Announcing new way of Analog Obsession

VST, AU, etc. plug-in Virtual Effects discussion
User avatar
kidslow
KVRist
361 posts since 26 Aug, 2019

Post Sun Feb 23, 2020 9:41 am

Teksonik wrote:
Sun Feb 23, 2020 8:31 am
Possibly a Supply Chain Exploit:

https://www.dni.gov/index.php/ncsc-what ... in-threats
Likely. The standard content management systems used to host websites (Wordpress, Drupal ... and especially plugins for these systems) are constantly being hacked and subverted. I would suspect that was the vector here. Even if you outsource your hosting to a "professional" there is no guarantee they will get it any more right.

User avatar
thecontrolcentre
KVRAF
31180 posts since 27 Jul, 2005 from the wilds of wanny

Post Sun Feb 23, 2020 9:57 am

FYI I did a complete system scan and Defender found and removed these files:

Program:Win32/Unwasson.Alml

Items:
<file:C:\Users\Dave\Downloads\AO Equalizers\SSQ 3.0\SSQ_3.0_VST_WIN\SSQ.dll.32\SSQ.dll>
<file:E:\Temp\Analog Obsession\AO Equalizers\SSQ 3.0\SSQ_3.0_VST_WIN\SSQ.dll.32\SSQ.dll>
<file:I:\BACKUPS\VST Plugins\Free VST\64 bit VST Plugins\Analog Obsession\AO Equalizers\SSQ 3.0\SSQ_3.0_VST_WIN\SSQ.dll.32\SSQ.dll>

Items:
containerfile:C:\Users\Dave\AppData\Local\Mozilla\Firefox\Profiles\fey95g4e.default\cache2\entries\0C350065219505450D958784F344B8103A0565C7
file:C:\Users\Dave\AppData\Local\Mozilla\Firefox\Profiles\fey95g4e.default\cache2\entries\0C350065219505450D958784F344B8103A0565C7->SSQ.dll.32.zip->SSQ.dll


Trojan:Win32/Spursint.Flcl

Items:
containerfile:C:\Users\Dave\AppData\Local\Temp\Temp1_Harqules_2.0_VST_WIN.zip\Harqules.dll.64.zip
file:C:\Users\Dave\AppData\Local\Temp\Temp1_Harqules_2.0_VST_WIN.zip\Harqules.dll.64.zip->Harqules.dll

As you can see they are all related to AO files, both 32bit and 64bit ...

User avatar
sqigls
KVRAF
4756 posts since 25 Dec, 2004

Post Sun Feb 23, 2020 10:42 am

Hey, you took me out of context to even GET here.
Then tell me to chill out? Head case.
thecontrolcentre wrote:
Sun Feb 23, 2020 7:59 am
sqigls wrote:
Sun Feb 23, 2020 7:48 am
thecontrolcentre wrote:
Sun Feb 23, 2020 7:17 am
sqigls wrote:
Sun Feb 23, 2020 7:06 am
thecontrolcentre wrote:
Sun Feb 23, 2020 6:25 am
sqigls wrote:
Sun Feb 23, 2020 6:20 am
talk about kicking a guy when he's down.
WTF? He's distributing infected files, whether he knows it or not, and asking for funds via Patreon. He should listen to what's being said here and either fix or remove the downloads. I was planning to do some music today, but instead I'm running a full system scan looking for malware.
WTF, firstly anti-virus programs are known to report false positives for certain code.
but, more to the point, I'm talking about the general situation he's in. Already suffering and then this happens. Poor dude.
anyways, this IS the internet, so no surprise... i'm unrolling the jump to conclusions mat now, anyone up for a game?
No jumping to conclusions going on here. I had 4 Trojans identified and quarenteened. I double checked and got the same result so reported it here. It looks like its not just me .
it's a shit situation, but we don't KNOW for a fact what's happened.
I've had plugins quarantined on Windows before too, a few times, but every time it's turned out to be false positive.
would be perfectly acceptable for me to join the pack and take strips off the guy, but i post a few words of sympathy and I'M the enemy ?
I don't know why you think you are the enemy, and I for one have not torn strip of "the guy" ... I think you need to chill out.

User avatar
thecontrolcentre
KVRAF
31180 posts since 27 Jul, 2005 from the wilds of wanny

Post Sun Feb 23, 2020 10:47 am

sqigls wrote:
Sun Feb 23, 2020 10:42 am
Hey, you took me out of context to even GET here.
Then tell me to chill out? Head case.
thecontrolcentre wrote:
Sun Feb 23, 2020 7:59 am
sqigls wrote:
Sun Feb 23, 2020 7:48 am
thecontrolcentre wrote:
Sun Feb 23, 2020 7:17 am
sqigls wrote:
Sun Feb 23, 2020 7:06 am
thecontrolcentre wrote:
Sun Feb 23, 2020 6:25 am


WTF? He's distributing infected files, whether he knows it or not, and asking for funds via Patreon. He should listen to what's being said here and either fix or remove the downloads. I was planning to do some music today, but instead I'm running a full system scan looking for malware.
WTF, firstly anti-virus programs are known to report false positives for certain code.
but, more to the point, I'm talking about the general situation he's in. Already suffering and then this happens. Poor dude.
anyways, this IS the internet, so no surprise... i'm unrolling the jump to conclusions mat now, anyone up for a game?
No jumping to conclusions going on here. I had 4 Trojans identified and quarenteened. I double checked and got the same result so reported it here. It looks like its not just me .
it's a shit situation, but we don't KNOW for a fact what's happened.
I've had plugins quarantined on Windows before too, a few times, but every time it's turned out to be false positive.
would be perfectly acceptable for me to join the pack and take strips off the guy, but i post a few words of sympathy and I'M the enemy ?
I don't know why you think you are the enemy, and I for one have not torn strip of "the guy" ... I think you need to chill out.
I have no clue what you're so upset about. There is no need to be insulting. Please stop it.

User avatar
Halonmusic
KVRAF
6755 posts since 13 Nov, 2015 from Norway

Post Sun Feb 23, 2020 10:54 am

Make love, not war :hug:

EDIT: Just scanned my entire Analog Obsession plugin folder and nothing found.
EnergyXT3 - Reaper | Roland SH201 - Waldorf Rocket | SoundCloud - Bandcamp

User avatar
thecontrolcentre
KVRAF
31180 posts since 27 Jul, 2005 from the wilds of wanny

Post Sun Feb 23, 2020 10:59 am

Halonmusic wrote:
Sun Feb 23, 2020 10:54 am
Make love, not war :hug:
+1 :hug:

FYI the Trojans weren't in my plugin folder (see above). Somehow they got into my AppData folder, and I didn't put them there :shrug:

User avatar
stamp
KVRian
965 posts since 10 Sep, 2014

Post Sun Feb 23, 2020 11:06 am

Halonmusic wrote:
Sun Feb 23, 2020 10:54 am
Just scanned my entire Analog Obsession plugin folder and nothing found.
You'd better scan all your pc.

User avatar
Halonmusic
KVRAF
6755 posts since 13 Nov, 2015 from Norway

Post Sun Feb 23, 2020 11:07 am

thecontrolcentre wrote:
Sun Feb 23, 2020 10:59 am
Halonmusic wrote:
Sun Feb 23, 2020 10:54 am
Make love, not war :hug:
+1 :hug:

FYI the Trojans weren't in my plugin folder (see above). Somehow they got into my AppData folder, and I didn't put them there :shrug:
Oh. Sorry i must have missed your post. Then i should do a rescan
EnergyXT3 - Reaper | Roland SH201 - Waldorf Rocket | SoundCloud - Bandcamp

User avatar
Halonmusic
KVRAF
6755 posts since 13 Nov, 2015 from Norway

Post Sun Feb 23, 2020 11:09 am

stamp wrote:
Sun Feb 23, 2020 11:06 am
Halonmusic wrote:
Sun Feb 23, 2020 10:54 am
Just scanned my entire Analog Obsession plugin folder and nothing found.
You'd better scan all your pc.
Yes i should do that.
EnergyXT3 - Reaper | Roland SH201 - Waldorf Rocket | SoundCloud - Bandcamp

User avatar
Teksonik
KVRAF
16439 posts since 16 Sep, 2001 from Las Vegas,USA

Post Sun Feb 23, 2020 11:31 am

I'm 35% through a full system scan with Bitdefender Total Security. I had uninstalled it because although it's one of the top rated security suites it is a bit of a system pig. Guess I'll keep it installed now since Windows Defender detected nothing during download.

Luckily I only downloaded one AO plugin..... :phew:
None are so hopelessly enslaved as those who falsely believe they are free. Johann Wolfgang von Goethe

User avatar
thecontrolcentre
KVRAF
31180 posts since 27 Jul, 2005 from the wilds of wanny

Post Sun Feb 23, 2020 11:41 am

Teksonik wrote:
Sun Feb 23, 2020 11:31 am

Luckily I only downloaded one AO plugin..... :phew:
I wish I'd done that :dog:

Just spent 4 hours finding and deleting erroneous files. Hopefully got them all ...
Last edited by thecontrolcentre on Sun Feb 23, 2020 11:44 am, edited 1 time in total.

marzelli
KVRist
106 posts since 13 May, 2018

Post Sun Feb 23, 2020 11:44 am

I hope you figure this out. I'm sure AO didn't do this on purpose.

User avatar
mladi
KVRian
1357 posts since 14 Apr, 2016 from Germany

Post Sun Feb 23, 2020 11:50 am

AnalogObsession wrote:
Sat Feb 22, 2020 1:01 am
Thanks for your ideas and words!

Now, fixed SweetDrums download links.

Please, try now.
Still not working, think the whole site is down because of the hack?.
Thanks anyway & all the best to your business!
Image
Intel® Core™ i9-9900K•Cubase 11•Presonus Eris E8 XT•Focusrite Scarlett 18i20 & Octopre•NI Kontrol S61 MK2•Stein­berg CC121•Synthesizers: Arturia Casio Korg Roland Yamaha

AnalogObsession
KVRist

Topic Starter

464 posts since 3 Oct, 2018

Post Sun Feb 23, 2020 12:20 pm

I'm so sorry about that.

Website under maintenance. Provider checking whole site and files.

Luckly, i have clean files... Maybe, i will have to re-design whole website but no problem. I will find the way to solve this issue and re-offer free plugins to you...

Thanks.
https://www.patreon.com/analogobsession Support for free VST2, VST3, AU for WIN & MAC

User avatar
Aloysius
KVRAF
34951 posts since 11 Aug, 2008 from another dimension

Post Sun Feb 23, 2020 12:23 pm

Do we need to scan our PCs? Any freeware that will do it?
Hi-de-Hi!

Return to “Effects”