1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

how to scan malware for website at server

Discussion in 'Security' started by Jalpari, Sep 8, 2008.

  1. #1
    how to scan my site files and database at server against malware, adware and virsus?

    or how do u know that ur site has any suspicious code.
     
    Jalpari, Sep 8, 2008 IP
  2. zacharooni

    zacharooni Well-Known Member

    Messages:
    346
    Likes Received:
    20
    Best Answers:
    4
    Trophy Points:
    120
    #2
    I can help you get rid of malware/virii on your site, just let me know :)
     
    zacharooni, Sep 9, 2008 IP
  3. infogle

    infogle Prominent Member

    Messages:
    2,732
    Likes Received:
    128
    Best Answers:
    1
    Trophy Points:
    300
    #3
    i think if you are using cpanel there is a inbuilt option for virus scan and most probably the server admin is aware of it.. because if your files are infected than it would affect the complete server too that's why server admin do have some anti-virus option...

    hope this helps...
     
    infogle, Sep 9, 2008 IP
  4. Joshyn

    Joshyn Banned

    Messages:
    301
    Likes Received:
    9
    Best Answers:
    0
    Trophy Points:
    0
    #4
    You can use cpanel for that to scan your site or there are special software or scripts that you can install on your server and set a cron job for it, than you will be ok..
     
    Joshyn, Sep 10, 2008 IP
  5. UseShots

    UseShots Peon

    Messages:
    244
    Likes Received:
    16
    Best Answers:
    0
    Trophy Points:
    0
    #5
    UseShots, Sep 11, 2008 IP
  6. hostsvault

    hostsvault Guest

    Messages:
    143
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #6
    Ask your host if they clamd install on server , if so they will be able to scan your website files.
     
    hostsvault, Oct 8, 2008 IP
  7. WeWatch

    WeWatch Active Member

    Messages:
    75
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    50
    #7
    Most anti-virus programs will only check for malware installed or hosted locally. Today's hackers usually won't host the malware on the infected website, they'll install redirect code on an infected, legitimate website.

    The redirect code is typically an iframe that will silently attack the visitor's browser with browser specific exploits.

    An anti-virus scan of your webserver or website will rarely detect this redirect code.

    You need to check your site for ANY changes made to it after verifying that your site is clean.

    You can begin checking your site by making a list of all links to external sites. Then verify that you've intentionally put those links on your site. Next scan your webpages for any obfuscated code.

    Do this by using your browser (use three different ones: IE, FF and then also use Googlebot as your user agent) opening each of the pages on your website and View Source. Check that code not the code you have stored on your development box.

    The reason for the different browsers/user agents is that hackers will install scripts that will check for the user agent variable. If it's not the one they have an exploit for, they code won't even show. We've been seeing hacker code placed on websites that will only show if it's being indexed by Google. They do this because they want to have highly ranked websites pointing to their sites that sell various items; enhancement drugs, watches, etc.

    Firefox has a user agent plugin so you can use that for all your tests.

    These tests should be run against known good code at least 2x per day. That's what we suggest anyway. If you're concerned about your site being hacked then more often is always best. Then you're sure to see the change as soon as it happens.

    Congratulations on being concerned about your website. Very few are.
     
    WeWatch, Oct 19, 2008 IP
    smokey99 likes this.
  8. ahbuneh

    ahbuneh Active Member

    Messages:
    204
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    58
    #8
    Great points! We would have to agree with.
     
    ahbuneh, Jan 23, 2009 IP
  9. justdoit1

    justdoit1 Peon

    Messages:
    100
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #9
    Well said. Way to go!
     
    justdoit1, Jan 25, 2009 IP
  10. justdoit1

    justdoit1 Peon

    Messages:
    100
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #10
    Your Online Link Scan works best! Thanks!
     
    justdoit1, Jan 25, 2009 IP
  11. mateon3000

    mateon3000 Peon

    Messages:
    31
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    0
    #11
    very well documented and informative WeWatch.

    Jalpari: Know that to keep your server from such threats is to be proactive. In my opinion some OS's and choice of webserver have more exploits then others. What OS is your webserver running? Windows, linux, unix?... IIS or apache?

    I personally only run linux/unix servers and apache.
     
    mateon3000, Mar 20, 2009 IP
  12. Jalpari

    Jalpari Notable Member

    Messages:
    5,640
    Likes Received:
    137
    Best Answers:
    0
    Trophy Points:
    260
    #12
    dUde u r too late :p my problem has been already solved.

    ANYWAYS THANKS for kind info. :D
     
    Jalpari, Mar 20, 2009 IP
  13. rathin

    rathin Peon

    Messages:
    1,377
    Likes Received:
    9
    Best Answers:
    0
    Trophy Points:
    0
    #13
    use calm antivirus in ur server
     
    rathin, Mar 21, 2009 IP
  14. mateon3000

    mateon3000 Peon

    Messages:
    31
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    0
    #14
    lol.. i only realized it was a old post after I posted. How was your problem resolved?
     
    mateon3000, Mar 22, 2009 IP
  15. imnajam

    imnajam Well-Known Member

    Messages:
    2,389
    Likes Received:
    113
    Best Answers:
    0
    Trophy Points:
    185
    #15
    do you mind sharing your experience as how did you scan for malware:p
     
    imnajam, Mar 27, 2009 IP
  16. SSANZ

    SSANZ Peon

    Messages:
    861
    Likes Received:
    10
    Best Answers:
    0
    Trophy Points:
    0
    #16
    Just because files may be infected, doesn't mean that they effect the whole server. They only effect the whole server if they infect the server.... Not all virii are designed to take advantage of linux...

    Also, clamav doesn't pick up everything.

    Someone already said this - its clamav. Double responses for the sake of getting your post count up in pathetic.


    Im surprised by the amount of people talking absolute rubbish on here. The OP isn't looking for a useless linux AV, they are asking how to scan for malware across the server.

    William9999; That is a web vulnerability scanner, not a AV scanner. You have got your wires majorly twisted and i certainly wouldn't implement your security skills into a major corporate environment.


    Depending on what malware / malicious content you are looking for will tell us what type of scanning you are wanting to accomplish.
     
    SSANZ, Apr 10, 2009 IP
  17. mikejonessmith

    mikejonessmith Member

    Messages:
    100
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    30
    #17

    GREAT suggestion .... this is what I use on our server
     
    mikejonessmith, Apr 11, 2009 IP
  18. SSANZ

    SSANZ Peon

    Messages:
    861
    Likes Received:
    10
    Best Answers:
    0
    Trophy Points:
    0
    #18

    Funny, yet where did the used car sales man come from?

    Selling domains has nothing to do with selling cars?

    Mikejones, check out your own post :) Really immature mate, honestly - " I wouldn;t mind some hosting and a girl child " - What are you? a creep?



    Kids these days on D.P, mods need to do something about them.
     
    SSANZ, Apr 11, 2009 IP
  19. wavepoint

    wavepoint Peon

    Messages:
    3
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #19
    Use Upload Guardian if using Linux. It scans FTP/PHP based uploads in real time for malicious contents such as iframes and shell scripts, sends email alerts and blocks attackers at the firewall. It scan do full system scanning and scheduled scanning too.
     
    wavepoint, Nov 9, 2009 IP
  20. brox4nite

    brox4nite Member

    Messages:
    39
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    43
    #20
    Just switch to Linux, and all your virus, malware and crap problems go away. Then you just sit back and make money.
     
    brox4nite, Nov 9, 2009 IP