Removing Antivirus Live in 3 simple steps

By Giedrius on December 30, 2009

Antivirus live is a rogue antispyware application on the same platform like cyber security and system security. It infects system by drive-by-downloads, shareware or infected websites. The difference is that Antivirus live uses a bit more complex way to protect its executables against removal and removal software.

First of all, Antivirus live enables proxy server in the common browsers. The server either goes through Trojan process on localhost or through infected websites. This allows manipulation of search results and inserting various popups into web pages. This hinders downloading of anti-spyware applications as well.

Second, Antivirus Live processes disable launching of other, non-white listed executables. Thus it is harder to get rid of antivirus live while process is active.

To get rid of Antivirus Live, you have to disable its processes. There are couple ways to do so : First, start task manager right after logging in into windows (while Trojan has not launched). Keep pressing ctrl+shift+esc . Then stop all processes that end with sysguard or other processes that should not be there. Second way is using safe mode (press F8 on boot up). If it fails, download process explorer from Microsoft (you might have to rename it to .pif ) and try using it.

Second step of Antivirus Live removal procedure is fixing your browser. For this simply disable proxy server and empty hosts file on your PC. Overall, it is good idea to disable add-ons of unknown companies as well.

The last step is removal of infected files. Although you can search for them on hard disk (files ending with sysguard.exe), the better approach is to download and install good Anti-spyware application. Personally, I recommend Spyware Doctor for Antivirus Live removal and keeping your computer protected from similar parasites in the future. Other good choices include superantispyware and malwarebytes.

antivirus live rogue anti-spyware

Posted in | Tagged | Leave a response

An elegant solution to clean up html comments from wordpress themes

By Giedrius on December 30, 2009

Typically, all popular wordpress themes come with html comments to mark endings of div block. This is required for theme developers as it is much easier to see where particular block ends.

However, I do not like leaving code like that in production site. Although some claim that HTML comments have no effect in SEO, it might have effect in keyword discovery process. Additionally, they might have effect for various security plugins, that filter and block content containing bad words.  Third, I think it is bad to leave debug information in production sites.

The biggest problem of these is that WordPress theme frameworks like Hybrid uses these as well. So you will have to clean up frameworks source each time you upgrade your framework. That is not the best approach.

However, You can implement this by creating couple filters in your childs (or custom) theme  functions.php file:

function custom_callback($buffer) {

$buffer=preg_replace('/<!--(.*)-->/Ui',' ',$buffer);

return $buffer;

}

function custom_buffer_start() { ob_start("custom_callback"); }

function custom_buffer_end() { ob_end_flush(); }

if (is_user_logged_in() ) {

} else {

add_action('wp_head', 'custom_buffer_start');

add_action('wp_footer', 'custom_buffer_end');

}

This will clean the code from comments when user is not logged in (for search engines and visitors).

Posted in | Leave a response

Why there is THAT site in search results or disambiguation of search query

By Giedrius on December 22, 2009

Sometimes friends and clients complain about competing sites that should not be there:

  • No obvious optimization
  • Content is crappy, mentions term once and in very different context
  • Few or no links
  • Design is old and ugly

However, such site is in the first page and sometimes quite high in results. So, what are the reasons for this?

Personally, I have seen a blog that ranked really well under one porn term with single mention in blog post. It had nothing to do with porn industry though.

Sure, we do not know Google algorithm, but my guess is disambiguation of search results plays major role in niche markets. Quite often the key phrase is not enough to determine searcher’s intent and search engine has to provide alternate meanings for the term. Sure, in many cases the Nr1 is site that performs best in terms of SEO, but there is room for different sites as well.

Let’s discuss an example. A person searches for “online poker” – a quite competitive term. In the first page we will see poker rooms, poker information portal, poker forum, some news sites and images. It is not because forum sites and poker rooms are at the same level in terms of SEO. We get these results because Google cannot determine which result is most relevant for us:

  • We might want to play online poker in top rooms (highest possibility for the term).
  • We might want to read reviews of these rooms
  • We might want to discuss about online poker
  • We might want to read some related news, etc.
  • We might want some local results as well.

Sure, we will not see poor sites under this query in top places. Online Poker is too competitive. However, some of the sites might appear out of nowhere even under this term.

So, what can we conclude from this?

  1. Copying top sites is not the fastest way to front page. Unique approach is.
  2. The longer the query the more SEO work has an impact.
  3. Behavioral analysis and local data will have an impact on what results you get as well. They matter. Guess what sites target users need, and not what they use now.

Thats all today :)

Posted in | Leave a response

Do you really need that powerful cms for simple projects?

By Giedrius on December 9, 2009

Last month I took over support of one project that inspired this post. It is a website with couple static pages, news and galleries that was created with Joomla. The problem was that site owners could not support it. They are not computer savvy and the internal structure of admin panel is way too complex for them to understand.

Funny enough, I would have gone to completely opposite direction with that site design. Based on site requirements, I would install WordPress and code additional functionality. WordPress handles many things better than Joomla:

  • Image upload and resize to sane sizes
  • Article/news organization
  • Simpler admin interface

And a lot of clients do not need anything more – they do not want to resize media prior uploading, or searching for missing plugins to do that resize on upload time. Also, content and organization is tragic in Joomla, and it is really difficult to comprehend for person that does not work with such systems daily.

Now Joomla has its own uses and I would not create complex sites on wordpress. However, how often developers think about customer needs instead of their development speed and “Power” of the application? Many of us want to show off with powerful options, lots of customizability as we cannot brag about nice code inside to the customer. Often it is not what customer needs.

Thus it is important to write down requirements of project before putting everything on most powerful CMS you know. Think what user wants to see and make it easy for user to navigate through admin panel to do the tasks he needs.

Posted in | Tagged , | Leave a response

Hacking scissors wordpress plugin: resize based on image ratio

By Giedrius on November 11, 2009

Recently, I had simple but interesting problem on wordpress where I could not find ready automatic solution: thumbnail generation based on image ratio. I use wordpress as CMS for image-heavy site.

For example, I want that 3 sized images:

  1. For landscape pictures I need 202×133 thumbnails
  2. For square (or alike) images I need 156×142 thumbnails
  3. For portrait images I need 120×162 thumbnails

The exact size of thumbnails matters, as I want to put these images in nice picture frames, with no spacing around. So obviously, I need a cropper that should work automatically.

WordPress itself does not provide that function. Thus I started looking for plugin as basis for such cropper. I have chosen scissors – a very nice wordpress plugin I can recommend for others. It allows user to control resizing and cropping images on upload, also it provides additional options for resizing/cropping images automatically.

However, how to make this plugin crop images depending on ratio automatically? Well, we need to hack into its source.

All modifications done are in scissors.php, scissors_resize_auto($metadata) function. We work with medium image size, as scissors does not work with thumbnails itself (we could implement this as well).

Step 1. Configuration.

We need to configure scissors to use adaptive image resize for medium sized images, or it will not pass through the function. Obviously, we can’t use inputs to define image size for all 3 cases without more serious coding, so we stop configuring there and hack into source.

Step 2. Determining image ratio.

Image ratio can be calculated at this: $ratio = $srcW/$srcH; , where $srcW is width and $srcH is height of original image. If $ratio is bigger than 1, image is landscape, in other case it is portrait. For this case we assume that ratio between 1 and 1.3 means square image, though we could use other steps.

if ($size=='medium') {
if ($ratio>1.3) {
$maxW=202;
$maxH=133;
} else if ($ratio>=1){
$maxW=156;
$maxH=142;
} else {
$maxW=120;
$maxH=162;
}
$dstH=$maxH;
$dstW=$maxW;
…..

So, we now have the image size to use and the image would be resized to exact size required. However, the image would be screwed when original image ratio would not match resized image ratio. We need to crop image as well as resize it.

Step 3. Croping the image to proper ratio.

Luckily, imagecopyresampled that is used to resize image can crop it during same operation as well. For this, we need to calculate area we need to crop in original image. First, let us initialize some variables:


$startx=0;
$starty=0;
$endy=$srcH;
$endx=$srcW;

Then,


if ($dstW/$dstH<$ratio) {
$endx=round($srcH*$dstW/$dstH);
$startx=round(($srcW-$endx)/2);
} else {
$endy=round($srcW*$dstH/$dstW);
$starty=round(($srcH-$endy)/2);
}

The only thing left is changing imagecopyresampled request to


imagecopyresampled($dst, $src, 0, 0, $startx, $starty, $dstW, $dstH, $endx, $endy)

Which crops required area from center of original image and resizes it.

That’s it. The end product is still in development and will be launched this week.

Posted in | Tagged | Leave a response

11 tips on sending emails from web applications

By Giedrius on November 2, 2009

Email marketing is still useful for list builders and keeping in touch with your consumers. However, quite often communication is lost in the email Spam box and not read by recipient. How to solve this problem? Here are some tips.
  1. Your server and domain
    1. First thing I would check is the spammy IP list. Is your IP address blacklisted? It happens, especially on shared hosting. Good place to start searching is http://www.mxtoolbox.com/blacklists.aspx . I would use a dedicated IP if I plan to do mass mailing.
    2. Do your IP address resolves back and how? If it has IP address in reverse domain address, they think it is a DSL – assigned IP and not a hosting one, so it is assumed that this is SPAM. If IP resolves back to your domain, it is a good sign.
    3. SPF record is highly advisable. Not all incoming mail servers use SPF record; however it never hurts to have one.
  2. Your email message headers. Forging headers is bad idea. Your headers should be informative and correct, including message ID. It is important how you write your email address there as well, you should always use real name with email address where possible. Same is applicable for recipient email address as well. Prove that you know them.
  3. Avoid spam words or keep their density low. The message should have enough text; however it should not be too big. Also, avoid excessive capitalization and spacing.
  4. You should include information why they are getting this message, also your contact information, as well unsubscribe information (if applicable). You do not have to write that your message is not spam – only spammers do that.
  5. You should use well-formed html if you have to use it. No hidden text, tracking images or similar – they are usually blocked by anti-spam programs. Also you should include text version of email.
  6. Avoid using spam – mailers. The anti-spam programs know about them and how to recognize most of them. This is quite sure way to be flagged as spam.
  7. Monitor your returning email box. See what messages got undelivered and bounced back. See if it is your problem or the recipient problem.
  8. Upon registration, ask your visitors to add your email to their address book and use same email for communication with them. Address book is the best way to pass spam filters.
  9. Some mail servers do not like too many emails from single sender at any point. Try to space out the sending of your newsletters.
  10. Avoid sending too many messages to people that can’t read them – full message boxes, blocked, etc.
  11. Check your web application if it can’t be used to send spam for real. This might be a case for “send to a friend” forms or similar which allow information input. This is quite serious security issue as you might get blacklisted.

Overall, the most important factor is monitoring back all information you get back from emails you send, especially the “negative” one : bounced emails, sending errors and similar. There are lots of information in bounced messages that you should read and evaluate.

Posted in , | Leave a response

How to get rid of Security Tool

By Giedrius on October 12, 2009

Security Tool is a rogue antivirus scam, using generic name for disguise. Together with Cyber Security, they are hitting computers hard and forcing users into buying their “full” versions to remove non-existing virus infections. Typically, Security tool states that one’s PC is infected with Spyware.IEMonster or similar parasites, however, the real infections are very different.

The main problem with Security tool and alike is that they prohibit most of downloads and render computer unusable. However, there is a way to remove it.

Step 1.

Check if you can access your Task Manager and Regedit. Task manager can be accessed by pressing ctrl+alt+del and choosing it from menu. regedit is accessed by simply running it.

If you can not access task manager, but you can access regedit, search for TaskMgr entry in registry (using regedit) and delete it. This should reenable task manager.

Alternatively, you can download process explorer (you might need to rename it to iexplorer.exe or iexplorer.bat for launching) . Also, you might need to download it to another PC and bring it using USB drive

Step 2.

If you can launch process explorer or task manager, do it. If not, go to Step 3.

Now you need to kill the processes blocking downloads. Typically, it is run under your username, and not under system user. Search for processes named with random numbers or unknown applications. And stop them. Note down the process names ( you will need these in step 4).

Step 3.

Now you need to check if there are additional blocks to visit other websites. This includes : disabling all proxy servers on your internet explorer or firefox browser, checking your hosts files ( it should be nearly empty, no known sites except localhost).

Step 4.

You have a choice : Search for Security Tool files in Security tool removal instructions or download anti-spyware like spyware doctor, and execute scan and removal.

If you choose manual removal, delete the files you have stopped in step 2 ( with random numbers in name). Also, modify registry and delete all keys mentioning these names.

Step 5.

Reboot and check if everything is ok. If not, repeat steps 2-4 And scan with antispyware you havent scanned. Superantispyware would be my choice nr2, but malwarebytes anti-malware will work too.

Thats it.

Posted in | Tagged | 4 Responses

Malwarebytes best free protection for your PC? Yeah, right

By Giedrius on September 10, 2009

I have a very mixed feelings about one issue in anti-spyware community. That is how products are marketed as free. During the years as I work in the industry, there were a large amount of products marketed as free despite the fact that their important features are paid ones. Typically, this was the remover itself. However, some tools has changed the scene.

One of these tools is Malwarebytes anti-malware. It provides free detection and removal for parasites in database, and its paid feature is real-time protection module. So, what is the problem with it?

The problem is how this tool is positioned for end user. You are told that Malware bytes Antimalware provides the best free protection, however it is not so. Protection it is not same as removal. Protection from computer parasites depend on capabilities of real-time protection module. But few promoting this tool mentions this. Some of the experts can’t even see the difference in these statements.

However, Malwarebytes anti-malware is a free good program for SOLVING infections, and in most cases this is one of the first tools I install on infected PCs. It has quite good detection ratio, and quite often was enough to solve the problem. Then again, there are quite a few cases when I had to install spyware doctor or other program to finish off remains.

That brings me to another issue I do not like about Malwarebytes anti-malware: its naming conventions. Most of trojan parasites are hidden under simple name of Trojan.downloader so users can not find more information on what infected their PC at other anti-virus and anti-spyware vendors. Some might argue that this information is not important. I disagree, as other vendors might provide better, more in-depth information about particular parasite.

Thus I would stick to other anti-spywares like  super anti-spyware or Spyware doctor for reliable protection, and keep malwarebytes as a just in case tool only.

Posted in | 8 Responses

Stop cursing PHP for your faults

By Giedrius on September 3, 2009

I have read a tweet about PHP programming today that made me furious.

“Handling complex logic in PHP is like doing the LSATs after shock therapy”
What is wrong with this statement? It moves responsibility from coder to the coding language and that is completely wrong in this case.
Firstly, PHP has syntax similar to C, which is used to code programs much more complex than most of websites. Almost all control statements are similar or same.  Although there are differences, I doubt anyone would argue that there is a significant lack of logic control statements in PHP than in C. Although PHP lacks specific PC programming libraries, it has very little to do with implementing logic of application.
So, what might cause such statements?
The top reason for problems handling logic is bad quality of the code (software quality measures how well software is designed (quality of design), and how well the software conforms to that design (quality of conformance), although there are several different definitions). PHP, similarly to C, is a very flexible language. And you need to and think work to produce good, quality code.
Thus, what is code quality characteristics related to implementing logic in PHP?
1. Separation of concerns. You should not handle logic, input, output, database, exceptions in single big file. Implement these as functions, or use libraries and frameworks. There is no excuse to not use a PHP framework nowadays, except when modifying old application source. And yes, I made such mistakes myself in the past.
2. Avoid logic shortcuts, like die(), exit() and break (in cycles, not in switch) statements if you can. They make code much harder to comprehend in the long run. Perfect function or method has a single return statement as well.
3. Use right model of computation to process information gathered. Logic will look nasty in all the languages as long as you have no foundation how to handle it. And the worst is, these programming models are already here for decades, like FSMs. Simply, they are used in software programming, but not so in web programming.
4. Comments, documentation, sane names of variables and no hacking. One of the reasons for bad code is “quick fixes”, when quick, undocumented fixes are applied to program code that no one understands later on. Even worse, they are applied to the system/framework core without any documenting sometimes. That might leave you stuck with un-updated version of some framework for long time.
5. It is better to comply with framework programming model than implement couple different models in single system. If you are using hook and plugin based framework as wordpress, stick to it, and know its features, internal logic and limitations.
If you will know these 5 things, all you will have to curse is your code or framework/cms you are using. But not the PHP.

“Handling complex logic in PHP is like doing the LSATs after shock therapy”

What is wrong with this statement? It moves responsibility from coder to the coding language and that is completely wrong in this case.

Firstly, PHP has syntax similar to C, which is used to code programs much more complex than most of websites. Almost all control statements are similar or same.  Although there are differences, I doubt anyone would argue that there is a significant lack of logic control statements in PHP than in C. Although PHP lacks specific PC programming libraries, it has very little to do with implementing logic of application.

So, what might cause such statements?

The top reason for problems handling logic is bad quality of the code (software quality measures how well software is designed (quality of design), and how well the software conforms to that design (quality of conformance)). PHP, similarly to C, is a very flexible language. And you need to and think work to produce good, quality code.

Thus, what is code quality characteristics related to implementing logic in PHP?

  1. Separation of concerns. You should not handle logic, input, output, database, exceptions in single big file. Implement these as functions, or use libraries and frameworks. There is no excuse to not use a PHP framework nowadays, except when modifying old application source. And yes, I made such mistakes myself in the past.
  2. Avoid logic shortcuts, like die(), exit() and break (in cycles, not in switch) statements if you can. They make code much harder to comprehend in the long run. Perfect function or method has a single return statement as well.
  3. Use right model of computation to process information gathered. Logic will look nasty in all the languages as long as you have no foundation how to handle it. And the worst is, these programming models are already here for decades, like FSMs. Simply, they are used in software programming, but not so in web programming.
  4. Comments, documentation, sane names of variables and no hacking. One of the reasons for bad code is “quick fixes”, when quick, undocumented fixes are applied to program code that no one understands later on. Even worse, they are applied to the system/framework core without any documenting sometimes. That might leave you stuck with un-updated version of some framework for long time.
  5. It is better to comply with framework programming model than implement couple different models in single system. If you are using hook and plugin based framework as wordpress, stick to it, and know its features, internal logic and limitations.

If you will know these 5 things, all you will have to curse is your code or framework/cms you are using. But not the PHP.

Posted in | Tagged , | 2 Responses

Programmer mindset: 5 traits of programmers that have a chance to become good ones

By Giedrius on September 1, 2009

Sometime we get a new inexperienced guy in a company as a programmer. Typically, we test them beforehand; however they are rarely perfect when started. Sometimes they are very new to programming or have bad habits from previous programming jobs. Thus it is my goal to help them to improve. And sometimes it gets really hard to integrate the guy into company. However there are some criteria that allow recognizing people with potential on becoming programmers and ones that are better left behind.
1. Persistence and knowing how to learn. Even more, urge to try and learn new things. I love programmers that know how to look for information on a problem.  Everyone can do a task they learned, but the best programmers know where to look for an answer and never give up without a good reason. The best way is to give a task they have no experience in and look how they are trying to solve it. If a person gives up prior googling for an answer, he will not be a programmer.
2. Ability to integrate various things he learned in different environment. Few programmers learned MVC or frameworks at universities here. However, they have learned FSMs or some other paradigms that can be successfully applied in web development as well. Few try it though :) (Note: knowing more than one programming paradigm is a bonus).
3. Ability to create a concise logical algorithm for solving a problem. You can be entry level web programmer without that, but that’s it.  Ability to draw these using some popular schematics like UML state diagram is a bonus.
4. Ability to debug code of other person. A programmer is unable to learn if he can’t dive into code of someone else and understand how it works. Sooner or later you will have to implement a similar algorithm where you will not be able to use that code as it is. This is closely related to ability to create algorithm.
5. Ability to write code other people understands. I loved one programmer that wrote nice functions for everything while coding a trivial task in PHP. Also, he commented a lot. Sadly, his interest was not web programming.

Sometime we get a new inexperienced guy in a company as a programmer. Typically, we test them beforehand; however they are rarely perfect when started. Sometimes they are very new to programming or have bad habits from previous programming jobs. Thus it is my goal to help them to improve. And sometimes it gets really hard to integrate the guy into company. However there are some criteria that allow recognizing people with potential on becoming programmers and ones that are better left behind.

  1. Persistence and knowing how to learn. Even more, urge to try and learn new things. I love programmers that know how to look for information on a problem.  Everyone can do a task they learned, but the best programmers know where to look for an answer and never give up without a good reason. The best way is to give a task they have no experience in and look how they are trying to solve it. If a person gives up prior googling for an answer, he will not be a programmer.
  2. Ability to integrate various things he learned in different environment. Few programmers learned MVC or frameworks at universities here. However, they have learned FSMs or some other paradigms that can be successfully applied in web development as well. Few try it though :) (Note: knowing more than one programming paradigm is a bonus).
  3. Ability to create a concise logical algorithm for solving a problem. You can be entry level web programmer without that, but that’s it.  Ability to draw these using some popular schematics like UML state diagram is a bonus.
  4. Ability to debug code of other person. A programmer is unable to learn if he can’t dive into code of someone else and understand how it works. Sooner or later you will have to implement a similar algorithm where you will not be able to use that code as it is. This is closely related to ability to create algorithm.
  5. Ability to write code other people understands. I loved one programmer that wrote nice functions for everything while coding a trivial task in PHP. Also, he commented a lot. Sadly, his interest was not web programming.
Your thoughts ?

Posted in | Tagged | 2 Responses

« PreviousNext »