While backing up a customers site to prepare for a new Joomla 2.5 site to be installed I noticed a file called “xk.txt” in the root directory. I opened the file to see only the following text.
Hackeado por HighTech Brazil HackTeam
No\One – CrazyDuck – Otrasher
I am not going to repair this site because I am already upgrading it. Good reason to suggest any existing customers you may have with Joomla 1.5 site to upgrade or at least back up as soon as possible.