How to Install and Use Maldet Malware Scanner in my Linux VPS ?

Download and install Maldet :

Login into server through SSH using a Terminal or Putty. Run this below command to download and install maldet in server.

wget http://www.rfxn.com/downloads/maldetect-current.tar.gz

tar -xvf maldetect-current.tar.gz

cd maldetect-1.4.2

./install.sh

You can make email alerts to receive maldet report to your mail id, for that you need to make changes in maldet configuration file.

Open maldet configuration file and do changes as below

vim /usr/local/maldetect/conf.maldet

email_alert=1 (change value from 0 to 1)

email_subj=maldet alert from server

email_addr=alerts@yourdomain-name.com (menstion mail id for which you need to receive maldet report)

email_ignore_clean=0 (kept as 0)

quar_hits=1 (change value from 0 to 1)

Scanning for Malware in server :

To scan whole server ,use this below command

maldet -a /

To scan just a folder,use this below command

maldet -a /home/yoursubfoldername

If there is any files malware attacked means it will shows malware hits and maldet identified a number of files that looked suspicious. The next step is to clean those files in server.

maldet(15153): {scan} scan report saved, to view run: maldet --report 080415-1658.15153

Type below command to list all scanned report in server

maldet --report list

After result of a scan you need to run another command,to clean up the identified suspicious files in server.

You need to run the clean command passing the scanid as a parameter.

How this faq is helpful: