Attention!The article describes one of the possible methods of combating malicious code. The hosting administration is not responsible for the damage that may be caused by using the utility described in the article.
- The utility has an operating mode that deletes detected infected files. Before using it, be sure create a backup your site.
- It is not recommended to start scanning a very large number of files, as this can take a long time and consume a lot of resources.
About the scanner
phpMussel is a freeware tool for finding infected files, used to analyze files against a variety of signatures, including ClamAV. This utility can be used as a stand—alone tool for searching for infected files, as well as a functional analyzer of files uploaded by means of websites. You can explore the features of phpMussel in the documentation at GitHub.
- Download the appropriate version of the finished phpMussel example from the release list at GitHub project and upload it to the hosting.
- Through filemanager or any FTPclient upload the downloaded archive to the hosting and unpack him with the help filemanager to any convenient place.
- Go to the scanner control panel page at the address of the form
http://www.domain.com/path/to/example-frontend.php, after replacing the data with the necessary ones:
www.domain.com— the domain name of the site in which the scanner is loaded.
path/to— path to the directory with the utility relative to the root directory of the site.
- Log in to the control panel using your login
- In chapter «Accounts» change the authorization data and set a complex login and password.
- Additionally, you can make changes to the scanner configuration, then click on «Update» at the top of the page:
- The parameter is responsible for deleting files during scanning. «Configuration → Core → delete_on_sight».
- You can change the language of the control panel in the section «Configuration → Core → lang».
- Connect to hosting via SSH.
- Change to the phpMussel directory with the command:
example.com/subdomain/dirspecify the desired path.
- Run the phpMussel console handler:
example-cli.phpspecify the name of the console handler file if it was created by yourself or modified.
- After running the utility, use the command:
Preliminarily replace the data with the necessary ones:
account— specify title hosting account
example.com/subdomain/dirspecify the desired relative (link to the home directory
~/not supported) or an absolute path.
Signature databases are regularly updated and it is important to keep them up to date.
- Download all or required signatures from the project page at GitHub.
- Through filemanager or any FTPclient upload the downloaded archives to the hosting and unpack them with filemanager to the signatures directory (by default called
phpmussel-signatures). Signature files whose extensions end in
db, for example
medbetc., must be placed directly in the signatures directory without other subdirectories. The presence of other files does not affect the operation of the utility.