tag:blogger.com,1999:blog-8662105787759613580.post2073978685495602813..comments2023-05-30T06:13:14.028-07:00Comments on My tech memo: htaccess file hacked (hijacked) - How to cleanupAlvinhttp://www.blogger.com/profile/07842202617495536815noreply@blogger.comBlogger8125tag:blogger.com,1999:blog-8662105787759613580.post-71587478891102000012011-12-09T08:04:07.718-08:002011-12-09T08:04:07.718-08:00Cool script! Thanks, saved loads of hassle!Cool script! Thanks, saved loads of hassle!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-88551594087629620362011-06-14T17:48:49.385-07:002011-06-14T17:48:49.385-07:00this work
very thanks friend!this work <br /><br />very thanks friend!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-36829404711505412752011-05-06T20:37:26.815-07:002011-05-06T20:37:26.815-07:00worked like a charm
thanks !! :)worked like a charm <br /><br />thanks !! :)Bhargavahttps://www.blogger.com/profile/15784507568560300258noreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-89270836602002904022011-02-08T11:40:19.965-08:002011-02-08T11:40:19.965-08:00You need to look through your php files. I encoun...You need to look through your php files. I encountered this same issue a few weeks back. Did a search and found it was a Joomla issue. I wasn't nor have I ever ran Joomla. Check your php code for code like this: <br /><br />GLOBAL $alreadyxxx;<br />if($alreadyxxx != 1)<br />{<br />$alreadyxxx = 1;<br /><br />$olderrxxx=error_reporting(0);<br /><br />function outputxxx_callback($str)<br /><br />Take out the everything from <br />after that you should see your code. This took me several days to clean up and I am still finding pieces here and there.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-10574057506142000212011-02-06T12:41:41.267-08:002011-02-06T12:41:41.267-08:00Hacker created the .htaccess file and placed it a...Hacker created the .htaccess file and placed it at every folder of site to redirect your visitors to other site.<br /><br />Even FTP has been disabled, it maybe came in from other source, like your control panel file manager.<br /><br />Also it could be any other source.Alvinhttps://www.blogger.com/profile/07842202617495536815noreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-32617075102729357902011-02-06T11:08:29.036-08:002011-02-06T11:08:29.036-08:00How did the .htaccess file get into every folder b...How did the .htaccess file get into every folder beneath the webroot (and sometimes above it as well) ?<br />FTP has not been enabled at all.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-19355107186715058652010-10-09T18:03:37.535-07:002010-10-09T18:03:37.535-07:00I'm glad to hear that it's useful.
To pr...I'm glad to hear that it's useful. <br /><br />To prevent hackers, please change your FTP and site admin password frequently. Especially when you detected an attack.<br /><br />If you have copied .htaccess files to your local PC, high possibility that it is also affected, I suggest your check and remove it.Alvinhttps://www.blogger.com/profile/07842202617495536815noreply@blogger.comtag:blogger.com,1999:blog-8662105787759613580.post-4462665711279919472010-10-09T15:09:31.269-07:002010-10-09T15:09:31.269-07:00Thanks for your post, it has been very useful to f...Thanks for your post, it has been very useful to fix my websites that have been hacked for a third time, and the ISP does not give any solution.<br />Any advice to avoid another hacking?Suzenoreply@blogger.com