First of all, please don't revive year old threads. Create a new One. The possibility that the information in an old thread is outdated is to damn high ;)
Next: What version of Liferay do you use? What Editor Version is bundled with that release? Does this Version even have the vulnerability?

how can I disable to view this folders??

***/html/js/editor/fckeditor/editor/***

we have many times hack-injection to check this editor like as:

<bad-host> - - [10/Jun/2015:15:08:37 +0100] "GET /dekra/FCKeditor/editor/fckeditor.html HTTP/1.1" 404 26734
<bad-host> - - [10/Jun/2015:15:08:38 +0100] "GET /c4sql8-solidarieta/html/images_sys/fckeditor.o/editor/fckeditor.html HTTP/1.1" 404 26840

Jan is right, should have opened a new thread.

That said, you cannot block access to the editor folder, those files are necessary for the editor to work.

However, the errors you're seeing are tied to a lot of web apps that have known vulnerabilities; they're feeding the apps into the script, so it's not a generic search for the files across the board.

I'd add general rules to block the base urls such as "/webmail", "/adminicpsb", etc. That's what the bad guys are probing for, not necessarily the fckeditor itself.

As a bad guy, once you find a site with the fckeditor with the issue, you then start to exploit it but that exploitation will be different depending upon the application it's running under. The "/webmail" guy, for example, well you'd take one path that probably is different than the "/drupal" path.

Blocking the root app is the better path in case some other vulnerability is found in those packages, you won't be scanned for those either.