Which pages to search for malicious code

Search all the files that have any part in creating your web pages: .html, .htm, .php, .asp, .aspx, .inc (include files), .cfm, and whatever other extensions you use.

Inspect .js JavaScript and any other script files (including ones that you know originally came from a trusted source), watching for obfuscated code as described above. Some exploits try to do as little damage to the site as possible other than adding one little malicious JavaScript function into an otherwise normal .js file, to make it go undetected for as long as possible and be difficult to find.

If you find nothing in your text files, it might be necessary to search your database for malicious code