Trust me it is easier to have your password changed than have your site injected.
My site got injected many months ago and was injected with tonnes of porn and other crap and took over two days of returning phonecalls and apologising to people for what was on the site. I just wish eUK could have changed mine to save me the hassle. I think they did what needed to be done.
I no longer have insecure passwords
