/
usr
/
local
/
maldetect.bk84621
/
logs
/
File Upload :
llllll
Current File: //usr/local/maldetect.bk84621/logs/event_log
May 10 2025 04:32:38 host maldet(238471): {sigup} performing signature update check... May 10 2025 04:32:38 host maldet(238471): {sigup} local signature set is version 20250225482944 May 10 2025 04:33:00 host maldet(238471): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 10 2025 04:33:00 host maldet(238471): {sigup} new signature set 202505102039127 available May 10 2025 04:33:00 host maldet(238471): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 10 2025 04:33:27 host maldet(238471): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 10 2025 04:35:17 host maldet(238471): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 10 2025 04:35:17 host maldet(238471): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 10 2025 04:35:17 host maldet(238471): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 10 2025 04:35:40 host maldet(238471): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 10 2025 04:35:40 host maldet(238471): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 10 2025 04:35:40 host maldet(238471): {sigup} verified md5sum of maldet-clean.tgz May 10 2025 04:35:40 host maldet(238471): {sigup} unpacked and installed maldet-clean.tgz May 10 2025 04:35:40 host maldet(237017): {update} completed update v1.6.6 3a1792 => v1.6.6 359d25, running signature updates... May 10 2025 04:35:40 host maldet(239783): {sigup} performing signature update check... May 10 2025 04:35:40 host maldet(239783): {sigup} local signature set is version 20250225482944 May 10 2025 04:36:23 host maldet(239783): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 10 2025 04:36:23 host maldet(239783): {sigup} new signature set 202505102039127 available May 10 2025 04:36:23 host maldet(239783): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 10 2025 04:36:45 host maldet(239783): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 10 2025 04:37:07 host maldet(239783): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 10 2025 04:37:07 host maldet(239783): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 10 2025 04:37:29 host maldet(239783): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 10 2025 04:37:52 host maldet(239783): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 10 2025 04:37:52 host maldet(239783): {sigup} verified md5sum of maldet-sigpack.tgz May 10 2025 04:37:52 host maldet(239783): {sigup} unpacked and installed maldet-sigpack.tgz May 10 2025 04:37:52 host maldet(239783): {sigup} verified md5sum of maldet-clean.tgz May 10 2025 04:37:52 host maldet(239783): {sigup} unpacked and installed maldet-clean.tgz May 10 2025 04:37:52 host maldet(239783): {sigup} signature set update completed May 10 2025 04:37:52 host maldet(239783): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 10 2025 04:37:52 host maldet(237017): {update} update and config import completed May 10 2025 04:37:52 host maldet(240602): {sigup} performing signature update check... May 10 2025 04:37:52 host maldet(240602): {sigup} local signature set is version 202505102039127 May 10 2025 04:38:21 host maldet(240602): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 10 2025 04:38:21 host maldet(240602): {sigup} latest signature set already installed May 10 2025 04:38:21 host maldet(240924): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 10 2025 04:38:21 host maldet(240924): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 10 2025 04:38:21 host maldet(240924): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 10 2025 04:38:21 host maldet(240924): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 10 2025 04:38:21 host maldet(240924): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 10 2025 04:38:27 host maldet(240924): {scan} file list completed in 6s, found 226 files... May 10 2025 04:38:27 host maldet(240924): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 10 2025 04:38:27 host maldet(240924): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (226 files) in progress... May 10 2025 04:38:35 host maldet(240924): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 10 2025 04:38:35 host maldet(240924): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php7 May 10 2025 04:38:35 host maldet(240924): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php8 May 10 2025 04:38:35 host maldet(240924): {hit} malware hit {HEX}php.base64.inject.182 found for /home/wldigital/public_html/wp-includes/customize/fix.php May 10 2025 04:38:35 host maldet(240924): {hit} malware hit {HEX}php.base64.inject.182 found for /home/wldigital/public_html/wp-includes/customize/fix.php7 May 10 2025 04:38:35 host maldet(240924): {hit} malware hit {HEX}php.base64.inject.182 found for /home/wldigital/public_html/wp-includes/customize/fix.php8 May 10 2025 04:38:35 host maldet(240924): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 226, malware hits 6, cleaned hits 0, time 14s May 10 2025 04:38:35 host maldet(240924): {scan} scan report saved, to view run: maldet --report 250510-0438.240924 May 10 2025 04:38:35 host maldet(240924): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250510-0438.240924 May 11 2025 04:14:16 host maldet(168770): {update} checking for available updates... May 11 2025 04:14:16 host maldet(168770): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 11 2025 04:14:16 host maldet(168770): {update} hashing install files and checking against server... May 11 2025 04:14:16 host maldet(168770): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 11 2025 04:14:16 host maldet(168770): {update} latest version already installed. May 11 2025 04:14:16 host maldet(168880): {sigup} performing signature update check... May 11 2025 04:14:16 host maldet(168880): {sigup} local signature set is version 202505102039127 May 11 2025 04:14:17 host maldet(168880): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 11 2025 04:14:17 host maldet(168880): {sigup} latest signature set already installed May 11 2025 04:14:17 host maldet(168969): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 11 2025 04:14:17 host maldet(168969): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 11 2025 04:14:17 host maldet(168969): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 11 2025 04:14:17 host maldet(168969): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 11 2025 04:14:17 host maldet(168969): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 11 2025 04:14:22 host maldet(168969): {scan} file list completed in 5s, found 217 files... May 11 2025 04:14:22 host maldet(168969): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 11 2025 04:14:22 host maldet(168969): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (217 files) in progress... May 11 2025 04:14:25 host maldet(168969): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 11 2025 04:14:25 host maldet(168969): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php7 May 11 2025 04:14:25 host maldet(168969): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php8 May 11 2025 04:14:25 host maldet(168969): {hit} malware hit {HEX}php.base64.inject.182 found for /home/wldigital/public_html/wp-includes/customize/fix.php May 11 2025 04:14:25 host maldet(168969): {hit} malware hit {HEX}php.base64.inject.182 found for /home/wldigital/public_html/wp-includes/customize/fix.php7 May 11 2025 04:14:25 host maldet(168969): {hit} malware hit {HEX}php.base64.inject.182 found for /home/wldigital/public_html/wp-includes/customize/fix.php8 May 11 2025 04:14:25 host maldet(168969): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 217, malware hits 6, cleaned hits 0, time 8s May 11 2025 04:14:25 host maldet(168969): {scan} scan report saved, to view run: maldet --report 250511-0414.168969 May 11 2025 04:14:25 host maldet(168969): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250511-0414.168969 May 12 2025 04:00:24 host maldet(162188): {update} checking for available updates... May 12 2025 04:00:24 host maldet(162188): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 12 2025 04:00:24 host maldet(162188): {update} hashing install files and checking against server... May 12 2025 04:00:25 host maldet(162188): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 12 2025 04:00:25 host maldet(162188): {update} latest version already installed. May 12 2025 04:00:25 host maldet(162304): {sigup} performing signature update check... May 12 2025 04:00:25 host maldet(162304): {sigup} local signature set is version 202505102039127 May 12 2025 04:00:25 host maldet(162304): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 12 2025 04:00:25 host maldet(162304): {sigup} latest signature set already installed May 12 2025 04:00:25 host maldet(162398): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 12 2025 04:00:26 host maldet(162398): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 12 2025 04:00:26 host maldet(162398): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 12 2025 04:00:26 host maldet(162398): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 12 2025 04:00:26 host maldet(162398): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 12 2025 04:00:34 host maldet(162398): {scan} file list completed in 8s, found 109 files... May 12 2025 04:00:34 host maldet(162398): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 12 2025 04:00:34 host maldet(162398): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (109 files) in progress... May 12 2025 04:00:40 host maldet(162398): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 109, malware hits 0, cleaned hits 0, time 15s May 12 2025 04:00:40 host maldet(162398): {scan} scan report saved, to view run: maldet --report 250512-0400.162398 May 13 2025 04:03:49 host maldet(117913): {update} checking for available updates... May 13 2025 04:06:49 host maldet(117913): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 13 2025 04:06:49 host maldet(117913): {update} hashing install files and checking against server... May 13 2025 04:07:36 host maldet(117913): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 13 2025 04:07:36 host maldet(117913): {update} latest version already installed. May 13 2025 04:07:36 host maldet(119939): {sigup} performing signature update check... May 13 2025 04:07:36 host maldet(119939): {sigup} local signature set is version 202505102039127 May 13 2025 04:08:10 host maldet(119939): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 13 2025 04:08:10 host maldet(119939): {sigup} new signature set 202505133012176 available May 13 2025 04:08:10 host maldet(119939): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 13 2025 04:10:00 host maldet(119939): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 13 2025 04:10:47 host maldet(119939): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 13 2025 04:10:47 host maldet(119939): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 13 2025 04:11:24 host maldet(119939): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 13 2025 04:12:33 host maldet(119939): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 13 2025 04:12:33 host maldet(119939): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 13 2025 04:12:33 host maldet(119939): {sigup} verified md5sum of maldet-clean.tgz May 13 2025 04:12:33 host maldet(119939): {sigup} unpacked and installed maldet-clean.tgz May 13 2025 04:12:33 host maldet(122449): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 13 2025 04:12:33 host maldet(122449): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 13 2025 04:12:33 host maldet(122449): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 13 2025 04:12:33 host maldet(122449): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 13 2025 04:12:33 host maldet(122449): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 13 2025 04:12:55 host maldet(122449): {scan} file list completed in 22s, found 348 files... May 13 2025 04:12:55 host maldet(122449): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 13 2025 04:12:55 host maldet(122449): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (348 files) in progress... May 13 2025 04:13:06 host maldet(122449): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 13 2025 04:13:06 host maldet(122449): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php7 May 13 2025 04:13:06 host maldet(122449): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php8 May 13 2025 04:13:06 host maldet(122449): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 348, malware hits 3, cleaned hits 0, time 33s May 13 2025 04:13:06 host maldet(122449): {scan} scan report saved, to view run: maldet --report 250513-0412.122449 May 13 2025 04:13:06 host maldet(122449): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250513-0412.122449 May 14 2025 04:11:58 host maldet(101084): {update} checking for available updates... May 14 2025 04:12:17 host maldet(101084): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 14 2025 04:12:17 host maldet(101084): {update} hashing install files and checking against server... May 14 2025 04:12:33 host maldet(101084): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 14 2025 04:12:33 host maldet(101084): {update} latest version already installed. May 14 2025 04:12:33 host maldet(101589): {sigup} performing signature update check... May 14 2025 04:12:33 host maldet(101589): {sigup} local signature set is version 202505102039127 May 14 2025 04:12:47 host maldet(101589): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 14 2025 04:12:47 host maldet(101589): {sigup} new signature set 202505133012176 available May 14 2025 04:12:47 host maldet(101589): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 14 2025 04:12:59 host maldet(101589): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 14 2025 04:13:12 host maldet(101589): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 14 2025 04:13:12 host maldet(101589): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 14 2025 04:13:22 host maldet(101589): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 14 2025 04:13:31 host maldet(101589): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 14 2025 04:13:31 host maldet(101589): {sigup} verified md5sum of maldet-sigpack.tgz May 14 2025 04:13:31 host maldet(101589): {sigup} unpacked and installed maldet-sigpack.tgz May 14 2025 04:13:31 host maldet(101589): {sigup} verified md5sum of maldet-clean.tgz May 14 2025 04:13:31 host maldet(101589): {sigup} unpacked and installed maldet-clean.tgz May 14 2025 04:13:31 host maldet(101589): {sigup} signature set update completed May 14 2025 04:13:31 host maldet(101589): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 14 2025 04:13:31 host maldet(102079): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 14 2025 04:13:31 host maldet(102079): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 14 2025 04:13:31 host maldet(102079): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 14 2025 04:13:31 host maldet(102079): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 14 2025 04:13:31 host maldet(102079): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 14 2025 04:13:37 host maldet(102079): {scan} file list completed in 6s, found 203 files... May 14 2025 04:13:37 host maldet(102079): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 14 2025 04:13:37 host maldet(102079): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (203 files) in progress... May 14 2025 04:13:44 host maldet(102079): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/sts.php May 14 2025 04:13:44 host maldet(102079): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 14 2025 04:13:44 host maldet(102079): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php7 May 14 2025 04:13:44 host maldet(102079): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php8 May 14 2025 04:13:44 host maldet(102079): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.phtml May 14 2025 04:13:44 host maldet(102079): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 203, malware hits 5, cleaned hits 0, time 13s May 14 2025 04:13:44 host maldet(102079): {scan} scan report saved, to view run: maldet --report 250514-0413.102079 May 14 2025 04:13:44 host maldet(102079): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250514-0413.102079 May 15 2025 04:19:03 host maldet(69144): {update} checking for available updates... May 15 2025 04:19:03 host maldet(69144): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 15 2025 04:19:03 host maldet(69144): {update} hashing install files and checking against server... May 15 2025 04:19:04 host maldet(69144): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 15 2025 04:19:04 host maldet(69144): {update} latest version already installed. May 15 2025 04:19:04 host maldet(69254): {sigup} performing signature update check... May 15 2025 04:19:04 host maldet(69254): {sigup} local signature set is version 202505133012176 May 15 2025 04:19:04 host maldet(69254): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 15 2025 04:19:04 host maldet(69254): {sigup} latest signature set already installed May 15 2025 04:19:04 host maldet(69344): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 15 2025 04:19:04 host maldet(69344): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 15 2025 04:19:04 host maldet(69344): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 15 2025 04:19:04 host maldet(69344): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 15 2025 04:19:04 host maldet(69344): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 15 2025 04:19:10 host maldet(69344): {scan} file list completed in 6s, found 736 files... May 15 2025 04:19:10 host maldet(69344): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 15 2025 04:19:10 host maldet(69344): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (736 files) in progress... May 15 2025 04:19:35 host maldet(69344): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 736, malware hits 0, cleaned hits 0, time 31s May 15 2025 04:19:35 host maldet(69344): {scan} scan report saved, to view run: maldet --report 250515-0419.69344 May 16 2025 04:04:01 host maldet(64527): {update} checking for available updates... May 16 2025 04:04:01 host maldet(64527): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 16 2025 04:04:01 host maldet(64527): {update} hashing install files and checking against server... May 16 2025 04:04:59 host maldet(64527): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 16 2025 04:04:59 host maldet(64527): {update} latest version already installed. May 16 2025 04:04:59 host maldet(65100): {sigup} performing signature update check... May 16 2025 04:04:59 host maldet(65100): {sigup} local signature set is version 202505133012176 May 16 2025 04:04:59 host maldet(65100): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 16 2025 04:04:59 host maldet(65100): {sigup} new signature set 202505163985107 available May 16 2025 04:04:59 host maldet(65100): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 16 2025 04:05:00 host maldet(65100): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 16 2025 04:05:50 host maldet(65100): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 16 2025 04:05:50 host maldet(65100): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 16 2025 04:06:31 host maldet(65100): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 16 2025 04:06:32 host maldet(65100): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 16 2025 04:06:32 host maldet(65100): {sigup} verified md5sum of maldet-sigpack.tgz May 16 2025 04:06:32 host maldet(65100): {sigup} unpacked and installed maldet-sigpack.tgz May 16 2025 04:06:32 host maldet(65100): {sigup} verified md5sum of maldet-clean.tgz May 16 2025 04:06:32 host maldet(65100): {sigup} unpacked and installed maldet-clean.tgz May 16 2025 04:06:32 host maldet(65100): {sigup} signature set update completed May 16 2025 04:06:32 host maldet(65100): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 16 2025 04:06:32 host maldet(66515): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 16 2025 04:06:32 host maldet(66515): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 16 2025 04:06:32 host maldet(66515): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 16 2025 04:06:32 host maldet(66515): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 16 2025 04:06:32 host maldet(66515): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 16 2025 04:06:37 host maldet(66515): {scan} file list completed in 5s, found 6520 files... May 16 2025 04:06:37 host maldet(66515): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 16 2025 04:06:37 host maldet(66515): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (6520 files) in progress... May 16 2025 04:08:36 host maldet(66515): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 6520, malware hits 0, cleaned hits 0, time 124s May 16 2025 04:08:36 host maldet(66515): {scan} scan report saved, to view run: maldet --report 250516-0406.66515 May 17 2025 03:20:45 host maldet(25724): {update} checking for available updates... May 17 2025 03:21:01 host maldet(25724): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 17 2025 03:21:01 host maldet(25724): {update} hashing install files and checking against server... May 17 2025 03:21:18 host maldet(25724): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 17 2025 03:21:18 host maldet(25724): {update} latest version already installed. May 17 2025 03:21:18 host maldet(26166): {sigup} performing signature update check... May 17 2025 03:21:18 host maldet(26166): {sigup} local signature set is version 202505163985107 May 17 2025 03:21:37 host maldet(26166): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 17 2025 03:21:37 host maldet(26166): {sigup} latest signature set already installed May 17 2025 03:21:37 host maldet(26315): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 17 2025 03:21:37 host maldet(26315): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 17 2025 03:21:37 host maldet(26315): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 17 2025 03:21:37 host maldet(26315): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 17 2025 03:21:37 host maldet(26315): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 17 2025 03:21:42 host maldet(26315): {scan} file list completed in 5s, found 2293 files... May 17 2025 03:21:42 host maldet(26315): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 17 2025 03:21:42 host maldet(26315): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (2293 files) in progress... May 17 2025 03:23:10 host maldet(26315): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 2293, malware hits 0, cleaned hits 0, time 93s May 17 2025 03:23:10 host maldet(26315): {scan} scan report saved, to view run: maldet --report 250517-0321.26315 May 18 2025 03:44:12 host maldet(232654): {update} checking for available updates... May 18 2025 03:44:35 host maldet(232654): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 18 2025 03:44:35 host maldet(232654): {update} hashing install files and checking against server... May 18 2025 03:44:57 host maldet(232654): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 18 2025 03:44:57 host maldet(232654): {update} latest version already installed. May 18 2025 03:44:57 host maldet(232939): {sigup} performing signature update check... May 18 2025 03:44:57 host maldet(232939): {sigup} local signature set is version 202505163985107 May 18 2025 03:45:22 host maldet(232939): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 18 2025 03:45:22 host maldet(232939): {sigup} latest signature set already installed May 18 2025 03:45:22 host maldet(233624): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 18 2025 03:45:22 host maldet(233624): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 18 2025 03:45:22 host maldet(233624): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 18 2025 03:45:22 host maldet(233624): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 18 2025 03:45:22 host maldet(233624): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 18 2025 03:45:28 host maldet(233624): {scan} file list completed in 6s, found 4859 files... May 18 2025 03:45:28 host maldet(233624): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 18 2025 03:45:28 host maldet(233624): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (4859 files) in progress... May 18 2025 03:45:39 host maldet(233624): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 4859, malware hits 0, cleaned hits 0, time 17s May 18 2025 03:45:39 host maldet(233624): {scan} scan report saved, to view run: maldet --report 250518-0345.233624 May 19 2025 03:31:58 host maldet(191753): {update} checking for available updates... May 19 2025 03:32:37 host maldet(191753): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 19 2025 03:32:37 host maldet(191753): {update} hashing install files and checking against server... May 19 2025 03:32:38 host maldet(191753): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 19 2025 03:32:38 host maldet(191753): {update} latest version already installed. May 19 2025 03:32:38 host maldet(192261): {sigup} performing signature update check... May 19 2025 03:32:38 host maldet(192261): {sigup} local signature set is version 202505163985107 May 19 2025 03:33:50 host maldet(192261): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 19 2025 03:33:50 host maldet(192261): {sigup} new signature set 20250519762470 available May 19 2025 03:33:50 host maldet(192261): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 19 2025 03:33:50 host maldet(192261): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 19 2025 03:34:22 host maldet(192261): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 19 2025 03:34:22 host maldet(192261): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 19 2025 03:36:12 host maldet(192261): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 19 2025 03:36:12 host maldet(192261): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 19 2025 03:36:12 host maldet(192261): {sigup} verified md5sum of maldet-sigpack.tgz May 19 2025 03:36:12 host maldet(192261): {sigup} unpacked and installed maldet-sigpack.tgz May 19 2025 03:36:12 host maldet(192261): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com May 19 2025 03:36:12 host maldet(192261): {sigup} signature set update completed May 19 2025 03:36:12 host maldet(192261): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 19 2025 03:36:12 host maldet(194212): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 19 2025 03:36:13 host maldet(194212): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 19 2025 03:36:13 host maldet(194212): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 19 2025 03:36:13 host maldet(194212): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 19 2025 03:36:13 host maldet(194212): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 19 2025 03:36:18 host maldet(194212): {scan} file list completed in 5s, found 217 files... May 19 2025 03:36:18 host maldet(194212): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 19 2025 03:36:18 host maldet(194212): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (217 files) in progress... May 19 2025 03:36:23 host maldet(194212): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 217, malware hits 0, cleaned hits 0, time 11s May 19 2025 03:36:23 host maldet(194212): {scan} scan report saved, to view run: maldet --report 250519-0336.194212 May 20 2025 04:28:01 host maldet(10758): {update} checking for available updates... May 20 2025 04:28:02 host maldet(10758): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 20 2025 04:28:02 host maldet(10758): {update} hashing install files and checking against server... May 20 2025 04:28:02 host maldet(10758): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 20 2025 04:28:02 host maldet(10758): {update} latest version already installed. May 20 2025 04:28:02 host maldet(11069): {sigup} performing signature update check... May 20 2025 04:28:02 host maldet(11069): {sigup} local signature set is version 20250519762470 May 20 2025 04:28:03 host maldet(11069): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 20 2025 04:28:03 host maldet(11069): {sigup} latest signature set already installed May 20 2025 04:28:03 host maldet(11183): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 20 2025 04:28:04 host maldet(11183): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 20 2025 04:28:04 host maldet(11183): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 20 2025 04:28:04 host maldet(11183): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 20 2025 04:28:04 host maldet(11183): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 20 2025 04:28:09 host maldet(11183): {scan} file list completed in 5s, found 501 files... May 20 2025 04:28:09 host maldet(11183): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 20 2025 04:28:09 host maldet(11183): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (501 files) in progress... May 20 2025 04:28:18 host maldet(11183): {scan} clamscan returned an error, check /usr/local/maldetect/logs/clamscan_log for details! May 20 2025 04:28:18 host maldet(11183): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 501, malware hits 0, cleaned hits 0, time 15s May 20 2025 04:28:18 host maldet(11183): {scan} scan report saved, to view run: maldet --report 250520-0428.11183 May 21 2025 04:26:21 host maldet(58239): {update} checking for available updates... May 21 2025 04:26:21 host maldet(58239): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 21 2025 04:26:21 host maldet(58239): {update} hashing install files and checking against server... May 21 2025 04:26:22 host maldet(58239): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 21 2025 04:26:22 host maldet(58239): {update} latest version already installed. May 21 2025 04:26:22 host maldet(58350): {sigup} performing signature update check... May 21 2025 04:26:22 host maldet(58350): {sigup} local signature set is version 20250519762470 May 21 2025 04:26:22 host maldet(58350): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 21 2025 04:26:22 host maldet(58350): {sigup} latest signature set already installed May 21 2025 04:26:22 host maldet(58440): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 21 2025 04:26:22 host maldet(58440): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 21 2025 04:26:22 host maldet(58440): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 21 2025 04:26:22 host maldet(58440): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 21 2025 04:26:22 host maldet(58440): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 21 2025 04:26:27 host maldet(58440): {scan} file list completed in 5s, found 169 files... May 21 2025 04:26:27 host maldet(58440): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 21 2025 04:26:27 host maldet(58440): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (169 files) in progress... May 21 2025 04:26:34 host maldet(58440): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 169, malware hits 0, cleaned hits 0, time 12s May 21 2025 04:26:34 host maldet(58440): {scan} scan report saved, to view run: maldet --report 250521-0426.58440 May 22 2025 03:52:26 host maldet(140735): {update} checking for available updates... May 22 2025 03:53:33 host maldet(140735): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 22 2025 03:53:33 host maldet(140735): {update} hashing install files and checking against server... May 22 2025 03:54:13 host maldet(140735): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 22 2025 03:54:13 host maldet(140735): {update} version check shows latest but hash check failed, forcing update... May 22 2025 03:54:14 host maldet(140735): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz May 22 2025 03:55:04 host maldet(140735): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 May 22 2025 03:55:04 host maldet(140735): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! May 22 2025 03:55:04 host maldet(141936): {sigup} performing signature update check... May 22 2025 03:55:04 host maldet(141936): {sigup} local signature set is version 20250519762470 May 22 2025 03:56:02 host maldet(141936): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 22 2025 03:56:02 host maldet(141936): {sigup} new signature set 202505221736773 available May 22 2025 03:56:02 host maldet(141936): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 22 2025 03:56:02 host maldet(141936): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 22 2025 03:57:04 host maldet(141936): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 22 2025 03:57:04 host maldet(141936): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 22 2025 03:57:50 host maldet(141936): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 22 2025 03:58:18 host maldet(141936): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 22 2025 03:58:18 host maldet(141936): {sigup} verified md5sum of maldet-sigpack.tgz May 22 2025 03:58:18 host maldet(141936): {sigup} unpacked and installed maldet-sigpack.tgz May 22 2025 03:58:18 host maldet(141936): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com May 22 2025 03:58:18 host maldet(141936): {sigup} signature set update completed May 22 2025 03:58:18 host maldet(141936): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 22 2025 03:58:18 host maldet(143496): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 22 2025 03:58:18 host maldet(143496): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 22 2025 03:58:18 host maldet(143496): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 22 2025 03:58:18 host maldet(143496): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 22 2025 03:58:18 host maldet(143496): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 22 2025 03:58:24 host maldet(143496): {scan} file list completed in 6s, found 325 files... May 22 2025 03:58:24 host maldet(143496): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 22 2025 03:58:24 host maldet(143496): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (325 files) in progress... May 22 2025 03:58:28 host maldet(143496): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 325, malware hits 0, cleaned hits 0, time 10s May 22 2025 03:58:28 host maldet(143496): {scan} scan report saved, to view run: maldet --report 250522-0358.143496 May 23 2025 03:44:23 host maldet(55497): {update} checking for available updates... May 23 2025 03:45:04 host maldet(55497): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 23 2025 03:45:04 host maldet(55497): {update} hashing install files and checking against server... May 23 2025 03:45:24 host maldet(55497): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 23 2025 03:45:24 host maldet(55497): {update} latest version already installed. May 23 2025 03:45:24 host maldet(56288): {sigup} performing signature update check... May 23 2025 03:45:24 host maldet(56288): {sigup} local signature set is version 202505221736773 May 23 2025 03:46:10 host maldet(56288): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 23 2025 03:46:10 host maldet(56288): {sigup} new signature set error code: 525 available May 23 2025 03:46:10 host maldet(56288): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 23 2025 03:46:11 host maldet(56288): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 23 2025 03:46:41 host maldet(56288): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 23 2025 03:46:41 host maldet(56288): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 23 2025 03:47:13 host maldet(56288): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 23 2025 03:47:58 host maldet(56288): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 23 2025 03:47:58 host maldet(56288): {sigup} verified md5sum of maldet-sigpack.tgz May 23 2025 03:47:58 host maldet(56288): {sigup} unpacked and installed maldet-sigpack.tgz May 23 2025 03:47:58 host maldet(56288): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com May 23 2025 03:47:58 host maldet(56288): {sigup} signature set update completed May 23 2025 03:47:58 host maldet(56288): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 23 2025 03:47:58 host maldet(57377): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 23 2025 03:47:58 host maldet(57377): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 23 2025 03:47:58 host maldet(57377): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 23 2025 03:47:58 host maldet(57377): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 23 2025 03:47:58 host maldet(57377): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 23 2025 03:48:04 host maldet(57377): {scan} file list completed in 6s, found 179 files... May 23 2025 03:48:04 host maldet(57377): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 23 2025 03:48:04 host maldet(57377): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (179 files) in progress... May 23 2025 03:48:10 host maldet(57377): {scan} clamscan returned an error, check /usr/local/maldetect/logs/clamscan_log for details! May 23 2025 03:48:10 host maldet(57377): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 179, malware hits 0, cleaned hits 0, time 12s May 23 2025 03:48:10 host maldet(57377): {scan} scan report saved, to view run: maldet --report 250523-0347.57377 May 24 2025 04:04:41 host maldet(242489): {update} checking for available updates... May 24 2025 04:04:43 host maldet(242489): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 24 2025 04:04:43 host maldet(242489): {update} hashing install files and checking against server... May 24 2025 04:05:32 host maldet(242489): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 24 2025 04:05:32 host maldet(242489): {update} latest version already installed. May 24 2025 04:05:32 host maldet(243284): {sigup} performing signature update check... May 24 2025 04:05:32 host maldet(243284): {sigup} local signature set is version 202505221736773 May 24 2025 04:06:12 host maldet(243284): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 24 2025 04:06:12 host maldet(243284): {sigup} latest signature set already installed May 24 2025 04:06:12 host maldet(243965): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 24 2025 04:06:12 host maldet(243965): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 24 2025 04:06:12 host maldet(243965): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 24 2025 04:06:12 host maldet(243965): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 24 2025 04:06:12 host maldet(243965): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 24 2025 04:06:17 host maldet(243965): {scan} file list completed in 5s, found 272 files... May 24 2025 04:06:17 host maldet(243965): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 24 2025 04:06:17 host maldet(243965): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (272 files) in progress... May 24 2025 04:06:26 host maldet(243965): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/sts.php May 24 2025 04:06:26 host maldet(243965): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 24 2025 04:06:26 host maldet(243965): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php7 May 24 2025 04:06:26 host maldet(243965): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php8 May 24 2025 04:06:26 host maldet(243965): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.phtml May 24 2025 04:06:26 host maldet(243965): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 272, malware hits 5, cleaned hits 0, time 14s May 24 2025 04:06:26 host maldet(243965): {scan} scan report saved, to view run: maldet --report 250524-0406.243965 May 24 2025 04:06:26 host maldet(243965): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250524-0406.243965 May 25 2025 04:01:05 host maldet(215658): {update} checking for available updates... May 25 2025 04:01:45 host maldet(215658): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 25 2025 04:01:45 host maldet(215658): {update} hashing install files and checking against server... May 25 2025 04:02:38 host maldet(215658): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 25 2025 04:02:38 host maldet(215658): {update} latest version already installed. May 25 2025 04:02:38 host maldet(216598): {sigup} performing signature update check... May 25 2025 04:02:38 host maldet(216598): {sigup} local signature set is version 202505221736773 May 25 2025 04:03:30 host maldet(216598): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 25 2025 04:03:30 host maldet(216598): {sigup} new signature set 202505252708832 available May 25 2025 04:03:30 host maldet(216598): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 25 2025 04:04:09 host maldet(216598): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 25 2025 04:04:40 host maldet(216598): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 25 2025 04:04:40 host maldet(216598): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 25 2025 04:05:09 host maldet(216598): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 25 2025 04:05:54 host maldet(216598): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 25 2025 04:05:54 host maldet(216598): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 25 2025 04:05:54 host maldet(216598): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com May 25 2025 04:05:55 host maldet(218541): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 25 2025 04:05:55 host maldet(218541): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 25 2025 04:05:55 host maldet(218541): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 25 2025 04:05:55 host maldet(218541): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 25 2025 04:05:55 host maldet(218541): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 25 2025 04:06:00 host maldet(218541): {scan} file list completed in 5s, found 180 files... May 25 2025 04:06:00 host maldet(218541): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 25 2025 04:06:00 host maldet(218541): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (180 files) in progress... May 25 2025 04:06:08 host maldet(218541): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/sts.php May 25 2025 04:06:08 host maldet(218541): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 25 2025 04:06:08 host maldet(218541): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 180, malware hits 2, cleaned hits 0, time 13s May 25 2025 04:06:08 host maldet(218541): {scan} scan report saved, to view run: maldet --report 250525-0405.218541 May 25 2025 04:06:08 host maldet(218541): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250525-0405.218541 May 26 2025 04:31:24 host maldet(179978): {update} checking for available updates... May 26 2025 04:31:33 host maldet(179978): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 26 2025 04:31:33 host maldet(179978): {update} hashing install files and checking against server... May 26 2025 04:31:33 host maldet(179978): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 26 2025 04:31:33 host maldet(179978): {update} latest version already installed. May 26 2025 04:31:34 host maldet(180109): {sigup} performing signature update check... May 26 2025 04:31:34 host maldet(180109): {sigup} local signature set is version 202505221736773 May 26 2025 04:31:34 host maldet(180109): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 26 2025 04:31:34 host maldet(180109): {sigup} new signature set 202505252708832 available May 26 2025 04:31:34 host maldet(180109): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 26 2025 04:31:40 host maldet(180109): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 26 2025 04:31:41 host maldet(180109): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 26 2025 04:31:41 host maldet(180109): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 26 2025 04:31:48 host maldet(180109): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 26 2025 04:31:53 host maldet(180109): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 26 2025 04:31:53 host maldet(180109): {sigup} verified md5sum of maldet-sigpack.tgz May 26 2025 04:31:53 host maldet(180109): {sigup} unpacked and installed maldet-sigpack.tgz May 26 2025 04:31:53 host maldet(180109): {sigup} verified md5sum of maldet-clean.tgz May 26 2025 04:31:53 host maldet(180109): {sigup} unpacked and installed maldet-clean.tgz May 26 2025 04:31:53 host maldet(180109): {sigup} signature set update completed May 26 2025 04:31:53 host maldet(180109): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 26 2025 04:31:53 host maldet(180449): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 26 2025 04:31:54 host maldet(180449): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 26 2025 04:31:54 host maldet(180449): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 26 2025 04:31:54 host maldet(180449): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 26 2025 04:31:54 host maldet(180449): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 26 2025 04:31:59 host maldet(180449): {scan} file list completed in 5s, found 229 files... May 26 2025 04:31:59 host maldet(180449): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 26 2025 04:31:59 host maldet(180449): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (229 files) in progress... May 26 2025 04:32:05 host maldet(180449): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 229, malware hits 0, cleaned hits 0, time 12s May 26 2025 04:32:05 host maldet(180449): {scan} scan report saved, to view run: maldet --report 250526-0431.180449 May 27 2025 04:37:50 host maldet(90239): {update} checking for available updates... May 27 2025 04:37:52 host maldet(90239): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 27 2025 04:37:52 host maldet(90239): {update} hashing install files and checking against server... May 27 2025 04:37:52 host maldet(90239): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 27 2025 04:37:52 host maldet(90239): {update} latest version already installed. May 27 2025 04:37:52 host maldet(90352): {sigup} performing signature update check... May 27 2025 04:37:52 host maldet(90352): {sigup} local signature set is version 202505252708832 May 27 2025 04:37:53 host maldet(90352): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 27 2025 04:37:53 host maldet(90352): {sigup} latest signature set already installed May 27 2025 04:37:53 host maldet(90441): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 27 2025 04:37:53 host maldet(90441): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 27 2025 04:37:53 host maldet(90441): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 27 2025 04:37:53 host maldet(90441): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 27 2025 04:37:53 host maldet(90441): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 27 2025 04:37:58 host maldet(90441): {scan} file list completed in 5s, found 481 files... May 27 2025 04:37:58 host maldet(90441): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 27 2025 04:37:58 host maldet(90441): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (481 files) in progress... May 27 2025 04:38:10 host maldet(90441): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 481, malware hits 0, cleaned hits 0, time 17s May 27 2025 04:38:10 host maldet(90441): {scan} scan report saved, to view run: maldet --report 250527-0437.90441 May 28 2025 03:29:28 host maldet(220752): {update} checking for available updates... May 28 2025 03:30:08 host maldet(220752): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 28 2025 03:30:08 host maldet(220752): {update} hashing install files and checking against server... May 28 2025 03:30:49 host maldet(220752): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 28 2025 03:30:49 host maldet(220752): {update} version check shows latest but hash check failed, forcing update... May 28 2025 03:30:50 host maldet(220752): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz May 28 2025 03:31:09 host maldet(220752): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 May 28 2025 03:31:09 host maldet(220752): {update} verified md5sum of maldetect-current.tar.gz May 28 2025 03:31:10 host maldet(220752): {update} completed update v1.6.6 3a1792 => verror code: 525 359d25, running signature updates... May 28 2025 03:31:10 host maldet(221904): {sigup} performing signature update check... May 28 2025 03:31:10 host maldet(221904): {sigup} local signature set is version 202505252708832 May 28 2025 03:31:10 host maldet(221904): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 28 2025 03:31:10 host maldet(221904): {sigup} new signature set 202505283679777 available May 28 2025 03:31:10 host maldet(221904): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 28 2025 03:32:00 host maldet(221904): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 28 2025 03:32:28 host maldet(221904): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 28 2025 03:32:28 host maldet(221904): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 28 2025 03:32:55 host maldet(221904): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 28 2025 03:33:43 host maldet(221904): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 28 2025 03:33:43 host maldet(221904): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 28 2025 03:33:43 host maldet(221904): {sigup} verified md5sum of maldet-clean.tgz May 28 2025 03:33:43 host maldet(221904): {sigup} unpacked and installed maldet-clean.tgz May 28 2025 03:33:43 host maldet(220752): {update} update and config import completed May 28 2025 03:33:43 host maldet(222944): {sigup} performing signature update check... May 28 2025 03:33:43 host maldet(222944): {sigup} local signature set is version 202505252708832 May 28 2025 03:34:33 host maldet(222944): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 28 2025 03:34:33 host maldet(222944): {sigup} new signature set error code: 525 available May 28 2025 03:34:33 host maldet(222944): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 28 2025 03:34:34 host maldet(222944): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 28 2025 03:34:54 host maldet(222944): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 28 2025 03:34:54 host maldet(222944): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 28 2025 03:35:33 host maldet(222944): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 28 2025 03:36:37 host maldet(222944): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 28 2025 03:36:37 host maldet(222944): {sigup} verified md5sum of maldet-sigpack.tgz May 28 2025 03:36:38 host maldet(222944): {sigup} unpacked and installed maldet-sigpack.tgz May 28 2025 03:36:38 host maldet(222944): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com May 28 2025 03:36:38 host maldet(222944): {sigup} signature set update completed May 28 2025 03:36:38 host maldet(222944): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 28 2025 03:36:38 host maldet(224360): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 28 2025 03:36:38 host maldet(224360): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 28 2025 03:36:38 host maldet(224360): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 28 2025 03:36:38 host maldet(224360): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 28 2025 03:36:38 host maldet(224360): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 28 2025 03:36:43 host maldet(224360): {scan} file list completed in 5s, found 346 files... May 28 2025 03:36:43 host maldet(224360): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 28 2025 03:36:43 host maldet(224360): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (346 files) in progress... May 28 2025 03:36:48 host maldet(224360): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php May 28 2025 03:36:48 host maldet(224360): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php7 May 28 2025 03:36:48 host maldet(224360): {hit} malware hit {HEX}php.base64.inject.182 found for /home/vivaseatsuk/public_html/cgi-bin/fix.php8 May 28 2025 03:36:48 host maldet(224360): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 346, malware hits 3, cleaned hits 0, time 10s May 28 2025 03:36:48 host maldet(224360): {scan} scan report saved, to view run: maldet --report 250528-0336.224360 May 28 2025 03:36:48 host maldet(224360): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250528-0336.224360 May 29 2025 04:08:11 host maldet(139359): {update} checking for available updates... May 29 2025 04:08:53 host maldet(139359): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 29 2025 04:08:53 host maldet(139359): {update} hashing install files and checking against server... May 29 2025 04:10:07 host maldet(139359): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 29 2025 04:10:07 host maldet(139359): {update} version check shows latest but hash check failed, forcing update... May 29 2025 04:10:07 host maldet(139359): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz May 29 2025 04:11:06 host maldet(139359): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 May 29 2025 04:11:06 host maldet(139359): {update} verified md5sum of maldetect-current.tar.gz May 29 2025 04:11:06 host maldet(139359): {update} completed update v1.6.6 3a1792 => verror code: 525 359d25, running signature updates... May 29 2025 04:11:06 host maldet(140952): {sigup} performing signature update check... May 29 2025 04:11:06 host maldet(140952): {sigup} local signature set is version 202505283679777 May 29 2025 04:11:48 host maldet(140952): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 29 2025 04:11:48 host maldet(140952): {sigup} latest signature set already installed May 29 2025 04:11:48 host maldet(139359): {update} update and config import completed May 29 2025 04:11:48 host maldet(141135): {sigup} performing signature update check... May 29 2025 04:11:48 host maldet(141135): {sigup} local signature set is version 202505283679777 May 29 2025 04:12:32 host maldet(141135): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 29 2025 04:12:32 host maldet(141135): {sigup} new signature set error code: 525 available May 29 2025 04:12:32 host maldet(141135): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 29 2025 04:12:59 host maldet(141135): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 29 2025 04:13:44 host maldet(141135): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 29 2025 04:13:44 host maldet(141135): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 29 2025 04:14:33 host maldet(141135): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 29 2025 04:15:03 host maldet(141135): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 29 2025 04:15:03 host maldet(141135): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 29 2025 04:15:03 host maldet(141135): {sigup} verified md5sum of maldet-clean.tgz May 29 2025 04:15:03 host maldet(141135): {sigup} unpacked and installed maldet-clean.tgz May 29 2025 04:15:03 host maldet(142932): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 29 2025 04:15:04 host maldet(142932): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 29 2025 04:15:04 host maldet(142932): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 29 2025 04:15:04 host maldet(142932): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 29 2025 04:15:04 host maldet(142932): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 29 2025 04:15:09 host maldet(142932): {scan} file list completed in 5s, found 360 files... May 29 2025 04:15:09 host maldet(142932): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 29 2025 04:15:09 host maldet(142932): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (360 files) in progress... May 29 2025 04:15:17 host maldet(142932): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 360, malware hits 0, cleaned hits 0, time 14s May 29 2025 04:15:17 host maldet(142932): {scan} scan report saved, to view run: maldet --report 250529-0415.142932 May 30 2025 03:50:53 host maldet(48354): {update} checking for available updates... May 30 2025 03:51:33 host maldet(48354): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 30 2025 03:51:33 host maldet(48354): {update} hashing install files and checking against server... May 30 2025 03:52:14 host maldet(48354): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 30 2025 03:52:14 host maldet(48354): {update} version check shows latest but hash check failed, forcing update... May 30 2025 03:52:14 host maldet(48354): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz May 30 2025 03:52:57 host maldet(48354): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 May 30 2025 03:52:57 host maldet(48354): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! May 30 2025 03:52:57 host maldet(49162): {sigup} performing signature update check... May 30 2025 03:52:58 host maldet(49162): {sigup} local signature set is version 202505283679777 May 30 2025 03:54:03 host maldet(49162): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 30 2025 03:54:03 host maldet(49162): {sigup} new signature set error code: 525 available May 30 2025 03:54:03 host maldet(49162): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 30 2025 03:54:48 host maldet(49162): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 30 2025 03:55:27 host maldet(49162): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 30 2025 03:55:27 host maldet(49162): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 30 2025 03:55:57 host maldet(49162): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 30 2025 03:55:58 host maldet(49162): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 30 2025 03:55:58 host maldet(49162): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 30 2025 03:55:58 host maldet(49162): {sigup} verified md5sum of maldet-clean.tgz May 30 2025 03:55:58 host maldet(49162): {sigup} unpacked and installed maldet-clean.tgz May 30 2025 03:55:58 host maldet(50547): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 30 2025 03:55:58 host maldet(50547): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 30 2025 03:55:58 host maldet(50547): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 30 2025 03:55:58 host maldet(50547): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 30 2025 03:55:58 host maldet(50547): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 30 2025 03:56:03 host maldet(50547): {scan} file list completed in 5s, found 286 files... May 30 2025 03:56:04 host maldet(50547): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 30 2025 03:56:04 host maldet(50547): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (286 files) in progress... May 30 2025 03:56:13 host maldet(50547): {scan} clamscan returned an error, check /usr/local/maldetect/logs/clamscan_log for details! May 30 2025 03:56:13 host maldet(50547): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 286, malware hits 0, cleaned hits 0, time 15s May 30 2025 03:56:13 host maldet(50547): {scan} scan report saved, to view run: maldet --report 250530-0355.50547 May 31 2025 03:52:07 host maldet(243183): {update} checking for available updates... May 31 2025 03:52:55 host maldet(243183): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver May 31 2025 03:52:55 host maldet(243183): {update} hashing install files and checking against server... May 31 2025 03:53:45 host maldet(243183): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash May 31 2025 03:53:45 host maldet(243183): {update} version check shows latest but hash check failed, forcing update... May 31 2025 03:53:46 host maldet(243183): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz May 31 2025 03:54:54 host maldet(243183): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 May 31 2025 03:54:54 host maldet(243183): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! May 31 2025 03:54:54 host maldet(244359): {sigup} performing signature update check... May 31 2025 03:54:54 host maldet(244359): {sigup} local signature set is version 202505283679777 May 31 2025 03:54:54 host maldet(244359): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver May 31 2025 03:54:54 host maldet(244359): {sigup} new signature set 20250531456902 available May 31 2025 03:54:54 host maldet(244359): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 31 2025 03:55:34 host maldet(244359): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz May 31 2025 03:56:28 host maldet(244359): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 May 31 2025 03:56:28 host maldet(244359): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 31 2025 03:56:29 host maldet(244359): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz May 31 2025 03:57:01 host maldet(244359): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 May 31 2025 03:57:01 host maldet(244359): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com May 31 2025 03:57:01 host maldet(244359): {sigup} verified md5sum of maldet-clean.tgz May 31 2025 03:57:01 host maldet(244359): {sigup} unpacked and installed maldet-clean.tgz May 31 2025 03:57:01 host maldet(245473): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress May 31 2025 03:57:01 host maldet(245473): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) May 31 2025 03:57:01 host maldet(245473): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... May 31 2025 03:57:01 host maldet(245473): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 May 31 2025 03:57:01 host maldet(245473): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 May 31 2025 03:57:07 host maldet(245473): {scan} file list completed in 6s, found 300 files... May 31 2025 03:57:07 host maldet(245473): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... May 31 2025 03:57:07 host maldet(245473): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (300 files) in progress... May 31 2025 03:57:15 host maldet(245473): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 300, malware hits 0, cleaned hits 0, time 14s May 31 2025 03:57:15 host maldet(245473): {scan} scan report saved, to view run: maldet --report 250531-0357.245473 Jun 01 2025 04:15:04 host maldet(182809): {update} checking for available updates... Jun 01 2025 04:15:53 host maldet(182809): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 01 2025 04:15:53 host maldet(182809): {update} hashing install files and checking against server... Jun 01 2025 04:16:21 host maldet(182809): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 01 2025 04:16:21 host maldet(182809): {update} latest version already installed. Jun 01 2025 04:16:21 host maldet(183416): {sigup} performing signature update check... Jun 01 2025 04:16:21 host maldet(183416): {sigup} local signature set is version 202505283679777 Jun 01 2025 04:17:06 host maldet(183416): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 01 2025 04:17:06 host maldet(183416): {sigup} new signature set error code: 525 available Jun 01 2025 04:17:06 host maldet(183416): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 01 2025 04:17:35 host maldet(183416): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 01 2025 04:18:06 host maldet(183416): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 01 2025 04:18:06 host maldet(183416): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 01 2025 04:18:06 host maldet(183416): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 01 2025 04:18:52 host maldet(183416): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 01 2025 04:18:52 host maldet(183416): {sigup} verified md5sum of maldet-sigpack.tgz Jun 01 2025 04:18:52 host maldet(183416): {sigup} unpacked and installed maldet-sigpack.tgz Jun 01 2025 04:18:52 host maldet(183416): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 01 2025 04:18:52 host maldet(183416): {sigup} signature set update completed Jun 01 2025 04:18:52 host maldet(183416): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 01 2025 04:18:53 host maldet(184590): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 01 2025 04:18:53 host maldet(184590): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 01 2025 04:18:53 host maldet(184590): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 01 2025 04:18:53 host maldet(184590): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 01 2025 04:18:53 host maldet(184590): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 01 2025 04:18:59 host maldet(184590): {scan} file list completed in 6s, found 223 files... Jun 01 2025 04:18:59 host maldet(184590): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 01 2025 04:18:59 host maldet(184590): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (223 files) in progress... Jun 01 2025 04:19:06 host maldet(184590): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 223, malware hits 0, cleaned hits 0, time 13s Jun 01 2025 04:19:06 host maldet(184590): {scan} scan report saved, to view run: maldet --report 250601-0418.184590 Jun 02 2025 04:38:07 host maldet(116869): {update} checking for available updates... Jun 02 2025 04:38:19 host maldet(116869): {update} could not download https://cdn.rfxn.com/downloads/maldet.current.ver, please try again later. Jun 02 2025 04:38:19 host maldet(116869): {update} could not download version file from server, please try again later. Jun 02 2025 04:38:19 host maldet(117036): {sigup} performing signature update check... Jun 02 2025 04:38:19 host maldet(117036): {sigup} local signature set is version 202506011196154 Jun 02 2025 04:40:07 host maldet(117036): {sigup} could not download https://cdn.rfxn.com/downloads/maldet.sigs.ver, please try again later. Jun 02 2025 04:40:07 host maldet(117036): {sigup} could not download signature data from server, please try again later. Jun 02 2025 04:40:07 host maldet(118793): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 02 2025 04:40:07 host maldet(118793): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 02 2025 04:40:07 host maldet(118793): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 02 2025 04:40:07 host maldet(118793): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 02 2025 04:40:07 host maldet(118793): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 02 2025 04:40:13 host maldet(118793): {scan} file list completed in 5s, found 170 files... Jun 02 2025 04:40:13 host maldet(118793): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 02 2025 04:40:13 host maldet(118793): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (170 files) in progress... Jun 02 2025 04:40:18 host maldet(118793): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 170, malware hits 0, cleaned hits 0, time 11s Jun 02 2025 04:40:18 host maldet(118793): {scan} scan report saved, to view run: maldet --report 250602-0440.118793 Jun 03 2025 04:36:45 host maldet(69226): {update} checking for available updates... Jun 03 2025 04:36:45 host maldet(69226): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 03 2025 04:36:45 host maldet(69226): {update} hashing install files and checking against server... Jun 03 2025 04:36:46 host maldet(69226): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 03 2025 04:36:46 host maldet(69226): {update} latest version already installed. Jun 03 2025 04:36:46 host maldet(69340): {sigup} performing signature update check... Jun 03 2025 04:36:46 host maldet(69340): {sigup} local signature set is version 202506011196154 Jun 03 2025 04:36:46 host maldet(69340): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 03 2025 04:36:46 host maldet(69340): {sigup} latest signature set already installed Jun 03 2025 04:36:46 host maldet(69429): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 03 2025 04:36:46 host maldet(69429): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 03 2025 04:36:46 host maldet(69429): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 03 2025 04:36:46 host maldet(69429): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 03 2025 04:36:46 host maldet(69429): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 03 2025 04:36:52 host maldet(69429): {scan} file list completed in 6s, found 339 files... Jun 03 2025 04:36:52 host maldet(69429): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 03 2025 04:36:52 host maldet(69429): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (339 files) in progress... Jun 03 2025 04:36:58 host maldet(69429): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 339, malware hits 0, cleaned hits 0, time 12s Jun 03 2025 04:36:58 host maldet(69429): {scan} scan report saved, to view run: maldet --report 250603-0436.69429 Jun 04 2025 04:00:12 host maldet(221786): {update} checking for available updates... Jun 04 2025 04:00:46 host maldet(221786): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 04 2025 04:00:46 host maldet(221786): {update} hashing install files and checking against server... Jun 04 2025 04:01:46 host maldet(221786): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 04 2025 04:01:46 host maldet(221786): {update} version check shows latest but hash check failed, forcing update... Jun 04 2025 04:01:46 host maldet(221786): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 04 2025 04:02:40 host maldet(221786): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 04 2025 04:02:40 host maldet(221786): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! Jun 04 2025 04:02:41 host maldet(223113): {sigup} performing signature update check... Jun 04 2025 04:02:41 host maldet(223113): {sigup} local signature set is version 202506011196154 Jun 04 2025 04:03:21 host maldet(223113): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 04 2025 04:03:21 host maldet(223113): {sigup} new signature set error code: 525 available Jun 04 2025 04:03:21 host maldet(223113): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 04 2025 04:03:52 host maldet(223113): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 04 2025 04:03:52 host maldet(223113): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 04 2025 04:03:52 host maldet(223113): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 04 2025 04:04:46 host maldet(223113): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 04 2025 04:05:32 host maldet(223113): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 04 2025 04:05:32 host maldet(223113): {sigup} verified md5sum of maldet-sigpack.tgz Jun 04 2025 04:05:32 host maldet(223113): {sigup} unpacked and installed maldet-sigpack.tgz Jun 04 2025 04:05:32 host maldet(223113): {sigup} verified md5sum of maldet-clean.tgz Jun 04 2025 04:05:32 host maldet(223113): {sigup} unpacked and installed maldet-clean.tgz Jun 04 2025 04:05:32 host maldet(223113): {sigup} signature set update completed Jun 04 2025 04:05:32 host maldet(223113): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 04 2025 04:05:33 host maldet(224903): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 04 2025 04:05:33 host maldet(224903): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 04 2025 04:05:33 host maldet(224903): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 04 2025 04:05:33 host maldet(224903): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 04 2025 04:05:33 host maldet(224903): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 04 2025 04:05:38 host maldet(224903): {scan} file list completed in 5s, found 349 files... Jun 04 2025 04:05:38 host maldet(224903): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 04 2025 04:05:38 host maldet(224903): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (349 files) in progress... Jun 04 2025 04:05:43 host maldet(224903): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 349, malware hits 0, cleaned hits 0, time 10s Jun 04 2025 04:05:43 host maldet(224903): {scan} scan report saved, to view run: maldet --report 250604-0405.224903 Jun 05 2025 03:49:37 host maldet(173663): {update} checking for available updates... Jun 05 2025 03:50:17 host maldet(173663): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 05 2025 03:50:17 host maldet(173663): {update} hashing install files and checking against server... Jun 05 2025 03:51:17 host maldet(173663): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 05 2025 03:51:17 host maldet(173663): {update} version check shows latest but hash check failed, forcing update... Jun 05 2025 03:51:17 host maldet(173663): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 05 2025 03:52:08 host maldet(173663): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 05 2025 03:52:08 host maldet(173663): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! Jun 05 2025 03:52:08 host maldet(175126): {sigup} performing signature update check... Jun 05 2025 03:52:08 host maldet(175126): {sigup} local signature set is version 202506042164456 Jun 05 2025 03:52:08 host maldet(175126): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 05 2025 03:52:08 host maldet(175126): {sigup} latest signature set already installed Jun 05 2025 03:52:08 host maldet(175214): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 05 2025 03:52:09 host maldet(175214): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 05 2025 03:52:09 host maldet(175214): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 05 2025 03:52:09 host maldet(175214): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 05 2025 03:52:09 host maldet(175214): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 05 2025 03:52:14 host maldet(175214): {scan} file list completed in 5s, found 371 files... Jun 05 2025 03:52:14 host maldet(175214): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 05 2025 03:52:14 host maldet(175214): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (371 files) in progress... Jun 05 2025 03:52:25 host maldet(175214): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 371, malware hits 0, cleaned hits 0, time 17s Jun 05 2025 03:52:25 host maldet(175214): {scan} scan report saved, to view run: maldet --report 250605-0352.175214 Jun 06 2025 03:28:01 host maldet(109702): {update} checking for available updates... Jun 06 2025 03:28:03 host maldet(109702): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 06 2025 03:28:03 host maldet(109702): {update} hashing install files and checking against server... Jun 06 2025 03:28:06 host maldet(109702): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 06 2025 03:28:06 host maldet(109702): {update} latest version already installed. Jun 06 2025 03:28:06 host maldet(110046): {sigup} performing signature update check... Jun 06 2025 03:28:06 host maldet(110046): {sigup} local signature set is version 202506042164456 Jun 06 2025 03:28:09 host maldet(110046): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 06 2025 03:28:09 host maldet(110046): {sigup} latest signature set already installed Jun 06 2025 03:28:09 host maldet(110144): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 06 2025 03:28:09 host maldet(110144): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 06 2025 03:28:09 host maldet(110144): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 06 2025 03:28:09 host maldet(110144): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 06 2025 03:28:09 host maldet(110144): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 06 2025 03:28:14 host maldet(110144): {scan} file list completed in 5s, found 351 files... Jun 06 2025 03:28:14 host maldet(110144): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 06 2025 03:28:14 host maldet(110144): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (351 files) in progress... Jun 06 2025 03:28:21 host maldet(110144): {scan} clamscan returned an error, check /usr/local/maldetect/logs/clamscan_log for details! Jun 06 2025 03:28:21 host maldet(110144): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 351, malware hits 0, cleaned hits 0, time 12s Jun 06 2025 03:28:21 host maldet(110144): {scan} scan report saved, to view run: maldet --report 250606-0328.110144 Jun 07 2025 04:23:24 host maldet(83491): {update} checking for available updates... Jun 07 2025 04:24:18 host maldet(83491): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 07 2025 04:24:18 host maldet(83491): {update} hashing install files and checking against server... Jun 07 2025 04:24:58 host maldet(83491): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 07 2025 04:24:58 host maldet(83491): {update} version check shows latest but hash check failed, forcing update... Jun 07 2025 04:24:58 host maldet(83491): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 07 2025 04:25:57 host maldet(83491): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 07 2025 04:25:57 host maldet(83491): {update} verified md5sum of maldetect-current.tar.gz
Copyright ©2k19 -
Hexid
|
Tex7ure