Portal Home > Knowledgebase > Articles Database > Suspicious Apache process - cPanel server
Suspicious Apache process - cPanel server
| Posted by kshazad86, 01-07-2015, 06:32 AM |
| My shared server recently had very large amount of IPs being connected, I looked at the processes running at the time and found the following suspicious processes:
Any idea what exactly these are doing?
|
| Posted by TempleNode, 01-07-2015, 06:42 AM |
| They try to hack your wordpress websites which have revolution slider plugin and showbiz plugin.
|
| Posted by kshazad86, 01-07-2015, 07:18 AM |
| Thanks, deleting the plugins seems to have done the trick.
|
| Posted by TempleNode, 01-07-2015, 07:38 AM |
| If they already got in, deleting plugin won't help. Look for suspicious users in wordpress admin and scan your server for malware.
|
| Posted by Srv24x7, 01-08-2015, 02:58 AM |
| Hi,
Get a deep scan of the server in place to see for any residual malicious files. Get the server audited once for security breaches.
|
| Posted by ttgt, 02-09-2015, 11:23 AM |
| any way to scan it ? i try to use maldet -a /home/user to scan but no any finding.
|
Add to Favourites 
Print this Article
Also Read
