Been enjoying redeveloping a site in version 3.0, until evening of launch, just before switch over. PC users complain of a strange redirect when visiting the dev site.
This script then loads further malicious code.
I've checked the template files, all seem fine, and run a text search of the files for the above string.
Any thoughts, are there any key files to look for malicious code.
Any way to track down the point of entry?
It's odd as this site wasn't public, only a couple of people populating content and myself viewing it!?
(hosted on mediatemple).
Any help appreciated.