Linux host2.healingcodesinfo.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
Apache
Server IP : 69.167.168.125 & Your IP : 216.73.216.208
Domains : 126 Domain
User : christia
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
usr /
local /
maldetect.bk17591 /
logs /
Delete
Unzip
Name
Size
Permission
Date
Action
clamscan_log
3.34
KB
-rw-r-----
2025-08-30 07:53
event_log
38.1
KB
-rw-r--r--
2025-08-31 07:44
Save
Rename
Aug 20 2025 03:48:32 host2 maldet(100615): {sigup} performing signature update check... Aug 20 2025 03:48:32 host2 maldet(100615): {sigup} local signature set is version 20250225482944 Aug 20 2025 03:49:17 host2 maldet(100615): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 20 2025 03:49:17 host2 maldet(100615): {sigup} new signature set error code: 525 available Aug 20 2025 03:49:17 host2 maldet(100615): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 20 2025 03:50:07 host2 maldet(100615): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 20 2025 03:50:43 host2 maldet(100615): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 20 2025 03:50:43 host2 maldet(100615): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 20 2025 03:51:02 host2 maldet(100615): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 20 2025 03:51:03 host2 maldet(100615): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 20 2025 03:51:03 host2 maldet(100615): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Aug 20 2025 03:51:03 host2 maldet(100615): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Aug 20 2025 03:51:03 host2 maldet(99939): {update} completed update v1.6.6 3a1792 => v1.6.6 359d25, running signature updates... Aug 20 2025 03:51:03 host2 maldet(101707): {sigup} performing signature update check... Aug 20 2025 03:51:03 host2 maldet(101707): {sigup} local signature set is version 20250225482944 Aug 20 2025 03:51:22 host2 maldet(101707): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 20 2025 03:51:22 host2 maldet(101707): {sigup} new signature set error code: 522 available Aug 20 2025 03:51:22 host2 maldet(101707): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 20 2025 03:52:08 host2 maldet(101707): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 20 2025 03:52:37 host2 maldet(101707): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 20 2025 03:52:37 host2 maldet(101707): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 20 2025 03:53:04 host2 maldet(101707): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 20 2025 03:53:59 host2 maldet(101707): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 20 2025 03:53:59 host2 maldet(101707): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Aug 20 2025 03:53:59 host2 maldet(101707): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Aug 20 2025 03:53:59 host2 maldet(99939): {update} update and config import completed Aug 20 2025 03:53:59 host2 maldet(671): {sigup} performing signature update check... Aug 20 2025 03:53:59 host2 maldet(671): {sigup} local signature set is version 20250225482944 Aug 20 2025 03:54:29 host2 maldet(671): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 20 2025 03:54:29 host2 maldet(671): {sigup} new signature set 20250819706470 available Aug 20 2025 03:54:29 host2 maldet(671): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 20 2025 03:54:30 host2 maldet(671): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 20 2025 03:55:16 host2 maldet(671): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 20 2025 03:55:16 host2 maldet(671): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 20 2025 03:55:36 host2 maldet(671): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 20 2025 03:55:56 host2 maldet(671): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 20 2025 03:55:56 host2 maldet(671): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com Aug 20 2025 03:55:56 host2 maldet(671): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Aug 20 2025 03:55:56 host2 maldet(1524): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 20 2025 03:55:56 host2 maldet(1524): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 20 2025 03:55:56 host2 maldet(1524): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 20 2025 03:55:56 host2 maldet(1524): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 20 2025 03:55:56 host2 maldet(1524): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 20 2025 03:56:05 host2 maldet(1524): {scan} file list completed in 9s, found 100 files... Aug 20 2025 03:56:05 host2 maldet(1524): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 20 2025 03:56:05 host2 maldet(1524): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (100 files) in progress... Aug 20 2025 03:56:10 host2 maldet(1524): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 100, malware hits 0, cleaned hits 0, time 14s Aug 20 2025 03:56:10 host2 maldet(1524): {scan} scan report saved, to view run: maldet --report 250820-0355.1524 Aug 21 2025 04:10:41 host2 maldet(15621): {update} checking for available updates... Aug 21 2025 04:11:11 host2 maldet(15621): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 21 2025 04:11:11 host2 maldet(15621): {update} hashing install files and checking against server... Aug 21 2025 04:11:39 host2 maldet(15621): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 21 2025 04:11:39 host2 maldet(15621): {update} latest version already installed. Aug 21 2025 04:11:39 host2 maldet(16012): {sigup} performing signature update check... Aug 21 2025 04:11:39 host2 maldet(16012): {sigup} local signature set is version 20250225482944 Aug 21 2025 04:12:07 host2 maldet(16012): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 21 2025 04:12:07 host2 maldet(16012): {sigup} new signature set 20250819706470 available Aug 21 2025 04:12:07 host2 maldet(16012): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 21 2025 04:12:07 host2 maldet(16012): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 21 2025 04:12:33 host2 maldet(16012): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 21 2025 04:12:33 host2 maldet(16012): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 21 2025 04:12:56 host2 maldet(16012): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 21 2025 04:13:14 host2 maldet(16012): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 21 2025 04:13:14 host2 maldet(16012): {sigup} verified md5sum of maldet-sigpack.tgz Aug 21 2025 04:13:15 host2 maldet(16012): {sigup} unpacked and installed maldet-sigpack.tgz Aug 21 2025 04:13:15 host2 maldet(16012): {sigup} verified md5sum of maldet-clean.tgz Aug 21 2025 04:13:15 host2 maldet(16012): {sigup} unpacked and installed maldet-clean.tgz Aug 21 2025 04:13:15 host2 maldet(16012): {sigup} signature set update completed Aug 21 2025 04:13:15 host2 maldet(16012): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 21 2025 04:13:15 host2 maldet(16736): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 21 2025 04:13:15 host2 maldet(16736): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 21 2025 04:13:15 host2 maldet(16736): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 21 2025 04:13:15 host2 maldet(16736): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 21 2025 04:13:15 host2 maldet(16736): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 21 2025 04:13:23 host2 maldet(16736): {scan} file list completed in 8s, found 177 files... Aug 21 2025 04:13:23 host2 maldet(16736): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 21 2025 04:13:23 host2 maldet(16736): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (177 files) in progress... Aug 21 2025 04:13:28 host2 maldet(16736): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 177, malware hits 0, cleaned hits 0, time 13s Aug 21 2025 04:13:28 host2 maldet(16736): {scan} scan report saved, to view run: maldet --report 250821-0413.16736 Aug 22 2025 04:32:26 host2 maldet(76671): {update} checking for available updates... Aug 22 2025 04:32:46 host2 maldet(76671): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 22 2025 04:32:46 host2 maldet(76671): {update} hashing install files and checking against server... Aug 22 2025 04:33:15 host2 maldet(76671): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 22 2025 04:33:15 host2 maldet(76671): {update} latest version already installed. Aug 22 2025 04:33:15 host2 maldet(77054): {sigup} performing signature update check... Aug 22 2025 04:33:15 host2 maldet(77054): {sigup} local signature set is version 20250819706470 Aug 22 2025 04:33:59 host2 maldet(77054): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 22 2025 04:33:59 host2 maldet(77054): {sigup} new signature set error code: 525 available Aug 22 2025 04:33:59 host2 maldet(77054): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 22 2025 04:34:29 host2 maldet(77054): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 22 2025 04:34:29 host2 maldet(77054): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 22 2025 04:34:29 host2 maldet(77054): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 22 2025 04:34:58 host2 maldet(77054): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} verified md5sum of maldet-sigpack.tgz Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} unpacked and installed maldet-sigpack.tgz Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} verified md5sum of maldet-clean.tgz Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} unpacked and installed maldet-clean.tgz Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} signature set update completed Aug 22 2025 04:35:29 host2 maldet(77054): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 22 2025 04:35:29 host2 maldet(78042): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 22 2025 04:35:29 host2 maldet(78042): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 22 2025 04:35:29 host2 maldet(78042): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 22 2025 04:35:29 host2 maldet(78042): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 22 2025 04:35:29 host2 maldet(78042): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 22 2025 04:35:37 host2 maldet(78042): {scan} file list completed in 8s, found 230 files... Aug 22 2025 04:35:37 host2 maldet(78042): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 22 2025 04:35:37 host2 maldet(78042): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (230 files) in progress... Aug 22 2025 04:35:43 host2 maldet(78042): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 230, malware hits 0, cleaned hits 0, time 14s Aug 22 2025 04:35:43 host2 maldet(78042): {scan} scan report saved, to view run: maldet --report 250822-0435.78042 Aug 23 2025 04:36:36 host2 maldet(87231): {update} checking for available updates... Aug 23 2025 04:36:36 host2 maldet(87231): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 23 2025 04:36:36 host2 maldet(87231): {update} hashing install files and checking against server... Aug 23 2025 04:36:37 host2 maldet(87231): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 23 2025 04:36:37 host2 maldet(87231): {update} latest version already installed. Aug 23 2025 04:36:37 host2 maldet(87376): {sigup} performing signature update check... Aug 23 2025 04:36:37 host2 maldet(87376): {sigup} local signature set is version 20250822481358 Aug 23 2025 04:36:37 host2 maldet(87376): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 23 2025 04:36:37 host2 maldet(87376): {sigup} latest signature set already installed Aug 23 2025 04:36:37 host2 maldet(87486): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 23 2025 04:36:37 host2 maldet(87486): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 23 2025 04:36:37 host2 maldet(87486): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 23 2025 04:36:37 host2 maldet(87486): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 23 2025 04:36:37 host2 maldet(87486): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 23 2025 04:36:44 host2 maldet(87486): {scan} file list completed in 7s, found 183 files... Aug 23 2025 04:36:44 host2 maldet(87486): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 23 2025 04:36:44 host2 maldet(87486): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (183 files) in progress... Aug 23 2025 04:36:50 host2 maldet(87486): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 183, malware hits 0, cleaned hits 0, time 13s Aug 23 2025 04:36:50 host2 maldet(87486): {scan} scan report saved, to view run: maldet --report 250823-0436.87486 Aug 24 2025 04:37:50 host2 maldet(78204): {update} checking for available updates... Aug 24 2025 04:37:51 host2 maldet(78204): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 24 2025 04:37:51 host2 maldet(78204): {update} hashing install files and checking against server... Aug 24 2025 04:37:51 host2 maldet(78204): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 24 2025 04:37:51 host2 maldet(78204): {update} latest version already installed. Aug 24 2025 04:37:51 host2 maldet(78315): {sigup} performing signature update check... Aug 24 2025 04:37:51 host2 maldet(78315): {sigup} local signature set is version 20250822481358 Aug 24 2025 04:37:51 host2 maldet(78315): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 24 2025 04:37:51 host2 maldet(78315): {sigup} latest signature set already installed Aug 24 2025 04:37:52 host2 maldet(78403): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 24 2025 04:37:52 host2 maldet(78403): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 24 2025 04:37:52 host2 maldet(78403): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 24 2025 04:37:52 host2 maldet(78403): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 24 2025 04:37:52 host2 maldet(78403): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 24 2025 04:37:56 host2 maldet(78403): {scan} file list completed in 4s, found 197 files... Aug 24 2025 04:37:56 host2 maldet(78403): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 24 2025 04:37:56 host2 maldet(78403): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (197 files) in progress... Aug 24 2025 04:38:01 host2 maldet(78403): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 197, malware hits 0, cleaned hits 0, time 9s Aug 24 2025 04:38:01 host2 maldet(78403): {scan} scan report saved, to view run: maldet --report 250824-0437.78403 Aug 25 2025 04:05:56 host2 maldet(51122): {update} checking for available updates... Aug 25 2025 04:06:15 host2 maldet(51122): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 25 2025 04:06:15 host2 maldet(51122): {update} hashing install files and checking against server... Aug 25 2025 04:07:00 host2 maldet(51122): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 25 2025 04:07:00 host2 maldet(51122): {update} version check shows latest but hash check failed, forcing update... Aug 25 2025 04:07:00 host2 maldet(51122): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Aug 25 2025 04:07:40 host2 maldet(51122): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Aug 25 2025 04:07:40 host2 maldet(51122): {update} unable to verify md5sum of maldetect-current.tar.gz, update failed! Aug 25 2025 04:07:40 host2 maldet(51755): {sigup} performing signature update check... Aug 25 2025 04:07:40 host2 maldet(51755): {sigup} local signature set is version 20250822481358 Aug 25 2025 04:08:00 host2 maldet(51755): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 25 2025 04:08:00 host2 maldet(51755): {sigup} new signature set error code: 522 available Aug 25 2025 04:08:00 host2 maldet(51755): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 25 2025 04:08:01 host2 maldet(51755): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 25 2025 04:08:49 host2 maldet(51755): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 25 2025 04:08:49 host2 maldet(51755): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 25 2025 04:08:49 host2 maldet(51755): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 25 2025 04:09:09 host2 maldet(51755): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 25 2025 04:09:09 host2 maldet(51755): {sigup} verified md5sum of maldet-sigpack.tgz Aug 25 2025 04:09:09 host2 maldet(51755): {sigup} unpacked and installed maldet-sigpack.tgz Aug 25 2025 04:09:09 host2 maldet(51755): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com Aug 25 2025 04:09:09 host2 maldet(51755): {sigup} signature set update completed Aug 25 2025 04:09:09 host2 maldet(51755): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 25 2025 04:09:09 host2 maldet(52326): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 25 2025 04:09:09 host2 maldet(52326): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 25 2025 04:09:09 host2 maldet(52326): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 25 2025 04:09:09 host2 maldet(52326): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 25 2025 04:09:09 host2 maldet(52326): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 25 2025 04:09:15 host2 maldet(52326): {scan} file list completed in 6s, found 299 files... Aug 25 2025 04:09:15 host2 maldet(52326): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 25 2025 04:09:15 host2 maldet(52326): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (299 files) in progress... Aug 25 2025 04:09:20 host2 maldet(52326): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 299, malware hits 0, cleaned hits 0, time 11s Aug 25 2025 04:09:20 host2 maldet(52326): {scan} scan report saved, to view run: maldet --report 250825-0409.52326 Aug 26 2025 03:58:52 host2 maldet(41511): {update} checking for available updates... Aug 26 2025 03:58:53 host2 maldet(41511): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 26 2025 03:58:53 host2 maldet(41511): {update} hashing install files and checking against server... Aug 26 2025 03:59:20 host2 maldet(41511): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 26 2025 03:59:20 host2 maldet(41511): {update} latest version already installed. Aug 26 2025 03:59:20 host2 maldet(41859): {sigup} performing signature update check... Aug 26 2025 03:59:20 host2 maldet(41859): {sigup} local signature set is version 202508251454227 Aug 26 2025 03:59:20 host2 maldet(41859): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 26 2025 03:59:20 host2 maldet(41859): {sigup} latest signature set already installed Aug 26 2025 03:59:20 host2 maldet(41947): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 26 2025 03:59:20 host2 maldet(41947): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 26 2025 03:59:20 host2 maldet(41947): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 26 2025 03:59:20 host2 maldet(41947): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 26 2025 03:59:20 host2 maldet(41947): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 26 2025 03:59:29 host2 maldet(41947): {scan} file list completed in 9s, found 147 files... Aug 26 2025 03:59:29 host2 maldet(41947): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 26 2025 03:59:29 host2 maldet(41947): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (147 files) in progress... Aug 26 2025 03:59:34 host2 maldet(41947): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 147, malware hits 0, cleaned hits 0, time 14s Aug 26 2025 03:59:34 host2 maldet(41947): {scan} scan report saved, to view run: maldet --report 250826-0359.41947 Aug 27 2025 04:17:22 host2 maldet(39898): {update} checking for available updates... Aug 27 2025 04:17:22 host2 maldet(39898): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 27 2025 04:17:23 host2 maldet(39898): {update} hashing install files and checking against server... Aug 27 2025 04:17:23 host2 maldet(39898): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 27 2025 04:17:23 host2 maldet(39898): {update} latest version already installed. Aug 27 2025 04:17:23 host2 maldet(40007): {sigup} performing signature update check... Aug 27 2025 04:17:23 host2 maldet(40007): {sigup} local signature set is version 202508251454227 Aug 27 2025 04:17:23 host2 maldet(40007): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 27 2025 04:17:23 host2 maldet(40007): {sigup} latest signature set already installed Aug 27 2025 04:17:23 host2 maldet(40097): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 27 2025 04:17:23 host2 maldet(40097): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 27 2025 04:17:23 host2 maldet(40097): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 27 2025 04:17:23 host2 maldet(40097): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 27 2025 04:17:23 host2 maldet(40097): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 27 2025 04:17:30 host2 maldet(40097): {scan} file list completed in 7s, found 494 files... Aug 27 2025 04:17:30 host2 maldet(40097): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 27 2025 04:17:30 host2 maldet(40097): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (494 files) in progress... Aug 27 2025 04:17:36 host2 maldet(40097): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 494, malware hits 0, cleaned hits 0, time 13s Aug 27 2025 04:17:36 host2 maldet(40097): {scan} scan report saved, to view run: maldet --report 250827-0417.40097 Aug 28 2025 04:40:11 host2 maldet(72357): {update} checking for available updates... Aug 28 2025 04:40:25 host2 maldet(72357): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 28 2025 04:40:26 host2 maldet(72357): {update} hashing install files and checking against server... Aug 28 2025 04:40:38 host2 maldet(72357): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 28 2025 04:40:38 host2 maldet(72357): {update} latest version already installed. Aug 28 2025 04:40:38 host2 maldet(72619): {sigup} performing signature update check... Aug 28 2025 04:40:38 host2 maldet(72619): {sigup} local signature set is version 202508251454227 Aug 28 2025 04:40:49 host2 maldet(72619): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 28 2025 04:40:49 host2 maldet(72619): {sigup} new signature set 202508282426884 available Aug 28 2025 04:40:49 host2 maldet(72619): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 28 2025 04:41:00 host2 maldet(72619): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 28 2025 04:41:11 host2 maldet(72619): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 28 2025 04:41:11 host2 maldet(72619): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 28 2025 04:41:11 host2 maldet(72619): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} verified md5sum of maldet-sigpack.tgz Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} unpacked and installed maldet-sigpack.tgz Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} verified md5sum of maldet-clean.tgz Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} unpacked and installed maldet-clean.tgz Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} signature set update completed Aug 28 2025 04:41:20 host2 maldet(72619): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 28 2025 04:41:20 host2 maldet(72986): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 28 2025 04:41:21 host2 maldet(72986): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 28 2025 04:41:21 host2 maldet(72986): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 28 2025 04:41:21 host2 maldet(72986): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 28 2025 04:41:21 host2 maldet(72986): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 28 2025 04:41:29 host2 maldet(72986): {scan} file list completed in 8s, found 69 files... Aug 28 2025 04:41:29 host2 maldet(72986): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 28 2025 04:41:29 host2 maldet(72986): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (69 files) in progress... Aug 28 2025 04:41:35 host2 maldet(72986): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 69, malware hits 0, cleaned hits 0, time 15s Aug 28 2025 04:41:35 host2 maldet(72986): {scan} scan report saved, to view run: maldet --report 250828-0441.72986 Aug 29 2025 04:38:44 host2 maldet(70364): {update} checking for available updates... Aug 29 2025 04:38:45 host2 maldet(70364): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 29 2025 04:38:45 host2 maldet(70364): {update} hashing install files and checking against server... Aug 29 2025 04:38:45 host2 maldet(70364): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 29 2025 04:38:45 host2 maldet(70364): {update} latest version already installed. Aug 29 2025 04:38:45 host2 maldet(70474): {sigup} performing signature update check... Aug 29 2025 04:38:45 host2 maldet(70474): {sigup} local signature set is version 202508282426884 Aug 29 2025 04:38:45 host2 maldet(70474): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 29 2025 04:38:45 host2 maldet(70474): {sigup} latest signature set already installed Aug 29 2025 04:38:45 host2 maldet(70563): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 29 2025 04:38:46 host2 maldet(70563): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 29 2025 04:38:46 host2 maldet(70563): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 29 2025 04:38:46 host2 maldet(70563): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 29 2025 04:38:46 host2 maldet(70563): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 29 2025 04:38:52 host2 maldet(70563): {scan} file list completed in 6s, found 278 files... Aug 29 2025 04:38:52 host2 maldet(70563): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 29 2025 04:38:52 host2 maldet(70563): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (278 files) in progress... Aug 29 2025 04:38:59 host2 maldet(70563): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 278, malware hits 0, cleaned hits 0, time 14s Aug 29 2025 04:38:59 host2 maldet(70563): {scan} scan report saved, to view run: maldet --report 250829-0438.70563 Aug 30 2025 03:50:52 host2 maldet(82024): {update} checking for available updates... Aug 30 2025 03:51:12 host2 maldet(82024): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 30 2025 03:51:12 host2 maldet(82024): {update} hashing install files and checking against server... Aug 30 2025 03:51:40 host2 maldet(82024): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 30 2025 03:51:40 host2 maldet(82024): {update} latest version already installed. Aug 30 2025 03:51:40 host2 maldet(82420): {sigup} performing signature update check... Aug 30 2025 03:51:40 host2 maldet(82420): {sigup} local signature set is version 202508282426884 Aug 30 2025 03:52:26 host2 maldet(82420): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver Aug 30 2025 03:52:26 host2 maldet(82420): {sigup} new signature set error code: 525 available Aug 30 2025 03:52:26 host2 maldet(82420): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 30 2025 03:52:54 host2 maldet(82420): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz Aug 30 2025 03:53:29 host2 maldet(82420): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5 Aug 30 2025 03:53:29 host2 maldet(82420): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5 Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} verified md5sum of maldet-sigpack.tgz Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} unpacked and installed maldet-sigpack.tgz Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} verified md5sum of maldet-clean.tgz Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} unpacked and installed maldet-clean.tgz Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} signature set update completed Aug 30 2025 03:53:30 host2 maldet(82420): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 30 2025 03:53:30 host2 maldet(83114): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress Aug 30 2025 03:53:30 host2 maldet(83114): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER) Aug 30 2025 03:53:30 host2 maldet(83114): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile... Aug 30 2025 03:53:30 host2 maldet(83114): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6 Aug 30 2025 03:53:30 host2 maldet(83114): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0 Aug 30 2025 03:53:38 host2 maldet(83114): {scan} file list completed in 8s, found 207 files... Aug 30 2025 03:53:38 host2 maldet(83114): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine... Aug 30 2025 03:53:38 host2 maldet(83114): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (207 files) in progress... Aug 30 2025 03:53:45 host2 maldet(83114): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 207, malware hits 0, cleaned hits 0, time 15s Aug 30 2025 03:53:45 host2 maldet(83114): {scan} scan report saved, to view run: maldet --report 250830-0353.83114 Aug 31 2025 03:42:46 host2 maldet(17090): {update} checking for available updates... Aug 31 2025 03:43:16 host2 maldet(17090): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver Aug 31 2025 03:43:16 host2 maldet(17090): {update} hashing install files and checking against server... Aug 31 2025 03:43:36 host2 maldet(17090): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash Aug 31 2025 03:43:36 host2 maldet(17090): {update} version check shows latest but hash check failed, forcing update... Aug 31 2025 03:43:36 host2 maldet(17090): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz Aug 31 2025 03:44:03 host2 maldet(17090): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5 Aug 31 2025 03:44:03 host2 maldet(17090): {update} verified md5sum of maldetect-current.tar.gz