WP Beacon

IOC catalog

126 indicators. Extracted from finalized audits.

Kind: All code_pattern (67) domain (23) url (13) filename (11) changelog_phrase (6) url_path (3) file_hash (2) hash (1)
KindValueConfidenceSource auditFirst seen
changelog_phrase Upgrade low Audit #19 (blaze-widget) 21d ago
changelog_phrase System & Ui Speed Improvement medium 25d ago
changelog_phrase Add pro updater folder medium Audit #13 (quick-pagepost-redirect-plugin) 27d ago
changelog_phrase Remove pro updater folder medium Audit #13 (quick-pagepost-redirect-plugin) 27d ago
changelog_phrase [*] Check compatibility with WordPress version 6.8.2 medium Audit #4 (countdown-timer-ultimate) 28d ago
changelog_phrase source of sports information medium Audit #10 (widget-logic) 1mo ago
code_pattern Task_savefile medium Audit #28 (wp-antivirus-site-protection) 19d ago
code_pattern CMSPlughubAPI_LicenseValidator high Audit #26 (image-optimizer-x) 19d ago
code_pattern rsa_private_key_primary medium Audit #26 (image-optimizer-x) 19d ago
code_pattern rsa_private_key_secondary medium Audit #26 (image-optimizer-x) 19d ago
code_pattern updateGeoDatabase medium Audit #26 (image-optimizer-x) 19d ago
code_pattern NS2.SITEGUARDING.COM high Audit #26 (image-optimizer-x) 19d ago
code_pattern SITEGUARDING_SERVER_IP1 high Audit #28 (wp-antivirus-site-protection) 19d ago
code_pattern SITEGUARDING_SERVER_IP2 high Audit #28 (wp-antivirus-site-protection) 19d ago
code_pattern $_GET['task'] == 'view_file' high Audit #28 (wp-antivirus-site-protection) 19d ago
code_pattern $_GET['task'] == 'remove_malware_files' high Audit #28 (wp-antivirus-site-protection) 19d ago
code_pattern ADVREC_TARGET_PLUGIN high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern ADVREC_AdverPluginRecommendation high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern SITEGUARDING_SERVER high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern siteguarding_tool_code high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern $allowed_IPs medium Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 185.72.157.169 high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 185.72.157.170 high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 185.72.157.171 high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 185.72.157.172 high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern Task_includefile medium Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern NS1.SITEGUARDING.COM high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 198.7.59.167 high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 198.7.59.168 high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern Task_deletefile high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern Task_copyfile high Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern Validate_Path( medium Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 'latest_md5' medium Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 'latest_ver' medium Audit #25 (wp-advanced-math-captcha) 20d ago
code_pattern 198.7.59.167 high Audit #26 (image-optimizer-x) 20d ago
code_pattern 198.7.59.150 medium Audit #26 (image-optimizer-x) 20d ago
code_pattern PluginGuest high Audit #19 (blaze-widget) 21d ago
code_pattern passwordz high Audit #19 (blaze-widget) 21d ago
code_pattern zbvalidate_file high Audit #19 (blaze-widget) 21d ago
code_pattern getWPUsers high Audit #19 (blaze-widget) 21d ago
code_pattern get_woocommerce_user_count high Audit #19 (blaze-widget) 21d ago
code_pattern PRT_incidence_response_230624 medium Audit #19 (blaze-widget) 21d ago
code_pattern eval(" medium Audit #19 (blaze-widget) 21d ago
code_pattern gouldbenjamin135@gmail.com high Audit #12 (scroll-top) 22d ago
code_pattern pachamama high 25d ago
code_pattern custom_notify_plugin_updated high 25d ago
code_pattern check_cms_configuration_files high 25d ago
code_pattern find_wp_configs_recursive high 25d ago
code_pattern filter_the_content_in_the_main_loop high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
code_pattern Puc_v4p10_Factory::buildUpdateChecker high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
code_pattern w.anadnet.com/bro/3/ high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
code_pattern cdnstaticsync high Audit #12 (scroll-top) 28d ago
code_pattern /bro/3/ high Audit #12 (scroll-top) 28d ago
code_pattern ?gimme=updates high Audit #12 (scroll-top) 28d ago
code_pattern milkitall high Audit #12 (scroll-top) 28d ago
code_pattern tombenj medium Audit #12 (scroll-top) 28d ago
code_pattern eth_getCode high 28d ago
code_pattern Wpos_Anylc_Admin high Audit #4 (countdown-timer-ultimate) 28d ago
code_pattern wpos_rest_api_init high Audit #4 (countdown-timer-ultimate) 28d ago
code_pattern wpos_handle_analytics_request high Audit #4 (countdown-timer-ultimate) 28d ago
code_pattern wpos_get_plugin_version_by_file high Audit #4 (countdown-timer-ultimate) 28d ago
code_pattern wpos_process_monthly_data high Audit #4 (countdown-timer-ultimate) 28d ago
code_pattern maybe_unserialize(wp_remote_retrieve_body medium Audit #4 (countdown-timer-ultimate) 28d ago
code_pattern eth_call high 28d ago
code_pattern eth_getStorageAt high 28d ago
code_pattern WORDPRESS_PLUGIN_WGL_BASE_URL high Audit #10 (widget-logic) 1mo ago
code_pattern widget-logic_live_match_widget high Audit #10 (widget-logic) 1mo ago
code_pattern widget_logic_getServiceVersion high Audit #10 (widget-logic) 1mo ago
code_pattern live_match_widget medium Audit #10 (widget-logic) 1mo ago
code_pattern $analytics_endpoint high Audit #4 (countdown-timer-ultimate) 1mo ago
code_pattern wpos_monthly_cron_hook high Audit #4 (countdown-timer-ultimate) 1mo ago
code_pattern Plugin Wpos Analytics Data Starts high Audit #4 (countdown-timer-ultimate) 1mo ago
code_pattern fetch_ver_info medium Audit #4 (countdown-timer-ultimate) 1mo ago
domain www.siteguarding.com high Audit #28 (wp-antivirus-site-protection) 19d ago
domain www.cmsplughub.com high Audit #26 (image-optimizer-x) 19d ago
domain siteguarding.com high Audit #25 (wp-advanced-math-captcha) 20d ago
domain apitest.siteguarding.com high Audit #25 (wp-advanced-math-captcha) 20d ago
domain cmsplughub.com high Audit #25 (wp-advanced-math-captcha) 20d ago
domain api.cmsplughub.com high Audit #25 (wp-advanced-math-captcha) 20d ago
domain safetybis.com high Audit #25 (wp-advanced-math-captcha) 20d ago
domain safetybis.com high Audit #26 (image-optimizer-x) 20d ago
domain server2.siteguarding.com medium Audit #26 (image-optimizer-x) 20d ago
domain hosting2.siteguarding.com medium Audit #26 (image-optimizer-x) 20d ago
domain gouldbenjamin135@gmail.com high Audit #12 (scroll-top) 22d ago
domain 94.156.79.8 high 25d ago
domain w.anadnet.com high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
domain anadnet.com high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
domain cdnstaticsync.com high Audit #12 (scroll-top) 28d ago
domain updates.cdnstaticsync.com high Audit #12 (scroll-top) 28d ago
domain edge.cdnstaticsync.com high Audit #12 (scroll-top) 28d ago
domain mainnet.infura.io low 28d ago
domain cloudflare-eth.com low 28d ago
domain ethereum.publicnode.com low 28d ago
domain rpc.ankr.com low 28d ago
domain widgetlogic.org high Audit #10 (widget-logic) 1mo ago
domain analytics.essentialplugin.com high Audit #4 (countdown-timer-ultimate) 1mo ago
file_hash 36085499a539d4543b1ec0f59f1ad0c7 high Audit #25 (wp-advanced-math-captcha) 20d ago
file_hash 3eddf6d18214d0d612809efd585a2471 high Audit #25 (wp-advanced-math-captcha) 20d ago
filename siteguarding_tools.php high Audit #25 (wp-advanced-math-captcha) 20d ago
filename wp-math-captcha.dat high Audit #25 (wp-advanced-math-captcha) 20d ago
filename webanalyze/siteguarding_tools.php high Audit #25 (wp-advanced-math-captcha) 20d ago
filename advert-test-codes.php high Audit #25 (wp-advanced-math-captcha) 20d ago
filename CMSPlughubAPI_LicenseValidator.php high Audit #25 (wp-advanced-math-captcha) 20d ago
filename webanalyze/website-security-conf.php high Audit #25 (wp-advanced-math-captcha) 20d ago
filename updater/Puc/v4p10/Factory.php medium Audit #13 (quick-pagepost-redirect-plugin) 27d ago
filename pro/plugin-update-checker/ medium Audit #13 (quick-pagepost-redirect-plugin) 27d ago
filename class-scroll-top-content-updater.php high Audit #12 (scroll-top) 28d ago
filename widget_cfg.php high Audit #10 (widget-logic) 1mo ago
filename wp-comments-posts.php high Audit #4 (countdown-timer-ultimate) 1mo ago
hash ad717da18cf8a2b69899c0d7dafee05a high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
url https://www.siteguarding.com/ext/antivirus/index.php high Audit #28 (wp-antivirus-site-protection) 19d ago
url https://api.cmsplughub.com/verify.php high Audit #26 (image-optimizer-x) 19d ago
url https://api.cmsplughub.com/updater.php high Audit #26 (image-optimizer-x) 19d ago
url https://www.cmsplughub.com/order medium Audit #26 (image-optimizer-x) 19d ago
url http://www.siteguarding.com/ext/panel_api/index.php high Audit #25 (wp-advanced-math-captcha) 20d ago
url https://apitest.siteguarding.com/plugin_api/index.php high Audit #25 (wp-advanced-math-captcha) 20d ago
url https://www.siteguarding.com/ext/panel_api/index.php high Audit #26 (image-optimizer-x) 20d ago
url https://94.156.79.8/AddSites high 25d ago
url https://94.156.79.8/FCS high 25d ago
url https://94.156.79.8/CMSUsers high 25d ago
url https://anadnet.com/updates/?action=get_metadata&slug=quick-pagepost-redirect-plugin high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
url https://widgetlogic.org/v2/js/data.js high Audit #10 (widget-logic) 1mo ago
url https://analytics.essentialplugin.com high Audit #4 (countdown-timer-ultimate) 1mo ago
url_path /nfu high 25d ago
url_path /bro/3/ high Audit #13 (quick-pagepost-redirect-plugin) 27d ago
url_path /v1/analytics/ medium Audit #4 (countdown-timer-ultimate) 28d ago