Welcome to UltratechHost Forum, Guest. Please take the time to register if you haven't, or click

Tags
Author: UltratechHost - Replies: 0 - Views: 3187
Scanning of Unwanted Files or Codes
Here is a little code that I use to scan servers that I admin on for unwanted files. These include php shell’s and encoded files. You can add your own expressions as well. The expressions that I have listed are what I have found to most likely be in infected files.

Here is the code itself:
Code:
find /home/ \( -name "*.cgi" -o -name "*.php" \) -print0 | xargs -0 egrep -l 'c99shell|r57shell|WebShell|phpshell|shell|c100|base64' >> /root/report

This is how it works. It’s using the fin