Chinese Trojan on Maxtor HDD hunts online games pass

[cappa_norra]

Did read an article in the Channel Register today conserning viruses on new blank external Maxtor Hdd. Those Hdd`s from a unnamed chinese subcontractor had by magic ( what else ? they wont say sure we did it ) been infested by a virus. More correct the virus called AutoRun-AH a trojaner that according to Channel Register is designed to do 2 things. 1 Disable the antivirus detection of it, and 2 collecting online game password.

 

 

 

AutoRun-AH is a Trojan that searches for passwords to online games and sends them to a server located in China. It also disables anti-virus software.

 

 

 

Possibility of those storage boxes still in shops is slim , also it seems like most of them ended up in Taiwan. That is not what i fear most. But will more and more chinese employers missuse their possibility of infecting un used storage systems. (I do say chinese only because most computer hardware happens to be made there due to low cost, not because i say that chinese people is more likely to do that ). Do we only se the start of some few ppls attempt to get their hand on virtual goods or is this case just execptional. Sure there have been more and more reports of chinese hackers lately. But most of those seems to be somewhat official.

 

 

 

Feel free to comment

 

 

 

 

 

anyway the article is http://www.channelregister.co.uk/2007/11/12/maxtor_infected_hdd_updated/

[Xx_Flare_xX]

*sigh* is there ever any good news? *looks around* wait yes there is "I got 99 Woodcutting today!!! :thumbsup: " *fireworks go off*

 

 

 

Ontopic: that sounds bad i got the urge to scan my pc now.

[warren211]

Wait.. so you're saying this new program can keep guessing passwords until it finds the right one, then sends it to a certain person?

 

 

 

Good lord! when will the chinese give up?

[Dragonlordjl]

Did read an article in the Channel Register today conserning viruses on new blank external Maxtor Hdd. Those Hdd`s from a unnamed chinese subcontractor had by magic ( what else ? they wont say sure we did it ) been infested by a virus. More correct the virus called AutoRun-AH a trojaner that according to Channel Register is designed to do 2 things. 1 Disable the antivirus detection of it, and 2 collecting online game password.

 

 

 

AutoRun-AH is a Trojan that searches for passwords to online games and sends them to a server located in China. It also disables anti-virus software.

 

 

 

Possibility of those storage boxes still in shops is slim , also it seems like most of them ended up in Taiwan. That is not what i fear most. But will more and more chinese employers missuse their possibility of infecting un used storage systems. (I do say chinese only because most computer hardware happens to be made there due to low cost, not because i say that chinese people is more likely to do that ). Do we only se the start of some few ppls attempt to get their hand on virtual goods or is this case just execptional. Sure there have been more and more reports of chinese hackers lately. But most of those seems to be somewhat official.

 

 

 

Feel free to comment

 

 

 

 

 

anyway the article is http://www.channelregister.co.uk/2007/11/12/maxtor_infected_hdd_updated/

 

 

 

NUKE CHINA!!! :uhh:

 

 

 

Srsly, first they try to poison our kids and now they try to steal our st00fs. :-w

[hohto]

Wait.. so you're saying this new program can keep guessing passwords until it finds the right one, then sends it to a certain person?

 

 

 

That's the basic idea of bruteforcing, nothing new on that :P

[aoe325]

On the version I heard, it were a few Seagates, the trojan only steals password for chinese games and World of Warcraft

[g_u_t_h_i_x]

The Chinese strike again... :wall:

 

That's bad, hopefully nothing I get is infected :shock:

[berserking1]

The Chinese strike again... :wall:

 

That's bad, hopefully nothing I get is infected :shock:

 

 

 

dont buy stuff made in china... helps our economy too by reducing the need to outsource

 

 

 

 

 

ot: this could be a problem in the future as the online gaming industry gets bigger, hopefully rs won't be affected by recent events

[raylifes]

On the version I heard, it were a few Seagates, the trojan only steals password for chinese games and World of Warcraft

 

 

 

Indeed, the list:

 

WSGame

 

91.com

 

QQ

 

Woool

 

rxjh.17game.com

 

TianLongBaBu

 

AskTao

 

Perfect World (Wanmei Shijie)

 

World of Warcraft

[Albel]

Dang, my luck my dad will be useing the computer and will get that trojan...and ill get hacked again :cry: i got to run a virus scan when i get home.

[Death_Hippy]

I got 4 trojans once...though I apparently downloaded a corrupt program (didn't know it was corrupt, but still not my fault). Luckily, I was virus scanning at the moment and I found out there was 4 trojans in there....I deleted em, though I'm not sure if it can find on-site trojans o_o.

[Jordanweb]

Wait.. so you're saying this new program can keep guessing passwords until it finds the right one, then sends it to a certain person?

 

 

 

That's the basic idea of bruteforcing, nothing new on that :P

 

 

 

To efficiently bruteforce runescape passwords you would need 1000s of ip addresses.

[Wallettheif]

The gold farmers are at it again! :-w

[Wouter828]

another reason to become paranoia :uhh:

 

well let's all update our virus scanners and hope for the best :pray:

[hohto]

To efficiently bruteforce runescape passwords you would need 1000s of ip addresses.

 

 

 

Basically yes, in theory not. Also like said earlier, that virus isn't made to go with RS, at least not yet.

[Hydraides]

I have a Trojann but I Cba to delete it

[sohkmj1]

-.- First poisoning, then all these blad dudes spoiling runescape, now this. Bring it on China! :-w

 

 

 

 

 

 

 

 

 

Ot: I really don't like what is happenning and why the goverment there isn't doing anything about it.

[PLaCiDSHaDoW]

I'm a little bit disgusted by this thread . How can some of you guys make statements like ... bomb china ... and china have done it again ... are you guys thick as well as ignorant.

 

 

 

Just because 1 chinese company does something wrong, that doesn't mean the whole of china is responisble. If that was the case then america would have to be destroyed numerous times a day ... just take a look at the dodgy dealings that companies in other major countries like america pull against other countries on a daily basis ... but this isn't the fault of america as a whole ... the blame lies with the individual companies.

[chenw]

But even if this is the case, I am not at ALL surprised that the Chinese have pulled off something like this. If they find a way to take advantage, they probably will do it. This is the state of the Chinese Society at the moment.

[JoeDaStudd]

They are more then likely infected at boot level which means you can't get rid of them the normal way (a virus scan). You would have to wipe the hard drive to remove it.

 

Anyway there not much to worry about without you live in Taiwan or tend to buy PC's direct from China.

 

Its still fairly worrying though, if the Chinese can do it what's stopping the rest of the world monitoring what we do on our PC's :ohnoes: :uhh: :ohnoes:

[Wallettheif]

They are more then likely infected at boot level which means you can't get rid of them the normal way (a virus scan). You would have to wipe the hard drive to remove it.

 

Anyway there not much to worry about without you live in Taiwan or tend to buy PC's direct from China.

 

Its still fairly worrying though, if the Chinese can do it what's stopping the rest of the world monitoring what we do on our PC's :ohnoes: :uhh: :ohnoes:

 

I just removed some tracking software that was installed onto my computer by the CIA :shock:

[swordb88]

thats one vicious trojan! :ohnoes:

[brave]

They are more then likely infected at boot level which means you can't get rid of them the normal way (a virus scan). You would have to wipe the hard drive to remove it.

 

Anyway there not much to worry about without you live in Taiwan or tend to buy PC's direct from China.

 

Its still fairly worrying though, if the Chinese can do it what's stopping the rest of the world monitoring what we do on our PC's :ohnoes: :uhh: :ohnoes:

 

 

 

Little known fact - MS Vista has inbuilt monitoring facilities in it so that, if they wish, MS can monitor what we do on our PCs. :-$

[Wallettheif]

They are more then likely infected at boot level which means you can't get rid of them the normal way (a virus scan). You would have to wipe the hard drive to remove it.

 

Anyway there not much to worry about without you live in Taiwan or tend to buy PC's direct from China.

 

Its still fairly worrying though, if the Chinese can do it what's stopping the rest of the world monitoring what we do on our PC's :ohnoes: :uhh: :ohnoes:

 

 

 

Little known fact - MS Vista has inbuilt monitoring facilities in it so that, if they wish, MS can monitor what we do on our PCs. :-$

 

I found those and killed them when I got my new computer.

[Latinoking]

Wow China not doing good at the moment are they? First with all the children toys and their use of alot of lead in the paint. All this outsourcing is making mad since our economy is crap. Bush not doing anything. Govenor Granholm (Michigan) doing nothing.

 

 

 

Now china and their little trojan? I barley download stuff now and days.