Description: A higly conditional server-side malware (Darkleech or cdorked) was identified in the server. This is an ongoing campaign and it means the server was compromised with malicous Apache modules or binaries. More details here:
http://1swifthost.speediahost.com/319c19c7059638898b1d363da61ceec0/q.php http://220.127.116.11/63aa46fa31dda8b5/q.php .. others (randomly generated)
Affecting: Any type of linux-based server.
Latest update: 2013/Jun