Site hacked...invisible Porn code/link in source code

Discussion regarding Joomla! 2.5 security issues.

Moderators: Bernard T, mandville, fcoulter, PhilD, General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Locked
mitcht
Joomla! Apprentice
Joomla! Apprentice
Posts: 6
Joined: Fri Sep 30, 2011 4:07 pm

Site hacked...invisible Porn code/link in source code

Post by mitcht » Tue Jan 20, 2015 6:59 pm

I volunteer my time at the local church with their site and I noticed that when I view the source code via a browser I see the following:

http://www.familyinchrist. com/

<span class='nnbfuukhrwjxbkrflhp'><a href="http://best-milf-porn.[spam].com/">milf porn</a></span>

<span class='nnbfuukhrwjxbkrflhp'><a href="http://hottest-lesbian-videos.[spam].com/">lesbian videos</a></span>

I also noticed a line of code at the top of this page, looks like it "broke" the page: [url]http://www.familyinchrist.c%20om/get-connected-421/students/main[/url]

I told them a year ago to get the Akeeba Admin Tools but they did not listen...they will now. :-)

How could this of been injected?

Any tips on how to clean the site?

Thank you,

Mitch
Last edited by mandville on Tue Jan 20, 2015 7:54 pm, edited 1 time in total.
Reason: removed excessive BB codes, broke link. posting a complete link to a hack site is irresponsible and dangerous. post them broken

User avatar
mandville
Joomla! Master
Joomla! Master
Posts: 14781
Joined: Mon Mar 20, 2006 1:56 am
Location: The Girly Side of Joomla in Sussex

Re: Site hacked...invisible Porn code/link in source code

Post by mandville » Tue Jan 20, 2015 7:55 pm

Before you post : read and action this topic covers the info needed and steps taken once you find your hacked. http://forum.joomla.org/viewtopic.php?f=621&t=582854
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}


Locked

Return to “Security in Joomla! 2.5”