Site is vulnerable because of outdated CMS:
Web application details:
Application: Joomla! 1.5 - Open Source Content Management - http://www.joomla.org
Web application version:
Joomla Version 1.5.18 - 1.5.26 for: htxp://inglija.com.ua//media/system/js/caption.js
Joomla Version 1.5.18 to 1.5.26 for: htxp://inglija.com.ua//language/en-GB/en-GB.ini
Joomla version outdated: Upgrade required.
Outdated Joomla Found: Joomla under 2.5.20 or 3.3
Javascript Check results:
Suspicious
().src = “htxp://counter.yadro.ru/hit?r”+ escape(document.referrer)+((typeof(screen)==“undefined”)?“”: “;s”+screen.width+““+screen.height+””+(screen.colordepth? screen.colordepth…
Included scripts check results:
Suspect - please check list for unknown includes
Suspicious Script:
httx://inglija.com.ua/plugins/system/pc_includes/ajax_1.2.js
document.createelement(‘iframe’);this.iframe.setattribute(“id”,‘ajaxiframe’);this.iframe.setattribute(“height”,0);thi
Redirect going here: htxp://slavic-aryan.narod.ru/ is in an external link.
2 suspicious file detected by Quttera’s: /components/com_fireboard/template/default/js/jquery-latest.pack.js
Severity: Potentially Suspicious
Reason: Detected potentially suspicious content.
Details: Detected potentially suspicious initialization of function pointer to JavaScript method write __tmpvar182265117 = write;
Threat dump: /components/com_fireboard/template/default/js/jquery-latest.pack.js see atatched
Check for the latest here: http://jquerylatest.com/ (Damian)
Threat dump MD5: 070B2BF9C51441070D32451AB410A0DA
File size[byte]: 27148
File type: ASCII
MD5: 0BD0A38B3E5216C1FB510FAE8FC12FFD
Scan duration[sec]: 0.292000
polonus