Comments for Think Affiliate

Comment on Web Hosting and Domain Names by Samantha

Samantha — Fri, 07 Aug 2009 06:37:40 +0000

Selling products as an domain reseller is a great way to make money. For one thing, you get to earn money from the products without having to fulfill them yourself or deal with customer service issues. Nothing is better than that! The returns are usually higher than with Adsense, provided you’re able to find an offer that converts well with the people who visit your website.

Here is some caution we all need to look out for!!

The beautiful thing about a good domain name is that every domain name is unique and can be a sustainable competitive advantage even for the “little guy”.
But beware, I do put a word of caution out into the community that there are a lot of registrars that when you type in the name to see if it is taken, they immediately register it for themselves (if you don’t). This is a disgusting practice.

When I started blogging I never really thought of buying my own domain. I just wanted to write and blog all my ideas, aspirations, dreams and anything that are happening to me.
Plain and simple, isn’t it?

For A long time no but now things are moving on smoother then ever. Just passing on this Info to anyone who is interested. Thanks

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by admin

admin — Wed, 05 Aug 2009 12:57:08 +0000

I found a Trojan on my work laptop which I believe was responsible as well. You need to clean the machine(s) you have the FTP passwords saved on before changing the passwords.

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by Les

Les — Sat, 01 Aug 2009 09:08:16 +0000

Hi,

We just had 20 sites Edit with http://x9y.ru:8080/ts/in.cgi?pepsi120 within 5 mintues, and on 8 diffrent servers. We tracked it down to a infected laptop in the office and it used cute FTP. We removed the laptop and fixed all the sites and changes the password on 19 sites left one test site with the same password, plug the laptop back in and within 2 mins of opening cute ftp the site was edited with the code.

The good news was we found the problem the bad news was it spread to to other computers on the network.

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by admin

admin — Thu, 30 Jul 2009 06:19:26 +0000

Also, it is NOT a brute force attack as FTP logs show they got the password right first time. Probably a good idea to scan for trojan horses on your own machine.

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by admin

admin — Thu, 30 Jul 2009 06:13:54 +0000

I was told that it was probably the FTP which had been compromised and that all passwords should be changed. This fits as the sites with different FTP passwords were not affected.

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by Gsp

Gsp — Mon, 27 Jul 2009 12:34:50 +0000

I had the same problem yesterday with some sites, The easy solution is to delete the iframe lines, but the pages can be infected again, someone know how to close the backdoor?

thanks

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by Ayolt Talen

Ayolt Talen — Mon, 13 Jul 2009 11:59:12 +0000

Dear Vincent, we’re having the same at this moment. Since friday, 4 of our servers have been attacked. The content of the page that is called in the iframe appears to contain a virus, so be carefull!

In our case, I could just search in windows for all files named ‘index.’ and ‘default.’ that had been changed in the past few days. In there, I found that they append the iframe-code right after the BODY-tag or at the end of the file if there is no bodytag.

I have been trying to find what is the vulnerability that let’s them in. Do you have any idea? We had the problem on a windows2000 machine with IIS and ColdFusion 5.0, MS SQL server 7. But we also had it on a newer machine with windows2003×64 with IIS and Coldfusion 7MX and SQL server 2005.

Did you find anything so far? Please let me know what type of machine you’re using.

Best regards and thanks,
Ayolt

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by admin

admin — Fri, 10 Jul 2009 09:42:32 +0000

I believe it is all ‘index’ and ‘default’ pages affected. Look for ALL of these pages on your site. So if any files are called index and default re-upload them.

Comment on http://a3l.ru:8080/ts/in.cgi?pepsi85 by Vincent Huybrechts

Vincent Huybrechts — Thu, 02 Jul 2009 22:13:55 +0000

Hi,

Today I noticed the same code is appearing at the bottom of my wordpress powered site too. I re-uploaded all the wordpress files, including my theme. But the iframe is still there. And I really can’t find anything wrong in a file.

My site: http://www.startgrid.be (there’s a space between the bottom of the content and the bottom of the browserwindow wich isn’t supposed to be there.)

You say you deleted the affected files, can you tell me which files that were in your case ?

Thanks,
Vincent

Comment on This Site May Harm Your Computer by Mkcoy

Mkcoy — Thu, 21 May 2009 16:38:30 +0000

Well they have said that they will “put more robust file checks in place to prevent it from happening again”. However a lot of people would have lost out on profits because of this. Even if it was only 40 minutes. And Google are hardly likely to recompensate them. This is a blatent human error of course and these things do happen. But that shouldn’t be an excuse for it. God forbid this ever happen again!