19 the number of active break. Found a major vulnerability in modx CVE-2018-1000207.
One of the implementations paloda contains a virus of the type JS/Redirector-NKN . In each js file are written the following lines var _0x2515=["","\x6A ...
If there is a backup to the 19 number that is very easily treated. To delete a site restore from backup, patch, and better to ehpm upgrade to 2.6.5.
described in detail yourself fstrange.ru/coder/php/lechit-modx-ot-virusa.html