ashrafpro

Member
Jan 11, 2018
6
0
1
Cairo
cPanel Access Level
Root Administrator
Hi,
cPanel support reported that my server is root-level compromised, and it can't be fixed, I must move to a new one and delete it.
As soon as I install cPanel, I install firewalld to block all connections to server except from certain IPs (Cloudflares), change SSH port, block all ports even cPanel until I need it.
I am feeling depressed and asking if there is something extra I should do, so not to face this issue again?
virus is: /lib64/libtsr.so, it is causing MYSQL to be always 500% and over.
 

Attachments

cPanelLauren

Product Owner
Staff member
Nov 14, 2017
13,296
1,271
313
Houston
Hello,

This question would be best answered by the Technical Support analysts in the ticket, based on the specific issue with the server you encountered. If you provide me the Ticket ID I can check in on the ticket there and ensure that was done for your issue.