All Posts by Paul

List of Fake Antivirus Sites for Aug 6, 2009

Paul

Just got the Updated list,  It looks like some of the ones [intlink id=”4149″ type=”post”]I talked about on my previous post[/intlink] are also on this list but the ones that aren’t I will list here:

GenericRogueAntimalware

  • basicsystemscannerv8.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • purchuasepremiumprotection.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • purchuase-premium-soft.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • buy-premium-software.com  ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • govirusscanner.com  ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • buybestsoftwareonline.com  ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • smart-online-shop.com (Reseller to [intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • gofastscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • pcantispyware-20-10.com (Almost like [intlink id=”3977″ type=”post”]HomeAntivirus 2010)[/intlink])

  • pcantispyware-2010.com (Almost like [intlink id=”3977″ type=”post”]HomeAntivirus 2010)[/intlink])

As you can see there are a quite a few on this list for Personal Antivirus scarware.   These sites like to promote to you that they have found a virus by providing pop ups or messages on your computer.   They try to get you to download or Pay this product to protect your system.   In fact it is the one thing that is causing the problem.   There may be even more Malware on you system.   I recommend you do a full system Scan and Get all those Trojans, Viruses, And worms off your system.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Securing Your WordPress blog

Paul

In the last few blog post we talked about:

This post we discuss securing your WordPress blog and creating even more of a WordPress Firewall, as I call it.   You don’t know what bot or person might be lurking around your blog to get access to installing malware or worse off taking control over your blog for there own nefarious reasons.

Photo by: Terry Mun Photo by: Terry Mun

Now since you have installed WordPress and have it working now what do you want to do blog?  Blogging will be coming later in this series but for right now we want to take a good look at removing your Default Admin user.   Like the default routers admin profiles and password this makes it even easier for a hacker to try to find out the password.  Although You should never use a simple password.   You should always use numbers and letters in random order to make a really strong password and have it at least 8 characters long.  The longer it is the better off you at preventing unauthorized access to your blog and your blog posts.

Prevent access to Wp-admin and or image directory from bots.  This can be good you can also use this in combination to disallowing every IP but yours to help prevent people from gaining access to your pictures or you admin login page.   This is all preference and how secure you want to control access to admin page.   I feel if you have good security in place you should be in good shape.   If you don’t have a permenant or static IP and have a rotating IP you can however increase your security by password protect the wp-admin directory from unauthorized people.

I’ve also been using a few plugins to help protect your admin page from hackers, they can help prevent unauthorized access by limiting how many times you can attempt an a login:

  • Login Logger – keeps track of recent logins to WordPress for all users, as well as all failed logins. It records username, time, IP address and how long since each login attempt as well as time since last active for each user.

  • Limit Login Attempts – Limit the number of login attempts possible both through normal login as well as (WordPress 2.7+) using auth cookies.  By default WordPress allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be brute-force cracked with relative ease.

I have talked about [intlink id=”3698″ type=”post”]Wordpress security plugins and other things[/intlink] you can do to better protect our WordPress blog.   I would suggest looking at that and make sure you harden your security for WordPress so that you don’t have a problem with hackers.   Although these are just a few you should go check out the WordPress article from the creators of WordPress and also consider using some of those recommendations to keep your WordPress blog secure.

On the next blog post we will talk about Blog themes and how they help your audience.   We are almost done but do stay tuned.

No scareware Thanks from no-spyware-thanks.com

Paul

personalantivirus3

[ad]This just poped up on my radar, and I wanted to let people know about this [intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink] site.  I’ve been talking to another blog about what they have been getting lately it is called “iwishvirusclean.com” Thanks to this blogs post we been talking the last few hours and a comment was left about no-spyware-thanks.com and this site is of course an personal Antivirus scareware.   They try to scare you into buying there product or downloading a trojan that keeps warning you have a virus so they can still make money.  Which on the same ip this domain is also there “securedvirusscan.com”, I will assume this is also [intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink] site.  Also “iwantsweepviruses.com” Is another [intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink] site, which is also on that domain.  This was just told to me but “thankyouforscan.com” is another domain they are using for the [intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink] site.  You should never download or buy anything from these types of sites.   If you think you have a virus or Trojan, I would recommend doing a complete scan and making sure you have no more scareware on your computer.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Setting up WordPress

Paul

In the last few blog post we talked about:

Now we can talk about setting up WordPress, although this probably won’t be a long topic.  I feel it is necessary to help people feel less stressed in setting up a blog.   Most of my family don’t have a clue how I set mine up, and I am thinking they are uncomfortable because this is foreign to them.   I intend to try to easy everyone’s stress levels by explaining it in a more relax atmosphere.

As most people will know I started my blog 3 Years ago, and haven’t stop blogging sense.   Some would call this what a blogger does.   I call this an experience, because what I’ve learned over the last three years is priceless.  As you can tell when I started my blog I was clueless about how to blog.   Over the 3 years I’ve learned a lot and a glad to be part of the blogging community.   It’s been a long process but a really fruitful one.

Photo by: Terry Mun Photo by: Terry Mun

Now I am wanting to pass the experience onto new users on.  Most people will expect a website management to be hard.   Creating a website even harder, here I will talk about installing it.

One way to install WordPress is through some Hosting providers website tools they offer to install WordPress for free.   They basically use a script to install WordPress.   Usually they are a version behind the last release of WordPress, now since WordPress has also integrated upgrades you can easily upgrade after your install the older version.

The other way is just as simple, You can install it using an FTP upload.  Now I am so glad WordPress has a tutorial for this.  I had to use it at least once in the three years to install WordPress.  You would however have to download the WordPress zip file and make a sub directory, calling it WORDPRESS and extract into that then upload that whole directory to either your main or sub directory.   If you’d think it is hard, I would argue it isn’t.    This way only took me 10 minutes at best to upload and install.

Anyway you choice is a quite a simple setup, If you follow the instructions and tutorial step by step.   There should be no problems.   Although no matter how good you are there have been problems in the past with installation and that might need to be dealt  by the hosting provider technical support.   Each hosting provider should have a way to contact them to resolve and you should not hesitate to call them for technical support they are there to make you succeed.

In the next blog post we will talk about Securing You WordPress Blog and why.

List of Rogue Antivirus sites August 4, 2009

Paul

personalantivirus3

Looks like they have more Fake Antivirus sites up and running so I thought I would pass them along:

  • basicsystemscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • checkmypcantivirus.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • onlineproantivirusscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • online-pro-antivirus-scan.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • secure-pro.cn (Fake Windows Security Messages)

  • bodyscanguide.com (Fake Windows Security Messages)

  • bestsecuredpcs.com (Fake Windows Security Messages)

  • somesecuritypc.com (Rogue Exploit Antivirus Scanner)

  • scanwebtech.com (Rogue Exploit Antivirus Scanner)

  • bisquva.cn (Rogue Antivirus)

  • pc-anti-spyware-20-10.com (Like [intlink id=”3977″ type=”post”]Home Antivirus 2010[/intlink])

  • pcantispyware2010.com(Like [intlink id=”3977″ type=”post”]Home Antivirus 2010[/intlink])

  • spywaredisplay.com (Rogue AntiSpyware)

  • spywaremonitoring.com (Rogue AntiSpyware)

  • spywareremovalhelp.net (Rogue AntiSpyware)

  • antispywarefile.com (Rogue AntiSpyware)

These sites try to get you to install software or get you to buy pay for some fake software.   If you keep getting popups from these guys then you have some kind Trojan acting like it is a real Antivirus or Antispyware.  I recommend getting rid of those annoying little warnings and redirects.   Some of these are actually Web Browser redirects, others try to scare you into downloading or buying their product.   You should never download or buy anything from a site you don’t know anything about.

Some common tricks are Popups, warnings, Toolbar shield, and also a fake web page scanning screen.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]