Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Is This A Virus?


  • Please log in to reply
3 replies to this topic

#1 Sinabon

Sinabon

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 29 June 2006 - 01:35 PM

Does anyone know what this is
and if I need it?

I have Windows XP,Norton Anti Virus2006 and
my Browser is Opera.

Every time I open my browser I get a notice telling me :
Server Certificate Expired
One of the certificates presented by the server has expired.Do you wish to accept the certificate?

Then there's a box with this in it:

secure.monpay.com
Comodo Class 3 Security Services CA


When I click on View,I get this:
Certificate name

secure.monpay.com
Fame Partners
Monpay, InstantSSL
California
California, US
postalCode: 92056
streetAddress: 3809 plaza drive


Issuer

Comodo Class 3 Security Services CA
Comodo Limited
Comodo Trust Network, Terms and Conditions of use: http://www.comodo.net/repository, ©2002 Comodo Limited
GB


Details

Connection : TLS v1.0 256 bit AES (DHE_RSA/SHA)

The certificate for "secure.monpay.com" expired Jun 16 23:59:59 2006 GMT. The webmaster should update the certificate(s).

Certificate version: 3
Serial number: 0xEA631C360567942848F7C4A4F82F7F3A
Not valid before: Mar 25 00:00:00 2005 GMT
Not valid after: Jun 16 23:59:59 2006 GMT
Fingerprint(MD5) A2 DA 7E B7 6A BA A6 C1 8C 76 68 91 0B E6 2C 02
Fingerprint(SHA-1) 4B 85 DB 69 F3 BC A8 3F F4 76 9B 70 A1 3D 79 D1 07 EF DC 4C

Public key algorithm: rsaEncryption
Public-Key (1024 bit):
Modulus:
00: BD 97 CA EC D3 65 3D B1 0B B6 28 34 87 77 5A 21
10: 7D B4 85 0C C3 23 AC A6 28 83 66 7E 5F 77 E8 03
20: AE 3B 4A 68 F9 06 00 D7 9C D6 E0 23 C8 55 07 B3
30: FF DC 32 57 B7 60 16 03 7E 34 F4 E4 B1 62 68 4A
40: 96 1B 89 18 2C 1A 05 F2 EE 69 50 50 C3 64 9A 16
50: 30 47 AA 00 1F 86 85 F9 94 27 58 57 5F 87 01 AF
60: 00 50 79 32 47 5D C5 A9 CE DB CC C5 B8 96 A4 3C
70: 6E 57 3B CA AC 31 6E AF 15 2C B5 AB EF D8 09 AC

Exponent:
01 00 01

Public key algorithm: sha1WithRSAEncryption
0000: 59 98 54 1F 12 C7 92 83 44 11 14 F2 8F FE FA EE
0010: 91 E8 49 A7 0B 40 05 1C 55 48 6E 0B 9D 0C 13 23
0020: BC 93 09 91 36 C9 55 55 8D 5D 45 DE 8B 51 30 D2
0030: 3E 36 2E 4F 4D 7F 66 60 E0 43 C6 4D 62 5B 6D E7
0040: 02 91 3B 66 64 C9 C2 33 E1 F5 67 6E AF 50 10 01
0050: F1 32 0C 1C D3 A7 79 D0 2E 7B 0D C0 6E A4 8E F7
0060: 73 65 EE 03 FC 42 BA 89 A9 38 E0 00 DF 6A 9C EC
0070: FC 5B D8 D5 6E 2B 85 B0 D8 80 DA 14 F1 8C ED B2
0080: A0 E8 72 EB E3 89 B2 AC 60 AB 98 B4 A2 1D EE 0F
0090: F1 1E 15 9E 4E 27 21 DE D5 64 9F 58 8D E0 07 55
00A0: 8B FD 48 AA C2 F3 74 D7 57 FA BB 9C 4B 2F F6 B1
00B0: 3F 89 83 5F C9 67 A6 8E 42 31 DA 13 A9 0B 24 CD
00C0: 1B 4C 17 C5 21 8B 92 6E 95 3B F5 93 BD 41 E4 71
00D0: 69 62 99 E4 F2 64 17 95 2F 1F 0B 04 86 AF BF 8B
00E0: 0A 10 A6 6E 83 AF 9F CD C2 3A B2 56 C0 37 11 32
00F0: CF 24 98 68 30 13 C0 45 C5 12 92 0D 4E 87 EC 2A

Extensions
X509v3 Authority Key Identifier:
keyid:36:E0:E8:7C:6D:9D:45:91:EE:99:E5:42:76:4D:70:B3:50:30:AC:5E
X509v3 Subject Key Identifier: 30:79:7F:D6:62:D8:25:71:7D:4E:51:A6:5A:58:31:EA:EE:58:26:E9
X509v3 Key Usage (Critical): Digital Signature, Key Encipherment
X509v3 Basic Constraints (Critical): CA:FALSE
X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
CPS: https://secure.comodo.net/CPS
X509v3 CRL Distribution Points:
URI:http://crl.comodo.net/Class3SecurityServices_3.crl
URI:http://crl.comodoca.com/Class3SecurityServices_3.crl
email:Class3SecurityServices_3@crl.comodo.net
Netscape Cert Type: SSL Client, SSL Server


Then another box with this message:

- The certificate for "secure.monpay.com" expired Jun 16 23:59:59 2006 GMT. The webmaster should update the certificate(s).

I have tried cancelling and accepting this but it still appears every time I open my browser. I've tried emailing but email returns. I've cleaned cookies,Updated Opera,Updated Windows XP,did a virus scan and still cannot stop this notice from appearing everytime I open the Browser.

Is this something I need or can I get rid of it? Is it a virus?

Help is greatly appreciated.
Sinabon

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,470 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:30 AM

Posted 30 June 2006 - 06:30 AM

Any website that wants to secure the site or some of it's pages with SSL must obtain a valid certificate from a trusted third party CA (Certificate Authorities). A server certificate is used for authentication. If you try to enter a secure website that uses an expired certificate, you will get a secure website warning such as "The certificate for "secure.monpay.com" expired Jun 16 23:59:59 2006 GMT. The webmaster should update the certificate(s)."

There are many different types of certificates and separate certificate for every browser. Web browsers include a number of "root certificates", which belong to CAs and are distributed with 'trust bits' set by default. Browser manufacturers choose whose root certificates to include. A number of well-known CAs, such as Verisign and Geotrust, have their root certificates in all major browsers.

VeriSign Class 3 Code Signing 2004 CA - VeriSign, Inc.
Intranet Certificate Authority - GTE Corporation

When you try to view something on a secure server and get a message such as you received this means you need to download a new certificate. If you choose to agree to accept the certificate you will be able to enter the secure site, providing it is a secure and valid site, and not an exploit or a redirected malicious site.

Do you recognize secure.monpay.com? I am not familiar with it. Since you tried emailing and received no reply, then I would not attempt to get a new one.

In Internet Explorer you can check your settings via Tools > Internet Options > Content tab > Certificates. There are additional tabs with listings of certificates which you can remove. Since your using Opera, I suspect there is a similar way to do this but I don't use that broswer and I can't provide specific instructions.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Sinabon

Sinabon
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 30 June 2006 - 10:32 AM

Thank you so much.
At first I thought it was my Browser,so I updated it,thinking it would override the one I had and clear up the mess.But that didn't happen.
After contacting Opera and being told it wasn't their problem and it must be something I had picked up somewhere.,I thought it was a virus or spyware.
I had to uninstall and then reinstall Opera in order to get rid of it.

Sinabon

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,470 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:30 AM

Posted 30 June 2006 - 11:44 AM

I'm glad to hear the Opera folks finally replied even though they did not provide much help. At least your problem is resolved and you learned something about certificates. You might want to follow-up and investigate what specific setting is in their browser that will allow you to view and remove certificates in case you experience a similar problem in the future.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users