Whole VPS compromised

Home Forums Support Forum Whole VPS compromised

Tagged: 

This topic contains 5 replies, has 3 voices, and was last updated by  Anti-Malware Admin 9 years, 8 months ago.

Viewing 6 posts - 1 through 6 (of 6 total)
  • Author
    Posts
  • #1003

    Hi,

    Today I found out that my whole server, including 3 WP sites and 3 joomla sites, has been compromised and all .php files were injected with trash code.

    I tried GOTML in one of my wordpress sites and it worked beatifully, however, I’m not sure if I have to go through all the process site by site or if there’s a way to include more folders and joomla sites on my current installation.

    My server’s hierarchy for each site is: /srv/www/[site-name]/public_html/…

    So, is there a way to search for malicious code standing on the /srv/www/ folder?

    Thanks!

    Gianpietro

    PS – please note I will donate anyway as soon as I finish with this nightmare.

    #1004

    Anti-Malware Admin
    Key Master

    I have upgraded the scan depth on your account. Download the new Definition Update and you should be able to scan these other sites in the www directory.

    Let me know if this works for you or if you need any more help.

    #1005

    Excellent, thank you! I’m running the full scan right now :)

    #1116

    Hello Eli,

     

    I have a similar problem. I have 2 VPS machines runnign websites and I would like to scan the enitre website data folder as I beleive several of my websites have been compromised. How can I scan the entire WWW and public_html directories? Thanks

    #1117

    Sent you my installations keys via email as requested. Thanks.

    #1118

    Anti-Malware Admin
    Key Master

    @programmers,
    I have upgraded the scan depth on both the keys your sent me. Please download the new Definition Update and you should be able to scan the other sites in the www/public_html directory.

    Please note that the Complete Scan may take a very long time to finish if there are a lot of sites in the scan path.

Viewing 6 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic.

Comments are closed.