I have been subject to a malware hack on my site www.golanguedoc.com. We think we have it under control and we have deleted most of the suspicious files. I have now updated all of my plugins and components and I have just installed the Admin tools Pro and run the quick set up wizard. I was about to run the .htaccess maker when the hosting support contacted me and told me that a scan had revealed a whole bunch of .htaccess files inserted into various directories (which all looked suspicious). I have removed most of them, but I am hesitating on removing the last few of them because they are all under the components/com_akeeba and components/com_admintools. I wonder if they relate to this .htaccess maker function. The files all seem to have the same content
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
<IfModule mod_authz_core.c>
<RequireAll>
Require all denied
</RequireAll>
</IfModule>
This is the list of the files identified in the security scan (which I haven't yet deleted). Would you expect these directories to have .htaccess files?
./administrator/components/com_admintools/src/Scanner/.htaccess
./administrator/components/com_akeebabackup/tmpl/.htaccess
./administrator/components/com_akeebabackup/sql/.htaccess
./administrator/components/com_akeebabackup/platform/.htaccess
./administrator/components/com_akeebabackup/backup/.htaccess
./administrator/components/com_akeebabackup/vendor/akeeba/engine/engine/.htaccess
./administrator/components/com_akeebabackup/language/.htaccess
./administrator/components/com_akeebabackup/src/.htaccess
./administrator/components/com_akeebabackup/forms/.htaccess
./administrator/components/com_akeebabackup/services/.htaccess
./administrator/components/com_akeebabackup/installers/.htaccess
./components/com_akeebabackup/language/.htaccess
./components/com_akeebabackup/src/.htaccess
Thanks for your help
Iain Laverock
