbailey/mackerel/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: wbailey/mackerel/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: wbailey/mackerel/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: wbailey/mackerel/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: wbailey/wp-content/plugins/elementor/readme.txt FILE_MD5: 31cabc374b41a4bd1c8107dcaab89cb4 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: williambailey/Resume/wp-admin/includes/file.php FILE_MD5: eca3df1c42dcb195bb168eba696f4643 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 0851bf1021290c6b158ee249341014df THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: williambailey/Resume/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ecded785d6aff5deea0cdc67102bbbc1 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x89\x50\x4E\x47\x0D\x0A\x1A\x0A... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: 79ffbb9ff88bbd6df8f7819c5d7fbba6 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: williambailey/Resume/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 0b6bab7f88e7d1c8abd825b825c4a18c SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: williambailey/Resume/wp-includes/Requests/IRI.php FILE_MD5: e9a2659ba6f22861d964d2f9101af243 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/SimplePie/Sanitize.php FILE_MD5: 572c6134f2bd566b14c5e736c5367f4c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/SimplePie/Misc.php FILE_MD5: 3450f6f20dca69f74299426514effa8e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: williambailey/Resume/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/blocks/legacy-widget.php FILE_MD5: a44f42b480eaef95ec00a370f0fcfbb2 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 25ff8a2032797cba7db735f74ee51b30 THREAT_NAME: Heur.CSS.Hidden.gen THREAT: <style> /* Reset theme styles */ html, body, #page, #content... DETAILS: Detected hidden CSS declaration FILE: williambailey.dev/old/wp-admin/includes/file.php FILE_MD5: 93ccd580d1b7d705e1d2f8d0cd1c8b23 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: e5df76608ef0644c9660b86ae0bedf02 THREAT_NAME: Heur.PHP.dumper.gen.100 THREAT: <?php /** * Filesystem API: Top-level functionality * * ... DETAILS: Detected malicious PHP script FILE: williambailey.dev/old/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: dfd590a5fb25fb0ff3f3332f19b47f2a SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-includes/ID3/module.audio-video.quicktime.php FILE_MD5: dfd590a5fb25fb0ff3f3332f19b47f2a SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a3097f998c020a893821573687a9dd7d THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x0C\x65\x6E\x63\x64\x00\x00\x01\x00... DETAILS: Generic suspicious HEX encoder FILE: williambailey.dev/old/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 18554921f8f15ab8c3b250a6c5d4554e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: dece6bb7544aea752ffc65dcf4fffbed THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \037\075\077\137\177... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-includes/PHPMailer/PHPMailer.php FILE_MD5: 18554921f8f15ab8c3b250a6c5d4554e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 5fceab5f0aaa620ba49ec7a3b00ec5c8 THREAT_NAME: Heur.PHP.Mailer.gen.4c4b4f THREAT: @mail($to, $subject, $body, $header)... DETAILS: Detected suspicious mailer FILE: williambailey.dev/old/wp-includes/SimplePie/Sanitize.php FILE_MD5: 758e6c9e8ca6a40766708eaa78d51297 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: f42965f2eadc023d249aba196d7ded3c THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\x2F\x3E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-includes/SimplePie/Misc.php FILE_MD5: b6bc49c3c91ab0dc7d5ba0588272625e SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-includes/SimplePie/Misc.php FILE_MD5: b6bc49c3c91ab0dc7d5ba0588272625e SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6027ad486a5819bbe261379b8f28a9c2 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x00\x00\x3C\x00\x00\x00\x3F\x00\x00\x00\x78\x00\x00\x00... DETAILS: Generic suspicious HEX encoder FILE: williambailey.dev/old/wp-includes/SimplePie/IRI.php FILE_MD5: 0add12f117392caf7a0fd384796345af SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: d93744ab72a8ebdc827df81bac776f23 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x20\x09\x0A\x0C\x0D... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/akismet/views/stats.php FILE_MD5: a667a967802216ab61e2fb5c4db11ad0 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a667a967802216ab61e2fb5c4db11ad0 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/akismet/views/get.php FILE_MD5: 3d081afee8025b8b31096ff377c754a0 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 3d081afee8025b8b31096ff377c754a0 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/akismet/views/connect-jp.php FILE_MD5: 303c683db0aa3e430295bad7bc4ce1e3 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 303c683db0aa3e430295bad7bc4ce1e3 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/akismet/views/config.php FILE_MD5: 310f1b0c0bdbf51f97a87785ee90d5a1 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 310f1b0c0bdbf51f97a87785ee90d5a1 THREAT_NAME: Heur.CoreFile.gen THREAT: Modified core file... DETAILS: Detected modified core file FILE: wp-content/plugins/autoptimize/classes/autoptimizeMain.php FILE_MD5: 4fa204b6d76360f2ec99d8e4c1f49a07 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 1f62fa1974b28998c4cf654bdc2c05f4 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xE2\x9A\xA1\xEF\xB8\x8F... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: wp-includes/Requests/Exception/HTTP/error_log FILE_MD5: b3fcee988345fe4080d9e4b93b37a675 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: b3fcee988345fe4080d9e4b93b37a675 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/namespaced/Core/error_log FILE_MD5: 24c1a28694d40c184d5ce86a669c760d SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 24c1a28694d40c184d5ce86a669c760d THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/src/Core/error_log FILE_MD5: f07fa98bc86f8a29fd5aef36c603bd0a SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: f07fa98bc86f8a29fd5aef36c603bd0a THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/src/Core32/error_log FILE_MD5: 7f74f3c5e0a617040f7c6b0335d70472 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 7f74f3c5e0a617040f7c6b0335d70472 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: Real_Estate/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: Roofer/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: Tree_Cutter/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/autoptimize/classes/autoptimizeMain.php FILE_MD5: 4fa204b6d76360f2ec99d8e4c1f49a07 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 1f62fa1974b28998c4cf654bdc2c05f4 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xE2\x9A\xA1\xEF\xB8\x8F... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: baileyswebservices/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: training/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-content/plugins/elementor/readme.txt FILE_MD5: 9e1b254584d4e404b9fa54d974a75c7d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 65b0f2becffb61cb9f5fba232f7b9987 THREAT_NAME: Heur.HTML.Defacement.gen.F4248 THREAT: Fatal Error... DETAILS: Website Potentially Defaced FILE: wbailey/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: wbailey/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-content/themes/wb4wp-wordpress-theme-492/woocommerce.css FILE_MD5: 43d1aa9622c21235d524319bf8de0ed0 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: williambailey/wp-content/themes/Divi/epanel/custom_functions.php FILE_MD5: 24fc77d2da72250ad87bf24d08b9d5e0 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 62312b13d39a912e67a88ed59407cb38 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace( '@\[et_pb_post_nav[^\]]*?\].*?\[\/e... DETAILS: Detected malicious iframe injection FILE: williambailey/wp-content/themes/Divi/epanel/core_functions.php FILE_MD5: 11c9d34cf594dbebf13dd72fa292636c SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 9f3d95d6c35e2421241197cdef00084e THREAT_NAME: Heur.PHP.Redirection.gen THREAT: <?php // Prevent file from being loaded directly if ( ! ... DETAILS: Detected malicious redirection header FILE: williambailey/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/defender-security/src/controller/ua-lockout.php FILE_MD5: cbae8ff89a4b5db08e9c9028d1abb1f5 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 3a442de841df69cbae3937e03eed93f2 THREAT_NAME: Heur.PHP.Dropper.gen THREAT: <?php namespace WP_Defender\Controller; use Calotes\Comp... DETAILS: Generic malware dropper FILE: wp-content/plugins/defender-security/src/controller/blacklist.php FILE_MD5: 9222fd89ec135ef725d1b30f5bc69c1a SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 7c504c7be1b5481946ef3bae819f0cba THREAT_NAME: Heur.PHP.Dropper.gen THREAT: <?php namespace WP_Defender\Controller; use Calotes\Comp... DETAILS: Generic malware dropper FILE: wp-content/plugins/defender-security/src/controller/audit-logging.php FILE_MD5: c6352416617ff298724314d33501eeac SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: d825dcc4bc6307c85d9792bd6d1fd932 THREAT_NAME: Heur.PHP.Dropper.gen THREAT: <?php namespace WP_Defender\Controller; use Calotes\Comp... DETAILS: Generic malware dropper FILE: wp-content/plugins/facebook-for-woocommerce/includes/Products/Feed.php FILE_MD5: e87af8f0cf4921cc918ec3bd6dd98eef SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 37f8dd3db33d1056aa195186987df7f9 THREAT_NAME: Heur.PHP.Dropper.gen THREAT: <?php // phpcs:ignoreFile /** * Copyright (c) Facebook, ... DETAILS: Generic malware dropper FILE: wp-content/plugins/jetpack/json-endpoints/jetpack/class.jetpack-json-api-cron-endpoint.php FILE_MD5: 78d9e103efbc685e937abdb47c7a2e68 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: wp-content/plugins/unlimited-elements-for-elementor/inc_php/framework/zip.class.php FILE_MD5: 4fbc6da91a9c787872728f5952a3403f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ff3cdc79b8de4d3ce9c91855933df13e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x50\x4b\x05\x06\x00\x00\x00\x00... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce/legacy/css/twenty-twenty.scss FILE_MD5: 00ee2029160d5be682f744b31eaf38cc SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-services/images/payment-logos/brazil-tef.svg FILE_MD5: 9da2ceca8668b7155bfae1e66219657e SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 39e187127514ba3d80daaf528521932e THREAT_NAME: Heur.JS.Encoded.gen THREAT: 9.16.68.06.69.08.67.12.66.16.65.18.64.22.62.25.6.28.59.3.57.... DETAILS: Malicious obfuscated JavaScript threat (JS Trojan Downloader) FILE: wp-includes/sodium_compat/namespaced/Core/ChaCha20/error_log FILE_MD5: d4b414fc62e31ee739c185d16e050cee SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: d4b414fc62e31ee739c185d16e050cee THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/src/Core/Poly1305/error_log FILE_MD5: 18a23b83b62b825436fd2f798e41096d SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 18a23b83b62b825436fd2f798e41096d THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/src/Core32/ChaCha20/error_log FILE_MD5: ae9fc238f5a1e87473e81e023b8656a8 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: ae9fc238f5a1e87473e81e023b8656a8 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: wp-includes/sodium_compat/src/Core32/Curve25519/error_log FILE_MD5: ddc0954a871899465f68185d9a871494 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: ddc0954a871899465f68185d9a871494 THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: Real_Estate/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: Roofer/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: Tree_Cutter/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: baileyswebservices/wp-content/plugins/facebook-for-woocommerce/includes/Products/Feed.php FILE_MD5: e87af8f0cf4921cc918ec3bd6dd98eef SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 37f8dd3db33d1056aa195186987df7f9 THREAT_NAME: Heur.PHP.Dropper.gen THREAT: <?php // phpcs:ignoreFile /** * Copyright (c) Facebook, ... DETAILS: Generic malware dropper FILE: baileyswebservices/wp-content/plugins/unlimited-elements-for-elementor/inc_php/framework/zip.class.php FILE_MD5: 4fbc6da91a9c787872728f5952a3403f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ff3cdc79b8de4d3ce9c91855933df13e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x50\x4b\x05\x06\x00\x00\x00\x00... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce-services/images/payment-logos/brazil-tef.svg FILE_MD5: 9da2ceca8668b7155bfae1e66219657e SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 39e187127514ba3d80daaf528521932e THREAT_NAME: Heur.JS.Encoded.gen THREAT: 9.16.68.06.69.08.67.12.66.16.65.18.64.22.62.25.6.28.59.3.57.... DETAILS: Malicious obfuscated JavaScript threat (JS Trojan Downloader) FILE: baileyswebservices/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: old TreeCutter old/wp-content/plugins/unlimited-elements-for-elementor/inc_php/framework/zip.class.php FILE_MD5: b99c92d7fdedc099e916ae30e3c41b05 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: ff3cdc79b8de4d3ce9c91855933df13e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x50\x4b\x05\x06\x00\x00\x00\x00... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-content/plugins/facebook-for-woocommerce/includes/Products/Feed.php FILE_MD5: e87af8f0cf4921cc918ec3bd6dd98eef SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 37f8dd3db33d1056aa195186987df7f9 THREAT_NAME: Heur.PHP.Dropper.gen THREAT: <?php // phpcs:ignoreFile /** * Copyright (c) Facebook, ... DETAILS: Generic malware dropper FILE: training/wp-content/plugins/paid-member-subscriptions/extend/profile-builder/functions-pb-redirect.php FILE_MD5: 33b577c09fbd6eacab8b9f20dd2178fb SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 478455a0e5b594a53280ea71f8a75bf4 THREAT_NAME: Heur.PHP.Redirection.gen THREAT: <?php // Exit if accessed directly if ( ! defined( 'ABSP... DETAILS: Detected malicious redirection header FILE: training/wp-content/plugins/woocommerce-services/images/payment-logos/brazil-tef.svg FILE_MD5: 9da2ceca8668b7155bfae1e66219657e SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 39e187127514ba3d80daaf528521932e THREAT_NAME: Heur.JS.Encoded.gen THREAT: 9.16.68.06.69.08.67.12.66.16.65.18.64.22.62.25.6.28.59.3.57.... DETAILS: Malicious obfuscated JavaScript threat (JS Trojan Downloader) FILE: training/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: wbailey/mackerel/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-content/plugins/jetpack/json-endpoints/jetpack/class.jetpack-json-api-cron-endpoint.php FILE_MD5: 78d9e103efbc685e937abdb47c7a2e68 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: wbailey/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: williambailey/Resume/wp-content/plugins/bluehost-wordpress-plugin/static/shepherd.js FILE_MD5: ff8f599c8802f8cc142e4f50d4780014 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0828df5c240b8860e3853e270ecda0cf THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: williambailey/Resume/wp-content/themes/Divi/epanel/custom_functions.php FILE_MD5: fe5dd311314d301583c37afc20d99f3b SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: 62312b13d39a912e67a88ed59407cb38 THREAT_NAME: Heur.PHP.iframe.gen.38 THREAT: preg_replace( '@\[et_pb_post_nav[^\]]*?\].*?\[\/e... DETAILS: Detected malicious iframe injection FILE: williambailey/Resume/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-content/plugins/jetpack/json-endpoints/jetpack/class.jetpack-json-api-cron-endpoint.php FILE_MD5: 78d9e103efbc685e937abdb47c7a2e68 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: williambailey/wp-content/themes/Divi/css/dynamic-assets/woocommerce.css FILE_MD5: d91a5721cef8915a88dbd6c85c6b33ff SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: williambailey.dev/old/wp-includes/SimplePie/Content/Type/Sniffer.php FILE_MD5: 4a195650b0743e254ed3e2b5f088e500 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 0f20fd27a6260896e56f4a8ee82cf61e THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-includes/js/dist/vendor/wp-polyfill.js FILE_MD5: 3745d97e3f5618ffd6ac8e7f916fca42 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6e8a2cb6e7aebc2376144e7adf130206 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\xA0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/auto-terms-of-service-and-privacy-policy/includes/admin/action/dismiss-notice.php FILE_MD5: 08ccd7c777f5d3d0476e7111d31f565b SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: wp-content/plugins/defender-security/src/extra/binary-to-text-php/README.md FILE_MD5: c1b663b37d5db8ec34e17d2d58a7c59d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: e3d8b83a4524c3d0e89811e0208b5cb2 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/defender-security/src/extra/binary-to-text-php/README.md FILE_MD5: c1b663b37d5db8ec34e17d2d58a7c59d SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 2a69fbde1768aeb2bb08ee9d2f614435 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E... DETAILS: Generic suspicious HEX encoder FILE: wp-content/plugins/defender-security/src/extra/phpqrcode/phpqrcode.php FILE_MD5: f2946adfaf13112841a44609d0179957 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 3408171e54547ea208dbf66946b9ea3b THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xa1\xa1\xa1\xa1\xa1... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/tcpdf_parser.php FILE_MD5: ad061c8bc4f5df3138efe55c49e37f33 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a788f4cca50ebbe5b12302fe936a3785 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x09\x0a\x0c\x0d\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/tcpdf_parser.php FILE_MD5: ad061c8bc4f5df3138efe55c49e37f33 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: f7d303074775a146b1b2cb5a8b56417c THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x28\x29\x3c\x3e\x5b\x5d\x7b\x7d\x2f\x25... DETAILS: Generic suspicious HEX encoder FILE: wp-includes/sodium_compat/namespaced/Core/Curve25519/Ge/error_log FILE_MD5: ba66695d9505cd0426dadeec6cc9d98b SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: ba66695d9505cd0426dadeec6cc9d98b THREAT_NAME: Heur.AlienFile.gen THREAT: Unknown file in core directory... DETAILS: Detected unknown file in core directory FILE: Example_1/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css FILE_MD5: 49928885d1b7a53620dc2fd479486039 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Example_1/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.css FILE_MD5: b70d4a79c94f79081a5c8d2c238358c8 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css FILE_MD5: 31e8b1c6f22873fe6f6e882d7cb89ea7 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Real_Estate/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.css FILE_MD5: 4e2026d74317dc282e1d79335a111b5b SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-content/themes/photofocus/sass/site/section/_woocommerce.scss FILE_MD5: 28db7b431d7f3c53c5e14c8caddc9b9b SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Roofer/wp-content/themes/photofocus/sass/site/section/_woocommerce-copy.scss FILE_MD5: 202573767d1e177175572599bdc58e52 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css FILE_MD5: 0f307d740d4245af4d5a21a4e3a54f64 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: Tree_Cutter/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.css FILE_MD5: 4e2026d74317dc282e1d79335a111b5b SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/auto-terms-of-service-and-privacy-policy/includes/admin/action/dismiss-notice.php FILE_MD5: 08ccd7c777f5d3d0476e7111d31f565b SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: baileyswebservices/wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/tcpdf_parser.php FILE_MD5: ad061c8bc4f5df3138efe55c49e37f33 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a788f4cca50ebbe5b12302fe936a3785 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x09\x0a\x0c\x0d\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/tcpdf_parser.php FILE_MD5: ad061c8bc4f5df3138efe55c49e37f33 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: f7d303074775a146b1b2cb5a8b56417c THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x28\x29\x3c\x3e\x5b\x5d\x7b\x7d\x2f\x25... DETAILS: Generic suspicious HEX encoder FILE: wbailey/mackerel/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: wbailey/wp-content/plugins/gallery-box/includes/all-gallery/vimeo-gallery/vimeo-gallery.php FILE_MD5: 849bcae1a058819b3d16fb7cacb43795 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: d54d8bd467fb892269bed58f5ca2d2ab THREAT_NAME: Heur.PHP.Encoded.gen THREAT: file_get_contents('https://vimeo.com/api/v2/video/'.$vimeo_id... DETAILS: Detected malicious PHP file operation FILE: williambailey/Resume/wp-content/plugins/creative-mail-by-constant-contact/assets/js/guest_checkout.js FILE_MD5: 1f83d658c72e03e9248b0b374e74d248 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: af1248f4ea1703d8f2bf17146710d2f6 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x27\x2A\x2B\x2D\x2F... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-content/plugins/jetpack/json-endpoints/jetpack/class.jetpack-json-api-cron-endpoint.php FILE_MD5: 78d9e103efbc685e937abdb47c7a2e68 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: b9dabf14014fb7becc2a63a6cb482a55 THREAT_NAME: Heur.PHP.Cron.gen THREAT: delete_transient( 'doing_cron' );... DETAILS: Cron PHP scheduler FILE: williambailey/Resume/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 55d8d7d3e303745d79ab1c15cd639b27 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-includes/sodium_compat/src/Core/Curve25519/H.php FILE_MD5: c6eecc17300d4a6058e7bd2238be6279 SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: c45b52756d9b5b18171fa925962fe811 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xed\xd3\xf5\x5c\x1a\x63\x12\x58\xd6\x9c\xf7\xa2\xde\xf9\xde... DETAILS: Generic suspicious HEX encoder FILE: williambailey.dev/old/wp-content/plugins/creative-mail-by-constant-contact/assets/js/guest_checkout.js FILE_MD5: 1f83d658c72e03e9248b0b374e74d248 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: af1248f4ea1703d8f2bf17146710d2f6 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x27\x2A\x2B\x2D\x2F... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-content/themes/sinatra/assets/css/woocommerce.min.css FILE_MD5: daddf4c4222129015cef454d55af4748 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/video-background/inc/vendor/cmb2/includes/CMB2.php FILE_MD5: 894c05f5f58f50fa9b1dad9e3801caf9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: wp-content/plugins/woocommerce/packages/woocommerce-blocks/assets/css/style.scss FILE_MD5: 61c2b85e2010222b8bf5ec198d44e29f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/include/tcpdf_static.php FILE_MD5: 347694a21be9d165af48f4537e91ea2f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 38ef493ac7346bce1657b234c8f0c019 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x28\xBF\x4E\x5E\x4E\x75\x8A\x41\x64\x00\x4E\x56\xFF\xFA\x01... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/include/tcpdf_static.php FILE_MD5: 347694a21be9d165af48f4537e91ea2f SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a4f77171d26e152c995db89401a35780 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x28\xBF\x4E\x5E\x4E\x75\x8A\x41\x64\x00\x4E\x56\xFF\xFA\x01... DETAILS: Generic suspicious HEX encoder FILE: baileyswebservices/wp-content/plugins/video-background/inc/vendor/cmb2/includes/CMB2.php FILE_MD5: 894c05f5f58f50fa9b1dad9e3801caf9 SEVERITY: enMaliciousThreatType ENGINE: fscanner THREAT_SIG: ccdb134e0a5071a7389cc1ebbb442692 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: $_REQUEST['c']... DETAILS: Detected malicious PHP REQUEST FILE: baileyswebservices/wp-content/plugins/woocommerce/packages/woocommerce-blocks/assets/css/style.scss FILE_MD5: dcd4591d8a1d0a8968d658ad1a996151 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/include/tcpdf_static.php FILE_MD5: 347694a21be9d165af48f4537e91ea2f SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 38ef493ac7346bce1657b234c8f0c019 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x28\xBF\x4E\x5E\x4E\x75\x8A\x41\x64\x00\x4E\x56\xFF\xFA\x01... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce-jetpack/includes/lib/tcpdf/include/tcpdf_static.php FILE_MD5: 347694a21be9d165af48f4537e91ea2f SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: a4f77171d26e152c995db89401a35780 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \x28\xBF\x4E\x5E\x4E\x75\x8A\x41\x64\x00\x4E\x56\xFF\xFA\x01... DETAILS: Generic suspicious HEX encoder FILE: training/wp-content/plugins/weforms/assets/wpuf/vendor/vue/vue.js FILE_MD5: b264c72ee39d6b8741dbedfd6f8fbc9d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a16f6665327b74a9ec35b5420e753d94 THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'x'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: wbailey/mackerel/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css FILE_MD5: c27f8128a2cdd5421127d04dc47671ba SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wbailey/mackerel/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.css FILE_MD5: b70d4a79c94f79081a5c8d2c238358c8 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-content/themes/sinatra/assets/css/compatibility/woocommerce.min.css FILE_MD5: ce76825d50de8e44189f9559eacb0553 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-content/themes/sinatra/assets/css/compatibility/woocommerce.css FILE_MD5: 51b4a13ec4c96a1f5f27671b500c6642 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/essential-addons-for-elementor-lite/assets/admin/vendor/sweetalert2/js/core.js FILE_MD5: 8ed9781b3d97c68a290592028d3c7efa SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6e8a2cb6e7aebc2376144e7adf130206 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\xA0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-jetpack/includes/lib/FPDI/src/PdfParser/Tokenizer.php FILE_MD5: 59616f10e988edd06df81759510cc0d5 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 8dd1c51715a6f0486237b392f1107b47 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x09\x0A\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css FILE_MD5: eb010b029b70e4f5161e91838b58d115 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min-rtl.css FILE_MD5: 414802278a8a05ab2426eaaea54ddfd0 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css FILE_MD5: ea5e17b868b7d22a6093f4a4c3cffa6c SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min-rtl.css FILE_MD5: a217003f735d6c9409b918431c4ed382 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/unminified/compatibility/woocommerce/woocommerce.css FILE_MD5: fbc2868bf9789d8c7543d9d4f3e5cc88 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/unminified/compatibility/woocommerce/woocommerce-rtl.css FILE_MD5: 41b2f0e813675c2309aa629b70d885ab SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/unminified/compatibility/woocommerce/woocommerce-grid.css FILE_MD5: f978754047cd43bda42714b720acf7df SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/themes/astra/assets/css/unminified/compatibility/woocommerce/woocommerce-grid-rtl.css FILE_MD5: c51b89fed4cf720c9afde3b20e859f52 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 077ed38850a47bae3e86bec24784fd6a THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \73\73\73\73\73... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/essential-addons-for-elementor-lite/assets/admin/vendor/sweetalert2/js/core.js FILE_MD5: 8ed9781b3d97c68a290592028d3c7efa SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6e8a2cb6e7aebc2376144e7adf130206 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\xA0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce-jetpack/includes/lib/FPDI/src/PdfParser/Tokenizer.php FILE_MD5: 59616f10e988edd06df81759510cc0d5 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 8dd1c51715a6f0486237b392f1107b47 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x09\x0A\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: training/wp-content/plugins/weforms/trunk/assets/wpuf/vendor/vue/vue.js FILE_MD5: b264c72ee39d6b8741dbedfd6f8fbc9d SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: a16f6665327b74a9ec35b5420e753d94 THREAT_NAME: Heur.JS.Encoded.gen THREAT: 'x'.replace... DETAILS: Suspicious obfuscated JavaScript threat FILE: wbailey/wp-content/plugins/essential-addons-for-elementor-lite/assets/admin/vendor/sweetalert2/js/core.js FILE_MD5: 8ed9781b3d97c68a290592028d3c7efa SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 6e8a2cb6e7aebc2376144e7adf130206 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x09\x0A\x0B\x0C\x0D\x20\xA0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce-jetpack/includes/lib/FPDI/src/PdfParser/Type/PdfName.php FILE_MD5: 6af58e783c9126beb56877152b510809 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 8dd1c51715a6f0486237b392f1107b47 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x09\x0A\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce-jetpack/includes/lib/FPDI/src/PdfParser/Type/PdfName.php FILE_MD5: 6af58e783c9126beb56877152b510809 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 8dd1c51715a6f0486237b392f1107b47 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \x00\x09\x0A\x0C\x0D\x20... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-content/plugins/creative-mail-by-constant-contact/vendor/mindscape/raygun4php/src/Raygun4php/cacert.crt FILE_MD5: 47961e7ef15667c93cd99be01b51f00a SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 87197f94cca124bb91d8be626794e454 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xc3\x9c\x42\xC4\xB0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-content/plugins/wb4wp-wordpress-plugin-bluehost-production/vendor/mindscape/raygun4php/src/Raygun4php/cacert.crt FILE_MD5: 47961e7ef15667c93cd99be01b51f00a SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 87197f94cca124bb91d8be626794e454 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xc3\x9c\x42\xC4\xB0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey.dev/old/wp-content/plugins/creative-mail-by-constant-contact/vendor/mindscape/raygun4php/src/Raygun4php/cacert.crt FILE_MD5: 47961e7ef15667c93cd99be01b51f00a SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 87197f94cca124bb91d8be626794e454 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xc3\x9c\x42\xC4\xB0... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-content/themes/Divi/includes/builder/frontend-builder/assets/vendors/plugins/spellchecker/plugin.min.js FILE_MD5: d5207d768756ef003686467ec51529db SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 9c1c8c88d1af2bfbbfc19d4391687b18 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xa7\xa9\xab\xae\xb1\xb6\xb7\xb8\xbb\xbc\xbd\xbe\xbf\xd7\xf7... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/wp-content/themes/Divi/includes/builder/frontend-builder/assets/vendors/plugins/spellchecker/plugin.min.js FILE_MD5: d5207d768756ef003686467ec51529db SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 948b3d1763f0f1a49f1bebe9ff884910 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xa7\xa9\xab\xae\xb1\xb6\xb7\xb8\xbb\xbc\xbd\xbe\xbf\xd7\xf7... DETAILS: Generic suspicious HEX encoder FILE: williambailey/wp-content/themes/Divi/includes/builder/frontend-builder/assets/vendors/plugins/wordcount/plugin.min.js FILE_MD5: 114c65172990b86aa33d4e383abc7236 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 3c0af43f54ccdeca17f785103e6aad50 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xa1\xab\xb7\xbb\xbf... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce/packages/woocommerce-blocks/assets/js/atomic/blocks/product-elements/rating/style.scss FILE_MD5: 26458086f70b9e17c78b29657aa72979 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: wp-content/plugins/woocommerce/packages/woocommerce-blocks/assets/js/base/components/reviews/review-list-item/style.scss FILE_MD5: d7c5a00830a56e8415e72e8e6c1c1a6b SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: baileyswebservices/wp-content/plugins/woocommerce/packages/woocommerce-blocks/assets/js/atomic/blocks/product-elements/rating/style.scss FILE_MD5: 26458086f70b9e17c78b29657aa72979 SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 46e1c5ff6a86e39b59c43e83b2c85d38 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \53\53\53\53\53... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-content/plugins/divi-builder/dashboard/js/tinymce/js/tinymce/plugins/spellchecker/plugin.min.js FILE_MD5: cffe89d197482490e4a4895f9a4da91b SEVERITY: enPotentiallySuspiciousThreatType ENGINE: fscanner THREAT_SIG: 9c1c8c88d1af2bfbbfc19d4391687b18 THREAT_NAME: Heur.PHP.Encoded.gen.271C THREAT: \xa7\xa9\xab\xae\xb1\xb6\xb7\xb8\xbb\xbc\xbd\xbe\xbf\xd7\xf7... DETAILS: Potentially suspicious obfuscated PHP threat FILE: williambailey/Resume/wp-content/plugins/divi-builder/dashboard/js/tinymce/js/tinymce/plugins/spellchecker/plugin.min.js FILE_MD5: cffe89d197482490e4a4895f9a4da91b SEVERITY: enSuspiciousThreatType ENGINE: fscanner THREAT_SIG: 948b3d1763f0f1a49f1bebe9ff884910 THREAT_NAME: Heur.PHP.Encoded.gen THREAT: \xa7\xa9\xab\xae\xb1\xb6\xb7\xb8\xbb\xbc\xbd\xbe\xbf\xd7\xf7... DETAILS: Generic suspicious HEX encoder
Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
- The topic ‘Infected Website, what to do after the scans’ is closed to new replies.