Download
Our website, www.psewer.com, has been hacked. After clicking around for a while on the site, it will eventually redirect to www.hotglasses[dot]us/#psewer.com. The weird thing is it doesn't happen right away and it's different every time. Sometimes it's after 3 clicks, sometimes after 50. My web host thinks I'm making it up!! I did some googling but didn't find much so I did a search through all my code and found "base64" in 2 locations:
admin\inc\basic.php
AND
admin\template\js\codemirror\lib\codemirror-compressed.js
My question is, is it supposed to be there? Is it ever okay to have base64 in your code or does it always mean something bad?
I am not familiar with a lot of complicated code but I need to get this fixed. It's for a client of mine.
admin\inc\basic.php
AND
admin\template\js\codemirror\lib\codemirror-compressed.js
My question is, is it supposed to be there? Is it ever okay to have base64 in your code or does it always mean something bad?
I am not familiar with a lot of complicated code but I need to get this fixed. It's for a client of mine.
