Professional Documents
Culture Documents
Linux Malware Detect (LMD), also known as Maldet, is a malware scanner for Linux released
under the GNU GPLv2 license. It is particularly effective for the detection of php backdoors,
darkmailers and many other malicious files that can be uploaded on a compromised website. It will
help you do detect infected websites and clean the infection, however securing the compromised
user or website is still necessary to avoid re-infection.
If the server has cPanel , we recommend you install ClamAV first, as maldet will use the ClamAV
scan engine. ClamAV installation instructions are available here.
You will need to be logged in as root to the server over SSH.
1 - Install maldet
cd /usr/local/src/ && wget http://www.rfxn.com/downloads/maldetectcurrent.tar.gz && tar -xzvf maldetect-current.tar.gz && cd maldetect-* && sh install.sh
This will automatically install a cronjob inside /etc/cron.daily/maldet so a daily scan will be run for
local cPanel or Plesk accounts.
2 - Make sure to update to the latest version and virus signatures:
maldet -d && maldet -u
To launch a background scan for all user's public_html and public_ftp in all home directories, run
the following command:
maldet -b --scan-all /home?/?/public_?