The absolute first thing that you need to do is get checked out by the Security Team Malware Analysts: https://www.techsupportforum.com/f50/...lp-305963.html
. Please read and follow all directions. There is no point in applying the required fixes on your server if the source machine is still infected.
Now, what you need to do is this:
As soon as you are disinfected, change your FTP password. This is the only way to absolutely stop the malware from re-infecting your site or computer. Why don't we do this first? Gumblar might be bundled with a keylogger, which would be able to grab the new FTP password and pass the information on to Gumblar.
Now, open your FTP connection with your new password, and either (a) edit the files "live" if you can, or (b) download the .htm, .html, and .js files. Search for the following:
HTML (.html and .htm files): <script src=https://onlyplaygame.com/services/comments.php ></script>
Delete these lines.
Can you post a link to the infected site? I might be able to do a little bit more if I can see the pages themselves.