Advertisement
Guest User

Untitled

a guest
Feb 8th, 2016
68
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.28 KB | None | 0 0
  1. >>> Looking for domain animateurmicro.com, please wait...
  2. >>> /root/php-malware-finder/phpmalwarefinder -v /var/www/*/b/1/a/*animateurmicro.com*
  3. >>> checking ...
  4. DangerousPhp /var/www/28/b/1/a/animateurmicro.com/nouveau/libraries/joomla/application/daemon.php
  5. 0xf1a:$system: system
  6. 0x366f:$system: system
  7. 0x5e6e:$system: system
  8. 0x6082:$system: system
  9. 0x52b5:$: exec
  10. 0x534c:$: passthru
  11. 0x36e4:$: posix_getuid
  12. 0x37ca:$: posix_getgid
  13. 0x3639:$: posix_getpwuid
  14. 0x38b6:$: posix_getpwuid
  15. 0xdd2:$: function_exists
  16. 0x32b7:$: posix_setuid
  17. 0x3708:$: posix_setuid
  18. DangerousPhp /var/www/28/b/1/a/animateurmicro.com/nouveau/libraries/vendor/joomla/application/src/AbstractDaemonApplication.php
  19. 0xd00:$system: system
  20. 0x32e8:$system: system
  21. 0x5b2a:$system: system
  22. 0x5d3d:$system: system
  23. 0x4f55:$: exec
  24. 0x4fec:$: passthru
  25. 0x335d:$: posix_getuid
  26. 0x3446:$: posix_getgid
  27. 0x32b2:$: posix_getpwuid
  28. 0x3535:$: posix_getpwuid
  29. 0xbbf:$: function_exists
  30. 0x2f2a:$: posix_setuid
  31. 0x3381:$: posix_setuid
  32. DangerousPhp /var/www/28/b/1/a/animateurmicro.com/nouveau/administrator/components/com_joomlaupdate/restore.php
  33. 0x316:$system: system
  34. 0x103c5:$system: system
  35. 0x2bdc2:$system: system
  36. 0x27ddc:$: exec
  37. 0x27f7c:$: exec
  38. 0x27fad:$: exec
  39. 0x28071:$: exec
  40. 0x280bf:$: exec
  41. 0x280d8:$: exec
  42. 0x28183:$: exec
  43. 0x281ea:$: exec
  44. 0x28246:$: exec
  45. 0x2826f:$: exec
  46. 0x28284:$: exec
  47. 0x282a5:$: exec
  48. 0x282bd:$: exec
  49. 0x28312:$: exec
  50. 0x28327:$: exec
  51. 0x28345:$: exec
  52. 0x2835a:$: exec
  53. 0x28382:$: exec
  54. 0x2839a:$: exec
  55. 0x28519:$: exec
  56. 0x28750:$: exec
  57. 0x287dd:$: exec
  58. 0x28823:$: exec
  59. 0x28843:$: exec
  60. 0x2885c:$: exec
  61. 0x28877:$: exec
  62. 0x2889d:$: exec
  63. 0x28969:$: exec
  64. 0x2897d:$: exec
  65. 0x28a20:$: exec
  66. 0x28ab0:$: exec
  67. 0x28ace:$: exec
  68. 0x34a1f:$: exec
  69. 0x1090:$: eval
  70. 0x355:$: function_exists
  71. 0x4e4:$: function_exists
  72. 0x5bc:$: function_exists
  73. 0x6c5:$: function_exists
  74. 0x6ec:$: function_exists
  75. 0x23d1:$: function_exists
  76. 0x2a51:$: function_exists
  77. 0x91e1:$: function_exists
  78. 0x92e3:$: function_exists
  79. 0x97cf:$: function_exists
  80. 0x15a5d:$: function_exists
  81. 0x28045:$: function_exists
  82. 0x287b1:$: function_exists
  83. 0x28bef:$: function_exists
  84. 0x28c3e:$: function_exists
  85. 0x28d0f:$: function_exists
  86. 0x28da4:$: function_exists
  87. 0x2df80:$: function_exists
  88. 0x2dfa4:$: function_exists
  89. 0x2e0f1:$: function_exists
  90. 0x2e115:$: function_exists
  91. 0x32b13:$: function_exists
  92. 0x35387:$: function_exists
  93. 0x366:$: php_uname
  94. 0x39d:$: php_uname
  95. SuspiciousEncoding /var/www/28/b/1/a/animateurmicro.com/www/index.php
  96. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/index.php
  97. 0x220:$pr: preg_replace("/.+/e"
  98. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/templates/beez/html/com_content/frontpage/default.php
  99. 0x7:$pr: preg_replace('/(.*)/e'
  100. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/templates/beez/html/com_user/login/default_logout.php
  101. 0x7:$pr: preg_replace('/(.*)/e'
  102. ObfuscatedPhp /var/www/28/b/1/a/animateurmicro.com/www/templates/yoo_symphony/index.php
  103. 0x227b:$oneliner: <?php eval(
  104. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/editors/index.php
  105. 0x229:$execution: eval(gzinflate
  106. ObfuscatedPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/editors/jce/tiny_mce/plugins/code/css/lmages.php
  107. 0x3:$oneliner: <?php\x0D\x0Aeval(
  108. SuspiciousEncoding /var/www/28/b/1/a/animateurmicro.com/www/plugins/editors/jce/tiny_mce/plugins/code/css/lmages.php
  109. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/system/Zend/Ldap/Converter.php
  110. 0x924:$pr: preg_replace("/\\\([0-9A-Fa-f]{2})/e"
  111. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/system/Zend/Tag/Cloud/Exception.php
  112. 0x7:$pr: preg_replace('/(.*)/e'
  113. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/system/Zend/Markup/Parser/Exception.php
  114. 0x7:$pr: preg_replace('/(.*)/e'
  115. ObfuscatedPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/system/Zend/Session.php
  116. 0x1dae:$strange_arg: ${$localOptionMemberName}
  117. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/plugins/system/Zend/Loader/Autoloader/Resource.php
  118. 0x7:$pr: preg_replace('/(.*)/e'
  119. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/components/com_myblog/libraries/tags.php
  120. 0x226:$pr: preg_replace("/([\xC2\xC3])([\x80-\xBF])/e"
  121. DodgyPhp /var/www/28/b/1/a/animateurmicro.com/www/components/com_myblog/table/tag.php
  122. 0xa69:$pr: preg_replace("/([\xC2\xC3])([\x80-\xBF])/e"
  123. DodgyPhp /var/www/28/b/1/a/animateurmicro.com
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement