FTP virus spreading in new ways
An earlier blog post described how several of our customers got their personal computers infected by a new virus that has been spreading across the Internet. Initial versions of the virus spread themselves by reading a Web site’s FTP username and password stored on the PC, then downloading Web pages, inserting an “iframe” tag, and re-uploading the Web pages back to the server. As a proactive measure, we started scanning all uploaded files and stripping out any malicious “iframe” tags.
If your Web site is infected, your best solution is to:
- Scan your computer for malware. See our prior blog post for links to suggested scanning software.
- Change your account password in our control panel (since your account password is also your FTP password).
- Change the passwords for any additional FTP accounts you may have defined.
- Re-upload (or “re-publish”) your Web site to our servers.
Of course, we always recommend that users run anti-virus software on their systems, and keep backups of their Web site files and data.