Support article
CPGuard: advanced security for your hosting
Learn how CPGuard protects your website with malware scanning, firewall, WAF and preventive security measures within miHosting infrastructure.
Introduction
Website security does not depend on a single tool. It depends on having several protection layers working at the same time: prevention, detection, blocking, cleanup, monitoring and good practices.
At miHosting, we use CPGuard as one of the foundations of our security system to protect hosting servers and help keep your website safer, more stable and more reliable.
CPGuard is a security solution for Linux web hosting servers that combines malware scanning, automatic cleanup of infected files, an advanced firewall, WAF protection, abusive IP blocking, brute-force defense and reputation monitoring.
In this article, we explain what CPGuard is, how it helps protect your website and, above all, how miHosting integrates it into a broader security setup. This matters because real website protection does not depend on a scanner or a firewall alone.
Important: at miHosting, we do not rely on CPGuard alone
It would be inaccurate to say that your website is protected only because CPGuard is present. At miHosting, CPGuard is one part of a layered security approach.
Alongside CPGuard, our hosting environment also uses measures such as:
- A 24/7 perimeter firewall, to filter malicious traffic before it reaches your account.
- CageFS, to isolate each account from the rest of the server in shared hosting.
- CloudLinux, to assign resources per account and reduce the impact of issues caused by other users.
- Automatic SSL, included to encrypt your website traffic from day one.
- Weekly backups, so the website can be recovered if an incident requires it.
- Technical support, to guide you if you detect a hack, an infection or compromised files.
In other words, CPGuard is important, but it is not the whole miHosting security system.
What is CPGuard
CPGuard is a security tool designed specifically for web hosting servers. Its main purpose is to protect websites, hosting accounts, PHP applications, content management systems such as WordPress, Joomla or OpenCart, and server services against common threats.
Its most important functions include:
- Malware scanning in hosting files.
- Detection of suspicious code, malicious redirects and web shells.
- Automatic cleanup of infected files when possible.
- Advanced firewall to block malicious traffic.
- WAF with security rules to protect web applications.
- Protection against brute-force attacks on CMS logins.
- Blocking of malicious bots and suspicious agents.
- Reputation review for domains and IPs.
- Monitoring of suspicious processes and malicious scripts.
- Security alerts and reports.
Put simply, CPGuard acts as an active defense layer that helps detect, block and mitigate threats before they seriously affect your website.
You can read more technical details on the official CPGuard website.
How CPGuard helps protect your website
1. It scans your hosting files for malware
CPGuard reviews the files hosted on the server to detect malicious code, viruses, suspicious scripts, unauthorized redirects, hidden links, modified files and other common patterns found on compromised websites.
This is especially important on sites built with WordPress or other CMS platforms, where a vulnerability in a plugin, theme or outdated file can allow malware to get in.
2. It tries to clean infected files automatically
When CPGuard detects certain types of infection, it can try to clean the affected file automatically.
This helps reduce the exposure time of a compromised website and may prevent a small issue from affecting the whole site, its SEO positioning or the reputation of the domain.
Even so, we always recommend keeping backup copies updated, because automatic cleanup does not replace a good backup system.
3. It protects your website with a WAF
A WAF, or web application firewall, is a protection layer that filters suspicious requests before they reach your site.
CPGuard uses security rules aimed at PHP applications and popular CMS platforms to help block common attacks such as:
- SQL injection.
- Cross-site scripting or XSS.
- Remote or local file inclusion.
- Attempts to upload malicious files.
- Access to sensitive paths.
- Attacks against vulnerable plugins, themes or forms.
This helps reduce the risk that an attacker will exploit security flaws in an outdated or poorly configured website.
4. It blocks abusive IPs before they consume resources
CPGuard includes protection based on lists of abusive IPs known for participating in web attacks, brute force, spam, port scanning, malware distribution or malicious traffic.
By blocking this traffic preventively, the server can dedicate more resources to legitimate visitors.
This not only improves security, it can also help maintain better performance during suspicious traffic spikes.
5. It reduces brute-force attacks and malicious bots
Brute-force attacks try to access an account by testing many username and password combinations.
CPGuard helps mitigate this type of attack on login pages, CMS panels and administrative routes. It can also block harmful bots or automated agents that cause unnecessary resource usage, spam or exploitation attempts.
For the end user, this means a website that is better protected against unauthorized access.
6. It monitors server, domain and IP reputation
An infected website can affect domain reputation, email performance and search engine visibility.
CPGuard includes reputation monitoring tools that help detect compromised domains or IPs listed in block databases. This matters a lot in shared hosting services, where the security of each account helps protect the overall stability of the server.
7. It detects suspicious server processes
Some infections are not limited to visible files inside a website. They can also run hidden processes, spam scripts, bots or cryptocurrency mining tasks.
CPGuard adds another monitoring layer to identify suspicious behavior and reduce the impact of threats that could go unnoticed in a basic manual review.
What miHosting does in practice to protect your website
When you host your website with us, the protection does not stop at installing one tool and letting it work on its own.
1. We filter attacks before they reach your website
CPGuard works together with the perimeter firewall to analyze incoming connections, block known malicious IPs, stop abusive bots and reduce automated attacks before they consume resources from your account.
2. We isolate your account from the rest of the server
In shared hosting, one of the biggest risks is that a problem in another account affects the others. At miHosting we use CageFS so that each account runs inside its own isolated environment.
This helps prevent another customer’s security issue from compromising your files or access.
3. We limit the impact of abnormal resource usage
We use CloudLinux to assign resources per account. That way, if another website on the server has traffic spikes, heavy scripts or unusual activity, your site should not be dragged down by that issue.
4. We keep communication encrypted
We include automatic SSL so your website can run over HTTPS and protect forms, logins, visitor data and credentials in transit.
5. We keep backups to help recover the website
If something goes wrong, we rely on weekly backups so we can help restore the website, the account or part of the content whenever the incident and the available copy allow it.
6. We help if the problem has already happened
If you detect that your website has been compromised, our team can guide you to identify the issue, review infected files, assess a restore and reduce the risk of reinfection.
Why CPGuard brings more confidence to your hosting
When you host your website at miHosting, you do not only need disk space and email. You also need a technical environment that helps prevent real problems: malware, unauthorized access, bots, CMS vulnerabilities, unsafe scripts and malicious traffic.
CPGuard allows us to work with a layered security strategy, but always as part of a wider system:
- Prevention: blocks suspicious traffic, bots and abusive IPs.
- Detection: analyzes files, databases, processes and malicious patterns.
- Mitigation: helps clean infections and reduce damage.
- Monitoring: makes it possible to review events, reputation and security alerts.
- Optimization: prevents known threats from consuming server resources.
On top of that, we add account isolation with CageFS, per-account limits with CloudLinux, a perimeter firewall, automatic SSL and the ability to restore from backups when needed.
No tool can promise that a website will be 100% invulnerable. Even so, having CPGuard as part of miHosting’s security system provides much stronger protection than hosting your website in an environment without specialized defenses.
Useful tips to keep your website more secure
Keep your CMS updated
If you use WordPress, Joomla, PrestaShop, OpenCart or another content management system, always update the core, plugins, themes and extensions. Many infections happen because of outdated components.
Use strong passwords
Avoid simple passwords such as names, dates or repeated combinations. Use long, unique and different passwords for your hosting panel, email, FTP, databases and website admin area.
Install only trusted plugins and themes
Do not use templates, plugins or extensions downloaded from unofficial sites. Many pirated or modified files include hidden malicious code.
Enable SSL on your domain
An SSL certificate allows your website to load over HTTPS, protects communication between the visitor and the server, and improves user trust. At miHosting, we can also help you with SSL certificates for your domain.
Make regular backups
CPGuard helps detect and mitigate threats, but backups remain essential. A recent backup copy can be critical to restore your site quickly after human errors, serious infections or technical issues.
Review security notices
If our team detects suspicious activity related to your account, pay attention to the notice as soon as possible. Solving the source of the problem helps avoid reinfections and protects your domain reputation.
Frequently asked questions about CPGuard
Does CPGuard protect my website automatically
Yes. CPGuard works automatically on tasks such as scanning, detection, threat blocking and mitigation of certain malware types. Even so, at miHosting we do not rely on CPGuard alone: perimeter firewalling, account isolation, SSL, backups and infrastructure management also play a role.
Do I need to do anything as a client
In most cases, you do not need to configure CPGuard directly. Our technical team manages server security. The most important thing for you is to keep your website updated, use secure passwords and pay attention to any support notices.
Does CPGuard stop every attack
No. CPGuard greatly reduces the risk from many common threats, but no system can guarantee absolute protection against every attack. The best security comes from combining professional tools, account isolation, firewalling, backups, website maintenance and good practices.
Does CPGuard protect WordPress
Yes. CPGuard includes features aimed at WordPress and other CMS platforms, such as threat detection, file review, brute-force protection, WAF rules and checks related to vulnerabilities in plugins, themes or core files.
What happens if my website is already infected
If malware is detected, CPGuard may try to clean some files automatically. Depending on the case, it may also be necessary to restore a backup, update the website, remove unsafe plugins or review the site manually.
If you need extra help, the miHosting support team can guide you to recover the website and reduce the risk of reinfection.
miHosting services that complement CPGuard
Website security improves when you combine a solid infrastructure with maintenance and prevention. That is why, in addition to CPGuard, you can strengthen your project with services such as:
- Professional hosting, ideal for company websites, online stores and projects that need stability.
- Reseller hosting, if you manage several client websites and want to offer a safer environment.
- VPS or dedicated servers, recommended for projects with higher traffic, advanced needs or custom configurations.
- SSL certificates, to protect your visitors’ connection and improve trust in your site.
- Backups, to recover your website after errors, infections or unwanted changes.
- Website design and maintenance, if you prefer a technical team to handle updates, reviews and ongoing improvements.
Conclusion
CPGuard is an important part of miHosting’s security system, but it does not work alone. We combine it with a perimeter firewall, CageFS, CloudLinux, automatic SSL, weekly backups and technical support to provide much more complete protection.
Hosting your site on a service with active security measures lets you work with more peace of mind, reduce risks and focus on growing your project.
If you are already a miHosting client and you have questions about your website security, you can contact our support team. And if you are looking for secure hosting for your site, choosing a plan with a well-protected infrastructure is an excellent way to start on the right foot.