See: http://killmalware.com/churchboastcards.com/# (also IP site hacked and defaced and Liquid web abuse.)
See: http://toolbar.netcraft.com/site_report?url=http://churchboastcards.com
Server header info proliferation detected:
Apache/2.2.24 Unix mod_ssl/2.2.24 OpenSSL/1.0.0-fips DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4
Outdated software: HTTP Server: Apache HTTP Server 2.2.24 (Outdated)
Operating System: Unix
OpenSSL Version: 1.0.0-fips
Control Panel: cPanel
Insecure Identifiers detected.
Name server versions exposed: http://www.dnsinspect.com/churchboastcards.com/1456073534
With all the security implemented - auth passthrough = limiter module etc. the website may have had no defenses against the
advanced attackers nor got pro-active support from that hoster: http://toolbar.netcraft.com/site_report?url=http://ns1.apppublishing.com (outdated software!) Server misconfigured and moved after a IP_changed.png 337 image/png ; -http://go.cpanel.net/cleardnscache 1 so sub-domains are not available.
179 other websites were hacked and defaced likewise.
polonus (volunteer website security analyst and website error-hunter)