Index.php Contains?

Found such line in index.php



?>



What does this mean and what should I do ?

Hello Darius,



It seems that your site was hacked. Please remove this part of the code and check your other files for unknown codes. Also check your server for viruses and, if you find any, delete them. Also we advise you to change your FTP access details and access details to your store.





Anastasiya Kozlova

CS-Cart Support team

[quote name='CS-Cart Support team' timestamp='1308906331' post='115676']

Hello Darius,



It seems that your site was hacked. Please remove this part of the code and check your other files for unknown codes. Also check your server for viruses and, if you find any, delete them. Also we advise you to change your FTP access details and access details to your store.





Anastasiya Kozlova

CS-Cart Support team

[/quote]



It seems that infected are on index.php in two cs-cart sites, rest forums and other shops are not touched.



Disabled SSH and changed all ftp account passwords

Checked all logs and found break in was done with ftp.



Passwords were not bruteforced but successful login from first time. I suppose my passwords were stolen by trojan from Filezilla, it does not encode passwords.

We are sorry to hear that you experience such a problem.





Anastasiya Kozlova

CS-Cart Support team