hi .. I have a website ...but from last few day i m facing malware problem that malware changing my index.php file ... went i saw that i have deleted all files and uploaded again ...then after 4 days i found same prob and same code ..i m using Awast but awast is not able to deduct that malware it is found by AVG .. Code added by malware is Can any buddy help me out (I have changed my all passwords) Plz help me
Delete that code and restore your pages. I would suggest restoring your entire site from backups if you can as there's no telling how many pages they edited. You've already changed your passwords ... good. Make sure they're strong passwords though. Weak passwords can be cracked in minutes. Something like n8$sG1@q would be a good example. Also go through all your 3rd party scripts and make sure you're using all the current versions. Remove any 3rd party scripts that are no longer being maintained by the creator. Hope this helps.
They add only index.php page ..... And After checking ftp logs i found a ip 216.97.235.70 which is of lunarpages.com's (web hosting company) ..... Can u help me out how i can fix this problem ....i have blocked this IP. Now they still access my FTP ? Thanks in advance