Wednesday, December 12, 2018

joomla Forgot your username? page indexed

To get to a customer’s site I Googled it and discovered the User name and Password reset pages are being indexed by Google. They show up as some of the top results.

I quickly came across the following article that lead me to the work on the Robots.txt file and disallowing these pages.

https://forum.joomla.org/viewtopic.php?t=903096

For my site I had to add the following:

Disallow: /component/users/

Then go to Google Webmaster Tools and and Fetch the site. This will inform Google you want your site crawled again.

I hope this helps someone else out there…

Follow up…

I stumbled on this article which further refines the access.

https://moz.com/community/q/robots-txt-how-to-exclude-sub-directories-correctly

His technique:

allow: /directory/$
disallow: /directory/*

Which allows this URL:

http://www.mysite.com/directory/

But doesn’t allow the following one:

http://www.mysite.com/directory/sub-directory2/…

IP blocked by M&T Bank / mtb.com – how to unblock

We recently installed a Barracuda firewall and accidentally left “Proxy” on.  This caused our IP to used as a spam relay which got our IP put on a blacklist.  A trace route from our server to mtb.com showed the packets getting to MTB.com and stopping. We assumed it was MTB.com blocking the ip.

MTB said they get their blacklist for outside sources. They directed me to the following site were I was able to submit a request to get the IP off of the blacklist.

http://www.brightcloud.com/tools/url-ip-lookup.php

I could see that the IP was showing as suspect. I clicked on the “IP Reputation” and submitted the IP for review. I knew the proxy issue was resolved the IP should be cleared. This didn’t resolve the issue.

I discovered Barracuda has their own IP blocked. This showed our IP as not having a “poor” reputation.

http://www.barracudacentral.org/lookups/lookup-reputation

Do more searching brought me to this page.

https://www.whatismyip.com/blacklist-check/?iref=ip-lookup

There were two sites that had our IP listed. When I tried to go to mailhosts.org I get an error saying that domain is available. Blacklisted with no way to get it removed.

Looking into alternative fixes.

I hope this helps someone else out there…

 

 

Akeeba For WordPress – Kickstart AJAX Loading Error 500

Moving a customers WordPress site to a new hosting plan I ran into this error.

This turned out to be an semi-easy fix. The website size was too large for the hosting. Well not really; however, Akeeba requires 2.5 times the size of the site to fully extract the site.

I looked at the website files to see where I could trim some fat. The site was 400 megs.  There was a folder called “wp-snapshots” which held a backup. I removed all the extraneous files including my first Akeeba backup. Made a new backup which was only 40 megs. This time when I ran Kickstart the site installed without an issue.

I hope this helps someone else out there…

 

Solved – Cumulative Update for Windows 10 KB3213986 Fail

Had a customer who’s computer was taking hours to start. The update would install automatically. When the user would shut down or restart the update would install which took an hour and requires a reboot. The machine when rebooting would take a long time to install the update. It would get to 100% run into an error and would have to uninstall the update.

Windows 10 doesn’t allow a user to not install updates. Suggestions said to run SFC /now in the command prompt as the administrator. For the scan came back with no errors.

I tried the Windows updater trouble-shooter tool, but this didn’t fix the issue. Here is the link I used.

https://support.microsoft.com/en-us/instantanswers/512a5183-ffab-40c5-8a68-021e32467565/windows-update-troubleshooter

This following YouTube video makes the suggestion to download the update and manually install it. A number of comments said this worked for them.

They link to the following page:

https://www.catalog.update.microsoft.com/Search.aspx?q=KB3213986

I installed the first update. Restarted machine.

There were two updates for this Cumulative Update. The main update and the Security update.

I installed the main update. It took a couple of hours. I tried to run the second update; however, it said I had the wrong version. The update packages came from the same page, so I assumed I just needed to restart.

The machine took 6 hours to restart. While restarting it said it was installing the updates do not restart. When it got to the end it said there was an error and un-installing the update.

The winner was to go into “Programs and Features”.  In the “Windows” updates area find the troubling KB and remove it.  Run the update manually and this should resolve that issue.

I hope this helps someone else out there….

 

 

The site ahead contains malware Security error – how to fix

Clients site got the following message when users got to the site.

My journey started with the host which was wrong. It was all google this time. Here are the steps to get google to review your site and take it off the blacklist.

  1. Go to https://support.google.com/chrome/answer/99020?hl=en
  2. Go down to “My site…” and click on “request a review”
  3. On this page is a video to walk you through process.
  4. Next I logged into Google Webmastertools. Clicked on Messages. Clicked on the property with the malware message. And hit “Request a review”.

  5. Lastly click “I have fixed these issues.”
  6. A window will open for you to tell Google what you did to clean the site.

  7. You will get a message “Your request was submitted successfully. Please check back later.”

I hope this helps someone else out there…

 

Google Chrome redirect – http://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

Had a customer call in because he was on the LA Times website and clicked on a link that caused his browser to pop-up a Microsoft warning. The warning said he was infected and  needed to pay. He hit control-alt-delete and closed chrome. He restarted his machine and called us.

I opened Chrome and looked at the start page. It was set to “http://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND”.  When I put that URL into another browser it took me to just Google. I figured the rest was unecessary and reset his home page to just be “http://www.google.com”.

I downloaded a rootkit scan tool from Bleeping Computer and ran a quick scan. We also use Vipre Anit-virus. I updated the difinitions and ran a full deep scan with Vipre. Nothing else was wrong.

I hope this helps someone else out there…

 

Adding Emma to SPF Record

We got asked to help with a SPF record to be added because the client is starting to use My Emma for email marketing.

The client is using Office 365 for email and a Godaddy reseller account for their domain. I logged into their reseller account. Went to Domains and clicked on “DNS Zone File”.  Clicked on the pen and paper icon to edit this record.

Here was the original setting:

v=spf1 include:spf.protection.outlook.com -all

I changed it to: ;

v=spf1 a mx include:e2ma.net include:spf.protection.outlook.com -all

I hope this helps someone else out there…

 

Explorer.exe Windows can not access the specified device, Path, of file windows 7

Had a customer with this issue.

She was in a hurry and didn’t care to fix it. We could use the Start Button and to Computer to access the drives. I found a link that others have said fixed the issue for them.

https://support.microsoft.com/en-us/help/947215/you-receive-a-the-user-profile-service-failed-the-logon-error-message

I hope this helps someone else out there…

 

Setting Up Yahoo Email In Outlook 2013

Had an issue setting up a users Yahoo account in Outlook. I followed the directions here, but it would authenticate.

https://www.technipages.com/add-yahoo-mail-outlook

What I found to work for me was the following:

  • Type of Account: POP3
  • Incoming Server:  pop.mail.yahoo.com
  • Outgoing Server:  smtp.mail.yahoo.com
  • Click on more settings and go to Advanced
  • Use 993 with SSL
  • Port 465 on the outgoing
  • Check “must use secure …”, “logon using same as ….” setting.
  • Click Okay.

The issue we had is with Yahoo. Login into the yahoo account. Click on the user name in the upper right and select account setting. On the security tab scroll down and turn on allow unsecure.

I hope this helps someone else out there…