How to protect your website with Imunify360 on Spaceship Hosting
Imunify360 is a powerful security tool available on all Spaceship Web Hosting Servers. It helps protect your website by scanning for malware, blocking suspicious scripts, and keeping your site clean - automatically and in real time.
This guide explains how Imunify360 works and how you can use it to monitor and secure your website.
What is Imunify360?
Imunify360 is an all-in-one security solution built for Linux web servers. It protects your hosting account by:
Scanning files and databases for malware
Blocking suspicious scripts with Proactive Defense
Managing dangerous files in quarantine
Automatically cleaning infected code (without affecting safe content)
Sending alerts if action is needed
You can find it in your cPanel → Security section → Imunify360:
How to run a Malware Scan
Go to the Imunify360 tool in cPanel >> Malicious tab.
You can run a scan manually using the Start scanning button:
During the scan, Imunify360 automatically cleans up and removes malicious code from the infected files (all other file content remains untouched) or deletes those infected files from your hosting account.When treats are found (for some reason, malware hasn't been removed from the file, or the infected file hasn't been deleted from the hosting account during the scan), the following options are visible in the Actions column of the Imunify360 interface:
Clean up
Restore
View file content to inspect it yourself.
Add to Ignore List - add file to the Ignore List and remove it from the Malicious files list.
Note 1: It's technically impossible to use the “Clean up” or "Clean up all" button (located at the top right corner of the table on the main Imunify360 dashboard) to remove malicious files or code inside them.
Instead, please use the "File Manager" menu of your cPanel account and complete the malware cleanup process manually by removing the files from there.
Note 2: It’s also impossible to restore a clean file version from backup (if available) from the Imunify360 interface with the help of the "Restore" option. You can manually restore clean files using the AutoBackup tool in cPanel.
Tip: Imunify360 also runs scheduled automatic scans each week - no need to scan manually unless you want to double-check.
How to view Scan Results
The Scan tab provides a summary of all malware scans run in your cPanel account. You’ll see details like the scan date, the folder that was scanned, how many files were checked, how many threats or suspicious items were found, and what actions were taken:
The History tab shows a complete log of all actions - including scans, cleanups, file restorations, and changes to the Ignore List. It’s a helpful way to track your website’s security over time. Logs are saved on the server for 30 days:
How to use Ignore List
Ignore list contains the list of files, databases, and directories that are excluded from Malware Scanner scanning.
You can exclude a file or folder from future scans:
Go to Malware Scanner → Ignore List
Click Add new entry and enter the full path:
Imunify360 will skip these during future scans. You can remove items from the list anytime.
Note: Wildcards like /home/*/file.php are not supported.
What is Proactive Defense?
This feature blocks suspicious scripts before they can do any harm. It doesn’t rely on known malware - instead, it watches for dangerous behavior (like trying to inject code or modify system files).
You can see blocked actions under the Proactive Defense tab:
If you’re sure a file is safe and want to allow it:
Click the gear icon next to the event.
Choose to Ignore detected rule or Ignore all rules for the file.
Note: Use the ignore options if you are absolutely certain that the action is safe.