Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /usr/local/maldetect.bk738417/ |
Jul 16 2025 03:57:28 server2 maldet(1928381): {sigup} performing signature update check...
Jul 16 2025 03:57:28 server2 maldet(1928381): {sigup} local signature set is version 20250225482944
Jul 16 2025 03:57:57 server2 maldet(1928381): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver
Jul 16 2025 03:57:58 server2 maldet(1928381): {sigup} new signature set 202507161493482 available
Jul 16 2025 03:57:58 server2 maldet(1928381): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Jul 16 2025 03:58:33 server2 maldet(1928381): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Jul 16 2025 03:59:03 server2 maldet(1928381): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5
Jul 16 2025 03:59:03 server2 maldet(1928381): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Jul 16 2025 03:59:33 server2 maldet(1928381): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Jul 16 2025 03:59:53 server2 maldet(1928381): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5
Jul 16 2025 03:59:53 server2 maldet(1928381): {sigup} verified md5sum of maldet-sigpack.tgz
Jul 16 2025 03:59:54 server2 maldet(1928381): {sigup} unpacked and installed maldet-sigpack.tgz
Jul 16 2025 03:59:55 server2 maldet(1928381): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact [email protected]
Jul 16 2025 03:59:55 server2 maldet(1928381): {sigup} signature set update completed
Jul 16 2025 03:59:56 server2 maldet(1928381): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER)
Jul 16 2025 03:59:56 server2 maldet(1927669): {update} completed update v1.6.6 3a1792 => v1.6.6 359d25, running signature updates...
Jul 16 2025 03:59:56 server2 maldet(1928864): {sigup} performing signature update check...
Jul 16 2025 03:59:56 server2 maldet(1928864): {sigup} local signature set is version 202507161493482
Jul 16 2025 04:00:35 server2 maldet(1928864): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver
Jul 16 2025 04:00:35 server2 maldet(1928864): {sigup} latest signature set already installed
Jul 16 2025 04:00:35 server2 maldet(1927669): {update} update and config import completed
Jul 16 2025 04:00:37 server2 maldet(1929312): {sigup} performing signature update check...
Jul 16 2025 04:00:37 server2 maldet(1929312): {sigup} local signature set is version 202507161493482
Jul 16 2025 04:01:39 server2 maldet(1929312): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver
Jul 16 2025 04:01:40 server2 maldet(1929312): {sigup} latest signature set already installed
Jul 16 2025 04:01:40 server2 maldet(1929510): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress
Jul 16 2025 04:01:43 server2 maldet(1929510): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER)
Jul 16 2025 04:01:43 server2 maldet(1929510): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile...
Jul 16 2025 04:01:43 server2 maldet(1929510): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6
Jul 16 2025 04:01:43 server2 maldet(1929510): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c -not -perm 000 -not -uid 0 -not -gid 0
Jul 16 2025 04:04:07 server2 maldet(1929510): {scan} file list completed in 142s, found 512 files...
Jul 16 2025 04:04:07 server2 maldet(1929510): {scan} found clamav binary at /usr/local/cpanel/3rdparty/bin/clamdscan, using clamav scanner engine...
Jul 16 2025 04:04:07 server2 maldet(1929510): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (512 files) in progress...
Jul 16 2025 04:05:13 server2 maldet(1929510): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 512, malware hits 0, cleaned hits 0, time 213s
Jul 16 2025 04:05:13 server2 maldet(1929510): {scan} scan report saved, to view run: maldet --report 250716-0401.1929510