Welcome to Laser Pointer Forums - discuss green laser pointers, blue laser pointers, and all types of lasers

Buy Site Supporter Role (remove some ads) | LPF Donations

Links below open in new window

FrozenGate by Avery

Hightechdealz up and running.

Re: Hightechdealz Site Fixed!!!

I just found out the attack on my site was on 1000's of other sites as well. and it appears the eval base64 code has reappeared on all of the php files on my site. The website is not redirecting to the malware site as of yet. I'll be working to correct everything ASAP.

Support | Go Daddy Community

it is an attack on all of GoDaddy servers.

I'm currently shopping for another host. f godaddy.

-Kendall
 





Re: Hightechdealz Site Fixed!!!

sk8er4514 said:
I just found out the attack on my site was on 1000's of other sites as well. and it appears the eval base64 code has reappeared on all of the php files on my site. The website is not redirecting to the malware site as of yet. I'll be working to correct everything ASAP.

Support | Go Daddy Community

it is an attack on all of GoDaddy servers.

I'm currently shopping for another host. f godaddy.

-Kendall
Click to expand...

Check out Web Hosting, VPS Hosting, and Dedicated Servers by InMotion Hosting.

I'm with them, they've been great. :)

-Trevor
 
Re: Hightechdealz Site Fixed!!!

Just had the virus try to get my computer Kendall, might be back.
 
Re: Hightechdealz Site Fixed!!!

The site is back up yes, but I was loading the site for a few seconds, no banners were up, no options on the left, only the title 'banner' was visible, then I got a message saying 'There is malware on your PC..blah blah blah" I closed it then I got redirected to that fake screen where it looks like it's scanning your comp, so I closed the tab. Yeah, the site's up, but so is the virus...

FYI: The virus it wants you to get is called "Virus Remover 2011/2010" something like that, THAT IS THE VIRUS! And it's a pain in the ass to remove, you can THINK you removed it by getting rid of everything relating to the virus that you find, but it's still there. Be CAREFUL!

EDIT: When going to a product page directly New Tab>>>hightechdealz.com/[insert product here] granted it wasnt the name of the product, it came under related for hightechdealz. When not going to the home page, the site works, when I tried the home page I got the virus thing.
 
Last edited:
Re: Hightechdealz Site Fixed!!!

Strange, i just opened the page now, and got no warnings at all, just the normal page, with products and so on ..... and the links in the images and texts seems corrects too ..... (image resized at 50%, otherwise it was bigger than the forum window :p)

9ppcf5.jpg


But, i'm on Firefox and have noscript and adblock plus always turned on, Comodo firewall on paranoic settings, and Kaspersky AV ..... maybe the virus is in some script, and cause it don't start on my PC, i don't see it ?
 
Re: Hightechdealz Site Fixed!!!

HIMNL9 said:
Strange, i just opened the page now, and got no warnings at all, just the normal page, with products and so on ..... and the links in the images and texts seems corrects too ..... (image resized at 50%, otherwise it was bigger than the forum window :p)

But, i'm on Firefox and have noscript and adblock plus always turned on, Comodo firewall on paranoic settings, and Kaspersky AV ..... maybe the virus is in some script, and cause it don't start on my PC, i don't see it ?
Click to expand...

the virus is still coming up on mine...

kendallvirus-1.png


stuart :)
 
Re: Hightechdealz Site Fixed!!!

I see ..... from "losotrana.com/js.php" ..... so, probably my idea is right, the fact that my page block all the scripts, block also the virus ..... ah, well, better so :)
 
Re: Hightechdealz Site Fixed!!!

kendall has has 2 different viruses, one named 'losotrana.com/js.php' and 'holasionweb.com/oo.php'.... damn HACKERS!!

stuart :)
 
Last edited:
Re: Hightechdealz Site Fixed!!!

Web Site works fine for me. I no longer see virus warning messages.
That is not problem to register again it takes only 2 minutes.

I'm glad that Zen Cart is updated and more safer.
 
Re: Hightechdealz Site Fixed!!!

Still has a redirector in there for me. I'd say go with a different host, if you think this was the method of infection (It's this, bug/exploit in ZenCart, or compromised FTP password). Given that you were running the latest version of ZenCart I presume, it's unlikely to be this, and I'd hope that you used a secure FTP password and changed it when the site was compromised, that leaves the most likely explanation in the hands of GoDaddy.
 
Re: Hightechdealz Site Fixed!!!

Have you tried to delete cookies?
 
Re: Hightechdealz Site Fixed!!!

Cookies are irrelevant in this situation, but in any case clearing them makes no difference - the redirect line is still there.

Perhaps if you restored from a backup, some of what you restored was contaminated? I don't know ZenCart well but that's the only other option I could think of.
 
Re: Hightechdealz Site Fixed!!!

I really don't have any problems with Firefox.
But when I opened web site with IE then problems occurred.

Next time I opened with IE problem was no longer present.

htz.jpg


It looks like IE blocked it.
 
Re: Hightechdealz Site still having virus issues.

I just ordered hosting from IceStorm.com

same host LPF uses, got c0ld 3 months of free hosting too by referral :)

Will be a couple days to process the SSL certificate and get everything back up and running. Thanks everyone for your feedback.

-Kendall
 
Re: Hightechdealz Site still having virus issues.

thanks alot kendall hope site will be back up soon
 
You must log in or register to reply here.





Back
Top