D7net
Home
Console
Upload
information
Create File
Create Folder
About
Tools
:
/
usr
/
local
/
maldetect.bk216269
/
logs
/
Filename :
event_log
back
Copy
Jun 05 2025 03:25:14 host maldet(15469): {sigup} performing signature update check... Jun 05 2025 03:25:14 host maldet(15469): {sigup} local signature set is version 20250225482944 Jun 05 2025 03:25:44 host maldet(15469): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 05 2025 03:25:44 host maldet(15469): {sigup} new signature set 202506042164456 available Jun 05 2025 03:25:44 host maldet(15469): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 05 2025 03:26:12 host maldet(15469): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 05 2025 03:26:13 host maldet(15469): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 05 2025 03:26:13 host maldet(15469): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 05 2025 03:26:58 host maldet(15469): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 05 2025 03:27:29 host maldet(15469): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 05 2025 03:27:29 host maldet(15469): {sigup} verified md5sum of maldet-sigpack.tgz Jun 05 2025 03:27:29 host maldet(15469): {sigup} unpacked and installed maldet-sigpack.tgz Jun 05 2025 03:27:29 host maldet(15469): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 05 2025 03:27:29 host maldet(15469): {sigup} signature set update completed Jun 05 2025 03:27:29 host maldet(15469): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 05 2025 03:27:29 host maldet(5953): {update} completed update v1.6.6 3a1792 => v1.6.6 359d25, running signature updates... Jun 05 2025 03:27:29 host maldet(30741): {sigup} performing signature update check... Jun 05 2025 03:27:29 host maldet(30741): {sigup} local signature set is version 202506042164456 Jun 05 2025 03:28:17 host maldet(30741): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 05 2025 03:28:17 host maldet(30741): {sigup} new signature set error code: 525 available Jun 05 2025 03:28:17 host maldet(30741): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 05 2025 03:28:53 host maldet(30741): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 05 2025 03:29:25 host maldet(30741): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 05 2025 03:29:25 host maldet(30741): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 05 2025 03:29:25 host maldet(30741): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 05 2025 03:29:50 host maldet(30741): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 05 2025 03:29:50 host maldet(30741): {sigup} verified md5sum of maldet-sigpack.tgz Jun 05 2025 03:29:51 host maldet(30741): {sigup} unpacked and installed maldet-sigpack.tgz Jun 05 2025 03:29:51 host maldet(30741): {sigup} verified md5sum of maldet-clean.tgz Jun 05 2025 03:29:51 host maldet(30741): {sigup} unpacked and installed maldet-clean.tgz Jun 05 2025 03:29:51 host maldet(30741): {sigup} signature set update completed Jun 05 2025 03:29:51 host maldet(30741): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 05 2025 03:29:51 host maldet(5953): {update} update and config import completed Jun 05 2025 03:29:51 host maldet(46192): {sigup} performing signature update check... Jun 05 2025 03:29:51 host maldet(46192): {sigup} local signature set is version 202506042164456 Jun 05 2025 03:30:33 host maldet(46192): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 05 2025 03:30:33 host maldet(46192): {sigup} new signature set error code: 525 available Jun 05 2025 03:30:33 host maldet(46192): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 05 2025 03:31:47 host maldet(46192): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 05 2025 03:32:47 host maldet(46192): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 05 2025 03:32:48 host maldet(46192): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 05 2025 03:32:48 host maldet(46192): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 05 2025 03:33:59 host maldet(46192): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 05 2025 03:33:59 host maldet(46192): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 05 2025 03:33:59 host maldet(46192): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 05 2025 03:33:59 host maldet(75846): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 05 2025 03:34:00 host maldet(75846): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 05 2025 03:34:00 host maldet(75846): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 05 2025 03:34:00 host maldet(75846): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 05 2025 03:34:00 host maldet(75846): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 05 2025 03:35:55 host maldet(75846): {scan} file list completed in 115s, found 2467 files... Jun 05 2025 03:35:55 host maldet(75846): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 05 2025 03:35:55 host maldet(75846): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (2467 files) in progress... Jun 05 2025 03:37:21 host maldet(75846): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 2467, malware hits 0, cleaned hits 0, time 202s Jun 05 2025 03:37:21 host maldet(75846): {scan} scan report saved, to view run: maldet --report 250605-0333.75846 Jun 06 2025 03:33:52 host maldet(54215): {update} checking for available updates... Jun 06 2025 03:34:18 host maldet(54215): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 06 2025 03:34:18 host maldet(54215): {update} hashing install files and checking against server... Jun 06 2025 03:34:42 host maldet(54215): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 06 2025 03:34:42 host maldet(54215): {update} latest version already installed. Jun 06 2025 03:34:42 host maldet(59924): {sigup} performing signature update check... Jun 06 2025 03:34:42 host maldet(59924): {sigup} local signature set is version 202506042164456 Jun 06 2025 03:35:07 host maldet(59924): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 06 2025 03:35:07 host maldet(59924): {sigup} latest signature set already installed Jun 06 2025 03:35:07 host maldet(63183): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 06 2025 03:35:08 host maldet(63183): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 06 2025 03:35:08 host maldet(63183): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 06 2025 03:35:08 host maldet(63183): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 06 2025 03:35:08 host maldet(63183): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 06 2025 03:36:03 host maldet(63183): {scan} file list completed in 55s, found 2764 files... Jun 06 2025 03:36:03 host maldet(63183): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 06 2025 03:36:03 host maldet(63183): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (2764 files) in progress... Jun 06 2025 03:37:31 host maldet(63183): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 2764, malware hits 0, cleaned hits 0, time 144s Jun 06 2025 03:37:31 host maldet(63183): {scan} scan report saved, to view run: maldet --report 250606-0335.63183 Jun 07 2025 03:39:36 host maldet(244630): {update} checking for available updates... Jun 07 2025 03:40:42 host maldet(244630): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 07 2025 03:40:42 host maldet(244630): {update} hashing install files and checking against server... Jun 07 2025 03:41:27 host maldet(244630): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 07 2025 03:41:27 host maldet(244630): {update} version check shows latest but hash check failed, forcing update... Jun 07 2025 03:41:27 host maldet(244630): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 07 2025 03:42:07 host maldet(244630): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 07 2025 03:42:07 host maldet(244630): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! Jun 07 2025 03:42:07 host maldet(37244): {sigup} performing signature update check... Jun 07 2025 03:42:07 host maldet(37244): {sigup} local signature set is version 202506042164456 Jun 07 2025 03:42:47 host maldet(37244): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 07 2025 03:42:47 host maldet(37244): {sigup} new signature set error code: 522 available Jun 07 2025 03:42:47 host maldet(37244): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 07 2025 03:43:31 host maldet(37244): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 07 2025 03:44:06 host maldet(37244): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 07 2025 03:44:06 host maldet(37244): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 07 2025 03:44:59 host maldet(37244): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 07 2025 03:46:39 host maldet(37244): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 07 2025 03:46:39 host maldet(37244): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 07 2025 03:46:39 host maldet(37244): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 07 2025 03:46:39 host maldet(97989): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 07 2025 03:46:39 host maldet(97989): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 07 2025 03:46:39 host maldet(97989): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 07 2025 03:46:39 host maldet(97989): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 07 2025 03:46:39 host maldet(97989): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 07 2025 03:47:19 host maldet(97989): {scan} file list completed in 40s, found 354 files... Jun 07 2025 03:47:19 host maldet(97989): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 07 2025 03:47:19 host maldet(97989): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (354 files) in progress... Jun 07 2025 03:47:31 host maldet(97989): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.php8 Jun 07 2025 03:47:31 host maldet(97989): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.php Jun 07 2025 03:47:31 host maldet(97989): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/sts.php Jun 07 2025 03:47:31 host maldet(97989): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.php7 Jun 07 2025 03:47:31 host maldet(97989): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.phtml Jun 07 2025 03:47:31 host maldet(97989): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 354, malware hits 5, cleaned hits 0, time 52s Jun 07 2025 03:47:31 host maldet(97989): {scan} scan report saved, to view run: maldet --report 250607-0346.97989 Jun 07 2025 03:47:31 host maldet(97989): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250607-0346.97989 Jun 08 2025 03:38:21 host maldet(228759): {update} checking for available updates... Jun 08 2025 03:39:17 host maldet(228759): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 08 2025 03:39:17 host maldet(228759): {update} hashing install files and checking against server... Jun 08 2025 03:40:11 host maldet(228759): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 08 2025 03:40:11 host maldet(228759): {update} version check shows latest but hash check failed, forcing update... Jun 08 2025 03:40:11 host maldet(228759): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 08 2025 03:40:12 host maldet(228759): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 08 2025 03:40:12 host maldet(228759): {update} verified md5sum of maldetect-current.tar.gz Jun 08 2025 03:40:12 host maldet(228759): {update} completed update v1.6.6 3a1792 => verror code: 525 359d25, running signature updates... Jun 08 2025 03:40:12 host maldet(9960): {sigup} performing signature update check... Jun 08 2025 03:40:12 host maldet(9960): {sigup} local signature set is version 202506042164456 Jun 08 2025 03:40:12 host maldet(9960): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 08 2025 03:40:12 host maldet(9960): {sigup} new signature set 20250607589111 available Jun 08 2025 03:40:12 host maldet(9960): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 08 2025 03:41:13 host maldet(9960): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 08 2025 03:41:14 host maldet(9960): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 08 2025 03:41:14 host maldet(9960): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 08 2025 03:41:53 host maldet(9960): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 08 2025 03:42:40 host maldet(9960): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 08 2025 03:42:40 host maldet(9960): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 08 2025 03:42:40 host maldet(9960): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 08 2025 03:42:40 host maldet(228759): {update} update and config import completed Jun 08 2025 03:42:40 host maldet(43287): {sigup} performing signature update check... Jun 08 2025 03:42:40 host maldet(43287): {sigup} local signature set is version 202506042164456 Jun 08 2025 03:43:29 host maldet(43287): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 08 2025 03:43:29 host maldet(43287): {sigup} new signature set error code: 525 available Jun 08 2025 03:43:29 host maldet(43287): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 08 2025 03:44:13 host maldet(43287): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 08 2025 03:44:14 host maldet(43287): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 08 2025 03:44:14 host maldet(43287): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 08 2025 03:44:48 host maldet(43287): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 08 2025 03:45:28 host maldet(43287): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 08 2025 03:45:28 host maldet(43287): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 08 2025 03:45:29 host maldet(43287): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 08 2025 03:45:29 host maldet(82169): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 08 2025 03:45:30 host maldet(82169): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 08 2025 03:45:30 host maldet(82169): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 08 2025 03:45:30 host maldet(82169): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 08 2025 03:45:30 host maldet(82169): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 08 2025 03:46:09 host maldet(82169): {scan} file list completed in 39s, found 511 files... Jun 08 2025 03:46:09 host maldet(82169): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 08 2025 03:46:09 host maldet(82169): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (511 files) in progress... Jun 08 2025 03:46:23 host maldet(82169): {hit} malware hit {HEX}php.base64.inject.182 found for /home/dennyscashforcar/public_html/wp-includes/cjfuns.php Jun 08 2025 03:46:23 host maldet(82169): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.php8 Jun 08 2025 03:46:23 host maldet(82169): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.php Jun 08 2025 03:46:23 host maldet(82169): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.php7 Jun 08 2025 03:46:23 host maldet(82169): {hit} malware hit {HEX}php.base64.inject.182 found for /home/garageexcelldesi/public_html/wp-admin/includes/fix.phtml Jun 08 2025 03:46:23 host maldet(82169): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 511, malware hits 5, cleaned hits 0, time 54s Jun 08 2025 03:46:23 host maldet(82169): {scan} scan report saved, to view run: maldet --report 250608-0345.82169 Jun 08 2025 03:46:23 host maldet(82169): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250608-0345.82169 Jun 09 2025 03:36:43 host maldet(160988): {update} checking for available updates... Jun 09 2025 03:37:13 host maldet(160988): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 09 2025 03:37:14 host maldet(160988): {update} hashing install files and checking against server... Jun 09 2025 03:37:14 host maldet(160988): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 09 2025 03:37:14 host maldet(160988): {update} latest version already installed. Jun 09 2025 03:37:14 host maldet(165524): {sigup} performing signature update check... Jun 09 2025 03:37:14 host maldet(165524): {sigup} local signature set is version 202506042164456 Jun 09 2025 03:38:07 host maldet(165524): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 09 2025 03:38:08 host maldet(165524): {sigup} new signature set 20250607589111 available Jun 09 2025 03:38:08 host maldet(165524): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 09 2025 03:38:36 host maldet(165524): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 09 2025 03:39:04 host maldet(165524): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 09 2025 03:39:04 host maldet(165524): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 09 2025 03:39:43 host maldet(165524): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 09 2025 03:40:48 host maldet(165524): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 09 2025 03:40:48 host maldet(165524): {sigup} verified md5sum of maldet-sigpack.tgz Jun 09 2025 03:40:48 host maldet(165524): {sigup} unpacked and installed maldet-sigpack.tgz Jun 09 2025 03:40:48 host maldet(165524): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 09 2025 03:40:48 host maldet(165524): {sigup} signature set update completed Jun 09 2025 03:40:48 host maldet(165524): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 09 2025 03:40:48 host maldet(196189): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 09 2025 03:40:49 host maldet(196189): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 09 2025 03:40:49 host maldet(196189): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 09 2025 03:40:49 host maldet(196189): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 09 2025 03:40:49 host maldet(196189): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 09 2025 03:41:22 host maldet(196189): {scan} file list completed in 33s, found 76546 files... Jun 09 2025 03:41:22 host maldet(196189): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 09 2025 03:41:22 host maldet(196189): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (76546 files) in progress... Jun 09 2025 03:50:42 host maldet(196189): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 76546, malware hits 0, cleaned hits 0, time 594s Jun 09 2025 03:50:42 host maldet(196189): {scan} scan report saved, to view run: maldet --report 250609-0340.196189 Jun 10 2025 03:11:37 host maldet(13238): {update} checking for available updates... Jun 10 2025 03:11:39 host maldet(13238): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 10 2025 03:11:39 host maldet(13238): {update} hashing install files and checking against server... Jun 10 2025 03:11:39 host maldet(13238): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 10 2025 03:11:39 host maldet(13238): {update} latest version already installed. Jun 10 2025 03:11:39 host maldet(13701): {sigup} performing signature update check... Jun 10 2025 03:11:40 host maldet(13701): {sigup} local signature set is version 20250607589111 Jun 10 2025 03:11:40 host maldet(13701): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 10 2025 03:11:40 host maldet(13701): {sigup} latest signature set already installed Jun 10 2025 03:11:40 host maldet(13860): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 10 2025 03:11:40 host maldet(13860): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 10 2025 03:11:40 host maldet(13860): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 10 2025 03:11:40 host maldet(13860): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 10 2025 03:11:40 host maldet(13860): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 10 2025 03:12:03 host maldet(13860): {scan} file list completed in 23s, found 1148 files... Jun 10 2025 03:12:03 host maldet(13860): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 10 2025 03:12:03 host maldet(13860): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (1148 files) in progress... Jun 10 2025 03:12:34 host maldet(13860): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 1148, malware hits 0, cleaned hits 0, time 54s Jun 10 2025 03:12:34 host maldet(13860): {scan} scan report saved, to view run: maldet --report 250610-0311.13860 Jun 11 2025 03:22:54 host maldet(122679): {update} checking for available updates... Jun 11 2025 03:23:44 host maldet(122679): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 11 2025 03:23:44 host maldet(122679): {update} hashing install files and checking against server... Jun 11 2025 03:24:10 host maldet(122679): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 11 2025 03:24:10 host maldet(122679): {update} latest version already installed. Jun 11 2025 03:24:10 host maldet(131734): {sigup} performing signature update check... Jun 11 2025 03:24:10 host maldet(131734): {sigup} local signature set is version 20250607589111 Jun 11 2025 03:24:57 host maldet(131734): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 11 2025 03:24:57 host maldet(131734): {sigup} new signature set error code: 525 available Jun 11 2025 03:24:57 host maldet(131734): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 11 2025 03:24:58 host maldet(131734): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 11 2025 03:25:28 host maldet(131734): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 11 2025 03:25:28 host maldet(131734): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 11 2025 03:25:55 host maldet(131734): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 11 2025 03:26:19 host maldet(131734): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 11 2025 03:26:19 host maldet(131734): {sigup} verified md5sum of maldet-sigpack.tgz Jun 11 2025 03:26:19 host maldet(131734): {sigup} unpacked and installed maldet-sigpack.tgz Jun 11 2025 03:26:19 host maldet(131734): {sigup} verified md5sum of maldet-clean.tgz Jun 11 2025 03:26:19 host maldet(131734): {sigup} unpacked and installed maldet-clean.tgz Jun 11 2025 03:26:19 host maldet(131734): {sigup} signature set update completed Jun 11 2025 03:26:19 host maldet(131734): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 11 2025 03:26:19 host maldet(148171): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 11 2025 03:26:20 host maldet(148171): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 11 2025 03:26:20 host maldet(148171): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 11 2025 03:26:20 host maldet(148171): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 11 2025 03:26:20 host maldet(148171): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 11 2025 03:27:11 host maldet(148171): {scan} file list completed in 51s, found 27643 files... Jun 11 2025 03:27:11 host maldet(148171): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 11 2025 03:27:11 host maldet(148171): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (27643 files) in progress... Jun 11 2025 03:37:45 host maldet(148171): {hit} malware hit {HEX}php.defash.buno.407 found for /home/bookpromotiongro/public_html/wp-content/plugins/null/shellscan.php Jun 11 2025 03:37:46 host maldet(148171): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 27643, malware hits 1, cleaned hits 0, time 686s Jun 11 2025 03:37:46 host maldet(148171): {scan} scan report saved, to view run: maldet --report 250611-0326.148171 Jun 11 2025 03:37:46 host maldet(148171): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250611-0326.148171 Jun 12 2025 03:29:46 host maldet(198942): {update} checking for available updates... Jun 12 2025 03:29:48 host maldet(198942): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 12 2025 03:29:48 host maldet(198942): {update} hashing install files and checking against server... Jun 12 2025 03:29:48 host maldet(198942): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 12 2025 03:29:48 host maldet(198942): {update} latest version already installed. Jun 12 2025 03:29:48 host maldet(199115): {sigup} performing signature update check... Jun 12 2025 03:29:48 host maldet(199115): {sigup} local signature set is version 20250610484586 Jun 12 2025 03:30:21 host maldet(199115): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 12 2025 03:30:21 host maldet(199115): {sigup} latest signature set already installed Jun 12 2025 03:30:21 host maldet(200754): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 12 2025 03:30:21 host maldet(200754): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 12 2025 03:30:21 host maldet(200754): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 12 2025 03:30:21 host maldet(200754): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 12 2025 03:30:21 host maldet(200754): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 12 2025 03:30:54 host maldet(200754): {scan} file list completed in 33s, found 85440 files... Jun 12 2025 03:30:54 host maldet(200754): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 12 2025 03:30:54 host maldet(200754): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (85440 files) in progress... Jun 12 2025 03:49:32 host maldet(200754): {hit} malware hit {YARA}spam_mailer found for /home/kevinamoore/public_html/wp-content/plugins/null/cron2.php Jun 12 2025 03:49:32 host maldet(200754): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 85440, malware hits 1, cleaned hits 0, time 1151s Jun 12 2025 03:49:32 host maldet(200754): {scan} scan report saved, to view run: maldet --report 250612-0330.200754 Jun 12 2025 03:49:32 host maldet(200754): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250612-0330.200754 Jun 13 2025 03:18:16 host maldet(147161): {update} checking for available updates... Jun 13 2025 03:19:02 host maldet(147161): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 13 2025 03:19:02 host maldet(147161): {update} hashing install files and checking against server... Jun 13 2025 03:19:55 host maldet(147161): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 13 2025 03:19:55 host maldet(147161): {update} latest version already installed. Jun 13 2025 03:19:55 host maldet(148658): {sigup} performing signature update check... Jun 13 2025 03:19:55 host maldet(148658): {sigup} local signature set is version 20250610484586 Jun 13 2025 03:19:55 host maldet(148658): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 13 2025 03:19:55 host maldet(148658): {sigup} new signature set 20250613705251 available Jun 13 2025 03:19:55 host maldet(148658): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 13 2025 03:20:43 host maldet(148658): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 13 2025 03:21:34 host maldet(148658): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 13 2025 03:21:34 host maldet(148658): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 13 2025 03:22:07 host maldet(148658): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 13 2025 03:22:50 host maldet(148658): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 13 2025 03:22:50 host maldet(148658): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 13 2025 03:22:50 host maldet(148658): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 13 2025 03:22:50 host maldet(153092): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 13 2025 03:22:50 host maldet(153092): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 13 2025 03:22:50 host maldet(153092): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 13 2025 03:22:50 host maldet(153092): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 13 2025 03:22:50 host maldet(153092): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 13 2025 03:23:04 host maldet(153092): {scan} file list completed in 14s, found 2245 files... Jun 13 2025 03:23:04 host maldet(153092): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 13 2025 03:23:04 host maldet(153092): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (2245 files) in progress... Jun 13 2025 03:23:54 host maldet(153092): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 2245, malware hits 0, cleaned hits 0, time 64s Jun 13 2025 03:23:54 host maldet(153092): {scan} scan report saved, to view run: maldet --report 250613-0322.153092 Jun 14 2025 03:21:12 host maldet(72662): {update} checking for available updates... Jun 14 2025 03:21:33 host maldet(72662): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 14 2025 03:21:33 host maldet(72662): {update} hashing install files and checking against server... Jun 14 2025 03:22:05 host maldet(72662): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 14 2025 03:22:05 host maldet(72662): {update} latest version already installed. Jun 14 2025 03:22:06 host maldet(73483): {sigup} performing signature update check... Jun 14 2025 03:22:06 host maldet(73483): {sigup} local signature set is version 20250610484586 Jun 14 2025 03:22:36 host maldet(73483): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 14 2025 03:22:36 host maldet(73483): {sigup} new signature set 20250613705251 available Jun 14 2025 03:22:36 host maldet(73483): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 14 2025 03:23:21 host maldet(73483): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 14 2025 03:24:01 host maldet(73483): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 14 2025 03:24:01 host maldet(73483): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 14 2025 03:25:05 host maldet(73483): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 14 2025 03:26:10 host maldet(73483): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 14 2025 03:26:10 host maldet(73483): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 14 2025 03:26:10 host maldet(73483): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 14 2025 03:26:10 host maldet(78693): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 14 2025 03:26:10 host maldet(78693): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 14 2025 03:26:10 host maldet(78693): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 14 2025 03:26:10 host maldet(78693): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 14 2025 03:26:10 host maldet(78693): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 14 2025 03:26:39 host maldet(78693): {scan} file list completed in 28s, found 13985 files... Jun 14 2025 03:26:39 host maldet(78693): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 14 2025 03:26:39 host maldet(78693): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (13985 files) in progress... Jun 14 2025 03:31:57 host maldet(78693): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 13985, malware hits 0, cleaned hits 0, time 347s Jun 14 2025 03:31:57 host maldet(78693): {scan} scan report saved, to view run: maldet --report 250614-0326.78693 Jun 15 2025 03:47:10 host maldet(13359): {update} checking for available updates... Jun 15 2025 03:47:58 host maldet(13359): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 15 2025 03:47:58 host maldet(13359): {update} hashing install files and checking against server... Jun 15 2025 03:48:38 host maldet(13359): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 15 2025 03:48:38 host maldet(13359): {update} version check shows latest but hash check failed, forcing update... Jun 15 2025 03:48:38 host maldet(13359): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 15 2025 03:48:39 host maldet(13359): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 15 2025 03:48:39 host maldet(13359): {update} verified md5sum of maldetect-current.tar.gz Jun 15 2025 03:48:39 host maldet(13359): {update} completed update v1.6.6 3a1792 => verror code: 525 359d25, running signature updates... Jun 15 2025 03:48:39 host maldet(14730): {sigup} performing signature update check... Jun 15 2025 03:48:39 host maldet(14730): {sigup} local signature set is version 20250610484586 Jun 15 2025 03:48:39 host maldet(14730): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 15 2025 03:48:39 host maldet(14730): {sigup} new signature set 20250613705251 available Jun 15 2025 03:48:39 host maldet(14730): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 15 2025 03:50:06 host maldet(14730): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 15 2025 03:51:09 host maldet(14730): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 15 2025 03:51:09 host maldet(14730): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 15 2025 03:51:54 host maldet(14730): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 15 2025 03:52:33 host maldet(14730): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 15 2025 03:52:33 host maldet(14730): {sigup} verified md5sum of maldet-sigpack.tgz Jun 15 2025 03:52:34 host maldet(14730): {sigup} unpacked and installed maldet-sigpack.tgz Jun 15 2025 03:52:34 host maldet(14730): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 15 2025 03:52:34 host maldet(14730): {sigup} signature set update completed Jun 15 2025 03:52:34 host maldet(14730): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 15 2025 03:52:34 host maldet(13359): {update} update and config import completed Jun 15 2025 03:52:34 host maldet(18590): {sigup} performing signature update check... Jun 15 2025 03:52:34 host maldet(18590): {sigup} local signature set is version 20250613705251 Jun 15 2025 03:52:34 host maldet(18590): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 15 2025 03:52:34 host maldet(18590): {sigup} latest signature set already installed Jun 15 2025 03:52:34 host maldet(18678): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 15 2025 03:52:34 host maldet(18678): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 15 2025 03:52:34 host maldet(18678): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 15 2025 03:52:34 host maldet(18678): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 15 2025 03:52:34 host maldet(18678): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 15 2025 03:52:52 host maldet(18678): {scan} file list completed in 18s, found 340 files... Jun 15 2025 03:52:52 host maldet(18678): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 15 2025 03:52:52 host maldet(18678): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (340 files) in progress... Jun 15 2025 03:53:03 host maldet(18678): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 340, malware hits 0, cleaned hits 0, time 29s Jun 15 2025 03:53:03 host maldet(18678): {scan} scan report saved, to view run: maldet --report 250615-0352.18678 Jun 16 2025 03:07:51 host maldet(33627): {update} checking for available updates... Jun 16 2025 03:07:53 host maldet(33627): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 16 2025 03:07:53 host maldet(33627): {update} hashing install files and checking against server... Jun 16 2025 03:07:54 host maldet(33627): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 16 2025 03:07:54 host maldet(33627): {update} latest version already installed. Jun 16 2025 03:07:54 host maldet(33757): {sigup} performing signature update check... Jun 16 2025 03:07:54 host maldet(33757): {sigup} local signature set is version 20250613705251 Jun 16 2025 03:07:54 host maldet(33757): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 16 2025 03:07:54 host maldet(33757): {sigup} new signature set 20250616812462 available Jun 16 2025 03:07:54 host maldet(33757): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 16 2025 03:07:54 host maldet(33757): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 16 2025 03:07:55 host maldet(33757): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 16 2025 03:07:55 host maldet(33757): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 16 2025 03:07:55 host maldet(33757): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 16 2025 03:07:55 host maldet(33757): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 16 2025 03:07:55 host maldet(33757): {sigup} verified md5sum of maldet-sigpack.tgz Jun 16 2025 03:07:55 host maldet(33757): {sigup} unpacked and installed maldet-sigpack.tgz Jun 16 2025 03:07:55 host maldet(33757): {sigup} verified md5sum of maldet-clean.tgz Jun 16 2025 03:07:56 host maldet(33757): {sigup} unpacked and installed maldet-clean.tgz Jun 16 2025 03:07:56 host maldet(33757): {sigup} signature set update completed Jun 16 2025 03:07:56 host maldet(33757): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 16 2025 03:07:56 host maldet(33975): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 16 2025 03:07:56 host maldet(33975): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 16 2025 03:07:56 host maldet(33975): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 16 2025 03:07:56 host maldet(33975): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 16 2025 03:07:56 host maldet(33975): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 16 2025 03:08:14 host maldet(33975): {scan} file list completed in 18s, found 15840 files... Jun 16 2025 03:08:14 host maldet(33975): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 16 2025 03:08:14 host maldet(33975): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (15840 files) in progress... Jun 16 2025 03:12:02 host maldet(33975): {hit} malware hit {YARA}webshell_webshell_cnseay02_1 found for /home/viningscarbuyer/public_html/wp.php Jun 16 2025 03:12:02 host maldet(33975): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 15840, malware hits 1, cleaned hits 0, time 246s Jun 16 2025 03:12:02 host maldet(33975): {scan} scan report saved, to view run: maldet --report 250616-0307.33975 Jun 16 2025 03:12:02 host maldet(33975): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250616-0307.33975 Jun 17 2025 03:21:13 host maldet(92915): {update} checking for available updates... Jun 17 2025 03:21:15 host maldet(92915): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 17 2025 03:21:15 host maldet(92915): {update} hashing install files and checking against server... Jun 17 2025 03:21:38 host maldet(92915): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 17 2025 03:21:39 host maldet(92915): {update} latest version already installed. Jun 17 2025 03:21:39 host maldet(96504): {sigup} performing signature update check... Jun 17 2025 03:21:39 host maldet(96504): {sigup} local signature set is version 20250616812462 Jun 17 2025 03:22:33 host maldet(96504): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 17 2025 03:22:33 host maldet(96504): {sigup} latest signature set already installed Jun 17 2025 03:22:33 host maldet(103883): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 17 2025 03:22:33 host maldet(103883): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 17 2025 03:22:33 host maldet(103883): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 17 2025 03:22:33 host maldet(103883): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 17 2025 03:22:33 host maldet(103883): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 17 2025 03:22:53 host maldet(103883): {scan} file list completed in 20s, found 369 files... Jun 17 2025 03:22:53 host maldet(103883): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 17 2025 03:22:53 host maldet(103883): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (369 files) in progress... Jun 17 2025 03:23:04 host maldet(103883): {hit} malware hit {HEX}php.base64.inject.182 found for /home/viningscarbuyer/public_html/wp-login-css.php Jun 17 2025 03:23:04 host maldet(103883): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 369, malware hits 1, cleaned hits 0, time 31s Jun 17 2025 03:23:04 host maldet(103883): {scan} scan report saved, to view run: maldet --report 250617-0322.103883 Jun 17 2025 03:23:04 host maldet(103883): {scan} quarantine is disabled! set quarantine_hits=1 in conf.maldet or to quarantine results run: maldet -q 250617-0322.103883 Jun 18 2025 03:14:14 host maldet(131240): {update} checking for available updates... Jun 18 2025 03:14:16 host maldet(131240): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 18 2025 03:14:16 host maldet(131240): {update} hashing install files and checking against server... Jun 18 2025 03:14:17 host maldet(131240): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 18 2025 03:14:17 host maldet(131240): {update} latest version already installed. Jun 18 2025 03:14:17 host maldet(131850): {sigup} performing signature update check... Jun 18 2025 03:14:17 host maldet(131850): {sigup} local signature set is version 20250616812462 Jun 18 2025 03:14:17 host maldet(131850): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 18 2025 03:14:17 host maldet(131850): {sigup} latest signature set already installed Jun 18 2025 03:14:17 host maldet(132041): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 18 2025 03:14:17 host maldet(132041): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 18 2025 03:14:17 host maldet(132041): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 18 2025 03:14:17 host maldet(132041): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 18 2025 03:14:17 host maldet(132041): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 18 2025 03:15:14 host maldet(132041): {scan} file list completed in 57s, found 1038 files... Jun 18 2025 03:15:14 host maldet(132041): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 18 2025 03:15:14 host maldet(132041): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (1038 files) in progress... Jun 18 2025 03:15:49 host maldet(132041): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 1038, malware hits 0, cleaned hits 0, time 92s Jun 18 2025 03:15:49 host maldet(132041): {scan} scan report saved, to view run: maldet --report 250618-0314.132041 Jun 19 2025 03:20:20 host maldet(70366): {update} checking for available updates... Jun 19 2025 03:20:22 host maldet(70366): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 19 2025 03:20:22 host maldet(70366): {update} hashing install files and checking against server... Jun 19 2025 03:20:23 host maldet(70366): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 19 2025 03:20:23 host maldet(70366): {update} latest version already installed. Jun 19 2025 03:20:23 host maldet(70737): {sigup} performing signature update check... Jun 19 2025 03:20:23 host maldet(70737): {sigup} local signature set is version 20250616812462 Jun 19 2025 03:20:23 host maldet(70737): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 19 2025 03:20:23 host maldet(70737): {sigup} latest signature set already installed Jun 19 2025 03:20:23 host maldet(70885): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 19 2025 03:20:24 host maldet(70885): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 19 2025 03:20:24 host maldet(70885): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 19 2025 03:20:24 host maldet(70885): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 19 2025 03:20:24 host maldet(70885): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 19 2025 03:21:04 host maldet(70885): {scan} file list completed in 40s, found 20044 files... Jun 19 2025 03:21:04 host maldet(70885): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 19 2025 03:21:04 host maldet(70885): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (20044 files) in progress... Jun 19 2025 03:27:15 host maldet(70885): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 20044, malware hits 0, cleaned hits 0, time 412s Jun 19 2025 03:27:15 host maldet(70885): {scan} scan report saved, to view run: maldet --report 250619-0320.70885 Jun 20 2025 03:19:14 host maldet(156208): {update} checking for available updates... Jun 20 2025 03:19:37 host maldet(156208): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 20 2025 03:19:37 host maldet(156208): {update} hashing install files and checking against server... Jun 20 2025 03:20:00 host maldet(156208): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 20 2025 03:20:01 host maldet(156208): {update} latest version already installed. Jun 20 2025 03:20:01 host maldet(163424): {sigup} performing signature update check... Jun 20 2025 03:20:01 host maldet(163424): {sigup} local signature set is version 20250616812462 Jun 20 2025 03:20:23 host maldet(163424): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 20 2025 03:20:23 host maldet(163424): {sigup} new signature set 202506191777955 available Jun 20 2025 03:20:23 host maldet(163424): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 20 2025 03:21:07 host maldet(163424): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 20 2025 03:21:34 host maldet(163424): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 20 2025 03:21:34 host maldet(163424): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 20 2025 03:22:24 host maldet(163424): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 20 2025 03:23:13 host maldet(163424): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 20 2025 03:23:13 host maldet(163424): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 20 2025 03:23:13 host maldet(163424): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 20 2025 03:23:13 host maldet(194469): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 20 2025 03:23:13 host maldet(194469): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 20 2025 03:23:13 host maldet(194469): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 20 2025 03:23:13 host maldet(194469): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 20 2025 03:23:13 host maldet(194469): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 20 2025 03:23:37 host maldet(194469): {scan} file list completed in 24s, found 19998 files... Jun 20 2025 03:23:37 host maldet(194469): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 20 2025 03:23:37 host maldet(194469): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (19998 files) in progress... Jun 20 2025 03:28:39 host maldet(194469): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 19998, malware hits 0, cleaned hits 0, time 326s Jun 20 2025 03:28:39 host maldet(194469): {scan} scan report saved, to view run: maldet --report 250620-0323.194469 Jun 21 2025 03:33:32 host maldet(175383): {update} checking for available updates... Jun 21 2025 03:34:21 host maldet(175383): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 21 2025 03:34:21 host maldet(175383): {update} hashing install files and checking against server... Jun 21 2025 03:34:22 host maldet(175383): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 21 2025 03:34:22 host maldet(175383): {update} latest version already installed. Jun 21 2025 03:34:22 host maldet(184997): {sigup} performing signature update check... Jun 21 2025 03:34:22 host maldet(184997): {sigup} local signature set is version 20250616812462 Jun 21 2025 03:34:22 host maldet(184997): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 21 2025 03:34:22 host maldet(184997): {sigup} new signature set 202506191777955 available Jun 21 2025 03:34:22 host maldet(184997): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 21 2025 03:34:23 host maldet(184997): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 21 2025 03:35:03 host maldet(184997): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 21 2025 03:35:03 host maldet(184997): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 21 2025 03:35:49 host maldet(184997): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 21 2025 03:36:09 host maldet(184997): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 21 2025 03:36:09 host maldet(184997): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 21 2025 03:36:09 host maldet(184997): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 21 2025 03:36:09 host maldet(206157): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 21 2025 03:36:09 host maldet(206157): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 21 2025 03:36:09 host maldet(206157): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 21 2025 03:36:09 host maldet(206157): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 21 2025 03:36:09 host maldet(206157): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 21 2025 03:36:29 host maldet(206157): {scan} file list completed in 20s, found 1874 files... Jun 21 2025 03:36:29 host maldet(206157): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 21 2025 03:36:29 host maldet(206157): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (1874 files) in progress... Jun 21 2025 03:37:26 host maldet(206157): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 1874, malware hits 0, cleaned hits 0, time 77s Jun 21 2025 03:37:26 host maldet(206157): {scan} scan report saved, to view run: maldet --report 250621-0336.206157 Jun 22 2025 03:28:34 host maldet(106728): {update} checking for available updates... Jun 22 2025 03:29:21 host maldet(106728): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 22 2025 03:29:21 host maldet(106728): {update} hashing install files and checking against server... Jun 22 2025 03:30:16 host maldet(106728): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 22 2025 03:30:16 host maldet(106728): {update} version check shows latest but hash check failed, forcing update... Jun 22 2025 03:30:16 host maldet(106728): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 22 2025 03:31:04 host maldet(106728): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 22 2025 03:31:04 host maldet(106728): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! Jun 22 2025 03:31:04 host maldet(110531): {sigup} performing signature update check... Jun 22 2025 03:31:04 host maldet(110531): {sigup} local signature set is version 20250616812462 Jun 22 2025 03:31:47 host maldet(110531): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 22 2025 03:31:47 host maldet(110531): {sigup} new signature set 202506222744524 available Jun 22 2025 03:31:47 host maldet(110531): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 22 2025 03:32:31 host maldet(110531): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 22 2025 03:33:19 host maldet(110531): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 22 2025 03:33:19 host maldet(110531): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 22 2025 03:34:10 host maldet(110531): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 22 2025 03:34:54 host maldet(110531): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 22 2025 03:34:54 host maldet(110531): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 22 2025 03:34:54 host maldet(110531): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 22 2025 03:34:54 host maldet(117319): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 22 2025 03:34:54 host maldet(117319): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 22 2025 03:34:54 host maldet(117319): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 22 2025 03:34:54 host maldet(117319): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 22 2025 03:34:54 host maldet(117319): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 22 2025 03:35:15 host maldet(117319): {scan} file list completed in 21s, found 3131 files... Jun 22 2025 03:35:15 host maldet(117319): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 22 2025 03:35:15 host maldet(117319): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (3131 files) in progress... Jun 22 2025 03:35:27 host maldet(117319): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 3131, malware hits 0, cleaned hits 0, time 33s Jun 22 2025 03:35:27 host maldet(117319): {scan} scan report saved, to view run: maldet --report 250622-0334.117319 Jun 23 2025 03:42:04 host maldet(94478): {update} checking for available updates... Jun 23 2025 03:42:48 host maldet(94478): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 23 2025 03:42:48 host maldet(94478): {update} hashing install files and checking against server... Jun 23 2025 03:43:48 host maldet(94478): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 23 2025 03:43:48 host maldet(94478): {update} version check shows latest but hash check failed, forcing update... Jun 23 2025 03:43:48 host maldet(94478): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 23 2025 03:44:38 host maldet(94478): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 23 2025 03:44:38 host maldet(94478): {update} verified md5sum of maldetect-current.tar.gz Jun 23 2025 03:44:38 host maldet(94478): {update} completed update v1.6.6 3a1792 => verror code: 525 359d25, running signature updates... Jun 23 2025 03:44:38 host maldet(99299): {sigup} performing signature update check... Jun 23 2025 03:44:38 host maldet(99299): {sigup} local signature set is version 20250616812462 Jun 23 2025 03:45:28 host maldet(99299): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 23 2025 03:45:28 host maldet(99299): {sigup} new signature set error code: 525 available Jun 23 2025 03:45:28 host maldet(99299): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 23 2025 03:46:19 host maldet(99299): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 23 2025 03:46:47 host maldet(99299): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 23 2025 03:46:47 host maldet(99299): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 23 2025 03:46:47 host maldet(99299): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 23 2025 03:47:37 host maldet(99299): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 23 2025 03:47:37 host maldet(99299): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 23 2025 03:47:37 host maldet(99299): {sigup} verified md5sum of maldet-clean.tgz Jun 23 2025 03:47:37 host maldet(99299): {sigup} unpacked and installed maldet-clean.tgz Jun 23 2025 03:47:37 host maldet(94478): {update} update and config import completed Jun 23 2025 03:47:38 host maldet(101751): {sigup} performing signature update check... Jun 23 2025 03:47:38 host maldet(101751): {sigup} local signature set is version 20250616812462 Jun 23 2025 03:48:19 host maldet(101751): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 23 2025 03:48:19 host maldet(101751): {sigup} new signature set 202506222744524 available Jun 23 2025 03:48:19 host maldet(101751): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 23 2025 03:49:06 host maldet(101751): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 23 2025 03:50:05 host maldet(101751): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 23 2025 03:50:05 host maldet(101751): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 23 2025 03:50:30 host maldet(101751): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 23 2025 03:51:24 host maldet(101751): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 23 2025 03:51:24 host maldet(101751): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Jun 23 2025 03:51:24 host maldet(101751): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 23 2025 03:51:25 host maldet(104335): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 23 2025 03:51:25 host maldet(104335): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 23 2025 03:51:25 host maldet(104335): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 23 2025 03:51:25 host maldet(104335): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 23 2025 03:51:25 host maldet(104335): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 23 2025 03:51:44 host maldet(104335): {scan} file list completed in 19s, found 57884 files... Jun 23 2025 03:51:44 host maldet(104335): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 23 2025 03:51:44 host maldet(104335): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (57884 files) in progress... Jun 23 2025 04:00:21 host maldet(104335): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 57884, malware hits 0, cleaned hits 0, time 536s Jun 23 2025 04:00:21 host maldet(104335): {scan} scan report saved, to view run: maldet --report 250623-0351.104335 Jun 24 2025 03:15:54 host maldet(9607): {update} checking for available updates... Jun 24 2025 03:15:56 host maldet(9607): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 24 2025 03:15:56 host maldet(9607): {update} hashing install files and checking against server... Jun 24 2025 03:15:56 host maldet(9607): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 24 2025 03:15:56 host maldet(9607): {update} latest version already installed. Jun 24 2025 03:15:56 host maldet(9732): {sigup} performing signature update check... Jun 24 2025 03:15:56 host maldet(9732): {sigup} local signature set is version 20250616812462 Jun 24 2025 03:15:57 host maldet(9732): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 24 2025 03:15:57 host maldet(9732): {sigup} new signature set 202506222744524 available Jun 24 2025 03:15:57 host maldet(9732): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 24 2025 03:15:57 host maldet(9732): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 24 2025 03:15:57 host maldet(9732): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 24 2025 03:15:57 host maldet(9732): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 24 2025 03:15:58 host maldet(9732): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 24 2025 03:15:58 host maldet(9732): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 24 2025 03:15:58 host maldet(9732): {sigup} verified md5sum of maldet-sigpack.tgz Jun 24 2025 03:15:58 host maldet(9732): {sigup} unpacked and installed maldet-sigpack.tgz Jun 24 2025 03:15:59 host maldet(9732): {sigup} verified md5sum of maldet-clean.tgz Jun 24 2025 03:15:59 host maldet(9732): {sigup} unpacked and installed maldet-clean.tgz Jun 24 2025 03:15:59 host maldet(9732): {sigup} signature set update completed Jun 24 2025 03:15:59 host maldet(9732): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 24 2025 03:15:59 host maldet(9947): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 24 2025 03:15:59 host maldet(9947): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 24 2025 03:15:59 host maldet(9947): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 24 2025 03:15:59 host maldet(9947): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 24 2025 03:15:59 host maldet(9947): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 24 2025 03:16:13 host maldet(9947): {scan} file list completed in 14s, found 575 files... Jun 24 2025 03:16:13 host maldet(9947): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 24 2025 03:16:13 host maldet(9947): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (575 files) in progress... Jun 24 2025 03:16:27 host maldet(9947): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 575, malware hits 0, cleaned hits 0, time 28s Jun 24 2025 03:16:27 host maldet(9947): {scan} scan report saved, to view run: maldet --report 250624-0315.9947 Jun 25 2025 03:50:59 host maldet(125895): {update} checking for available updates... Jun 25 2025 03:51:48 host maldet(125895): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 25 2025 03:51:48 host maldet(125895): {update} hashing install files and checking against server... Jun 25 2025 03:51:49 host maldet(125895): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 25 2025 03:51:49 host maldet(125895): {update} latest version already installed. Jun 25 2025 03:51:49 host maldet(126342): {sigup} performing signature update check... Jun 25 2025 03:51:49 host maldet(126342): {sigup} local signature set is version 202506222744524 Jun 25 2025 03:51:49 host maldet(126342): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Jun 25 2025 03:51:49 host maldet(126342): {sigup} new signature set 202506253712170 available Jun 25 2025 03:51:49 host maldet(126342): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 25 2025 03:51:49 host maldet(126342): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Jun 25 2025 03:52:18 host maldet(126342): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Jun 25 2025 03:52:18 host maldet(126342): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 25 2025 03:53:26 host maldet(126342): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Jun 25 2025 03:54:36 host maldet(126342): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Jun 25 2025 03:54:36 host maldet(126342): {sigup} verified md5sum of maldet-sigpack.tgz Jun 25 2025 03:54:36 host maldet(126342): {sigup} unpacked and installed maldet-sigpack.tgz Jun 25 2025 03:54:36 host maldet(126342): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Jun 25 2025 03:54:36 host maldet(126342): {sigup} signature set update completed Jun 25 2025 03:54:36 host maldet(126342): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 25 2025 03:54:36 host maldet(127745): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Jun 25 2025 03:54:36 host maldet(127745): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Jun 25 2025 03:54:36 host maldet(127745): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Jun 25 2025 03:54:36 host maldet(127745): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Jun 25 2025 03:54:36 host maldet(127745): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Jun 25 2025 03:54:55 host maldet(127745): {scan} file list completed in 19s, found 2172 files... Jun 25 2025 03:54:55 host maldet(127745): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Jun 25 2025 03:54:55 host maldet(127745): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (2172 files) in progress... Jun 25 2025 03:55:33 host maldet(127745): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 2172, malware hits 0, cleaned hits 0, time 57s Jun 25 2025 03:55:33 host maldet(127745): {scan} scan report saved, to view run: maldet --report 250625-0354.127745 Jun 26 2025 03:43:25 host maldet(199776): {update} checking for available updates... Jun 26 2025 03:44:01 host maldet(199776): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Jun 26 2025 03:44:01 host maldet(199776): {update} hashing install files and checking against server... Jun 26 2025 03:44:46 host maldet(199776): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Jun 26 2025 03:44:46 host maldet(199776): {update} version check shows latest but hash check failed, forcing update... Jun 26 2025 03:44:46 host maldet(199776): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Jun 26 2025 03:44:46 host maldet(199776): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Jun 26 2025 03:44:46 host maldet(199776): {update} verified md5sum of maldetect-current.tar.gz