Welcome Guest [Log In] [Register]
We hope you enjoy your visit.


You're currently viewing the Ultimate 3D Community as a guest. This means that you can only read posts, but can not create posts or topics by yourself. To be able to post you need to register. Then you can participate in the community active and use many member-only features such as customizing your profile, sending personal messages, and voting in polls. Registration is simple, fast, and completely free.

Join our community!

If you are already a member please log in to your account to access all of our features:

Username:   Password:
Add Reply
possible virus; Please read
Topic Started: Dec 16 2011, 10:42 PM (555 Views)
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
The virus could be on the main page, because I clicked on the u3d main site 4 times and my anti-virus gives me a malicious URL warning. So try to access the forums directly to avoid the main site. I would like someone who is brave enough and confident enough of their anti-virus to try to confirm this for me.

Or possibly these links (What's on your mind topic):

Attached to this post:
Attachments: Pixelmasager.zip (1.31 MB)
Attachments: 1285875808_67_FT279738_11.jpg (64.57 KB)
Attachments: Pic1.png (52.48 KB)
Attachments: tweak.jpg (12.94 KB)
Attachments: 128596816sdf7627.jpg (359.55 KB)

Edit: I returned to my computer and clicked on ultimate3d.org to see if would warn me again, it didn't. Although it did 4 times in a row earlier which is cause for concern. Anyway I am unsure of the cause of the virus, it may still be there or the hacker might have gotten scared and removed it. When I recieved the virus I had 3 tabs open, this, one of the pictures in the links above (the 2nd picture and possibly the third, I don't remember), gmail, and facebook, and I didn't download anything recently or even login to Gmail. I honestly can't say for sure where this virus came from.

The more I try to isolate this the more it slips through my fingers. Anyway, this is a very bad, bad virus, my shields aren't helping very much.

More info on the virus:

Win 7 Antispyware 2012, Vista Antivirus 2012, and XP Security 2012 are all names for the same rogue anti-spyware program. This family of rogues is promoted in two ways. The first is through the use of fake online antivirus scanners that state that your computer is infected and then prompt you to download a file that will install the infection. The other method are hacked web sites that attempt to exploit vulnerabilities in programs that you are running on your computer to install the infection without your knowledge or permission.

(without giving details) How "hackable" is ultimate3d.org?

There is also the possibility I had a dormant copy of the virus for a long time, and some code or ad embedded in the website activated it.

Also, I think you have to go through google to get the virus. Here is the topic I remembered: http://s9.zetaboards.com/Ultimate3D_community/topic/173138/1/ But it sounds like a false-positive and Dr. B fixed it since then.

Also, if any of you get the virus, it won't let you access the forums unless you use your History.
Edited by Eansis, Dec 17 2011, 02:18 AM.
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
skarik
Member Avatar
kitten eating scum
[ *  *  *  *  *  * ]
I would guess that it's from some of the hack posts. There's been a huge amount of crawlers on this forum, so if you're getting a report that this site has a virus, it's probably from that: crawling into a bad link from here.

Although, where is this information coming from?
Blog|EHS
Offline Profile Quote Post Goto Top
 
RonBurgundy
Member Avatar
Forum Borat
[ *  *  *  *  *  * ]
Thanks and welcome back! ;)
!!! DEFEND POP PUNK !!!
Offline Profile Quote Post Goto Top
 
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
Hi scotty, and skarik it is the Vista Home Security 2012 (rogue), and possibly another virus. The virus is definitely for sure on the main page, because every time I click on the u3d main site my anti-virus gives me a malicious URL warning. So try to access the forums directly to avoid the main site.

edit: was not "for sure", just a coincidence it happened 4 times in a row. (no, I'm serious.)
Edited by Eansis, Dec 17 2011, 02:04 AM.
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
skarik
Member Avatar
kitten eating scum
[ *  *  *  *  *  * ]
Well first, then, we need to search for "Attachments: Pixelmasager.zip (1.31 MB)" as that seems the right size for some versions of that virus (I cleaned it off several student computers for my university's RTA). If that's not it, then we need to find the specific location of this detection. If there's an issue, then Dr. Best will be able to fix it. If there's no issue, then it would be awesome if you could submit a false-positive result, if possible.

Specific file searches and URL's would be lovely.

I have no anti-virus installed myself so I'm unable to check, but I'm sure other people on this forum do. To all of you that can check, please do. This is a polite request.
Blog|EHS
Offline Profile Quote Post Goto Top
 
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
Hmm, I didn't download anything although I did click on the link.
Edited by Eansis, Dec 17 2011, 12:13 AM.
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
skarik
Member Avatar
kitten eating scum
[ *  *  *  *  *  * ]
It's very possible that it was in one of the advertisements as well, although I doubt that.
Blog|EHS
Offline Profile Quote Post Goto Top
 
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
It's also possible that the malicious URL was actually a redirect, although I doubt it because I actually had a malicous URL redirect just now and it was a different warning (the warning was in the page, instead of windows explorer.)
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
Reikyrr
Forum God
[ *  *  *  *  *  * ]
Well, checked the mainpage, its either in the code of the U3d site, or nonexistand (for me) Checked sources all pointed to u3d. (script sources).
~Inspirational quote~
Offline Profile Quote Post Goto Top
 
Despellanion
Member Avatar
Forum God
[ *  *  *  *  *  * ]
Exactly where on the U3D website did you click? Cause I can't find anything there that could bring a virus attack to a visitor. I visit the U3D website regularly.
Offline Profile Quote Post Goto Top
 
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
Reikyrr
Dec 17 2011, 12:44 AM
Well, checked the mainpage, its either in the code of the U3d site, or nonexistand (for me) Checked sources all pointed to u3d. (script sources).

What do you mean by this? Are you saying there is a virus in the mainpage?

Well just now I visited the site again and got another virus, this was an old one though so it may have just been a coincidence.

Desp, I am not saying for sure it's U3d, (though I did earlier). I just clicked on the forum link.
Edited by Eansis, Dec 17 2011, 01:59 AM.
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
Reikyrr
Forum God
[ *  *  *  *  *  * ]
Eansis
Dec 17 2011, 01:38 AM
Reikyrr
Dec 17 2011, 12:44 AM
Well, checked the mainpage, its either in the code of the U3d site, or nonexistand (for me) Checked sources all pointed to u3d. (script sources).

What do you mean by this? Are you saying there is a virus in the mainpage?

Well just now I visited the site again and got another virus, this was an old one though so it may have just been a coincidence.

Desp, maybe I got the virus elsewhere, or maybe it doesn't affect certain browsers or configurations.
I think it could be an old one on your computer. No idea for real tho.
~Inspirational quote~
Offline Profile Quote Post Goto Top
 
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
The virus seems to have left me alone for a while. I can view websites and programs without redirects. I tried deleting it and it didn't seem to have any effect but maybe it is gone for good now hopefully. Anyway, whether it was ultimate3d.org it's still would be nice to buff the security a notch. Something in the back of my memory tells me this has happened before (although that topic is a false-positive, it is very similar to what happened to me.)

http://s9.zetaboards.com/Ultimate3D_community/topic/173138/1/
Edited by Eansis, Dec 17 2011, 02:11 AM.
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
skarik
Member Avatar
kitten eating scum
[ *  *  *  *  *  * ]


You need to remove THAT ONE question.
Edited by skarik, Dec 17 2011, 02:36 AM.
Blog|EHS
Offline Profile Quote Post Goto Top
 
Eansis
Member Avatar
ghost
[ *  *  *  *  *  * ]
Well obviously not the details, we don't want to give the hackers a "how-to" guide, but is it theoretically possible?
VOTE FOR BUDDY ROEMER HE'S A STRAIGHTFORWARD, DOWN TO EARTH AMERICAN GUY WHO ISN'T PART OF THE BIGBROTHER CONSPIRACY

Til'c
 
Things will not calm down Daniel Jackson. They will infact calm up.
Offline Profile Quote Post Goto Top
 
Go to Next Page
« Previous Topic · Off-topic · Next Topic »
Add Reply