Remove wer5.exe With Adlice Rouge Killer

We have a customer that is having this “wer5.exe” pop-up. I never saw the pop-up; however, I was able to get the program removed using Adlice’s Rougekiller.

I tried Vipre antivirus and it didn’t find anything on the machine.

I used Malwarebytes which found 5 item.

Rougekiller found 12 items and “wer5.exe” was one of them.

I hope this helps someone else out there…

 

 

Google Anayltics Spam – Secret.ɢoogle.com You are invited! Enter only with this ticket URL. Copy it. Vote for Trump!

At first I thought I was going to get a bunch of photography business when I saw I got 149 visits in the past month to my photography website. I went to analyze the traffic and saw the following in the language section of my dashboard.

language_vote_trump

I looked at GEO location, and saw this.

language_vote_trump_map

Here are the channels for the month.

language_vote_trump_organic

Interesting part was there were 0 queries for the month.

Wierd, but I think diffinely a Russian attack on my site leading to bad usage of my website.

I hope this entertained someone else out there…

Comment if you had the same thing happen to your site.

 

 

 

Joomla – The MySQL server is running with the –read-only option so it cannot execute this statement SQL=DELETE FROM `#__session` WHERE `time` < '1479401841'

After deleting the website in fear it was attacked I discovered this article about simply deleting and adding back the sessions database.

How do I fix a corrupt Joomla jos_session table

This may have been my fix. If I have time I will try to restore what I have, see if I get the same error, and see if this fix helps.

I hope this helps someone else out there…

 

 

Google Getting Tough On Malware Or Web Masters

I came across this article about Google getting tough on Malware. Starts out talking about Google putting out warning messages to user that the site has malware. Forcing webmasters to clean it up.

Though this puts pressure on Webmasters to not have  a “set it and forget it” attitude about the website. The article goes on to say the Google isn’t out to punish 3-Party plugin developers and site owners of legitimate sites. They are really targeting the serious offenders of just bad sites pushing out Malware.

http://www.newsfactor.com/story.xhtml?story_id=0320013QVEO0

I hope this helps someone else out there…

 

Joomla Virtuemart – Warning, the Safe Path is not accessible

I am setting up a new virtumart store and got some errors I needed to work through, so I am documenting them so I don’t forget these setting again.

ERROR: “Warning, the Safe Path is not accessible (does not exist or no permission), for safety reasons it is very important to create a folder in a path not accessible by an URL, create also a folder invoices in it to store your sensitive data secure. Our suggested path is for your system home/user/name the directory/, use this link to the config”

This YouTube video helped me get this part resolved.

 

The next error was: “vmError: The path for invoices seems to miss the correct file permissions Safe Path /” and the path was my Safe Path I just fixed.

This will fix itself when you re-save the configuration, because it will add the folder called “invoices” if it didn’t exist.

I hope this helps someone else out there…

 

Joomla 3.X – Log Out And Return To Home Page

I used this set up to for logging users out of Joomla and return them to the home page.

  1. I installed Sourcer plug-in to run some PHP. Just a great plug-in to use any ways.
  2. I create a link in the main menu and set it to registered, so once the login in it shows.
  3. Create an article called “logout” and add the following code to that page.

{source}

<?php

$mainframe =JFactory::getApplication(); $mainframe->logout();

$allDone=&JFactory::getApplication();

$allDone->redirect(‘/’);

?>
{/source}

I hope this helps someone else out there…

 

JCE Mediabox – Popup Icon Set To No But Still Showing

I installed the recent beta of the JCE’s Mediabox because Ryan is working on a responsive version. It is working well; however, I was having an issue making the Popup Icon not show. I set it to not show, but it showed up anyways.

jce-mediabox-icon

I was able to get it to not show by adding the following to my CSS.

.wf-icon-zoom-link {
display:none;
}

I discovered you can disable this globally by going to  Extensions >> Plugins  >> Mediabox 2 >> Options Tab.  Set Zoom/Popup Icons to No.

I hope this helps some else out there…

 

Akeeba Backup In Joomla 3.6.2 To 3.6.4 – ERROR: The archive file is corrupt, truncated or archive parts are missing

I was struggling with this issue of upgrading a 3.6.2 site on a WAMP / localhost install. I would select to upgrade, Akeeba backup ran, the upgrade would crash with percent done as “NAN” or “not a number”.

joomla_3_6_4_akeeba_fail

The fix was the “tmp” path and manually install patch. For a localhost install the path needs to have both “\” for the local part and “/” for the server part of my machines environment.

joomla_3_6_4_path_fix_log

joomla_3_6_4_path_fix_tmp

I wasted hours on this. I should have checked another localhost install sooner.

The other part was to go into Components >> Joomla! update >> and this time do a manual “Upload & Update” process. You will need to download the 3.X to 3.6.4 upgrade and install this.

Before I could upload the package I was warned about two PHP.ini settings of post_max_size and upload_max_filesize had to be the same. I set them both to 128m.

Before I ran the update I removed Akeeba so it wouldn’t run another backup before the upgrade, but I learned when I went into Extensions and Manage that I could just select and choose “disable”.

I really hope this helps someone else out there…

 

 

How To Fix Attacked .htaccess File On Godaddy Shared Hosting

Got a call from a client about website not coming up. If you searched for the site in a search engine and clicked on any link to the site you got a page about a missing PHP file.  This site is a static HTML site.

I opened the .htaccess file and saw redirects to the PHP file that didn’t exist. I cleared out the .htaccess file and when you click on the search link the site came up fine.

I contacted Godaddy looking for help, but they don’t deal with .htaccess files. You are on your own. They do offer SiteLock to protect the site.

I used the following links advice and to change the name of the .htaccess file and the contents of the file rewrite the name back to all lower case.

https://perishablepress.com/improve-site-security-by-protecting-htaccess-files/

My final .htaccess file containted the following

<Files ~"^.*\.([Hh][Tt][Aa])">
order allow,deny 
deny from all 
satisfy all 
</Files>

In addition, i changed the password for the FTP access. Next step is to use Sucuri. I know they can protect this site.

I hope this helps me and helps someone else out there…