Sign in

Affiliate

Home » CARTZLink » This Site May Harm Your Computer »

Click to enlarge

In Stock

Original Price : $150.00
Our Price : $150.00
You Save : $0.00 (0%)

This Site May Harm Your Computer

Qty :

Product Details

Why is Malware your greatest risk?

All online businesses rely on Google Search Engine traffic to operate. Under the radar 'stealth attacks’ on a website can result in the site owner hosting and distributing malware and viruses (aka SEO-Poisoning.)
Reported Attack Site

The instant Google is notified that you are hosting malware, they throw up a big red ugly screen your visitors see - and you're IMMEDIATELY de-indexed, Say bye bye, Google traffic!

Has your website been hacked?

Or, has your website account been blocked by Google, as a reported attack site?

we will ensure your web site is unblocked at Google or your money back!

We can help you clear your website after being hacked and help unblock your website listing in Google by offering you the following assurances:

We’ve been helping website hosting customers for years — you can be confident we know what we’re doing.
We have developed special tools to help quickly identify and clear malicious software or HTML from websites.
Our staff is personable and ready to help.
As an established website hosting company and domain name registrar you can trust our staff will handle your situation with the utmost confidence and professionalism.
This service will not be outsourced to a foreign country.
We will ensure that your website is unblocked by Google, or your money back.

My Account Hacked?
We are here to help when you’re under attack!

Web Site Hacked Cleaning Process:

The step by step:
- Once we’ve received a payment to cover our time in clearing the hack or malware related files from your website, and repairing your reputation with Google (i.e., clearing the reported attack site message and helping with review or reconsideration request issues if required).
- Payment indicates your approval for us to begin clearing hack related files or HTML within your website.
- The service order is considered fulfilled once Google removes the reported attack site message from your home page.*
Payment requirements:
- Payment is required prior to our making changes to any website files.

*Web site design or upgrading your website’s scripts is not included as part of this service.

Other Common hack related terms and information relating to how to clear hacked websites:

Gumblar - named after thousands of hacked websites were redirected to malware serving web pages at Gumblar.cn, and others.
Beladen - refers to one of a number of Beladen domains (including the shkarkimi domain name). People redirected to these domains would then be assaulted by malware / computer virus popups. Beladen hacks are written to operate intermittently and sometimes use or mimics google analytlcs scripts. Anti-virus programs often identify this script as JavaScript Obfuscation.
Obfuscated code - is a common means hackers code their web page hacks. This makes it harder to find the hacked code on a web page. A server admin searching a server for for hack related text often miss pages injected with obfuscated HTML pages because the obfuscated HTML conceal the usual suspect phrases, etc.
Botnet - is a large collection of hacked PCs, sometimes called zombie computers. These PCs once controlled may be used to send junk e-mail or bring down web services . Botnet’s are often the means by which denial of service attacks are initiated.
Denial of service attack - or distributed denial of service attack (DDoS), is a distributed attack on a network or service. Because these types of attacks originate from so many locations simultaneously they often result in hours of downtime until mitigated.
osCommerce - A very serious vulnerability in osCommerce allows an attacker to bypass the authentication mechanism and gain access to the admin pages.

My web site was hacked - Now what do I do?

Below are my recommendations regarding reports of your web site being hacked. Please pass this along to everyone who has been involved in uploading content to your web site.

1. Change all FTP passwords, email passwords and passwords for any administrative portion of your web site.

It is possible your password has been comprised or stolen from your computer. After changing your FTP password it is important that you do not save your password within your FTP software, web design software, or in email. In other words, write down your password on paper and do not save in your software (at least for the next couple of months).

Important:
- If possible use FTPS from now on.
- Set up SSL for any administrative pages on your web site.

A great percentage of hacked web sites are compromised due to clients not using encryption. And it is also possible your computer may have a virus which monitors keystrokes typed directly into your computer or sniffs passwords as they pass through your network or computer. Network sniffing can be avoided by using FTPS and will help prevent easy access to your passwords.

2. Run a full antivirus scan on all computers which may have either stored your FTP username/password, or are used to publish your web site files. I recommend installing these:

http://www.malwarebytes.org/ Excellent malware scanning software.

http://www.microsoft.com/windows/products/winfamily/defender/default.mspx Provided by Microsoft, Microsoft Defender actively monitors your computer for spyware.
http://www.safer-networking.org/en/download/ My personal favorite, Spybot-S&D does a great job in monitoring and stopping spybot installations.

3. Ask your web site designer to review all web pages on server and compare them to what your web designer has on his/her computer.
Re-upload your web site from your local copy if possible. Your web host’s backup will likely include hacked files as well.

4. Apply the latest patches to your web browser or any Adobe software installed on your computer(s).

5. Do not use your main account password for FTP.
If your account includes a control panel which allows you to set up additional FTP accounts, set up an alternate FTP account for public_html (your web site’s home directory), and use that instead.

6. It is also common for hackers to overwrite files or directories saved with 666 or 777 (world writeable) permissions. Make sure all your permissions are set at 644 for files and 755 for folders (unless 777 is absolutely required).

7. Review this for tips and information:
http://sites.google.com/site/webmasterhelpforum/en/faq-malware-and-hacked-sites

8. See why Google is blocking your web site here:
http://www.google.com/safebrowsing/diagnostic?site=http://google.com
*When the page loads, replace “google.com” with your domain.

Then, after you’ve cleared out the hacked code, log into your Google Webmaster account:
https://www.google.com/webmasters/tools/home?hl=en

Click the “Request a review” link within Google Webmaster Tools.

What can we do to help you resolve any hacked web site issues?

1. We can try reverting your web site to an older backup. Though we need to first identify the pages on your web site which have been modified with malicious code before doing so.

2. If you do not have a web professional who is willing to review and remove the hacked code from your web site - you can purchase this service.

For osCommerce Users:

There are a number of suggested solutions and patches but based on our
research the simplest thing to do is to protect the admin directory

using .htaccess-based authentication (.htaccess cannot be used on a Windows server by the way).

In addition to that if you notices some strange code appearing in all your php files like this then your site is hacked.
<?php /**/eval(base64_decode('aWYoZnVuY3Rpb25fZXhpc3RzKCdvYl9zdGFydCcpJiYhaXNzZXQoJEdMT0JBTFNbJ3NoX25vJ10p
........')); ?>

Remove that code from your files.

Do it now, avoid getting that nasty addition to your listings in google: 'This site might damage your computer' Or find all your customers data has been posted on a hackers bulletin board somewhere, etc etc

Some additional information and advice on security

Delete admin/filemanager.php and associated links.
Delete admin/define_language.php and associated link in the "Tools" box.
Ensure that your folder permissions are never set higher than 755

Install some security addons

You can prevent any injection attacks with Security Pro http://addons.oscommerce.com/info/5752

You can monitor sites for unauthorised changes with SiteMonitor http://addons.oscommerce.com/info/4441

You can block elicit access attempts with IP trap http://addons.oscommerce.com/info/5914

You can add htaccess protection http://addons.oscommerce.com/info/6066

You can stop Cross Site Scripting attacks with Anti XSS http://addons.oscommerce.com/info/6044

Also make sure that all files, except for the two configure.php files have permissions no higher than 644.

To be safe you should make backups of your dBase and site files, saves a great deal of time & effort cleaning up should anything nasty happen.

In addition to that we do offer daily offsite backup and security scanning and fixing of your website for $90 per month

Product Gallery

Videos

NO VIDEO

Reviews

Current Reviews: 0

Product Reviews