Comment Re:Thanks for your help (Score 1) 73
There are software packages out that watch files that are being touched and scan them for known matches, viruses, etc and can quarantine them. Also software that watches out for relaying of emails and scripts sending out a ton of email (spam). A decent shared hosting company already does these two things. Common practice would be to disable the malicious code if it's still there (a lot of bots upload, execute, then remove the files) or reset compromised passwords and notify customers of what's going on. Let the customers deal with their own stuff. It's way to messy to force these types of upgrades on them, with the exception of maybe known exploits - like automatically replacing outdated timthumb.php code.