1 of My websites was hacked, the script like
<"script type='text/javascript' src='//is[dot]gd/KlC6h2'></script">
The short url leads to onclickads.net/apu.php?zoneid=221675 then redirect to various AD urls.
Thanks for the post http://forum.joomla.org/viewtopic.php?t=861066, I found this script on the tpls/default.php of the template and removed it.
But do you know how they managed to inject the code to my website?
I am using the lastest version joomla 3.5.1 which should be the most safe version.
Why the 3.5.1 get hacked
Moderators: mandville, General Support Moderators
Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Windows Defender SmartScreen Issues <-- please read this if using Windows 10.
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Windows Defender SmartScreen Issues <-- please read this if using Windows 10.
- popoguy
- Joomla! Apprentice
- Posts: 41
- Joined: Mon Feb 18, 2008 4:05 pm
- Contact:
Why the 3.5.1 get hacked
http://www.beijingesc.com/services.html - China driving license
http://www.beijingesc.com/china-no-crim ... ijing.html - China Police Clearance
http://www.beijingesc.com/china-no-crim ... ijing.html - China Police Clearance
-
- Joomla! Virtuoso
- Posts: 4025
- Joined: Mon Nov 25, 2013 4:35 pm
- Location: Montreal, Canada
- Contact:
Re: Why the 3.5.1 get hacked
I can think of 2 reasons:
- You have a vulnerable extension installed (Check Joomla's VEL)
- Your website resides on a shared hosting server and the server is running an unpatched ImageMagick module.
- You have a vulnerable extension installed (Check Joomla's VEL)
- Your website resides on a shared hosting server and the server is running an unpatched ImageMagick module.
http://www.itoctopus.com - Joomla consulting at its finest
https://twitter.com/itoctopus - Follow us on Twitter
https://twitter.com/itoctopus - Follow us on Twitter
- ribo
- Joomla! Virtuoso
- Posts: 3507
- Joined: Sun Jan 03, 2010 8:47 pm
- Contact:
Re: Why the 3.5.1 get hacked
Also a no updated template could be the reason
chat room spontes : http://www.spontes.com
- darb
- Joomla! Hero
- Posts: 2042
- Joined: Thu Jul 06, 2006 12:57 pm
- Location: Stockholm Sweden
Re: Why the 3.5.1 get hacked
Or a pirated downloaded 3pds that you have installed and that create a back door to your site.
'Following Joomla since 2005 I see that this is the no1 problem for Joomla hacked sites together with bad hosting partner.
If you hosting is new and dont know what they are doing to prevent hackers then you can not do anything to stop them from hacking your site so no 1 priority is to choose a reliable Joomla hosting provider and not install any pirated 3pds bcs then you are asking for a 100% problem that cost you more then cheep hosting and free pirated 3pds extensions..
'Following Joomla since 2005 I see that this is the no1 problem for Joomla hacked sites together with bad hosting partner.
If you hosting is new and dont know what they are doing to prevent hackers then you can not do anything to stop them from hacking your site so no 1 priority is to choose a reliable Joomla hosting provider and not install any pirated 3pds bcs then you are asking for a 100% problem that cost you more then cheep hosting and free pirated 3pds extensions..
- leolam
- Joomla! Master
- Posts: 20652
- Joined: Mon Aug 29, 2005 10:17 am
- Location: Netherlands/ Germany/ S'pore/Bogor/ North America
- Contact:
Re: Why the 3.5.1 get hacked
You will only know if you have a secure site now if you follow all that has been written http://forum.joomla.org/viewtopic.php?f=714&t=757645
Leo
Leo
Joomla's #1 Professional Services Provider:
#Joomla Professional Support: https://gws-desk.com -
#Joomla Specialized Hosting Solutions: https://gws-host.com -
#Joomla Professional Support: https://gws-desk.com -
#Joomla Specialized Hosting Solutions: https://gws-host.com -
- popoguy
- Joomla! Apprentice
- Posts: 41
- Joined: Mon Feb 18, 2008 4:05 pm
- Contact:
Re: Why the 3.5.1 get hacked
The website get hacked again, this time the code was found in line 36 "[templatename]/tpls/blocks/head.php"
Do you know where to find and how to kill the back door?
This might be the problem, as this template was issued in 2014.ribo wrote:Also a no updated template could be the reason
I stop using pirated 3pds after I transferred from J1.5 to J2.5darb wrote:Or a pirated downloaded 3pds that you have installed and that create a back door to your site.
Do you know where to find and how to kill the back door?
Thanks, but there are tons of information, could you narrow it down?leolam wrote:You will only know if you have a secure site now if you follow all that has been written http://forum.joomla.org/viewtopic.php?f=714&t=757645
http://www.beijingesc.com/services.html - China driving license
http://www.beijingesc.com/china-no-crim ... ijing.html - China Police Clearance
http://www.beijingesc.com/china-no-crim ... ijing.html - China Police Clearance
- ribo
- Joomla! Virtuoso
- Posts: 3507
- Joined: Sun Jan 03, 2010 8:47 pm
- Contact:
Re: Why the 3.5.1 get hacked
It might be one of the reasons that you ve been hacked, but all the other advices from joomla members are good to check the reason that you ve benn hacked , to not be hacked in the future and also very strong recommended to read carefully all the post that @leolam said you and use all the steps from there.popoguy wrote:The website get hacked again, this time the code was found in line 36 "[templatename]/tpls/blocks/head.php"
This might be the problem, as this template was issued in 2014.ribo wrote:Also a no updated template could be the reason
chat room spontes : http://www.spontes.com