cara scan virus di VPS linux

Discussion in 'VPS (Virtual Private Server)' started by shara nurul, 5 Jul 2013.

Thread Status:
Not open for further replies.
  1. shara nurul

    shara nurul Apprentice 1.0

    Messages:
    234
    Likes Received:
    1
    Trophy Points:
    18
    Gimanan ya Tuan cara scan virus / malware di vps ,karena klient saya banyak yang kena hacker sama phising

    mungkin ada free software atau command untuk scanner melalui ssh

    mohon pencerahanny

    salam
    Shara Nurul
     
  2. erawanarifn

    erawanarifn Apprentice 1.0

    Messages:
    379
    Likes Received:
    47
    Trophy Points:
    28
    Pakai clamd/clamav, rkhunter mbak :)
     
  3. bintang

    bintang Apprentice 2.0

    Messages:
    434
    Likes Received:
    43
    Trophy Points:
    28
    Untuk bash command nya bisa diliat di web resmi nya clamAv.

    Banyak client di hack? Ngehack dengan cara ngerecord username n pass sql kah? Atau jumping symlink? Update juga disable_function terhadap varian malicious script yang baru dikenal.

    Jika scanning dengan antivirus telah dilakukan, namun program tersebut masih tetap bisa berjalan maka harus dilakukan penanganan khusus. Atau opsi umum yang sering dipakai bagi orang tidak mau direpotkan adalah create vps baru, lalu pindahin deh satu - satu data client yang sudah disterilisasi :)
     
  4. shara nurul

    shara nurul Apprentice 1.0

    Messages:
    234
    Likes Received:
    1
    Trophy Points:
    18
    sudah pakai clamav mas cuman gimana caranya agar scannya satu perintah pakai ssh
     
  5. shara nurul

    shara nurul Apprentice 1.0

    Messages:
    234
    Likes Received:
    1
    Trophy Points:
    18
    Baik mas terimakasih atas pencerahannya
     
  6. GriyaHosting

    GriyaHosting Expert 1.0

    Messages:
    966
    Likes Received:
    76
    Trophy Points:
    28
    Coba discan pakai antivirus aja :
    Kalau ada clamav :
    clamscan -r -i -v --heuristic-scan-precedence=yes --scan-mail=yes --move=/home/karantina --phishing-scan-urls=yes --phishing-cloak=yes --phishing-ssl=yes --scan-archive=no /home/ -l /var/log/clamscan.log

    Kalau pakai AVG (lumayan bisa habisin spam, phising mail, file backdoor, virus dll)
    AVG Scan : avgscan -d -T --vv-move /home/karantina/ --exclude=/home/karantina -H -p -c -j /home/

    Cara install nya :
    Download dari : http://free.avg.com/us-en/download.prd-alf.line-2012
    Trus install pakai Install : rpm -Uvh nama paketnya. pilih yang rpm i386

    Jangan lupa buat direktori di /home/karantina dulu biar yang tersuspect di simpan di situ
     
    xphones likes this.
  7. shara nurul

    shara nurul Apprentice 1.0

    Messages:
    234
    Likes Received:
    1
    Trophy Points:
    18
    berarti cmdnya tinggal ketikan dissh ya mas

    clamscan -r -i -v --heuristic-scan-precedence=yes --scan-mail=yes --move=/home/karantina --phishing-scan-urls=yes --phishing-cloak=yes --phishing-ssl=yes --scan-archive=no /home/ -l /var/log/clamscan.log

    tapi sebelumnya buat folder dulu ya
     
  8. sinji

    sinji Apprentice 1.0

    Messages:
    334
    Likes Received:
    11
    Trophy Points:
    18
    kalau sdh di scan pakai clamav dan maldet tp tdk ketemu virusnya itu gimana?tapi web tetap ada peringatan malware detected..
    AV yg paling oke apa ya?
     
  9. Surabayadigital

    Surabayadigital Beginner 1.0

    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    1
    saya pakek Rootkit/rkhunter Tuan.
    semoga aja ini membantu.

    Alat ini memindai rootkit, backdoors dan eksploitasi lokal dengan menjalankan tes seperti:
    Instalisasi
    Code:
    cd /root/
    
    wget http://sourceforge.net/projects/rkhunter/files/rkhunter/1.4.0/rkhunter-1.4.0.tar.gz/download?use_mirror=iwebtar -zxvf rkhunter-1.4.0.tar.gz
    
    cd rkhunter-1.4.0
    ./installer.sh --install
    
    Scan server dengan rkhunter
    Code:
    rkhunter -c
    
    CMIIW
     
  10. geekmedia

    geekmedia Beginner 2.0

    Messages:
    58
    Likes Received:
    3
    Trophy Points:
    8
    rkhunter hanya scan RootKit, bukan file2 virus.
     
Loading...
Thread Status:
Not open for further replies.

Share This Page

Loading...