Categories
Virus

What is Fast save 1.1?

I noticed one day while viewing my website in Google Chrome that a script from the following domain was being loaded and was taking a very long time:

srv1.mediads.info

I thought this was a bit strange, so I investigated further since I don’t remember referencing that domain in any of my code. I looked at the source code (Right Mouse Click -> View page source) of the webpage and couldn’t see any reference to srv1.mediads.info. So I decided to look at the Google Chrome debugger tool. In Chrome, while still viewing the same website in question, I pressed F12 and there it was. There were a few other scripts I didn’t recognize as well.

Chrome Debugger
Chrome Debugger

In fact, the following scripts were loaded dynamically upon accessing the website:

<script type="text/javascript" src="http://include-it.net/?p=119"></script>

<script type="text/javascript" src="http://srv1.mediads.info/i/?tid=23&amp;subid=2017"></script>

<script type="text/javascript" src="http://www.superfish.com/ws/sf_main.jsp?dlsource=cbsfastsave&amp;userId=4fc9a7ce0ea27582051112&amp;CTID=p2017"></script>

<script type="text/javascript" src="http://www.superfish.com/ws/js/base_single_icon.js?ver=12.0.1.6"></script>

<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/dojo/1.5.1/dojo/dojo.xd.js"></script>

<script type="text/javascript" src="http://includeit.info/include.js?id=js29"></script>

<script type="text/javascript" src="http://www.superfish.com/ws/getSupportedSitesJSON.action?ver=5.6&amp;callback=SF_isURISupported" id="sufioIoScript1" charset="utf-8"></script>

<script type="text/javascript" src="http://www.superfish.com/ws/rvwl.action?ver=3&amp;callback=SF_isRvURISupported" id="sufioIoScript2" charset="utf-8"></script>

<script type="text/javascript" src="http://www.superfish.com/ws/getCouponsSupportedSites.action?ver=15&amp;callback=SF_cpnWlCb" id="sufioIoScript3" charset="utf-8"></script>

<script type="text/javascript" src="http://includeit.info/scripts/inl_dmmtch2.min.js"></script>

<link type="text/css" rel="stylesheet" href="http://static.cpchero.biz/style.css" media="screen">

<script type="text/javascript" src="http://xml.cpchero.biz/search?query=web-backlinks.com&amp;feed=3624&amp;subid=dommatch&amp;url=http%3A%2F%2Fweb-backlinks.com%2F&amp;user_ip=caller&amp;ua=caller&amp;count=10&amp;format=json&amp;callback=RXYO_Interstitial.DoInterstitial"></script>

Upon further investigation, I found out that it was caused by a Google Chrome extenstion called Fast save 1.1. What is Fast save 1.1? I don’t know what it is, but as far as I’m concerned, it’s a malicious code that needs to be removed immediately. Any piece of code that causes the CPU on your laptop to max out, and cause your browser to be unresponsive is malicious. Any piece of code that dynamically injects scripts into every website that you visit is malicious.

Get rid of Fast save 1.1 extension immediately from your Google Chrome browser by going to Settings (Wrench on the right hand side), Tools, Extensions, then untick Enable next to Fast save 1.1.

Fast Save 1.1
Fast Save 1.1
Categories
WHMCS

A Dark Month for WHMCS

While a lot of forums insist that the WHMCS hack that occurred during May of 2012 was a cause of a social engineering attack, I have reason to believe that the hack was actually a lot simpler. The hack, I believe, is more of a system vulnerability issue, and that systems were penetrated via SQL/code injection. Once compromised the hacker is given 100% access to your whole website. Through my 20 years experience in programming, I have reason to believe that the hack exposed flaws in WHMCS that only a developer of WHMCS would know. I believe that either the flaw was released to hackers by a person who has been programming WHMCS code for years. Or, the person who has been working with WHMCS code pioneered the hack himself. I also have reason to believe that the hackers are actually from the UK, the birthplace of WHMCS.

Hacker modified my website homepage to this. He even scraped an image on my website and put it on his splash page.
Hacker modified my website homepage to this. He even scraped an image on my website and put it on his splash page.

A website of mine got hacked three times within a week in the month of May 2012. The hacker was able to gain entry at least two other times after I reset all my passwords due to the initial attack (WHMCS admin, WHM, CPANEL, FTP and all MySQL databases were reset). This led me to believe that the hack was automated and ran via a script. While my website was being hacked, my Google Analytics indicated that my daily website pageviews spiked from around 10 views a day to just under 1000 and that 99% of the traffic on my website is from the UK.

I also read a few articles today that they reckon that the WHMCS hacker has been arrested. I guess we now have a scapegoat so everyone can rest easy. Unfortunately, the ultimate perpetrator of the problem might still be working in the WHMCS development house. This disgruntled employee might be planning his next attack as we sleep. Donโ€™t expect this problem to go away anytime soon.
I make it a habit not to accept payments via credit card so there is no need for me to store customer card details. That way, hackers have nothing to gain from penetrating my website except Iโ€™m inconvenienced every time it happens.

Categories
Product Review Smart TV Upgrade Box

Smart TV Upgrade Box Review

If you’re looking for a decent smart TV box out there at the moment, don’t bother. The best smart TV box at this present time is a computer or a notebook with HDMI output. With various players fighting over pole position to release the best smart TV extension for your TV, every single one fails miserably. There are no standards; therefore, not all video formats are supported. As easy as streaming internet content is on your computer, there’s no effective way to do it through a smart TV upgrade box. Those cut down browsers that come standard in most hardware are an insult.
Every single smart TV upgrade box that I looked at to this day has shortcomings on one feature or another. At the moment, at least, online content is best viewed on a computer.

Notebook with HDMI output and a cheap Bluetooth Controller
Notebook with HDMI output and a cheap Bluetooth Controller
In my opinion, get yourself a cheap laptop with HDMI output and Bluetooth support. Equip yourself with a cheap Bluetooth remote control, and you won’t be disappointed. Until smart TV big players come together and come up with a standard, then I’m sticking with my notebook and my Bluetooth remote. It does the trick just fine.

Categories
CURL PHP Web Hosting

Free PHP Hosting With cURL

I’m always on the hunt for free PHP hosting. I’m not really fussed about ads because in my opinion, if you don’t want ads, go pay for hosting. I also require hosting with cURL enabled because I code lot of function-based web pages that require it. I’ve compiled a list of free PHP web hosts with cURL that I personally use because they are 100% legit and very reliable. Here’s my list in no particular order. Please feel free to comment and add to my list. Cheers!

Website Ads?
1. Free Web Hosting Area No
2. 000webhost.com No
3. x10Hosting No
4. x90x.net Yes
Categories
Portable Speakers Product Review

Banggood Bluetooth Stereo Speaker Review

Here’s a little device that I recently bought from Ebay for AUD24.29 that I quite like. It’s a wireless speaker with built in microphone for your mobile device, whether it be a mobile phone, laptop, tablet etc. I like how I can take it anywhere and the sound is much much better than the built in speakers in your laptop. It pairs up via bluetooth nice and quick or you can wire it to your device using the audio cable included in the package. Don’t expect it to thump like a mini sound system, but overall, I’m pretty happy with the sound quality. Check out my quick video review below.

Portable Rechargeable Bluetooth Stereo Speaker For iPhone iPod iPad Mobile Phone MP3 MP4 Laptop PC

Banggood Bluetooth Stereo Speaker Side
Banggood Bluetooth Stereo Speaker Side
Banggood Bluetooth Stereo Speaker Front
Banggood Bluetooth Stereo Speaker Front

Description:
  • Portable bluetooth stereo speaker system, you can play music via bluetooth or audio cable
  • Support cell phone call or receive via built-in microphone
  • Saves you from the hassle of tangled wires
  • Free to keep it in your pocket or handbag when you go out, enjoy wonderful music anywhere
  • Allows you to stream music from Bluetooth-enabled devices such as cell phones, PDAs, MP3 players, PCs and laptops
  • Convenient controls โ€“ volume up/down buttons, play/pause button and on/off switch
  • Offers a wireless connection range of 10 meters (33 feet)
Features:
  • Bluetooth protocol: version 2.1+EDR
  • Supports Bluetooth A2DP, AVRCP, Handsfree and Headset profiles
  • Built-in lithium battery:3.7V/500mAh, it can be used for NOKIA Mobile
  • Compatiable with bluetooth phones, MP3/MP4/CD/PC/MAC/PSP,etc
Specification:
  • Input sensitivity: 300MV
  • Requency range:80Hz~20KHz
  • Signal-to-noise ratio:84dB
  • Power supply: USB Power
  • Rated power:1.5w*2
  • Standby time:80-100hours
  • Working time:6hours
  • Dimension: 220*72*45mm
  • Net weight: 310g
  • Color:Black
Package included:
  • 1 x Bluetooth Speaker
  • 1 x USB Charging Cable
  • 1 x Audio Cable
  • 1 x Rechargable Battery
Categories
Mobile Phone Smart Phones

Shut That Phone Up and Put it down

Smart PhoneIt is illegal in Australia (and most countries in the world) to drive and ride a vehicle while using a hand-held mobile phone. Mobile phone use can distract the drivers and riders from the driving task. Studies have found that using a mobile phone while driving is dangerous as it slows reaction times and interferes with a driverโ€™s perception skills and increases the chance of having a crash.

Driving is an activity that requires your full attention. It requires you to pay attention to every detail, analyse the visual/audible information received, respond effectively and react in a timely manner. These statements are also the fundamental requirements in order to communicate effectively. So why isn’t the use of mobile phone everywhere else not outlawed or at least controlled? How many other accidents or deaths have been caused by smart/mobile phone distractions?

It makes it very difficult to communicate to someone whose attention is constantly divided because they’re emotionally involved with their “Android” (“iOS” for AppleHeads and WP7 for Windows Users). In case you’ve been stuck under a rock for the past 10 years and just got out, Android, iOS and WP7 are the operating systems that drive those little devices called smart phones that are single-handedly killing old fashioned, intimate communication. You remember right, eye contact, body language, tone of voice, effective use of hands, posture etc. has been replaced by a handful of symbols like ๐Ÿ™ ๐Ÿ™‚ ๐Ÿ˜€ ๐Ÿ˜› LOL ROFL etc.

We’ve become too accustomed to technology. Is it really making our life easier, or is it making us do more futile tasks? Think about it, about 50% of notifications are garbage like joke emails, useless information email/SMS, FB (Facebook) alerts, twitter alerts etc. 45% are requests/reminders from your family or friends so they’re semi-important. The other 5% (almost always phone calls) are very important like doctor’s surgery calling to advise that you’re late for your appointment, semi-important stuff that’s been escalated from an SMS to a phone call, a friend or family member in distress calling for advice, etc.

The primary method of notification of a phone is through an audible alert (whether it be a call, SMS, email, FB notification, FB message, the list goes on and on) usually set to the highest volume with vibration so that it is not missed. This way, every notification becomes a priority and demands attention. There’s no way to distinguish between what’s important and what’s not. As a result, we attend to each notification with the same reckless abandon, not realizing that we’ve become “zombies” under our devices “spell”.

We’re constantly bombarded with so much useless information that we are left confused. News on the internet are so sensationalised that the title is not related to the body of the article. It makes you wonder why we bother reading news on the internet at all. That’s just the thing, as advanced as technology has become right now, it is still so one dimensional that everything it disseminates has to be “Sensational”. Text articles have to have sensational titles to get people to read it. Pictures have to be amazing to get people to look at it. Facebook posts have to be shocking to get people to like it. Photos have to be revealing to get people to enjoy it. There’s no point being subtle these days, no one will even notice you.

A good rule of thumb that I follow is that the phone doesn’t get any immediate attention until it rings, I mean traditional “someone is calling” ring. Everything else can wait (put everything else on silent, and check them during allocated periods of the day). That way, you can focus on what’s important right here, right now. Better still, turn your phone off for a day or two and see if anyone visits you. Remember back in the day not too long ago when you say to your loved one that you’ll call them around 7ish just before you say goodbye. Remember the excitement and anticipation as you both go through the day apart waiting for that moment when the clock ticks past 7 o’clock. You eagerly wait by the phone to call or receive the call. We had no choice but to wait then, had to let the excitement build up, exercise restraint, had to force ourselves to get through the day with only our peaceful thoughts and memories to distract us… not the annoying, loud buzzing and ringing of an electronic device.

I miss those days.