Re: What is malicious about Web designer?
I see this problem quite often and 99.9% of the time it has nothing to do with the connection or security of the server, but, has to do with the user's own computer. A keylogger gets installed on the user's computer and the ftp password is stolen and then used to download page files where the malicious code is inserted then uploaded again.
You can tell when it happened by looking at the date of one of the modified files.
You can change the password, but, it won't normally be effective until the keylogger is removed from the system.
Chris
LotsMoreHosting.com
Bookmarks