Stealing the access details for cPanel, FTP account or e-mail account

The most common scenario for detection and stealing of user access data is based on the virus type Trojan.PWS.Tupai, Trojan.Gumblar, Trojan.PWS.FerTP and the like. On the Internet in general occur frequently unauthorized access via FTP and cPanel accounts.

The data is stolen by a virus that records entry of user names, passwords and data used to sign over any form. These viruses can be found on the infected computer and "keep an eye" on the intake of specific types of data. These viruses often records all the information is entered for any login form, whether it comes to FTP, cPanel, Webmail login form or perhaps your bank account.

How are these viruses found on your computer?

Your computer may be infected with a virus on one (or more) of the ways:

  • From another computer (data transfer via USB drive, external drive, etc.)
  • From another computer (connecting by any means, wired or wireless)
  • By e-mail (opening e-mail that you do not expect, that sends an unknown sender, containing the attachment to be downloaded to your computer)
  • Through social networks (the same applies as for e-mails)
  • By visiting websites that contain viruses


Once a computer is infected, the virus sends all the data collected to the address of the virus. With the help of stolen data, virus or person access to your hosting account, download and modify the (most common) .php files. Such modified files can be used for a variety of illegal activities.


How to prevent data theft?

  • Make sure that the software on your computer and the operating system is always up to date and in the latest version
  • Do not use software that is illegal (cracked versions of paid programs is a reworked to be able to use free of charge where the program itself contains viral code that spies on users)
  • Use antivirus software
  • Regularly scan your computer with antivirus software
  • Do not allow the FTP client to automatically store data for access. Enter it manually.
  • As an additional measure of security change the passwords on every 3-4-6 months
If you suspect that someone already has your password you can take the following steps:

  1. Remove your computer from the network (existing virus will not be able to send your data if it is not on the network)
  2. Scan your computer using antivirus software and clean it from viruses
  3. When the computer is cleaned, return it to the network
  4. Login to the cPanel and immediately change the password for cPanel, FTP accounts, and e-mail accounts.
If you are not sure what it is, and feel that your safety is at risk, you can send us a ticket and contact technical support: Open ticket.
  • 1 Users Found This Useful
Was this answer helpful?

Related Articles

CPU Usage

Shared ServersAdriaHost allows a maximum of 25% CPU usage limit. You may exceed this limit for no...

How can I make a stronger password?

How can I make a stronger password?Password SelectionA good password is easy to remember, but...

How Can I Prevent Hacking?

The most important thing to do is keep your passwords a secret. If you must give a password to...

SQL injection, insertion

SQL injection is an attack where malicious code is passed to an SQL Server for execution. The...

How to Handle the Google Attack Page

When you see the dreaded Google Attack Site warning, you should immediately submit a ticket to...