Title: Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit
Last modified: September 20, 2020

---

# Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit

 *  [Polo Jafri](https://wordpress.org/support/users/polojafri007/)
 * (@polojafri007)
 * [5 years, 7 months ago](https://wordpress.org/support/topic/known-exploit-fingerprint-match-php-obfuscated-include-exploit/)
 *     ```
       Scanning /home/robustn1:
   
       '/home/robustn1/public_html/index.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1693]]
   
       '/home/robustn1/public_html/wp-config.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1693]]
   
       '/home/robustn1/public_html/.well-known/acme-challenge/index.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1693]]
   
       '/home/robustn1/public_html/.well-known/pki-validation/index.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1694]]
   
       '/home/robustn1/public_html/forum'
       World writeable directory
   
       '/home/robustn1/public_html/news'
       World writeable directory
   
       '/home/robustn1/public_html/wp-admin/export-personal-data.php'
       Known exploit = [Fingerprint Match] [PHP Injection Exploit [P0997]]
   
       '/home/robustn1/public_html/wp-admin/includes/class-language-pack-upgrader.php'
       Known exploit = [Fingerprint Match] [PHP Injection Exploit [P0997]]
   
       '/home/robustn1/public_html/wp-content/aiowps_backups/backup.wp-config.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1693]]
   
       '/home/robustn1/public_html/wp-content/plugins/classic-editor/classic-editor.php'
       Script version check [OLD] [Classic Editor v1.5 < v1.6]
   
       '/home/robustn1/public_html/wp-content/plugins/updraftplus/updraftplus.php'
       Script version check [OLD] [UpdraftPlus - Backup/Restore v1.16.21 < v1.16.28]
   
       '/home/robustn1/public_html/wp-content/plugins/weglot/src/actions/admin/class-admin-enqueue-weglot.php'
       Universal decode regex match = [universal decoder]
   
       '/home/robustn1/public_html/wp-content/plugins/wordpress-seo/wp-seo.php'
       Script version check [OLD] [Yoast SEO v13.2 < v14.9]
   
       '/home/robustn1/public_html/wp-content/plugins/wordpress-seo/src/exceptions/missing-method.php'
       Known exploit = [Fingerprint Match] [PHP Injection Exploit [P0997]]
   
       '/home/robustn1/public_html/wp-content/themes/shaped-blog/includes/vcbjsokt.php'
       Known exploit = [Fingerprint Match] [PHP Shell [P1654]]
   
       '/home/robustn1/public_html/wp-content/themes/twentyseventeen/template-parts/page/content-front-page.php'
       Known exploit = [Fingerprint Match] [PHP Injection Exploit [P0997]]
   
       '/home/robustn1/public_html/wp-content/uploads/2020/01/wyriauip.php'
       Known exploit = [Fingerprint Match] [PHP Shell [P1654]]
   
       '/home/robustn1/public_html/wp-content/uploads/2020/07/dmtiigwz.php'
       Known exploit = [Fingerprint Match] [PHP COOKIE Exploit [P1753]]
   
       '/home/robustn1/public_html/wp-content/uploads/2020/07/qzhbrs-1596099890.5503.php'
       Suspicious image file (hidden script file)
       Bayes exploit probability score [high probability]
   
       '/home/robustn1/public_html/wp-content/uploads/2020/08/ulycyx-1597455481.1531.php5'
       Suspicious image file (hidden script file)
       Bayes exploit probability score [high probability]
   
       '/home/robustn1/public_html/wp-content/uploads/wpdiscuz/cache/moflhetj.php'
       Known exploit = [Fingerprint Match] [PHP Exploit [P1532]]
   
       '/home/robustn1/public_html/wp-includes/huiz8d.php'
       Known exploit = [Fingerprint Match] [Shell Exploit [P0310]]
   
       '/home/robustn1/public_html/wp-includes/version.php'
       Script version check [OLD] [Wordpress v5.3.4 < v5.5.1]
   
       '/home/robustn1/public_html/wp-includes/IXR/class-IXR-date.php'
       Known exploit = [Fingerprint Match] [PHP Injection Exploit [P0997]]
   
       '/home/robustn1/public_html/wp-includes/Requests/Exception/wfwuyubc.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscation Exploit [P0803]]
   
       '/home/robustn1/public_html/wp-includes/SimplePie/Registry.php'
       Known exploit = [Fingerprint Match] [PHP Injection Exploit [P0997]]
   
       '/home/robustn1/public_html/wp-includes/SimplePie/HTTP/excbfwbd.php'
       Known exploit = [Fingerprint Match] [PHP Shell [P1654]]
   
       '/home/robustn1/public_html/wp-includes/SimplePie/XML/oilbfwgs.php'
       Known exploit = [Fingerprint Match] [PHP Shell [P1654]]
   
       '/home/robustn1/public_html/wp-includes/blocks/xmxbohcj.php'
       Known exploit = [Fingerprint Match] [PHP Shell [P1654]]
   
       '/home/robustn1/public_html/wp-snapshots/index.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1694]]
   
       '/home/robustn1/public_html/wp-snapshots/dup-installer/index.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1693]]
   
       '/home/robustn1/public_html/wp-snapshots/dup-installer/lib/.1eac88fd.ico'
       Known exploit = [Fingerprint Match] [PHP Exploit [P1790]]
   
       '/home/robustn1/public_html/wp-snapshots/tmp/index.php'
       Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit [P1693]]
   
       ----------- SCAN SUMMARY -----------
       Scanned directories: 2084
       Scanned files: 16701
       Ignored items: 194
       Suspicious matches: 35
       Viruses found: 0
       Fingerprint matches: 24
       Data scanned: 834.02 MB
       Scan peak memory: 370744 kB
       Scan time/item: 0.040 sec
       Scan time: 752.726 sec
       ```
   
    -  This topic was modified 5 years, 7 months ago by [Yui](https://wordpress.org/support/users/fierevere/).
 * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fknown-exploit-fingerprint-match-php-obfuscated-include-exploit%2F%3Foutput_format%3Dmd&locale=en_US)
   to see the link]_

Viewing 1 replies (of 1 total)

 *  Moderator [Yui](https://wordpress.org/support/users/fierevere/)
 * (@fierevere)
 * 永子
 * [5 years, 7 months ago](https://wordpress.org/support/topic/known-exploit-fingerprint-match-php-obfuscated-include-exploit/#post-13429053)
 * > [FAQ My site was hacked](https://wordpress.org/support/article/faq-my-site-was-hacked/)

Viewing 1 replies (of 1 total)

The topic ‘Known exploit = [Fingerprint Match] [PHP Obfuscated Include Exploit’ 
is closed to new replies.

 * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
 * 1 reply
 * 2 participants
 * Last reply from: [Yui](https://wordpress.org/support/users/fierevere/)
 * Last activity: [5 years, 7 months ago](https://wordpress.org/support/topic/known-exploit-fingerprint-match-php-obfuscated-include-exploit/#post-13429053)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics