Infected Files Sending Spam Everyday

R

Rhuan

Active Member
Nov 10, 2010
42
0
56
Brazil
cPanel Access Level
Root Administrator
Hi, everyday I have to suspend at least 3 domains (not same) which have some php infected files and all content is encrypted, all my server run CloudLinux, CageFS, ClamAV Scanner, Maldetect, suPHP + suExec

Is there some tool that I can use to prevent this infected files to run on my server ? I'm losting clients about this.
Thank you so much!
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,236
463
Hello :)

Have you verified that clients are using updated scripts that are not vulnerable? You may want to investigate and determine how the scripts are exploited with the help of a qualified system administrator to determine the best course of action.

Thank you.
 
LostNerd

LostNerd

Well-Known Member
Mar 12, 2014
258
12
18
Hastings, East Sussex, UK
cPanel Access Level
Root Administrator
Twitter
Are your clients using software like Wordpress by any chance? If so, it's likely that their files have been infected by using insecure plugins.

There is a great plugin (free to use) in the Wordpress Plugin Store called Wordfence. I suggest you recommend this to all clients using Wordpress.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
grindlay Files in .quarantine folder flagged as infected by ImmunifyAV Security 2
psytanium SOLVED Can't delete or rename folders, plus infected files keep showing Security 22
J Site keeps on getting hacked - infected files Security 6
K infected files detected in /tmp - how to find actual file name and path Security 5
J infected files in virtfs Security 1
Similar threads
Files in .quarantine folder flagged as infected by ImmunifyAV
SOLVED Can't delete or rename folders, plus infected files keep showing
Site keeps on getting hacked - infected files
infected files detected in /tmp - how to find actual file name and path
infected files in virtfs
Top Bottom