I recently had my site hacked by injecting code in various files within my installation. We resolved the issue initially but every week or so code appears in the 'Index.php' which effects the look of the main page and also opens a popup asking the visitor to download a file.
The website which the code referes to is 'neraller.com'.
Does anyone know anything about this hack or experienced it before, I can correct the issue by overwriting the 'index.php' wirh a backup copy but not sure where to look for code which may be updating the file every few days??
Thanks for any assistance offered :)