HEX
Server: LiteSpeed
System: Linux premium321.web-hosting.com 4.18.0-553.50.1.lve.el8.x86_64 #1 SMP Thu Apr 17 19:10:24 UTC 2025 x86_64
User: apkvhicq (1211)
PHP: 8.1.33
Disabled: NONE
$ pwd: /home/apkvhicq/
Upload Files
File: /home/apkvhicq/scanreport-apkvhicq-Oct_23_2025_17h05m.txt
----------- SCAN REPORT -----------
TimeStamp: Thu, 23 Oct 2025 17:05:05 -0400
(/usr/sbin/cxs --background --clamdsock /var/clamd --dbreport --defapache nobody --doptions Mv --exploitscan --nofallback --filemax 50000 --noforce --html --ignore /etc/cxs/cxs.ignore.manual --options mMOLfSGchexdnwZDRru --noprobability --qoptions Mv --report /home/apkvhicq/scanreport-apkvhicq-Oct_23_2025_17h05m.txt --sizemax 1000000 --ssl --summary --sversionscan --timemax 30 --unofficial --user apkvhicq --virusscan --vmrssmax 2000000 --waitscan 0 --xtra /etc/cxs/cxs.xtra.manual)


Scanning /home/apkvhicq:

'/home/apkvhicq/.nc_plugin/hidden'
# World writeable directory

'/home/apkvhicq/.trash/cgi-bin/cgi-bin/cgi-bin/VyJCQePtnxjZG.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/images/images/jp2_68f068bb225c2.zip'
# (compressed file: b_68f068bb225c2.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Exploit [P2202]]

'/home/apkvhicq/.trash/images.2/images/images/images/images/KynPpTCsjgXWq.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-admin/user/user/bBHwrEuUeqXa.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-admin.2/css/colors/ectoplasm/ectoplasm/ectoplasm/GcJbmuzXjVvQgBxNLY.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-admin.2/css/css/mp2_68f068bcd332c.zip'
# (compressed file: b_68f068bcd332c.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Exploit [P2195]]

'/home/apkvhicq/.trash/wp-includes/Text/Diff/Engine/qqqoqsnnopp.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes/images/w-dddbdfaabcc.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-includes/images/media/dddbdfaabcc.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.1/Text/Diff/Engine/orsrooqqrnrsqsp.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.1/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.1/images/w-befebbddeaefdfc.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.1/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-includes.1/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-includes.1/images/media/befebbddeaefdfc.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.2/Text/Diff/Engine/nsnqooqnonpsrn.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.2/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.2/images/w-afadbbdabacfea.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/.trash/wp-includes.2/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-includes.2/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/.trash/wp-includes.2/images/media/afadbbdabacfea.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/PvWwUTSCHMbmYFzqan.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/177slot.com.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/HCgiarjstGbvlXFKJB.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/177slot.com.pk/wp-content/plugins/akismet/_inc/img/logo-nprqpnopssq.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/wp-content/plugins/google-site-kit/third-party/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571k1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/wp-content/plugins/google-site-kit/third-party/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571r1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/wp-content/plugins/wpvivid-backuprestore/includes/lib/google-api-php-client/src/Google/Http/Http/jpeg_68f9d5046324c.zip'
# (compressed file: b_68f9d5046324c.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/177slot.com.pk/wp-includes/Text/Diff/Engine/nprqpnopssq.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/wp-includes/images/w-acedcabcffd.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/177slot.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/177slot.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/177slot.com.pk/wp-includes/images/media/acedcabcffd.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/gif_68f0598405682.zip'
# (compressed file: b_68f0598405682.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Exploit [P2195]]

'/home/apkvhicq/2a.com.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/zTjVKcIQGp.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/images/images/images/iZhCVItzEXSm.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/wp-admin/css/colors/ectoplasm/ectoplasm/eK.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/wp-admin/css/colors/midnight/midnight/rIWmkbKpMCEVJlZ.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/wp-admin/network/network/FgJkCH.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/wp-content/plugins/akismet/_inc/img/logo-nrsosooonror.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/wp-content/plugins/google-site-kit/third-party/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571k1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/wp-content/plugins/google-site-kit/third-party/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571r1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/wp-includes/Text/Diff/Engine/nrsosooonror.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/wp-includes/images/w-aefbfbbbaebe.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/2a.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/2a.com.pk/wp-includes/images/media/aefbfbbbaebe.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cb.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/wjCPbuxhXHlkLiTJBN.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cb.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/wgBJhmFsra.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cb.pk/wp-admin/css/colors/midnight/midnight/LTSgfwHEWMqQxivaXl.jpg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cb.pk/wp-admin/maint/maint/GZSiRHrMyjuCfJwYlLPa.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cb.pk/wp-content/plugins/akismet/_inc/img/logo-possssrrqqqqp.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cb.pk/wp-includes/Text/Diff/Engine/possssrrqqqqp.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cb.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cb.pk/wp-includes/blocks/query-pagination-next/query-pagination-next/fla_68f05ae261958.zip'
# (compressed file: b_68f05ae261958.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/777cb.pk/wp-includes/images/w-cbffffeeddddc.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cb.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cb.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cb.pk/wp-includes/images/media/cbffffeeddddc.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-admin/network/network/fla_68f08771d8eaa.zip'
# (compressed file: b_68f08771d8eaa.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/777cbgame.com.pk/wp-content/plugins/akismet/_inc/img/logo-snpoqpnpsprpqpssoqs.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-content/plugins/google-site-kit/third-party/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571k1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-content/plugins/google-site-kit/third-party/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571r1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-includes/Text/Diff/Engine/snpoqpnpsprpqpssoqs.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-includes/images/w-facbdcacfcecdcffbdf.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.com.pk/wp-includes/images/media/facbdcacfcecdcffbdf.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.com.pk/wp-includes/js/tinymce/plugins/wordpress/wordpress/TUZuBjrGEqI.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.pk/cgi-bin/cgi-bin/cgi-bin/i.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.pk/images/images/images/sKGEiXZkvfRmCwrWxP.jpg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.pk/wp-admin/maint/maint/TkjSUnEHF.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.pk/wp-content/plugins/akismet/_inc/img/logo-spnooqqprnoon.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.pk/wp-includes/Text/Diff/Engine/spnooqqprnoon.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.pk/wp-includes/images/w-fcabbddceabba.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/777cbgame.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/777cbgame.pk/wp-includes/images/media/fcabbddceabba.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-content/plugins/akismet/_inc/img/logo-nsnqooqnonpsrn.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-content/themes/appyn-15/includes/google-api-php-client-master/vendor/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571k1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-content/themes/appyn-15/includes/google-api-php-client-master/vendor/phpseclib/phpseclib/phpseclib/Crypt/EC/Curves/sect571r1.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-includes/Text/Diff/Engine/nsnqooqnonpsrn.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-includes/images/w-afadbbdabacfea.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/apkgeo.net/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/apkgeo.net/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/apkgeo.net/wp-includes/images/media/afadbbdabacfea.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/c444.com.pk/wp-content/plugins/GP-Premium/sections/functions/metaboxes/views/views/avi_68f068e494ccb.zip'
# (compressed file: b_68f068e494ccb.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/c444.com.pk/wp-content/plugins/akismet/_inc/img/logo-qqqoqsnnopp.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/c444.com.pk/wp-content/plugins/kadence-blocks/vendor/vendor-prefixed/stellarwp/uplink/src/assets/css/css/FErBXT.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/c444.com.pk/wp-content/uploads/2025/10/10/QzZqFyAhMXkTtS.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/c444.com.pk/wp-includes/Text/Diff/Engine/qqqoqsnnopp.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/c444.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/c444.com.pk/wp-includes/images/w-dddbdfaabcc.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/c444.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/c444.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/c444.com.pk/wp-includes/images/media/dddbdfaabcc.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/c444.pk/wordpress/wordpress/jpg_68fa6d8f712ef.zip'
# (compressed file: b_68fa6d8f712ef.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/c444.pk/wp-content/plugins/akismet/_inc/img/logo-orsrooqqrnrsqsp.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.com.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/ix.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.com.pk/wp-content/plugins/akismet/_inc/img/logo-srqnnorposopn.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.com.pk/wp-includes/Text/Diff/Engine/srqnnorposopn.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.com.pk/wp-includes/blocks/comments-pagination/comments-pagination/bHmusZXJ.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.com.pk/wp-includes/images/w-fedaabecbfbca.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.com.pk/wp-includes/images/media/fedaabecbfbca.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.pk/images/images/lpEYZWFuyJfi.jpg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/images/images/images/images/images/images/mp3_68f9d49436418.zip'
# (compressed file: b_68f9d49436418.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Exploit [P2202]]

'/home/apkvhicq/fly33.pk/images/images/images/images/images/images/images/rvc.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/wp-admin/css/colors/ectoplasm/ectoplasm/PukeCGyJIqUi.jpeg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/wp-admin/images/images/Pzej.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/wp-content/plugins/akismet/_inc/img/logo-orpssoqsson.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.pk/wp-includes/SimplePie/src/Decode/Decode/WSmqkf.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/wp-includes/Text/Diff/Engine/orpssoqsson.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.pk/wp-includes/images/w-becffbdffba.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/fly33.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/fly33.pk/wp-includes/images/media/becffbdffba.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/ikka7.com.pk/class-.php'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/ikka7.com.pk/.tmb'
# World writeable directory

'/home/apkvhicq/ikka7.com.pk/cgi-bin/cgi-bin/jICZGsFiUEhYReQ.jpg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/ikka7.com.pk/wp-admin/css/colors/midnight/midnight/prjKxlTGzQAFLqSuE.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/ikka7.com.pk/wp-content/plugins/akismet/_inc/img/logo-nsnprnopsqn.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/ikka7.com.pk/wp-content/plugins/wp-file-manager/lib/codemirror/mode/clike/index.html'
# Suspicious file type [application/x-c]

'/home/apkvhicq/ikka7.com.pk/wp-includes/Text/Diff/Engine/nsnprnopsqn.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/ikka7.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/ikka7.com.pk/wp-includes/images/w-afaceabcfda.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/ikka7.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/ikka7.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/ikka7.com.pk/wp-includes/images/media/afaceabcfda.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.com.pk/cgi-bin/cgi-bin/cgi-bin/NlqnzRHkSvwfijbJQsu.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.com.pk/wp-content/plugins/akismet/_inc/img/logo-psopronpnppqr.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.com.pk/wp-content/plugins/kadence-blocks/vendor/vendor-prefixed/vlucas/phpdotenv/src/Repository/Repository/yITJv.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.com.pk/wp-includes/Text/Diff/Engine/psopronpnppqr.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.com.pk/wp-includes/images/w-cfbcebacaccde.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.com.pk/wp-includes/images/media/cfbcebacaccde.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.net/cgi-bin/cgi-bin/cgi-bin/flv_68f051d617d7a.zip'
# (compressed file: b_68f051d617d7a.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Exploit [P2195]]

'/home/apkvhicq/pak786.net/wp-admin/css/colors/midnight/midnight/GyhkNjgrJPTaKHtZMF.jpg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.net/wp-admin/images/images/mp3_68f051d5e8ab5.zip'
# (compressed file: b_68f051d5e8ab5.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/pak786.net/wp-content/plugins/akismet/_inc/img/logo-roqonorosnoqsqosr.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.net/wp-includes/Text/Diff/Engine/roqonorosnoqsqosr.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.net/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.net/wp-includes/blocks/preformatted/preformatted/BkpRJ.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.net/wp-includes/images/w-ebdbabebfabdfdbfe.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/pak786.net/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.net/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/pak786.net/wp-includes/images/media/ebdbabebfabdfdbfe.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/s92bet.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/JFVIyMhlsCUGmAWHp.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/s92bet.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/qz.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/s92bet.pk/wp-admin/css/colors/colors/wCHEik.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/s92bet.pk/wp-content/plugins/akismet/_inc/img/logo-nppqnprspqnono.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/s92bet.pk/wp-content/plugins/kadence-blocks/vendor/vendor-prefixed/stellarwp/uplink/src/Uplink/Auth/Admin/Admin/sYhf.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/s92bet.pk/wp-includes/Text/Diff/Engine/nppqnprspqnono.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/s92bet.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/s92bet.pk/wp-includes/images/w-accdacefcdabab.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/s92bet.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/s92bet.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/s92bet.pk/wp-includes/images/media/accdacefcdabab.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/vg70.pk/wp-content/plugins/akismet/_inc/img/logo-rsqspoqnrr.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/vg70.pk/wp-includes/Text/Diff/Engine/rsqspoqnrr.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/vg70.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/vg70.pk/wp-includes/images/w-efdfcbdaee.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/vg70.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/vg70.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/vg70.pk/wp-includes/images/media/efdfcbdaee.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/w567.com.pk/wp-content/plugins/akismet/_inc/img/logo-ssrnrpoqsqo.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.com.pk/wp-includes/blocks/comments/comments/yVpxrQ.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.com.pk/wp-includes/images/w-ffeaecbdfdb.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.com.pk/wp-includes/images/media/ffeaecbdfdb.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/cgi-bin/cgi-bin/ez.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/cgi-bin/cgi-bin/cgi-bin/eUCMTfljJQg.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/wp-admin/css/colors/coffee/coffee/pkfZV.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/wp-admin/css/colors/colors/m3u_68f71bea30834.zip'
# (compressed file: b_68f71bea30834.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Shell Exploit [P2189]]

'/home/apkvhicq/w567.pk/wp-admin/includes/includes/mp2_68f068bdce69b.zip'
# (compressed file: b_68f068bdce69b.tmp [depth: 1]) Known exploit = [Fingerprint Match (fp)] [PHP Exploit [P2202]]

'/home/apkvhicq/w567.pk/wp-content/plugins/akismet/_inc/img/logo-srsqspnornrpqo.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/w567.pk/wp-content/plugins/litespeed-cache/lib/css_js_min/minify/data/js/js/cache.php'
# Known exploit = [Fingerprint Match (fp)] [PHP Injection Attack [P1261]]

'/home/apkvhicq/w567.pk/wp-content/plugins/plugins/fIYi.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/wp-includes/Text/Diff/Engine/srsqspnornrpqo.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/w567.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/w567.pk/wp-includes/images/w-fefdfcabeaecdb.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/w567.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/w567.pk/wp-includes/images/media/fefdfcabeaecdb.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.com.pk/wp-content/plugins/akismet/_inc/img/logo-nqssqqopspqn.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.com.pk/wp-includes/Text/Diff/Engine/nqssqqopspqn.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.com.pk/wp-includes/images/w-adffddbcfcda.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/win9.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/win9.com.pk/wp-includes/images/media/adffddbcfcda.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.pk/cgi-bin/cgi-bin/cgi-bin/cgi-bin/cgi-bin/Q.jpeg'
# Suspicious image file (hidden script file)

'/home/apkvhicq/win9.pk/images/images/images/images/tqucZAJzpjLbRXBWweYr.tif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/win9.pk/wp-content/plugins/akismet/_inc/img/logo-nrooooroq.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.pk/wp-includes/Text/Diff/Engine/nrooooroq.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.pk/wp-includes/images/w-aebbbbebd.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/win9.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/win9.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/win9.pk/wp-includes/images/media/aebbbbebd.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/zk777.com.pk/images/images/images/images/images/images/RqmYark.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/zk777.com.pk/wp-content/plugins/akismet/_inc/img/logo-oppppnnqpo.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/zk777.com.pk/wp-content/plugins/kadence-blocks/dist/blocks/header/header/AhXZ.tiff'
# Suspicious image file (hidden script file)

'/home/apkvhicq/zk777.com.pk/wp-includes/Text/Diff/Engine/oppppnnqpo.ttf'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/zk777.com.pk/wp-includes/blocks/cover/style-rel.css'
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/zk777.com.pk/wp-includes/images/w-bccccaadcb.gif'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/zk777.com.pk/wp-includes/images/wpspin-1x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/zk777.com.pk/wp-includes/images/xit-3x.gif'
# Suspicious image file (hidden script file)

'/home/apkvhicq/zk777.com.pk/wp-includes/images/media/bccccaadcb.png'
# Suspicious image file (hidden script file)
# Universal decode regex match = [universal decoder]

'/home/apkvhicq/zk777.pk/images/images/images/qGyYUpBRreXWhFE.png'
# Suspicious image file (hidden script file)

'/home/apkvhicq/zk777.pk/images/images/images/images/UZl.png'
# Suspicious image file (hidden script file)

----------- SCAN SUMMARY -----------
Scanned directories: 30599
Scanned files: 346708
Ignored items: 813
Suspicious matches: 286
Viruses found: 0
Fingerprint matches: 14
Data scanned: 6307.55 MB
Scan peak memory: 396756 kB
Scan time/item: 0.022 sec
Scan time: 8284.314 sec
@ Telegram