ConfigServer eXploit Scanner - cxs v2.00

Scanning...

This could take some time

Scanning /home/webumake/public_html:

----------- SCAN REPORT -----------
(/usr/sbin/cxs --www --options mMOLfSGchexdnwDZ --filemax 10000 --ignore /etc/cxs/cxs.ignore --virusscan --sizemax 500000 --web --xtra /etc/cxs/cxs.xtra --summary --user webumake --clamdsock /tmp/clamd --exploitscan)


Scanning /home/webumake/public_html:
# ClamAV detected virus = [Trojan.PHP.C99Shell]:
'/home/webumake/public_html/c99.txt'
# ClamAV detected virus = [VX.Honeypot-SecuriteInfo.com.PHPShell.D.UNOFFICIAL]:
'/home/webumake/public_html/myshell.txt'
# Regular expression match = [^(?!\s*(\/\/|\#|\*)).*/etc/passwd]:
'/home/webumake/public_html/test.php3'
# Regular expression match = [^(?!\s*(\/\/|\#|\*)).*/etc/passwd]:
'/home/webumake/public_html/test.sh'
# ClamAV detected virus = [Eicar-Test-Signature]:
'/home/webumake/public_html/virus'
# Suspicious image file (hidden script file):
'/home/webumake/public_html/zul.jpg'
# Regular expression match = [word=\"qwrtpsdfghklzxcvbnm\"\;]:
'/home/webumake/public_html/zul.jpg'
# World writeable directory:
'/home/webumake/public_html/contacts/data/CONTACTS/attachments/qn/attachments/55'
# World writeable directory:
'/home/webumake/public_html/contacts/data/CONTACTS/attachments/qn/attachments/56'
# World writeable directory:
'/home/webumake/public_html/contacts/data/CONTACTS/attachments/qn/attachments/57'
# Windows Binary/Executable [application/x-dosexec]:
'/home/webumake/public_html/contacts/published/common/win/webasystwinsetup.exe'

----------- SCAN SUMMARY -----------
Scanned directories: 1689
Scanned files: 9260
Ignored items: 1
Suspicious matches: 11
Viruses found: 3
Fingerprint matches: 0
Data scanned: 107.53 MB
Scan time/item: 0.005 sec
Scan Time: 52.782 sec