Hard Light Productions Forums
Off-Topic Discussion => General Discussion => Topic started by: Trivial Psychic on July 07, 2012, 08:03:27 pm
-
I've seen this story on Canadian TV news, but I expect it pertains to more that just us Canucks.
Malware could affect 9,000 Canadian computers Monday (http://www.ctvnews.ca/canada/malware-could-affect-9-000-canadian-computers-monday-1.868498)
Basically, these jerks began this click scam (among other means) which resulted in people's internet access getting rerouted to some alternate servers in various locations in the States. Now, last fall, the FBI caught these guys and replaced their malicious servers with clean ones, so that those whose PCs were infected, wouldn't automatically lose their internet service. Now these backup servers are about to be taken down... on Monday, so anyone who has been infected with this Malware, whose PCs are being redirected through those backup servers, will suddenly not be able to connect to the internet because those servers won't exist.
If your PC has been infected or you are concerned that it might be, there's a link in the story, which will lead you to find out. I already checked my computer and it came up clean. I'm posting this because it would be a shame if a number of our members suddenly dropped off the radar Monday due to this.
Thank you.
-
Did a comprehensive virus/malware/spyware check just yesterday.
-
I've seen this story on Canadian TV news, but I expect it pertains to more that just us Canucks.
Malware could affect 9,000 Canadian computers Monday (http://www.ctvnews.ca/canada/malware-could-affect-9-000-canadian-computers-monday-1.868498)
Basically, these jerks began this click scam (among other means) which resulted in people's internet access getting rerouted to some alternate servers in various locations in the States. Now, last fall, the FBI caught these guys and replaced their malicious servers with clean ones, so that those whose PCs were infected, wouldn't automatically lose their internet service. Now these backup servers are about to be taken down... on Monday, so anyone who has been infected with this Malware, whose PCs are being redirected through those backup servers, will suddenly not be able to connect to the internet because those servers won't exist.
If your PC has been infected or you are concerned that it might be, there's a link in the story, which will lead you to find out. I already checked my computer and it came up clean. I'm posting this because it would be a shame if a number of our members suddenly dropped off the radar Monday due to this.
Thank you.
Where's Admiral Ackbar when you need him? :P
-
it's actually real.
-
Quick workaround if you have no Internet after removing a virus: check to be sure your connection is set to "no proxy" - I'm guessing that's what was going down here. Malware sets up proxy, Feds replace bad proxy with clean one, now you've gotta tell your computer not to use a proxy, after you remove the malware so the proxy doesnt just get put back in.
-
yeah, I don't why this is getting so much press.
-
Quick workaround if you have no Internet after removing a virus: check to be sure your connection is set to "no proxy" - I'm guessing that's what was going down here. Malware sets up proxy, Feds replace bad proxy with clean one, now you've gotta tell your computer not to use a proxy, after you remove the malware so the proxy doesnt just get put back in.
No, this was DNS-based. Indeed, that was its name - DNSChanger.
-
Oh. I've seen that too, not nearly as often though (although I actually saw it once where the router had been left on default passwords for a hotel wifi, and was compromised and set to an infected DNS, all the better to infect hundreds, maybe thousands of guests with :ick: ). Well ok, then set your DNS to either automatic or 8.8.8.8 & 8.8.4.4 or the OpenDNS ones after you remove the malware. :)