| Posted by hostgatorhost, 06-09-2015, 01:35 PM | | I have namecheap reseller and vps so i have to scan few website so can you tell me how can scan my website ?
|
| Posted by ServerSam, 06-09-2015, 01:42 PM | | To scan your whole VPS, install clamav/maldet and run it on your home directory, e.g. /home
|
| Posted by TheSHosting, 06-09-2015, 01:51 PM | | MalDet is the best free solution available to scan accounts if you have root level access on the server. Or are you looking for any online scan tool?
|
| Posted by Alpha66, 06-09-2015, 11:26 PM | | If you have a few number of websites you can download a backups on your pc ( if you have a good internet ) and scan the files with a good reputable virus software like avira , kaspersky or nod you can still scan your websites with clamv online without download your backps
|
| Posted by kpmedia, 06-09-2015, 11:36 PM | | cxs is worth the $75.
|
| Posted by hostgatorhost, 06-10-2015, 12:39 AM | | Thank you let me check now
|
| Posted by XP Mai, 06-10-2015, 07:47 AM | | Note that virus scanners can only scan for virus/malware but not vulnerabilities.
It's uncommon for website files to be infected with virus unless the uploader is infected, otherwise you'll need to manual read the codes/enable good firewall.
|
| Posted by IH-John, 06-10-2015, 02:44 PM | | If this was a recent issue, you might want to search for the most recently modified files through shell. For example "find /home/username/public_html/ -mtime 0"
|
| Posted by Forward Web, 06-10-2015, 04:00 PM | | You got some good recommendations in regards to CXS + Maldent (which can be used for any websites residing on your VPS). For the accounts you have with namecheap (or any shared account where you do not have root access) you will need to trust that your webhost is up to par with server security or you can migrate everything to a VPS.
For the front end, although not intended for virus scanning http://tools.pingdom.com/fpt/ gives you some insight on the front end (to identify any potential problem areas or embeded code via Iframes that redirect your traffic to malicious websites).
|
| Posted by tuhostmx, 06-10-2015, 04:44 PM | | cxs, maldet and rkhunter
|
| Posted by salvicapitalcorp, 06-12-2015, 01:43 PM | | Just use free online virus scanning websites. Just google "Free website virus scan" they will all pop up. Cheers
|
| Posted by hostgatorhost, 06-13-2015, 07:19 AM | | i have scanned from cpanel here is option for virus scanner, but can you tell me how can virus uplaoded to my cpanel ?
when i have make website i use real script from opencart so how can its posible ?
|
| Posted by Forward Web, 06-13-2015, 09:58 AM | | What you are referring to is Clam AntiVirus, not the best, not the worst and only performs a basic scan of your directories (often times picking up false positives or only picking up the obvious). To answer your question, there are many ways a file can become infected inside of your directory (someone would need at the very least, full access to your cPanel account to determine what might have happened.
|
| Posted by bitvigorhosting, 06-13-2015, 10:14 AM | | I agree, ClamAV is an essential plugin I install on all my cPanel servers. It's decent and free!
|
| Posted by hosting2007, 06-15-2015, 01:38 AM | | Try pyxsoft anti malware plugin for cPanel. They have 7 day trial.
|
| Posted by net, 06-15-2015, 01:58 AM | | Moved > Hosting Security and Technology.
|
| Posted by EthernetServers, 06-15-2015, 02:16 AM | | Never a good idea to rely on ClamAV, or any similar software, to say a website is virus-free. A better option would be ClamAV & Maldet which can team up together to make a decent attempt at picking out rogue files. Still not perfect by any means. No one can give an answer of a malware/virus scanner to guarantee a clean site, it also depends on what the site is running (e.g. MyBB, Joomla, WordPress) as to how you should go about checking the integrity of what's under your account.
|
| Posted by mellow-h, 06-16-2015, 09:34 AM | | One more vote for Pyxsoft. I find them better than Maldet and CXS both.
|
| Posted by pacwebhosting, 06-16-2015, 10:19 AM | | Hi
CXS is excellent http://configserver.com/cp/cxs.html with a cost attached.
If the cost is prohibitive then maldet is decent also.
Thanks
Paul
|
| Posted by Bbnuse, 06-18-2015, 01:44 AM | | If you want a free solution, go with ClamAV + Maldet.
If you want a paid one, go with cxs (ConfigServer eXploit Scanner).
You can also use commands like grep and find to locate files infected with malicious code. Example:
Be careful because not all files may be malware. Examine the results one by one.
Most common reasons:
1) Weak FTP passwords: "123456", "password", and so on.
2) Software not updated. Always keep your software updated to avoid security issues.
3) Local PC infected with keyloggers or trojans that steal passwords.
4) Code vulnerabilities.
|
| Posted by techs4gnu, 06-18-2015, 02:40 AM | | For free one to run server wide I will suggest Maldet + Clamscan installed.
For online site checks/ scan, You may use Sucuri SiteCheck,Quttera,VirusTotal etc
For paid version, I will suggest pyxsoft rather than CXS
Hope this helps
|
| Posted by acm_whr, 06-18-2015, 06:49 AM | | From the server I would also suggest maldet scan and through online we can use https://sitecheck.sucuri.net/
Further, regarding "how can virus uploaded to my cpanel" there are so many ways. Was the index page alone attacked? If that is the case, it could be an iframe attack.
An iframe injection results in password harvesting and mass modification of index files.This often occurs if your client machine that connects to the server via FTP has virus in it.
The virus usually works in one or more of the following ways:
1. It knows what files store the FTP username and password, opens the file steals the credentials and sends them to the hackers server.
2. It sniffs the FTP traffic and since FTP transmits all data, including username and password in plain text, it's easy to capture.
3. It uses the infected PC to modify the html/php/whatever code and sends it to the FTP site from a valid PC.
4. It includes a keyboard logger to record what username and password is being used prior to FTP transmission.
To prevent this in future:
1. scan the PCs that connect to the server via FTP and remove any infections.
2. Use FTP in passive mode.
3. Reset all FTP passwords to complex ones.
4.Once you have verified that 100% of the scripts are stable, you will need to go through all files of your account and make sure none is uploaded by hackers before you audited or left by you from an old install of an application. There may be files in folders you would never imagine. You can use ftp or cpanel file manager to go through all files under public_html and compare them with your local copy. [You should always maintain a local copy for this comparison as well as backup]
5. Keep your antivirus updated and regularly check your computer for malicious iframe codes and other viruses.
6. Always download plugins and theme from the author’s website only or from the reliable source. Be careful while downloading from third party website.
7. Make sure you have set the right permission for all your directories and especially .htaccess file. If your .htaccess file is writable then there is a very good chance that your website will get attacked sooner or later.
|
| Posted by Srv24x7, 06-22-2015, 11:24 AM | | Hi,
May options are available, but sucuri sitecheck is the first choice of all of them. You can scan your website for free on their online scanning portal.
|
|
 Add to Favourites
 Print this Article
|
