"Remote Data Services Data Control" warning on all my websites ?

sarhosting

Well-Known Member
Oct 1, 2007
172
2
68
United States
cPanel Access Level
Root Administrator
Twitter
Have you checked all of your logs?

Is annoymous FTP turned? Have you got a demo account

Do you have anything insure like sql commands, that could cause SQL inject?

As these websites, PHP, Java or have any of these in it?

You could install rkhunter via command like works well for me
 

Parcye

Well-Known Member
May 19, 2004
56
0
156
Eindhoven
What is rkhunter?

I have no demo account.

It looks like it is caused by an old joomla installed by a user.

Managed to fix the effected sites with a perl script that checks all files in home...
 

sarhosting

Well-Known Member
Oct 1, 2007
172
2
68
United States
cPanel Access Level
Root Administrator
Twitter
RK Hunter:-

Rootkit scanner

Project information

Rootkit scanner is scanning tool to ensure you for about 99.9%* you're clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like:

- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files

Rootkit Hunter is released as GPL licensed project and free for everyone to use.

* No, not really 99.9%.. It's just another security layer

http://www.rootkit.nl/projects/rootkit_hunter.html