Victory Road  

Go Back   Victory Road > Information Kiosk > Announcements

Notices

 
 
Search this Thread
  #1  
Old December 13, 2010, 02:55:32 PM
FreezeWarp's Avatar
FreezeWarp FreezeWarp is offline
Kyurem
 
Join Date: Oct 2009
Posts: 2,186
Default Malware Warning

To Visitors of Floatzel.net, VictoryBattles.net, and VictoryRoad.net:

Starting December 3rd, 2010, and lasting somewhere around a week, Google Adsense (our ad provider), as well as MSN's own ad provider, were both attacked with a form of malware that may have affected the Victory Road Network as well a variety of other sites on the internet - including both Google and MSN.com. While we are unaware if any people here at Victory Road were for sure affected, we encourage those with lax security policies, or who have noticed abnormalities over the past week, to check.

The attacks themselves use a variety of exploits, including:
  • A vulnerability in Internet Explorer 6, 6 SP1, and 7 (though neither 8 nor 9) with the "iepeers.dll" library. (More Info)
  • An exploit in Java JDK and JRE 6 Update 10 - Update 19 (More Info)
  • Multiple exploits in Adobe Reader and Acrobat affecting versions 7, 8, and 9 (though not 9.1). (More Info 1, 2, 3, 4)
  • A flaw in Active X, affecting MDAC 2.7 and 2.8. This is believed to affect IE 6 and 7 but not 8. (More Info)

The main virus installed is HDD Plus, and more information can be found here at Armorize and here at ComputerWorld. As always, please keep your software as up to date as possible. If you are using Internet Explorer, please use at least version 8. Adobe Flash and Acrobat should also be at their latest versions (10.1 and 9.4 respectively).

Thank You,
FreezeWarp,
Victory Road Administrator

Last edited by FreezeWarp; December 14, 2010 at 01:17:34 PM.
  #2  
Old December 13, 2010, 03:57:09 PM
James's Avatar
James James is offline
Volcarona
 
Join Date: Dec 2009
Location: Johto
Posts: 665
Default

Thanks a lot FW. I'm guessing firefox is unaffected?
  #3  
Old December 13, 2010, 04:05:20 PM
OMGITSJAD OMGITSJAD is offline
Shaymin
 
Join Date: Nov 2009
Posts: 2,490
Default

Quote:
Originally Posted by James View Post
Thanks a lot FW. I'm guessing firefox is unaffected?
I doubt it, I know Chrome users can get it too, considering Lux got it and she uses Chrome...don't know what Mag has and he got it also...
  #4  
Old December 13, 2010, 04:13:47 PM
FreezeWarp's Avatar
FreezeWarp FreezeWarp is offline
Kyurem
 
Join Date: Oct 2009
Posts: 2,186
Default

Anyone who has an outdated version of Adobe Reader or Java could get it - admittedly on Windows I am susceptible to both.

Edit: Keep in mind there's a good chance all people infected got it from some other site, but still since some people are infected...

Last edited by FreezeWarp; December 13, 2010 at 04:14:19 PM.
  #5  
Old December 13, 2010, 04:18:17 PM
Luxray13579's Avatar
Luxray13579 Luxray13579 is offline
Shaymin
 
Join Date: Oct 2009
Location: Narnia~
Posts: 2,679
Default

So, unless my quick skim and scan of both those links for the HDD scan failed me, I'm still wondering: How do I get rid of it?
It's not working anymore, I put a stop to it but it's still installed on my computer. I mean not that I really care that it's there, because it doesn't work anymore, but still... any ideas?

And thanks for the info, Freeze.
  #6  
Old December 13, 2010, 04:22:50 PM
FreezeWarp's Avatar
FreezeWarp FreezeWarp is offline
Kyurem
 
Join Date: Oct 2009
Posts: 2,186
Default

Quote:
Originally Posted by Luxray13579 View Post
So, unless my quick skim and scan of both those links for the HDD scan failed me, I'm still wondering: How do I get rid of it?
It's not working anymore, I put a stop to it but it's still installed on my computer. I mean not that I really care that it's there, because it doesn't work anymore, but still... any ideas?

And thanks for the info, Freeze.
Sadly its very hard to remove. However, this post contains good instruction on how to do so:

http://www.myantispyware.com/2010/12...s-and-hddplus/. You will need MalwareBytes, though I'm under the impression you already have it Lux... xD
  #7  
Old December 13, 2010, 11:05:02 PM
Shadow's Avatar
Shadow Shadow is offline
Giratina
 
Join Date: Nov 2009
Location: Dubai
Posts: 3,209
Default

Thanks for the information, Freeze. I'm planning to update my computer's operating system and get a new software for it altogether in the next few days, so I think I'm less susceptible to these attacks (or at least I hope so).
  #8  
Old December 14, 2010, 04:38:57 AM
The Spirit of Time's Avatar
The Spirit of Time The Spirit of Time is offline
Rayquaza
 
Join Date: Dec 2009
Location: Dubai
Posts: 3,934
Default

I haven't noticed anything suspicious yet. I will keep my eyes open though for any unusual thing. Thanks Freeze for the notice.
  #9  
Old December 14, 2010, 05:11:13 AM
Searinox's Avatar
Searinox Searinox is offline
Zoroark
 
Join Date: May 2010
Location: For more info on the location of
Posts: 251
Default

I wonder if this has anything to do with the fact that I can't click links on WLM anymore as they appear plain text and need to be manually copied... I hate it when M$ does this kinda crap.

More people talking about vulnerabilities. I like that. <3
  #10  
Old December 15, 2010, 01:58:09 PM
Alakazamaster's Avatar
Alakazamaster Alakazamaster is offline
Kyurem
 
Join Date: Dec 2009
Location: My own Private Idaho
Posts: 2,366
Default

Quote:
Originally Posted by The Spirit of Time View Post
I haven't noticed anything suspicious yet. I will keep my eyes open though for any unusual thing. Thanks Freeze for the notice.
I think the fact that I keep getting e-mails containing viruses from you MAY be an issue...

But yeah, I am unaffected by this, and good thing too, since I am mediocre at computer-handling.
  #11  
Old December 15, 2010, 02:12:31 PM
OMGITSJAD OMGITSJAD is offline
Shaymin
 
Join Date: Nov 2009
Posts: 2,490
Default

A little bit off-topic but...

Quote:
Originally Posted by Alakazamaster View Post
I think the fact that I keep getting e-mails containing viruses from you MAY be an issue....
I think blocking his e-mail address may remedy this.
  #12  
Old December 15, 2010, 02:52:29 PM
Cat333Pokémon's Avatar
Cat333Pokémon Cat333Pokémon is offline
Administrator

 
Join Date: Nov 2006
Location: Nevada
Posts: 10,303
Default

Part of it could be people following the links and supplying their passwords to scrupulous sites, which then send everyone on the contact list the same message.
  #13  
Old December 15, 2010, 02:58:27 PM
OMGITSJAD OMGITSJAD is offline
Shaymin
 
Join Date: Nov 2009
Posts: 2,490
Default

Quote:
Originally Posted by Cat333Pokémon View Post
Part of it could be people following the links and supplying their passwords to scrupulous sites, which then send everyone on the contact list the same message.
Yeah, i've noticed quite a bit of messages for stuff like that on Steam lately. I was talking about blocking SoT's e-mail just so that he would stop being spammed, but that is correct. Be sure to read a link before you go to it and have to log in. Something like http://webmail.aol.com is fine, however, http://weebmailaol.tk is obviously not.

Last edited by OMGITSJAD; December 15, 2010 at 03:00:39 PM.
  #14  
Old December 15, 2010, 06:15:10 PM
evandeck's Avatar
evandeck evandeck is offline
Mudkip
 
Join Date: Dec 2009
Posts: 47
Default

I just got some malware that is called "Backdoor:Win32/IRCbot.DL" I wonder if it has to do with this.
  #15  
Old December 15, 2010, 09:46:37 PM
lelouchhero's Avatar
lelouchhero lelouchhero is offline
Magikarp
 
Join Date: Dec 2010
Location: Iowa
Posts: 4
Default

Quote:
Originally Posted by evandeck View Post
I just got some malware that is called "Backdoor:Win32/IRCbot.DL" I wonder if it has to do with this.
Yeah my friend got that to sadly to say
  #16  
Old December 16, 2010, 06:49:44 AM
The Spirit of Time's Avatar
The Spirit of Time The Spirit of Time is offline
Rayquaza
 
Join Date: Dec 2009
Location: Dubai
Posts: 3,934
Default

Quote:
Originally Posted by Alakazamaster View Post
I think the fact that I keep getting e-mails containing viruses from you MAY be an issue...

But yeah, I am unaffected by this, and good thing too, since I am mediocre at computer-handling.
No. That has nothing to do with the problem Freeze mentioned. I know that it is slightly off-topic, but all those who are in the forums and have Shadow's email, then you guys need to know that his computer is packed with viruses and is sending emails to everyone. When I received an email from him, it got immediately forwarded to you Kaz.
  #17  
Old December 16, 2010, 07:50:17 AM
Shadow's Avatar
Shadow Shadow is offline
Giratina
 
Join Date: Nov 2009
Location: Dubai
Posts: 3,209
Default

Quote:
Originally Posted by The Spirit of Time View Post
No. That has nothing to do with the problem Freeze mentioned. I know that it is slightly off-topic, but all those who are in the forums and have Shadow's email, then you guys need to know that his computer is packed with viruses and is sending emails to everyone. When I received an email from him, it got immediately forwarded to you Kaz.
What the heck? My computer is not PACKED with viruses, nor is it a virus in the first place. It turned out to be a bot which sends emails, containing a damaging link, through my address to my contacts. I changed my password (after one of my friends told me that this would solve it) and the matter is already settled. If it was a virus, I wouldn't have been able to resolve the issue so easily. Also, I used to get a lot of similar messages/IMs from my contacts, but I always avoided them because it was obvious that they're not real. On top of that, they don't automatically forward themselves to my contacts, or at least that didn't happen to me anytime. Therefore, there's no need to claim stuff from your own when you're not sure of it, especially when that has the potential to scare other people away. -__-

Last edited by Shadow; December 16, 2010 at 08:09:16 AM.
  #18  
Old December 18, 2010, 03:11:58 PM
Quadcentruo's Avatar
Quadcentruo Quadcentruo is offline
Giratina
 
Join Date: Nov 2009
Location: Unknown area
Posts: 3,684
Default

Oh I'm so glad that I somehow manage to keep things up-to-date and I'm also somehow able to avoid viruses like a crafty drunk on New Year's day. (I just stumble about, avoiding anything bad)
  #19  
Old December 21, 2010, 07:55:18 AM
alternateshadow300's Avatar
alternateshadow300 alternateshadow300 is offline
Haxorus
 
Join Date: Jul 2009
Location: Tampa, FL
Posts: 454
Default

I've been using Chrome and I haven't been infected by the recent malware attack or whatever you call it yet, however I'm cautious about where I go so I don't get it at all.
  #20  
Old December 21, 2010, 12:52:45 PM
KingOfKYA's Avatar
KingOfKYA KingOfKYA is offline
Volcarona
 
Join Date: Sep 2008
Location: On The PC
Posts: 523
Default

  #21  
Old December 21, 2010, 03:20:01 PM
NismoZ's Avatar
NismoZ NismoZ is offline
Kyurem
 
Join Date: May 2010
Location: Rochester, NY
Posts: 2,014
Default

This is actually kind of worrying to me, my computer suddenly started lagging a ton around the time when Adsense got infected, and I didn't have Java up to date at the time...

...Crap.
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search

Forum Jump


All times are GMT -8.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.
Victory Road ©2006 - 2024, Scott Cat333Pokémon Cheney
Theme by A'bom and Cat333Pokémon