HEX
Server: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
System: Linux box12.multicloud.host 4.18.0-553.52.1.el8_10.x86_64 #1 SMP Wed May 14 09:36:12 EDT 2025 x86_64
User: kashmira (1008)
PHP: 8.1.32
Disabled: NONE
$ pwd: /usr/local/maldetect.last/maldetect.bk847526/logs/
Upload Files
File: //usr/local/maldetect.last/maldetect.bk847526/logs/event_log
Aug 10 2025 03:34:59 box12 maldet(683309): {sigup} performing signature update check...
Aug 10 2025 03:34:59 box12 maldet(683309): {sigup} local signature set is version 20250225482944
Aug 10 2025 03:35:19 box12 maldet(683309): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver
Aug 10 2025 03:35:19 box12 maldet(683309): {sigup} new signature set error code: 522 available
Aug 10 2025 03:35:19 box12 maldet(683309): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Aug 10 2025 03:35:46 box12 maldet(683309): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Aug 10 2025 03:36:31 box12 maldet(683309): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5
Aug 10 2025 03:36:31 box12 maldet(683309): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Aug 10 2025 03:36:51 box12 maldet(683309): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Aug 10 2025 03:37:10 box12 maldet(683309): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5
Aug 10 2025 03:37:10 box12 maldet(683309): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com
Aug 10 2025 03:37:10 box12 maldet(683309): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com
Aug 10 2025 03:37:10 box12 maldet(682861): {update} completed update v1.6.6 3a1792 => v1.6.6 359d25, running signature updates...
Aug 10 2025 03:37:10 box12 maldet(683729): {sigup} performing signature update check...
Aug 10 2025 03:37:10 box12 maldet(683729): {sigup} local signature set is version 20250225482944
Aug 10 2025 03:37:50 box12 maldet(683729): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver
Aug 10 2025 03:37:50 box12 maldet(683729): {sigup} new signature set 202508101639180 available
Aug 10 2025 03:37:50 box12 maldet(683729): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Aug 10 2025 03:38:38 box12 maldet(683729): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Aug 10 2025 03:39:05 box12 maldet(683729): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5
Aug 10 2025 03:39:05 box12 maldet(683729): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Aug 10 2025 03:39:24 box12 maldet(683729): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Aug 10 2025 03:39:44 box12 maldet(683729): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5
Aug 10 2025 03:39:44 box12 maldet(683729): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com
Aug 10 2025 03:39:44 box12 maldet(683729): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com
Aug 10 2025 03:39:44 box12 maldet(682861): {update} update and config import completed
Aug 10 2025 03:39:44 box12 maldet(684071): {sigup} performing signature update check...
Aug 10 2025 03:39:44 box12 maldet(684071): {sigup} local signature set is version 20250225482944
Aug 10 2025 03:39:44 box12 maldet(684071): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet.sigs.ver
Aug 10 2025 03:39:44 box12 maldet(684071): {sigup} new signature set 202508101639180 available
Aug 10 2025 03:39:44 box12 maldet(684071): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Aug 10 2025 03:40:04 box12 maldet(684071): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
Aug 10 2025 03:40:31 box12 maldet(684071): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-sigpack.tgz.md5
Aug 10 2025 03:40:31 box12 maldet(684071): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Aug 10 2025 03:40:31 box12 maldet(684071): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
Aug 10 2025 03:40:50 box12 maldet(684071): {sigup} downloaded https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz.md5
Aug 10 2025 03:40:50 box12 maldet(684071): {sigup} unable to verify md5sum of maldet-sigpack.tgz, please try again or contact proj@rfxn.com
Aug 10 2025 03:40:50 box12 maldet(684071): {sigup} unable to verify md5sum of maldet-clean.tgz, please try again or contact proj@rfxn.com
Aug 10 2025 03:40:50 box12 maldet(684362): {scan} launching scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ changes in last 1d to background, see /usr/local/maldetect/logs/event_log for progress
Aug 10 2025 03:40:51 box12 maldet(684362): {scan} signatures loaded: 17638 (14801 MD5 | 2054 HEX | 783 YARA | 0 USER)
Aug 10 2025 03:40:51 box12 maldet(684362): {scan} building file list for /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ of new/modified files from last 1 days, this might take awhile...
Aug 10 2025 03:40:51 box12 maldet(684362): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6
Aug 10 2025 03:40:51 box12 maldet(684362): {scan} executed /bin/nice -n 19 /bin/ionice -c2 -n 6 /bin/find /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ /tmp /var/tmp /dev/shm  -path "/usr/local/maldetect" -prune -o -maxdepth 15 -regextype posix-egrep \( -mtime -1 -o -ctime -1 \) -type f -size +24c -size -6947618c  -not -perm 000   -not -uid 0 -not -gid 0  
Aug 10 2025 03:40:52 box12 maldet(684362): {scan} file list completed in 1s, found 266 files...
Aug 10 2025 03:40:52 box12 maldet(684362): {scan} no $mail or $sendmail binaries found, e-mail alerts disabled.
Aug 10 2025 03:40:52 box12 maldet(684362): {scan} found clamav binary at /bin/clamscan, using clamav scanner engine...
Aug 10 2025 03:40:52 box12 maldet(684362): {scan} scan of /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/ (266 files) in progress...
Aug 10 2025 03:41:13 box12 maldet(684362): {scan} scan completed on /home?/?/public_html/,/var/www/,/usr/local/apache/htdocs/: files 266, malware hits 0, cleaned hits 0, time 23s
Aug 10 2025 03:41:13 box12 maldet(684362): {scan} scan report saved, to view run: maldet --report 250810-0340.684362
Aug 11 2025 03:51:16 box12 maldet(847185): {update} checking for available updates...
Aug 11 2025 03:51:52 box12 maldet(847185): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.ver
Aug 11 2025 03:51:52 box12 maldet(847185): {update} hashing install files and checking against server...
Aug 11 2025 03:52:42 box12 maldet(847185): {update} downloaded https://cdn.rfxn.com/downloads/maldet.current.hash
Aug 11 2025 03:52:42 box12 maldet(847185): {update} version check shows latest but hash check failed, forcing update...
Aug 11 2025 03:52:42 box12 maldet(847185): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz
Aug 11 2025 03:53:15 box12 maldet(847185): {update} downloaded https://cdn.rfxn.com/downloads/maldetect-current.tar.gz.md5
Aug 11 2025 03:53:15 box12 maldet(847185): {update} verified md5sum of maldetect-current.tar.gz
@ Telegram