I have a website that I put online via a Web Hosting Provider. For 2 years, no problem. But recently a customer called to tell me that his computer was infected by the Downloader.Trojan virus which he got by visiting my website. When I went to my website to check it out, my antivirus program warned me that the Downloader.Trojan was being blocked from my site. (I think the trojan was associated with images on my site.) I've fixed the problem by deleting all the files from the host server and uploading the virus-free files from my computer.
So my questions are (1) how is it possible for any of the files on my website, which is hosted on someone else's server, to acquire the Downloader.Trojan virus? Is their server somehow compromised? (2) Can someone other than me alter the files on their server after I've uploaded them? And (3) how can I protect my website from acquiring a virus so this doesn't happen again?
2006-10-12 08:29:52 · 4 answers · asked by expostphilo 1 in Computers & Internet ➔ Internet
It could be a direct infection on the server or a security issue on your web site or host server that allowed a hacker to infect your pages.
2006-10-12 08:32:47 · answer #1 · answered by juliepelletier 7 · 0⤊ 0⤋
I'm not a server guru, but here is what I have to say.
If the server provider you are using does not have great security, it can easily be affected. Locating the initial source can be very hard. Because a lot of servers are shared among many clients, it could have been someone else's data which infected the server, which eventually spread to all the data on the server (including yours) and eventually everyone who views/downloads/whatever from information stored on that server (such as the person you spoke of).
I would contact your Web Hosting Provider and ask them about the security of their servers. Most places should scan for stuff and should keep things up to date so things like that don't happen. If you find out there are flaws in their security, you might want to think about transfering to another provider.
2006-10-12 08:38:17 · answer #2 · answered by C_Ras 3 · 0⤊ 0⤋
I think something similar happened to one of my sites. I changed my password after I noticed some altered code on several pages and haven't had that problem since.
2006-10-12 08:33:23 · answer #3 · answered by Anonymous · 0⤊ 0⤋
Find all informations at http://tinyurl.com/yahtjk
2006-10-13 04:03:28 · answer #4 · answered by PAPU 3 · 0⤊ 0⤋