Thanks!

As long as the extra couple of cents per day in electricity don’t bother you, no harm in 24/7.

The latest trojans (the ones that infect websites via FTP) are not full keylogger trojans. They simply scan your computer for common FTP programs and extract the login details. By not storing the details, it minimizes this risk unless your computer has a keylogger, which is more rare. You could save just the username in DW so you only have to enter the password each time you publish.

Yes I have the paid version of Malwarebytes and I think it is on real-time protection because i always get these pop messages that say “malwarebytes has successfully blocked malicious IP….etc”

However, I admit i have not done daily scans thinking that malwarebytes and AVG antivirus would block ALL infections.

I will now avoid storing ftp info in dreamweaver. However, when i need to publish a site and enter the ftp info manually, wouldn’t the trojan still be able to pick the details up as i enter them ? … meaning at the time i go and publish the site.

thanks so much again for your help .. i really appreciate it.

Are you running the paid version of malwarebytes? If so, is it set to run real-time protection, do automatic updates, and daily scans? If not, you will want to set it up to do these things, so it protects your website in real-time.

These trojans are often on infected websites that you browse to and run malicious code on your computer. Make sure you’re running the latest IE8 or FF 3.6 web browser, and all Windows security updates are applied.

The trojans often pull the FTP data from applications that store the FTP username and password. A few things you can do:

– Do not store the FTP details in Dreamweaver. Enter them each time manually.
– Use FTPS or SFTP instead of regular FTP. The hackers only test FTP connections in most cases. Your host may even be able to disable regular FTP or force FTPS for your account.

Hopefully between running real time Malwarebytes protection with automatic updates and not storing your FTP details in Dreamweaver, this should help minimize the chance your computer gets re-infected.

I have dealt with this issue in the past and am having to deal with it again.

About a year ago, I had this malicious trojans on my PC and every time i uploaded websites to the server via Dreamweaver the trojans would steal the ftp passwords and inject the iframes.

I kepth thinking it was the hosting company that was compromised but it was actually my own PC.

I use AVG and Malwarebytes but got infected again with another trojan recently and the same thing has happened.

The questions are:

1. How can you prevent the trojans from infecting your PC in the first place? I mean aren’t the anti-virus software supposed to stop the infections from getting into your PC?

2. How to secure the FTP information? I use dreamweaver to publish the sites and HAVE TO enter the ftp details to connect to the server, so is there a bettwr way to upload the websites after designing in dreamweavr?

Anyone who can help will be greatly appreciated.