Hello, My site was attacked by some virus that injected malicious scripts into some files of my site. How can I set the file permission so that viruses won't be able to write to my files. I tried changing the file permissions through file zilla ftp and succeeded but when I checked again the file permissions returned to the previous settings. Thanks, Danny
You can't change file or directory permissions with an FTP client. That only works on a unix/linux server. Windows file permissions are different. But that's not your problem anyway. If someone wrote to your files and they are static files (not generated from a database), then whoever did it has your FTP user/pass. They typically get that login through a virus or keylogger on your computer. That's what you need to look at. Here are links to a few free virus/malware detection tools: http://www.microsoft.com/security/malwareremove/default.mspx http://vil.nai.com/vil/stinger/ http://www.safer-networking.org/en/spybotsd/index.html Once you clean up your computers you should go in to your DiscountASP.NET account and change all of your passwords. Of course that applies to pretty much everything you log in to online. Consider all of those to be compromised. If the pages are generated from a database there is another possible exploit, but it's far less common and it doesn't sound like that's the case for you.
The hacker may also be using a security hole of your application to compromise your site. This is very common if you use popular canned apps.
