[CentOS] How to detect botnet user on the server ?

Mon Nov 6 13:06:11 UTC 2017
marcos valentine <msr.mailing at gmail.com>

Hello guys,

Whats is the best way to identify a possible user using a botnet with php
in the server? And if he is using GET commands for example in other server.

Does apache logs outbound conections ?

If it is using a file that is not malicious the clam av would not identify.


de vírus. www.avast.com