The virus to be stored as a file again and again how to solve?
Is there a website on joomla, of course with holes in the scripts that can't find. Decided to just change the permissions for files 500. Kind of like with the same rights files overwrite impossible, but the virus still appears again (js in the head tag). Do I understand correctly that you need to disable server-side php function popen,dl,set_time_limit,passthru,system,exec,proc_open,shell_exec,proc_close ?
For the future:
Keep on your local PC to SVN, where to fill in all release builds of the web.
ALL site content is equivalent to what is in your repository. Or not all, and the chassis, which can be run remotely or vulnerable from the outside. PHP, JS, CSS, CGI, etc. images and files - forest.
Daily backups of the database.
And we need this in order to identify what you broke, and what was changed. Download the website yourself, put in the working copy directory and run the check for modifications.
Restore the site in 5 minutes.