Whats is the best way to identify a possible user using a botnet with php in the server? And if he is using GET commands for example in other server.
Does apache logs outbound conections ?
If it is using a file that is not malicious the clam av would not identify.
Livre de vírus. www.avast.com