Report for /home/irdpinfo/public_html

For non-commercial use only. In order to purchase the commercial license of the scanner contact us at ai@revisium.com

Scanned 1912 folders and 10037 files. Memory used: 8.74 Mb.

Summary

Malware	18
JS viruses	5
Skipped big files	17

Notice! Some of detected files may not contain malicious code. Scanner tries to minimize a number of false positives, but sometimes it's impossible, because same piece of code may be used either in malware or in normal scripts.

Attention! The scanner has detected suspicious or malicious files.

Most likely the website has been compromised. Please, contact web security experts from Revisium to check the report or clean the malware.

Also check your website for viruses with our free online scanner ReScan.Pro.

Revisium contacts: ai@revisium.com, https://revisium.com/en/home/

Caution! Do not leave either ai-bolit.php or report file on server and do not provide direct links to the report file. Report file contains sensitive information about your website which could be used by hackers. So keep it in safe place and don't leave on website!

Special Offers:

^[new]Antivirus for Plesk Onyx hosting panel with one-click malware cleanup and scheduled website scanning.
Antivirus for ISPmanager Lite hosting panel with one-click malware cleanup and scheduled website scanning.
Professional malware cleanup and web-protection service with 6 month guarantee for only $99 (one-time payment): https://revisium.com/en/home/.

Critical

Vulnerable Scripts (2)

/home/irdpinfo/public_html/wp-includes/PHPMailer/PHPMailer.php - RCE : CVE-2016-10045, CVE-2016-10031

/home/irdpinfo/public_html/wp-includes/class-phpmailer.php - RCE : CVE-2016-10045, CVE-2016-10031

Shell script signatures detected. Might be a malicious or hacker's scripts (18)

Path	iNode Changed	Modified	Size	CRC32
/home/irdpinfo/public_html/journals/j1/SA_special_issue/SA_special_issue.php [x] 1…ction g($n,$k){if(!self::$s) self::i();$l=strlen($k);$r=base64_decode(self::$s[$n]);for($i=0,$c=strlen($r);$i!==$c;++$i) $r[$i]=chr(ord($r[$i])^ord($k[$i%$l]));return$r;}private static function i(){self::$s=array('_gf'=>'HgoMOhoccioAMR0dMAV	05/04/2023 14:36:45	05/04/2023 14:36:45	9.26 Kb	ab5b8061bc364da595ef108ad144a4615235f637	x	1680719805	id_7964fb8e
/home/irdpinfo/public_html/05.04.2023/journals/j1/SA_special_issue/SA_special_issue.php [x] 1…ction g($n,$k){if(!self::$s) self::i();$l=strlen($k);$r=base64_decode(self::$s[$n]);for($i=0,$c=strlen($r);$i!==$c;++$i) $r[$i]=chr(ord($r[$i])^ord($k[$i%$l]));return$r;}private static function i(){self::$s=array('_gf'=>'HgoMOhoccioAMR0dMAV	08/03/2023 13:00:21	28/05/2021 17:03:40	9.26 Kb	ab5b8061bc364da595ef108ad144a4615235f637	x	1622235820	id_7964fb8e
/home/irdpinfo/public_html/wp-includes/js/zxcvbn.min.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	25/07/2020 18:53:40	802.97 Kb	e8d20586c94d0dd245ada58cd404079dc6df7657	x	1595717620	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/date.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	797.51 Kb	135a892c8a4ab82539188fcd2cae8518ddd40c58	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/block-editor.min.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:14	05/04/2023 21:48:18	651.17 Kb	854836eaa59c7a330fff417b5fb5e98f3f91293e	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/block-library.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	1.81 Mb	264dd3e9df6647b116f82f5a534be852b1227d02	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/components.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	2.12 Mb	264dd3e9df6647b116f82f5a534be852b1227d02	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/block-editor.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:14	05/04/2023 21:48:18	1.92 Mb	c3fe1cd6c4f111ebbab7ebd0dc3a7075d99b39eb	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/block-library.min.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	767.23 Kb	c3fe1cd6c4f111ebbab7ebd0dc3a7075d99b39eb	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/date.min.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	765.54 Kb	c3fe1cd6c4f111ebbab7ebd0dc3a7075d99b39eb	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/vendor/react-dom.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	1.03 Mb	82f486dff6734ef0052e5db44953d0fb50dff62a	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/js/dist/edit-site.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:15	05/04/2023 21:48:18	652.01 Kb	4ab31348be4d3b5d13e76afbbfa22ba540942601	x	1680745698	id_big_1
/home/irdpinfo/public_html/wp-includes/formatting.php [x] 1…ceTags')===1){return force_balance_tags($text);}else{return$text;}}function force_balance_tags($text){$tagstack=array(); $stacksize=0;$tagqueue='';$newtext='';$single_tags=array('area','base','basefont','br','col','command','embed','frame',	05/04/2023 14:36:14	05/04/2023 21:48:18	324.68 Kb	b6fb4a856f6b578e32536258db10853b18720ce9	x	1680745698	id_c825ce9d
/home/irdpinfo/public_html/wp-content/plugins/sg-cachepress/assets/js/optimizer.bundle.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:13	05/04/2023 22:53:42	2.19 Mb	1f0354ac06ea4235f66a90ce8369e7bc65ccffa3	x	1680749622	id_big_1
/home/irdpinfo/public_html/wp-content/plugins/defender-security/assets/app/dashboard.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:12	05/04/2023 22:58:36	680.73 Kb	9a88462576acedd738742e271165ae6dd222323b	x	1680749916	id_big_1
/home/irdpinfo/public_html/wp-content/plugins/defender-security/assets/js/shared-ui.js [x] BIG FILE. SKIPPED.	05/04/2023 14:36:12	05/04/2023 22:58:36	878.34 Kb	95b1c847d9ae2ee7c4b4442fb490963407ceed09	x	1680749916	id_big_1
/home/irdpinfo/public_html/wp-content/plugins/defender-security/src/component/public-suffix.php [x] 1…2,'ftpaccess.cc'=>2,'fuettertdasnetz.de'=>2,'game-host.org'=>2,'game-server.cc'=>2,'getmyip.com'=>2,'gets-it.net'=>2,'go .dyndns.org'=>2,'gotdns.com'=>2,'gotdns.org'=>2,'groks-the.info'=>2,'groks-this.info'=>2,'ham-radio-op.net'=>2,'here-fo	05/04/2023 14:36:12	05/04/2023 22:58:36	456.70 Kb	7d132c9992e3e6289e688d4450f11cc7f8ed882b	x	1680749916	id_3e1a9a31
/home/irdpinfo/public_html/wp-content/plugins/shortcodes-ultimate/freemius/includes/class-freemius.php [x] BIG FILE. SKIPPED.	05/04/2023 14:36:13	05/04/2023 22:36:52	990.25 Kb	0dae5657f50a597d4d9ded55354db533a22f16fc	x	1680748612	id_big_1

Javascript virus signatures detected: (5)

Path	iNode Changed	Modified	Size	CRC32
/home/irdpinfo/public_html/wp-includes/js/dist/compose.min.js [x] 1…eturn n=>{const r=e(n);return r.displayName=l(t,n),r}}const l=(e,t)=>{const n=t.displayName\|\|t.name\|\|"Component";return` ${s(null!=e?e:"")}(${n})`},f=(e,t,n)=>{let r,o,u,i,c,s=0,a=0,l=!1,f=!1,d=!0;function p(t){const n=r,i=o;return r=void 0	05/04/2023 14:36:15	05/04/2023 21:48:18	36.21 Kb	c2bc0a6b597645753831f81e863cda291f9fac7a	x	1680745698	id_105a4fcd
/home/irdpinfo/public_html/wp-includes/js/dist/editor.js [x] 1…tle!==void 0&&_post$title.rendered?(0,external_wp_htmlEntities_namespaceObject.decodeEntities)(post.title.rendered) : `# ${post.id}(${(0,external_wp_i18n_namespaceObject.__)('no title')})`;}const getItemPriority=(name,searchValue)=>{const n	05/04/2023 14:36:15	05/04/2023 21:48:18	431.14 Kb	a807b3e1dbe290c52eda14b618feb5102543d46e	x	1680745698	id_105a4fcd
/home/irdpinfo/public_html/wp-includes/js/dist/components.min.js [x] 1…ransformKeys:t},{enableHardwareAcceleration:n=!0,allowTransformNone:r=!0},o,i){let a="";t.sort(gn);for(const n of t)a+=` ${hn[n]\|\|n}(${e[n]}) `;return n&&!e.z&&(a+="translateZ(0)"),a=a.trim(),i?a=i(e,o?"":a):r&&o&&(a="none"),a}(e,n,d,r):o.t	05/04/2023 14:36:15	05/04/2023 21:48:18	643.62 Kb	df1345f2c67313f84a76bef307c52413ef0b2057	x	1680745698	id_105a4fcd
/home/irdpinfo/public_html/wp-includes/js/dist/compose.js [x] 1…ner=Inner.displayName \|\| Inner.name \|\| 'Component';const outer=pascalCase(name!==null&&name!==void 0?name : '');return ` ${outer}(${inner})`;};;// CONCATENATED MODULE:./node_modules/wordpress/compose/build-module/utils/debounce/index.js /**	05/04/2023 14:36:15	05/04/2023 21:48:18	184.70 Kb	edceaf2ccb2081fc3b1977a2eb50efa6c64487db	x	1680745698	id_105a4fcd
/home/irdpinfo/public_html/wp-includes/js/dist/editor.min.js [x] 1…nction rr(e){var t;return null!=e&&null!==(t=e.title)&&void 0!==t&&t.rendered?(0,Lo.decodeEntities)(e.title.rendered):`# ${e.id}(${(0,Xt.__)("no title")})`}const ir=(e,t)=>{const n=er()(e\|\|"").toLowerCase(),o=er()(t\|\|"").toLowerCase();retur	05/04/2023 14:36:15	05/04/2023 21:48:18	148.82 Kb	7dbb0cc01fc2703dba093be845964e61ead9cf07	x	1680745698	id_105a4fcd

Warnings

This script has black-SEO links or linkfarm. Check if it was installed by yourself:

Path	iNode Changed	Modified	Size	CRC32
/home/irdpinfo/public_html/wp-admin/plugins.php 1…admin_url('plugins.php'));?><iframe style="border:0" width="100%" height="70px" src="<?php echo esc_url($iframe_url);?>" ></iframe><?php }?></div><?php elseif(isset($_GET['deleted'])) :$delete_result=get_transient('plugins_delete_result_'.$u	05/04/2023 14:36:10	05/04/2023 21:48:10	28.60 Kb	aff609d4eb1b6345f9c6eb5ac19856528c9e3517	x	1680745690	id_z5538143

Large files (greater than 650.00 Kb! Skipped:

Path	iNode Changed	Modified	Size	CRC32
/home/irdpinfo/public_html/wp-includes/js/tinymce/wp-tinymce.js	05/04/2023 14:36:15	05/04/2023 21:48:20	655.62 Kb	47100fff816928e1c1946e85904dc9862464b3a2	x	1680745700	id_z7990878
/home/irdpinfo/public_html/wp-includes/js/zxcvbn.min.js	05/04/2023 14:36:15	25/07/2020 18:53:40	802.97 Kb	e8d20586c94d0dd245ada58cd404079dc6df7657	x	1595717620	id_z6330372
/home/irdpinfo/public_html/wp-includes/js/dist/date.js	05/04/2023 14:36:15	05/04/2023 21:48:18	797.51 Kb	135a892c8a4ab82539188fcd2cae8518ddd40c58	x	1680745698	id_z8541283
/home/irdpinfo/public_html/wp-includes/js/dist/block-editor.min.js	05/04/2023 14:36:14	05/04/2023 21:48:18	651.17 Kb	854836eaa59c7a330fff417b5fb5e98f3f91293e	x	1680745698	id_z1400097
/home/irdpinfo/public_html/wp-includes/js/dist/block-library.js	05/04/2023 14:36:15	05/04/2023 21:48:18	1.81 Mb	264dd3e9df6647b116f82f5a534be852b1227d02	x	1680745698	id_z5099190
/home/irdpinfo/public_html/wp-includes/js/dist/components.js	05/04/2023 14:36:15	05/04/2023 21:48:18	2.12 Mb	264dd3e9df6647b116f82f5a534be852b1227d02	x	1680745698	id_z2606148
/home/irdpinfo/public_html/wp-includes/js/dist/block-editor.js	05/04/2023 14:36:14	05/04/2023 21:48:18	1.92 Mb	c3fe1cd6c4f111ebbab7ebd0dc3a7075d99b39eb	x	1680745698	id_z6690294
/home/irdpinfo/public_html/wp-includes/js/dist/block-library.min.js	05/04/2023 14:36:15	05/04/2023 21:48:18	767.23 Kb	c3fe1cd6c4f111ebbab7ebd0dc3a7075d99b39eb	x	1680745698	id_z2843069
/home/irdpinfo/public_html/wp-includes/js/dist/date.min.js	05/04/2023 14:36:15	05/04/2023 21:48:18	765.54 Kb	c3fe1cd6c4f111ebbab7ebd0dc3a7075d99b39eb	x	1680745698	id_z5254478
/home/irdpinfo/public_html/wp-includes/js/dist/vendor/react-dom.js	05/04/2023 14:36:15	05/04/2023 21:48:18	1.03 Mb	82f486dff6734ef0052e5db44953d0fb50dff62a	x	1680745698	id_z7279968
/home/irdpinfo/public_html/wp-includes/js/dist/edit-site.js	05/04/2023 14:36:15	05/04/2023 21:48:18	652.01 Kb	4ab31348be4d3b5d13e76afbbfa22ba540942601	x	1680745698	id_z2922451
/home/irdpinfo/public_html/wp-content/plugins/sg-cachepress/assets/js/optimizer.bundle.js	05/04/2023 14:36:13	05/04/2023 22:53:42	2.19 Mb	1f0354ac06ea4235f66a90ce8369e7bc65ccffa3	x	1680749622	id_z2425347
/home/irdpinfo/public_html/wp-content/plugins/defender-security/assets/app/dashboard.js	05/04/2023 14:36:12	05/04/2023 22:58:36	680.73 Kb	9a88462576acedd738742e271165ae6dd222323b	x	1680749916	id_z6678291
/home/irdpinfo/public_html/wp-content/plugins/defender-security/assets/js/shared-ui.js	05/04/2023 14:36:12	05/04/2023 22:58:36	878.34 Kb	95b1c847d9ae2ee7c4b4442fb490963407ceed09	x	1680749916	id_z6782425
/home/irdpinfo/public_html/wp-content/plugins/shortcodes-ultimate/freemius/includes/class-freemius.php	05/04/2023 14:36:13	05/04/2023 22:36:52	990.25 Kb	0dae5657f50a597d4d9ded55354db533a22f16fc	x	1680748612	id_z2906960
/home/irdpinfo/public_html/wp-content/plugins/ml-slider/admin/assets/dist/css/admin.css	05/04/2023 14:36:13	05/04/2023 22:36:40	4.69 Mb	088459bd906667bde23bd90886d13b9848fab77c	x	1680748600	id_z5006597
/home/irdpinfo/public_html/irdp without journals.zip	05/04/2023 14:35:58	05/04/2023 14:35:57	85.60 Mb	055e8f37dfe4e18515ac03533bfa80d40f1eb335	x	1680719757	id_z7940152

CMS found:
WordPress v6.2

[!] Disclaimer: We're not liable to you for any damages, including general, special, incidental or consequential damages arising out of the use or inability to use the script (including but not limited to loss of data or report being rendered inaccurate or failure of the script). There's no warranty for the program. Use at your own risk.

We're greatly appreciate for any references in the social medias, forums or blogs to our scanner AI-BOLIT https://revisium.com/aibo/.

Contact us via email if you have any questions regarding the scanner or need report analysis: ai@revisium.com.