troubleshooting Question

Joomla 1.7 htaccess getting modified/compromised

Avatar of erzoolander
erzoolander asked on
Joomla
4 Comments1 Solution527 ViewsLast Modified:
We have a site that was developed by a sub-contractor of ours.  They developed it in Joomla (per the client's request).  I'm more of a Drupal guy - so my knowledge of Joomla is only cursory.

Apparently there's something happening in Joomla (probably via one of the plugins) where the htaccess file is getting hacked/modified/compromised...and all sorts of extraneous malicious instructions are being inserted into the file.

Namely...

If referred from google, yahoo, ask.com, etc...go to some Russian malware site.  If a 400, 401, 403, 404, 500 error...go to that Russian malware site.

I've done a little bit of research - and it appears to confirm that this is a problem with some outdated plugins.

Anyone have any experience with this - and have any suggestions for where I can start to debug this thing?  I'd prefer a little experienced guidance or helpful hints before I start googling and perhaps end up with irrelevant suggestions.

Thanks in advance!
ASKER CERTIFIED SOLUTION
Abhijeet Rananaware
Web & Mobile Developer

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 4 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros