[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 116: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
VIRUS Detected when clicking PLAY! (Appears Fixed Now 09/17) : General & Trouble Shooting
taultunleashed logoVIRUS Detected when clicking PLAY! (Appears Fixed Now 09/17) : General & Trouble Shooting
newtopic  postreply
 [ 16 posts ]  1, 2  Next
blue large dot

VIRUS Detected when clicking PLAY! (Appears Fixed Now 09/17) : General & Trouble Shooting

Posted: September 16th, 2005, 3:23 pm
 
bloodknight
bloodknight's Reps:
User avatar


Last edited by Guest on September 17th, 2005, 8:17 am, edited 2 times in total.

Reply with quote
Posted: September 16th, 2005, 3:28 pm
 
bloodknight
bloodknight's Reps:
User avatar


Reply with quote
Posted: September 16th, 2005, 3:39 pm
 
bloodknight
bloodknight's Reps:
User avatar
Here is the writeup from symantec about this virus:

http://securityresponse.symantec.com/avcenter/venc/data/backdoor.graybird.html


Reply with quote
Posted: September 16th, 2005, 4:29 pm
 
kevinalaska
kevinalaska's Reps:
User avatar
I had that virus come up on my system today as well. I am not sure what the cause of the virus is but Norton Antivirus did catch it.

I also downloaded XUleashed over and installed ONLY the Crafting plug-in. I only had the crafting plug-in before the this whole problem started with not running XUleashed program.

Virus scan was also finished

I recomment scanning via the internet as well (as it is like having more then one Doctors opinion) go to [url]housecall.antivirus.com[/url]. This will let you do a good scan of yoru system for free.

I still want to know what this is all about.. So if anyone finds any information please post it. I really dont want to be running XUleashed with the idea of it being a security hole in my computer as well as a possbile way that SoE to find out I am using XUleashed... =/

Thank you...


Reply with quote
Posted: September 16th, 2005, 4:41 pm
 
bloodknight
bloodknight's Reps:
User avatar
I am still working on analyzing exactly which files are beinf accessed when Symantec detects the virus. Will post in a few more minutes.


Reply with quote
Posted: September 16th, 2005, 4:52 pm
 
bloodknight
bloodknight's Reps:
User avatar
There is a PATCH.BIN file that is creating the temp file that Symantec detects as a virus.

This file exists in the root of the XUnleashed Directory where the XUnleashed.exe file resides.

This temp file it creates is the one that is detected with the virus. I used sysinternals FILEMON tool to see what files were being called and which one was the one creating the file that symantec detected as a virus.


Reply with quote
Posted: September 16th, 2005, 5:05 pm
 
bloodknight
bloodknight's Reps:
User avatar
I found an old install of XUnleashed that I had on another one of my machines from about 2 months ago. I am in the process of determining what creates the patch.bin file as I have already tried to see if it was a direct d/l from the auto-update by launching xunleashed. I did this by processing my firewall logs for all activity from my test machine.


Reply with quote
Posted: September 16th, 2005, 5:22 pm
 
bloodknight
bloodknight's Reps:
User avatar


Reply with quote
Posted: September 16th, 2005, 5:37 pm
 
bloodknight
bloodknight's Reps:
User avatar


Reply with quote
Posted: September 16th, 2005, 5:45 pm
 
bloodknight
bloodknight's Reps:
User avatar


Reply with quote
Posted: September 17th, 2005, 12:24 am
 
kevinalaska
kevinalaska's Reps:
User avatar
Wow Bloodknight... you were well spoken (err... written) and logical in your appoach... I hope the amazing work you have shown here really helps them solve this.

I would also like to ask if you perchance have the name of the "filemon" program you use. I have had great need in the past for such a utility.

Thanks and best wishes.


Reply with quote
Posted: September 17th, 2005, 8:04 am
 
bloodknight
bloodknight's Reps:
User avatar


Reply with quote
Posted: September 17th, 2005, 8:26 am
 
bloodknight
bloodknight's Reps:
User avatar


Reply with quote
Posted: September 17th, 2005, 12:50 pm
 
Tault_admin

Total Posts: 29974
Joined: November 9th, 2002, 9:57 am
Tault_admin's Reps: 1443
User avatar
administrator
Mod in Training


Reply with quote
Posted: September 19th, 2005, 2:45 am
 
muzzleflash
muzzleflash's Reps:
User avatar


Reply with quote
Want Advertisements After The Last Post Removed? Create A Free Account!

blue large dot Who is online
Users browsing this forum: No registered users and 9 guests

Popular Sections
SWTOR Cheats
Guild Wars 2 Cheats
Guild Wars 2 Hacks
Guild Wars 2 Bots
Diablo 3 Cheats
Guild Wars 2 Mods

Popular Sections
WoW Cataclysm Cheats & Exploits
WoW Cataclysm Hacks & Bots
Star Wars The Old Republic Cheats
SWTOR Mods
Torchlight 2 Cheats
SWTOR Space Mission Bots
Site Nav and RSS
RSS Feed of General & Trouble Shooting RSS Feed 
Sitemap of General & Trouble Shooting Sitemap 
SitemapIndex SitemapIndex
RSS Feed RSS Feed
Channel list Channel list
left bottom corner Site and Contents Copyright 2001-2012 All Rights Reserved TaultUnleashed.com bottom corner
top left
top right
createaccount
Username:   Password:   Remember Me?