Tue, Nov 26, 7:12 AM CST

Renderosity Forums / Poser - OFFICIAL



Welcome to the Poser - OFFICIAL Forum

Forum Coordinators: RedPhantom

Poser - OFFICIAL F.A.Q (Last Updated: 2024 Nov 26 6:57 am)



Subject: OT - Internet attack expected


ToxicWolf ( ) posted Fri, 06 July 2012 at 12:42 PM · edited Mon, 25 November 2024 at 10:05 PM

There is a worldwide attack expected on the internet this month by the FBI in the United States. It has to do with DNS and redirecting your computer.  Over 500,000 computers are believed to be infected at this time.

You can read about it here:

http://www.dailymail.co.uk/news/article-2133134/Hundreds-thousands-lose-access-internet-July-result-hackers-advertising-scam.html

You can check your computer here:

http://www.dcwg.org/detect/

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


Alisa ( ) posted Fri, 06 July 2012 at 1:31 PM

You can also go to the FBI's site

www.FBI.gov

They have a link on the front page that goes to info on what it is and how to check your computer's DNS settings yourself.

Cheers,
Alisa

RETIRED HiveWire 3D QAV Director


Gremalkyn ( ) posted Fri, 06 July 2012 at 1:47 PM

DNS Resolution = GREEN
Your computer appears to be looking up IP addresses correctly! Had your computer been infected with DNS changer malware you would have seen a red background.  Please note, however, that if your ISP is redirecting DNS traffic for its customers you would have reached this site even though you are infected.  For additional information regarding the DNS changer malware, please visit the FBI's website at: http://www.fbi.gov/news/stories/2011/november/malware_110911


The note makes me wonder if this "check" actually works.


ToxicWolf ( ) posted Fri, 06 July 2012 at 1:53 PM

I’m not sure how well that test works.  The one thing that really makes me nervous about it is that the FBI has never reacted this fast or to this extent before (at least that I have noticed). They say that when they take down the Mal-Servers everyone that is infected will lose their internet connection.

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


Alisa ( ) posted Fri, 06 July 2012 at 1:57 PM

Yeah, personally, I'd check myself.

 

Here is the pdf on the FBI's website explaining how to do it - bringing up a command window takes but a few seconds and then you can feel sure you're ok.

 

Also, be sure to check what they say about routers on this page

 

http://www.fbi.gov/news/stories/2011/november/malware_110911/DNS-changer-malware.pdf

Cheers,
Alisa

RETIRED HiveWire 3D QAV Director


ToxicWolf ( ) posted Fri, 06 July 2012 at 1:59 PM

Thanks Alisa, I am going to give that a try right now.

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


Alisa ( ) posted Fri, 06 July 2012 at 1:59 PM

You're welcome!

Cheers,
Alisa

RETIRED HiveWire 3D QAV Director


Gremalkyn ( ) posted Fri, 06 July 2012 at 2:01 PM

Quote - I’m not sure how well that test works.  The one thing that really makes me nervous about it is that the FBI has never reacted this fast or to this extent before (at least that I have noticed). They say that when they take down the Mal-Servers everyone that is infected will lose their internet connection.

I read it to be just the opposite - they took 2 years to bring down the gang and they will be replacing the mal-servers, but the replacements will not undo any damage already done.


Gremalkyn ( ) posted Fri, 06 July 2012 at 2:23 PM

Quote - Also, be sure to check what they say about routers on this page  

http://www.fbi.gov/news/stories/2011/november/malware_110911/DNS-changer-malware.pdf

Following those instructions, mine seems to be fine. :)


nobodyinparticular ( ) posted Fri, 06 July 2012 at 2:27 PM

By the FBI's own figures, an estimated 60,000 computers in the US are infected. This ia a relatively miniscule number for such a severe reaction.


Gremalkyn ( ) posted Fri, 06 July 2012 at 2:34 PM

The original release is dated 11/9/11 and the article contains an update from 3/12/12 that reads:

Quote - Update on March 12, 2012: To assist victims affected by the DNSChanger malicious software, the FBI obtained a court order authorizing the Internet Systems Consortium (ISC) to deploy and maintain temporary clean DNS servers. This solution is temporary, providing additional time for victims to clean affected computers and restore their normal DNS settings. The clean DNS servers will be turned off on July 9, 2012, and computers still impacted by DNSChanger may lose Internet connectivity at that time.

Since the temp servers are going to be shut off this Monday, best to check before it is too late. :)


ToxicWolf ( ) posted Fri, 06 July 2012 at 2:43 PM

nobodyinparticular, I was thinking the same thing. Really big reaction for it. That makes me wonder if we are getting the whole story. I just feel sorry for the people that are infected and don't know it. Once those servers go down, it will be a real pain in the (you know what) to fix an infected system.

Gremalkyn, thanks for the info. I had to go into my router to make sure because I use a wireless access point in my home network.  All came out well.

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


monkeycloud ( ) posted Fri, 06 July 2012 at 3:19 PM · edited Fri, 06 July 2012 at 3:22 PM

Google have launched an initiative to address the issue apparently... which, given their coverage, should help some I'd hope:

http://nakedsecurity.sophos.com/2012/05/23/google-malware/

I understand that the major anti-virus vendors have already taken steps to address the issue through their products.

The moral is, I guess, make sure you're running a reputable anti-virus product on your system... and that you're subscribed to your AV and operating system security updates?

I'm not sure exactly why it's not possible for the authorities to seize the IP addresses from RIPE etc. and re-route them to legitimate DNS services, in advance of the seized malignant DNS servers being taken offline... but it sounds like it isn't... or maybe that's what they did do and they just can't sustain running the workaround?

EDIT: Yeah... no, they just kept the botnet command and control system running for a few months...

http://www.theregister.co.uk/2012/07/05/dnschanger_botnet_shutdown/


mishamcm ( ) posted Fri, 06 July 2012 at 6:46 PM

I fail to see what the conspiracy theorizing is about.  Instead of having half a million infected PCs lose their internet connections back in March, the FBI arranged for temporary clean DNS servers to be put in place to allow affected users more time to disinfect their machines.  The FBI isn't attacking anything, just shutting down the TEMPORARY servers that were put in place 4 months ago.  Should they have shut things down 4 months ago?  Or should they have allowed the criminals to keep their botnet in place?  Speaking for myself, I'd rather lose my connection than have my internet communications hijacked by criminals.


ToxicWolf ( ) posted Fri, 06 July 2012 at 7:21 PM

True mishamcm. I'm very glad they took action. I just hope everyone is paying attention and gets their systems cleaned up before they lose their connections.

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


infinity10 ( ) posted Fri, 06 July 2012 at 7:56 PM

Quote - I fail to see what the conspiracy theorizing is about.  Instead of having half a million infected PCs lose their internet connections back in March, the FBI arranged for temporary clean DNS servers to be put in place to allow affected users more time to disinfect their machines.  The FBI isn't attacking anything, just shutting down the TEMPORARY servers that were put in place 4 months ago.  Should they have shut things down 4 months ago?  Or should they have allowed the criminals to keep their botnet in place?  Speaking for myself, I'd rather lose my connection than have my internet communications hijacked by criminals.

This is the correct version of what is happening, and not what the OP is saying.

Meanwhile, do check if your IP for your computer(s) and for your routers are showing the tainted addresses or not.

Eternal Hobbyist

 


Alisa ( ) posted Sat, 07 July 2012 at 1:09 AM

Oh, dear - I didn't even notice the original message said that the threat was being caused by the FBI.  Apologies - it's been a crazy day, and I do completely know that this is something the FBI STOPPED but that could cause internet connectivity loss if you have one of the affected DNS servers listed on your computer.  Which is why I put up the link to the FBI's site where they explain the whole thing.

Cheers,
Alisa

RETIRED HiveWire 3D QAV Director


ToxicWolf ( ) posted Sat, 07 July 2012 at 7:53 AM · edited Sat, 07 July 2012 at 7:54 AM

Sorry guys, that was poorly worded. I did not mean to say it was caused by the FBI. I meant they were helping to fix the problem.  My bad.

I have worked as a consultant with government contractors for the last 15 years all over the world with security measures and other issues, including US Embassies. The FBI has always done a great job.

I talked to two different people this morning who cleared their computers. One in Hawaii and one in Arizona. Please check your systems.

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


moriador ( ) posted Sat, 07 July 2012 at 8:00 AM · edited Sat, 07 July 2012 at 8:02 AM

Yeah, I sometimes read with autoedit on and saw the sentence as:

The FBI expects a worldwide attack on the internet this month. So I saw nothing wrong with it.

Re-reading does give a bit of a chuckle. The passive can be deadly. I know it was unintentional. :)


PoserPro 2014, PS CS5.5 Ext, Nikon D300. Win 8, i7-4770 @ 3.4 GHz, AMD Radeon 8570, 12 GB RAM.


ToxicWolf ( ) posted Sat, 07 July 2012 at 8:33 AM

Yes, really sorry about that. I was on the phone while I was typing and it did not come out the way I intended. We are just trying to get it out in as many places as possible before they take down the good-guy servers.

Poser Pro 2012 SR3

Windows 7 Professional 64 bit

Intel Core I7 990x 3.46G 6 core

24G RAM

EVGA GTX580 R Video Card

Single HP LP2475 1920x1200 monitor

______________________________

http://www.toxicwolf.com


Tucan-Tiki ( ) posted Sat, 07 July 2012 at 9:19 AM

ok lets have the death penalty for creating computer virus's that eway no one will risk making one, no probation, no second chances, a deliberate attack on others kill the mthr fkr


Tucan-Tiki ( ) posted Sat, 07 July 2012 at 9:22 AM

oh and how does the fbi know there is going to be an attack like this?

 

sometimes I wonder if they are actullay doing it to knock out certain types of activity.


Khai-J-Bach ( ) posted Sat, 07 July 2012 at 9:34 AM

lets get this corrected.

 

there is NO attack on the internet. the thread title is WRONG

 

what happened is simple. the FBI were able to bust a malware ring and take over the servers that controlled the malware. they then ran the servers to allow those affected to fix their systems.

they end this soon. hence if you have not corrected the problem, you will be offline.

 

no attack involved. at all.



lmacken ( ) posted Sat, 07 July 2012 at 11:15 AM

Tucan-Tiki:  "ok lets have the death penalty for creating computer virus's that eway no one will risk making one, no probation, no second chances, a deliberate attack on others kill the ... etc etc"

While the normal argument against the death penalty considers the first innocent death; I'm led to wonder at the world-view that everyone on the planet fears death.


moriador ( ) posted Sat, 07 July 2012 at 2:02 PM · edited Sat, 07 July 2012 at 2:02 PM

Quote - Tucan-Tiki:  "ok lets have the death penalty for creating computer virus's that eway no one will risk making one, no probation, no second chances, a deliberate attack on others kill the ... etc etc"

While the normal argument against the death penalty considers the first innocent death; I'm led to wonder at the world-view that everyone on the planet fears death.

Indeed. Tyrannies have fallen precisely because the point at which you fear execution for mere accusation of any number of random and relatively minor offenses is the point at which the cost of rebellion is no longer too high to consider.


PoserPro 2014, PS CS5.5 Ext, Nikon D300. Win 8, i7-4770 @ 3.4 GHz, AMD Radeon 8570, 12 GB RAM.


Acadia ( ) posted Sat, 07 July 2012 at 3:43 PM

I think people are panicking for no reason!  They say 1/4 of a million, that's 250,000 computers on the internet out of all of the computers on the internet.  You have a better chance of winning the lottery than you do of having been infected by this DNS Charger thingy.

"It is good to see ourselves as others see us. Try as we may, we are never
able to know ourselves fully as we are, especially the evil side of us.
This we can do only if we are not angry with our critics but will take in good
heart whatever they might have to say." - Ghandi



monkeycloud ( ) posted Sat, 07 July 2012 at 4:08 PM

Quote - I think people are panicking for no reason!  They say 1/4 of a million, that's 250,000 computers on the internet out of all of the computers on the internet.  You have a better chance of winning the lottery than you do of having been infected by this DNS Charger thingy.

Yup, the numbers involved are pretty trivial, proportionally... and, I'd hazard a guess, that chances are those numbers are slightly exagerrated anyway.

😉


RedPhantom ( ) posted Sat, 07 July 2012 at 6:55 PM
Site Admin Online Now!

This reminds me of the y2k bug. The news medias had everyone convinced that the world as we know it would end and we would be thrown into another dark ages. Yes some people will be affected. Yes it doesn't hurt to check. But life will go on for most just as it has for the last several months.


Available on Amazon for the Kindle E-Reader Monster of the North and The Shimmering Mage

Today I break my own personal record for the number of days for being alive.
Check out my store here or my free stuff here
I use Poser 13 and win 10


Paloth ( ) posted Sat, 07 July 2012 at 9:28 PM

If we were ruled by the Sith, there would be a government site to "check for a virus" that actually distributes a virus. Fortunately we aren't ruled by the Sith.

Download my free stuff here: http://www.renderosity.com/homepage.php?page=2&userid=323368


Alisa ( ) posted Sun, 08 July 2012 at 12:46 AM

I guess I don't see it as an issue of panic, just taking a precaution

Cheers,
Alisa

RETIRED HiveWire 3D QAV Director


mishamcm ( ) posted Mon, 09 July 2012 at 5:37 AM

Post here if you have no internet access!
:cursing:


mysticeagle ( ) posted Mon, 09 July 2012 at 5:40 AM

i'm sending this through a medium........is there anybody there???????????

OS: Windows7 64-bit Processor Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz, 2401 Mhz, 2 Core(s), 4 Logical Processor(s)  6GB Ram
Poser: Poser Pro 2012 SR3.1 ...Poser 8.........Poser5 on a bad day........
Daz Studio Pro 4.5  64bit

Carrara beta 8.5

Modelling: Silo/Hexagon/Groboto V3
Image Editing: PSP V9/Irfanview
Movie Editing. Cyberlink power director/Windows live movie maker

"I live in an unfinished , poorly lit box, but we call it home"

My freestuff   

 link via my artist page


monkeycloud ( ) posted Mon, 09 July 2012 at 5:59 AM

Quote - i'm sending this through a medium........is there anybody there???????????

My computer is okay... but is it possible to contract this DNSChanger malware yourself?

My brain keeps getting diverted... and this morning it just isn't working at all.

Oh wait... it's just Monday.

😉


nobodyinparticular ( ) posted Mon, 09 July 2012 at 6:45 AM

Quote - i'm sending this through a medium........is there anybody there???????????

My Ouija board is working fine.


mrsparky ( ) posted Mon, 09 July 2012 at 7:13 AM

It's all a conspriacy being run by sith kittys flying around in black helicopters. They are preparing us for when cats rule the world...

Pinky - you left the lens cap of your mind on again.



monkeycloud ( ) posted Mon, 09 July 2012 at 7:15 AM

Quote - It's all a conspriacy being run by sith kittys flying around in black helicopters. They are preparing us for when cats rule the world...

I should've known... all along my dog's been trying to warn me about this!

😉


Ragtopjohnny ( ) posted Mon, 09 July 2012 at 6:31 PM

Another media story to scare the public.  Should have known everything would be all right.  😄

 

Poser Pro 2012/3DS Max 2013/Adobe Photoshop Elements 10/Zbrush/

PC: HP Z820 Workstation, 3.30 ghz 8 core Intel Processor, 2gig nvidia Quadro, 16 gig of Ram and 2TB Hard Drive.

 


dorkmcgork ( ) posted Mon, 09 July 2012 at 8:07 PM · edited Mon, 09 July 2012 at 8:09 PM

i figured it out that way but it's crass of me to say that now

so here's crass

but it's their job to report it.  i hear about it on fox which some in my family have on all day.  it was carmaggedon to them, the internet will shut down.  panic and doom is their jerry springeresque bread and butter.

what cracks me up the most about this kind of stuff is it always seems to escape people that we can repair things when they break. having said that i did make sure my devices were up to date.  spyware and malware is the antivirus world's responsibility right?

the sky is always falling, to justify extreme behavior

go that way really fast.
if something gets in your way
turn


dorkmcgork ( ) posted Mon, 09 July 2012 at 8:15 PM

o yeah and i wouldn't rule out the sith thing

go that way really fast.
if something gets in your way
turn


mishamcm ( ) posted Mon, 09 July 2012 at 8:32 PM

Quote - o yeah and i wouldn't rule out the sith thing

This is not the explanation you're looking for.

It's sunspots.


mrsparky ( ) posted Tue, 10 July 2012 at 7:23 AM

file_483592.jpg

Could be worse - could be Sith Spots :)

Pinky - you left the lens cap of your mind on again.



SamTherapy ( ) posted Tue, 10 July 2012 at 7:32 AM

Ok, where's me tinfoil hat?

Coppula eam se non posit acceptera jocularum.

My Store

My Gallery


EnglishBob ( ) posted Tue, 10 July 2012 at 10:53 AM

Attached Link: ISPs step in to supply DNSChanger safety net

> Quote - I'm not sure exactly why it's not possible for the authorities to seize the IP addresses from RIPE etc. and re-route them to legitimate DNS services, in advance of the seized malignant DNS servers being taken offline...

This is, in fact, what's been happening (although no seizure was involved, just ISPs doing their job). The number of infected users has also been dropping, presumably as awareness of the trojan spreads.


Khai-J-Bach ( ) posted Tue, 10 July 2012 at 2:33 PM

Quote - Another media story to scare the public.  Should have known everything would be all right.  😄

 

actually it wasn't. there was a few pages in the tech blogs - months ago - and if you look, the original posted link was from April...

considering the lack of hysteria in the media... I'd hardly call it a scare, would you?



Privacy Notice

This site uses cookies to deliver the best experience. Our own cookies make user accounts and other features possible. Third-party cookies are used to display relevant ads and to analyze how Renderosity is used. By using our site, you acknowledge that you have read and understood our Terms of Service, including our Cookie Policy and our Privacy Policy.