Results 1 to 10 of 10
  1. #1

    Possible Trojan ?

    This is the result I got when I used "Scan for Trojan Horses" tool in WHM.

    Possible Trojan - /usr/sbin/pureauth
    Possible Trojan - /usr/lib/python2.4/site-packages/libxml2mod.la
    Possible Trojan - /usr/lib/python2.4/site-packages/libxml2mod.so
    Possible Trojan - /usr/bin/xmlcatalog
    Possible Trojan - /usr/bin/xmllint
    Possible Trojan - /usr/bin/cpan
    Possible Trojan - /usr/bin/instmodsh
    Possible Trojan - /usr/bin/prove
    Possible Trojan - /usr/bin/xml2-config



    These are fake alerts or can be real threats ? Since it's a Managed vps should I contect support and ask them to look into it ?
    >.<

  2. #2
    Join Date
    Apr 2011
    Posts
    351
    It may well be nothing, as many scripts can set of the WHM trojan alerts,
    however I'd suggest having your host looking at it just in case.

  3. #3
    Join Date
    Jun 2009
    Posts
    1,219
    WHM often throws out false positives when doing this scan. Anyway, as your VPS is managed, I would contact support and let them have a look. But I am quite confident that there is no real threat.

  4. #4
    Join Date
    Apr 2011
    Posts
    74
    Next time AV-Comparatives should include WHM to their tests. It could get the first position any time!!! LOL

    In my life I have never seen a WHM detection that was a real one! You should check the things reported by WHM but don't get paranoid.

  5. #5
    Join Date
    Nov 2003
    Location
    The Netherlands
    Posts
    10
    I believe the files listed are common false positives, but you should have your host look at it anyway.

    If you Google the names of those executables, you'll find more people experiencing the same thing. That, of course, is not a reason to stop investigating

  6. #6
    Join Date
    Jan 2011
    Posts
    451
    Hello,

    No need to worry about those results. You can ignore them !
    " Your work is to discover your work and then with all your heart to give yourself to it. "

    That's the mark of a true professional !

  7. #7
    Join Date
    Feb 2010
    Location
    Jakarta
    Posts
    1,098
    If you still worry about it, then you may contact your host provider and ask them to verify and confirm that 'trojan alert'.
    Web Hosting Business Guide Book - Getting & Managing Your First 1,000 Clients in Web Hosting
    Enter Your cPanel Login & We'll Back It Up, Every Day! - SiteAutoBackup.Com
    Got WHM instead? Enter your WHM login and we'll backup everything, everyday. It's simple.

  8. #8
    They are common false positives. If this is a newly setup VPS I wouldn't worry about it.

  9. #9
    Join Date
    Oct 2010
    Posts
    1,784
    What good is a malware scan that cries the sky is falling and you should ignore the warnings?
    Hosting is like a box of chocolates, you never know what you're gonna get.

  10. #10
    Join Date
    Oct 2010
    Location
    Singapore
    Posts
    143
    The WHM checker are often false-positives, you can ignore them.

Similar Threads

  1. is this a trojan ?
    By goolex in forum Hosting Security and Technology
    Replies: 11
    Last Post: 12-20-2007, 06:16 AM
  2. Trojan
    By DT-Spirit in forum Dedicated Server
    Replies: 9
    Last Post: 01-02-2005, 06:36 AM
  3. trojan?
    By Lem0nHead in forum Hosting Security and Technology
    Replies: 4
    Last Post: 11-29-2004, 09:38 AM
  4. Trojan
    By servermaze in forum Hosting Security and Technology
    Replies: 2
    Last Post: 08-15-2004, 01:00 PM
  5. Trojan help
    By mokkan in forum Hosting Security and Technology
    Replies: 2
    Last Post: 06-06-2003, 07:49 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •