FTP and Trojans

[eclipse33]

Not sure an how the trojan horse/virus deal works but here is the situation.

I am doing a webpage for a company. 90% of the time when I connect to the company's web provider to upload the files I get a Trojan Alert (with Norton Internet Security). Why would I only get alerts when I am connected to that server...can a hacker be 'attached' to their server??? Any ideas???

 

[paulwood]

Stuff like Code Red for instance, will try to spread itself around via any tcp/ip connection it can get. The program will be on the server, scanning for potential places to copy itself to, you come along, and it tries to see if your computer can be infected via a particular ip port.

 

[eclipse33]

But there is no pattern to it. For example I may get a Ultor's Trojan Alert today and Back Orifice 2000 Trojan tomorrow and a Backdoor/SubSeven Trojan Alert next week.

Can all these be on the one server?

 

[paulwood]

I suppose it's possible, but they'd have to be real unlucky, or have no security at all. I would be suprised if Norton was making it up for no good reason, so unless there are scripts or something confusing it, maybe they do have a problem. Do you know of anyone else who could verify what you have found. I guess they would have to be at the company you're working for.