Maladvertising networks use CDNs to hide their tracks

Screen Shot 2014-02-11 at 12.58.25

At this point there are quite significant increase in malicious browser plugins that displays ads without enough disclosure. Quite often their tracks are hidden and it is not so easy to remove them. The makers use 2 ways to start showing adware : Distributing plugins with bundles or trojans (aka “movie downloads”, etc). Purchasing popular […]

Blocking bad commentators – how to get IPs you should block.

mysql1

This is an update about securing wordpress admin and blocking spam bots from writing comments. Although I use Akismet, spam bots might use up your apache children connections or make harder to find false – possitives in spam messages.  The main problem I faced is how to select IPs of commentators I want to block from […]

HotStartSearch virus – what it is and how to remove

HotStartSearch virus also known as HotStartSearch.com is a browser hijacker that can be added as an application to Internet Explorer, Google Chrome or Mozilla Firefox. Usually it affects all of the Internet browsers installed on a computer. The obvious signs of this browser hijacker infection are replacement of home page, default search engine and new […]

How Delta Search Virus Works

Delta search virus (aka delta-search dot com ) is one of the major browser hijackers today. Once the toolbar is installed, it replaces home / new tab page and then it hijacks search settings. And that is about all functions it provides. Additionally, if you uninstall it, all these settings remain as they are and […]

The case of simple server backdoor

Recently, I have found that one of my servers was infected with malicious apache module. This is not something I am too proud about, but it happens. The original infection happened either through plesk or through pre-existing user. That is why I am stopping using Plesk control panels for VPS’es and DE’es I own and […]

FbDownloader – how to uninstall it

FbDownloader is an application that allows any Facebook user to easily download an unlimited number of Facebook photos from their own albums or from their friends’ albums, including tagged photos. It works across multiple computing platforms and offers a number of options, including the ability to download photos in black and white or color. The […]

How to get rid of MapsGalaxy adware

MapsGalaxy is a browser toolbar owned by Mindspark Interactive Network, Inc. It offers such functions like map search; check of the traffic info; easy access to yellow pages, facebook and other tools. The add-on can be installed to Internet Explorer and Mozilla Firefox. Even though the features this toolbar offers might seem useful, one would […]

How to secure WordPress blog admin area on dedicated machines

I have written on WordPress security in the past and listed some plugins that cover popular security issues. I still use Simple Login Log and prevent admin panel access from unknown IPs on most of my sites, but I have found another way to strengthen WP installation. Typical solution will block admin folder only. This is good enough, but it […]

Lithuanian bank is used for processing payments for fake antiviruses

paysafe

Although Rogue antivirus business is very profitable for cyber criminals, it has one weak point – payment processing. Basically, one needs a legitimate partner to do this, or one would have no way to get the money from credit cards except by using the cards to buy some goods (which is more dangerous). Additionally, other […]

System Progressive Protection infection still strong

System-progressive-virus

System Progressive Protection is not a new parasite – we wrote about it on September this year. However, its infections reached the peak only recently and it is the most distributed rogue antivirus at the moment. Although in some parts of Europe it competes with ransomware, System Progressive virus is distributed world-wide and is one […]