how to scan my site files and database at server against malware, adware and virsus? or how do u know that ur site has any suspicious code.
i think if you are using cpanel there is a inbuilt option for virus scan and most probably the server admin is aware of it.. because if your files are infected than it would affect the complete server too that's why server admin do have some anti-virus option... hope this helps...
You can use cpanel for that to scan your site or there are special software or scripts that you can install on your server and set a cron job for it, than you will be ok..
Check this page to find various vulnerability scanners: http://groups.google.com/group/stopbadware/web/website-vulnerability-scanners
Most anti-virus programs will only check for malware installed or hosted locally. Today's hackers usually won't host the malware on the infected website, they'll install redirect code on an infected, legitimate website. The redirect code is typically an iframe that will silently attack the visitor's browser with browser specific exploits. An anti-virus scan of your webserver or website will rarely detect this redirect code. You need to check your site for ANY changes made to it after verifying that your site is clean. You can begin checking your site by making a list of all links to external sites. Then verify that you've intentionally put those links on your site. Next scan your webpages for any obfuscated code. Do this by using your browser (use three different ones: IE, FF and then also use Googlebot as your user agent) opening each of the pages on your website and View Source. Check that code not the code you have stored on your development box. The reason for the different browsers/user agents is that hackers will install scripts that will check for the user agent variable. If it's not the one they have an exploit for, they code won't even show. We've been seeing hacker code placed on websites that will only show if it's being indexed by Google. They do this because they want to have highly ranked websites pointing to their sites that sell various items; enhancement drugs, watches, etc. Firefox has a user agent plugin so you can use that for all your tests. These tests should be run against known good code at least 2x per day. That's what we suggest anyway. If you're concerned about your site being hacked then more often is always best. Then you're sure to see the change as soon as it happens. Congratulations on being concerned about your website. Very few are.
very well documented and informative WeWatch. Jalpari: Know that to keep your server from such threats is to be proactive. In my opinion some OS's and choice of webserver have more exploits then others. What OS is your webserver running? Windows, linux, unix?... IIS or apache? I personally only run linux/unix servers and apache.
Just because files may be infected, doesn't mean that they effect the whole server. They only effect the whole server if they infect the server.... Not all virii are designed to take advantage of linux... Also, clamav doesn't pick up everything. Someone already said this - its clamav. Double responses for the sake of getting your post count up in pathetic. Im surprised by the amount of people talking absolute rubbish on here. The OP isn't looking for a useless linux AV, they are asking how to scan for malware across the server. William9999; That is a web vulnerability scanner, not a AV scanner. You have got your wires majorly twisted and i certainly wouldn't implement your security skills into a major corporate environment. Depending on what malware / malicious content you are looking for will tell us what type of scanning you are wanting to accomplish.
Funny, yet where did the used car sales man come from? Selling domains has nothing to do with selling cars? Mikejones, check out your own post Really immature mate, honestly - " I wouldn;t mind some hosting and a girl child " - What are you? a creep? Kids these days on D.P, mods need to do something about them.
Use Upload Guardian if using Linux. It scans FTP/PHP based uploads in real time for malicious contents such as iframes and shell scripts, sends email alerts and blocks attackers at the firewall. It scan do full system scanning and scheduled scanning too.
Just switch to Linux, and all your virus, malware and crap problems go away. Then you just sit back and make money.